Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/TQ_YOZH22sHzbh-wbIFHM96-eqI.roa
File: TQ_YOZH22sHzbh-wbIFHM96-eqI.roa (raw, json)
Hash identifier: CUw61W3LdVI+YfMVUb2LxhGQOD3BDew5md6Eh27mefE=
Subject key identifier: 4D:0F:D8:39:91:F6:DA:C1:F3:6E:1F:B0:6C:81:47:33:DE:BE:7A:A2
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01888A67178F2243C60E94F90C8AEBB8F650
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/TQ_YOZH22sHzbh-wbIFHM96-eqI.roa
Signing time: Mon 05 Jun 2023 07:13:12 +0000
ROA not before: Mon 05 Jun 2023 07:13:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211585
IP address blocks: 84.32.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Jun 2023 09:07:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8a:67:17:8f:22:43:c6:0e:94:f9:0c:8a:eb:b8:f6:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jun 5 07:13:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d0fd83991f6dac1f36e1fb06c814733debe7aa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5d:da:12:b3:d7:54:95:26:cd:ae:b4:71:a1:
5d:d5:6f:67:3a:6a:db:f1:2c:4f:94:ea:92:03:00:
6d:02:4c:6d:a1:e8:2b:ab:22:c9:e1:a6:03:2c:b4:
aa:a2:f2:f2:27:39:1e:9e:0f:6a:11:01:a0:9b:19:
0c:0a:0b:4e:71:7c:06:e4:3d:2b:b6:cd:8b:39:69:
02:79:cd:24:32:73:93:27:ad:05:ef:c0:32:4f:bd:
0d:bc:89:3f:1f:95:c5:78:46:50:41:2d:50:4c:21:
78:16:cf:18:8f:2c:93:04:88:53:f9:fa:3d:68:e1:
cb:7f:70:d9:74:b5:79:03:35:29:8c:71:5c:d5:e8:
e7:a1:8c:f1:72:a1:9c:8a:8f:9a:0e:21:f9:4b:1a:
f3:90:42:12:59:fc:0b:3d:32:20:6f:03:b4:6e:93:
2a:0f:ae:78:2e:d9:f7:e8:78:c7:94:6e:64:78:73:
42:86:d1:55:9a:8a:30:39:9e:b7:d3:e1:4d:10:e1:
31:cb:6f:c0:ee:60:ef:f9:a1:02:65:06:6a:3b:65:
97:ca:af:d1:52:c5:64:ef:98:89:6e:2b:c2:ea:cf:
90:cb:0b:b4:64:01:ed:2f:02:e9:ea:7e:59:6c:b7:
fe:eb:32:2c:c2:45:fa:90:76:5a:0e:42:7f:f6:da:
68:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:0F:D8:39:91:F6:DA:C1:F3:6E:1F:B0:6C:81:47:33:DE:BE:7A:A2
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/TQ_YOZH22sHzbh-wbIFHM96-eqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.153.0/24
Signature Algorithm: sha256WithRSAEncryption
28:ab:c1:b8:cf:5b:00:66:cf:da:55:ff:e1:30:39:3e:db:fe:
f1:ee:a2:c0:14:a4:3a:c1:ca:36:f0:cb:ff:ee:f6:ed:29:b6:
7f:f9:33:36:65:1c:67:f0:3a:81:b8:03:5d:49:c7:bd:06:16:
91:b7:4b:23:16:50:56:1a:cd:e0:d8:38:7b:89:1a:ca:fe:3e:
b0:d1:d5:60:cb:bd:f3:02:80:52:0b:13:82:7a:ae:cb:92:fd:
ee:cb:b7:01:ae:42:d8:c6:9a:70:be:a3:15:fb:95:3b:a5:a8:
a4:86:5e:70:88:fa:30:67:a8:74:2f:9d:09:3d:23:56:9a:b2:
d2:39:1d:29:60:70:58:05:48:45:b8:ae:b4:35:57:56:3e:27:
fb:59:15:36:da:bf:97:db:43:db:b6:aa:23:06:f8:1b:e4:0a:
7f:8f:d7:48:87:4c:1a:fd:5a:75:78:b6:4d:40:48:39:32:57:
8f:3e:26:4a:1c:cd:7d:29:6f:56:26:e3:41:aa:39:1a:d1:ca:
4a:f8:00:74:de:a1:53:fa:23:8a:61:52:10:96:f1:a9:11:8f:
0e:82:fb:87:b8:91:6c:a7:5f:bb:fb:8f:63:88:97:38:b7:b4:
23:d0:c7:2b:7e:ab:2c:fc:e7:fb:1d:b3:f5:22:9f:76:5d:aa:
12:d1:4e:58
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYiKZxePIkPGDpT5DIrruPZQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjMwNjA1MDcxMzEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZDBmZDgzOTkxZjZkYWMxZjM2ZTFmYjA2YzgxNDczM2RlYmU3YWEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq13aErPXVJUmza60caFd1W9nOmrb
8SxPlOqSAwBtAkxtoegrqyLJ4aYDLLSqovLyJzkeng9qEQGgmxkMCgtOcXwG5D0r
ts2LOWkCec0kMnOTJ60F78AyT70NvIk/H5XFeEZQQS1QTCF4Fs8YjyyTBIhT+fo9
aOHLf3DZdLV5AzUpjHFc1ejnoYzxcqGcio+aDiH5SxrzkEISWfwLPTIgbwO0bpMq
D654Ltn36HjHlG5keHNChtFVmoowOZ630+FNEOExy2/A7mDv+aECZQZqO2WXyq/R
UsVk75iJbivC6s+Qywu0ZAHtLwLp6n5ZbLf+6zIswkX6kHZaDkJ/9tpopwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE0P2DmR9trB824fsGyBRzPevnqiMB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvVFFfWU9aSDIyc0h6Ymgtd2JJRkhNOTYtZXFJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVCCZMA0G
CSqGSIb3DQEBCwUAA4IBAQAoq8G4z1sAZs/aVf/hMDk+2/7x7qLAFKQ6wco28Mv/
7vbtKbZ/+TM2ZRxn8DqBuANdSce9BhaRt0sjFlBWGs3g2Dh7iRrK/j6w0dVgy73z
AoBSCxOCeq7Lkv3uy7cBrkLYxppwvqMV+5U7paikhl5wiPowZ6h0L50JPSNWmrLS
OR0pYHBYBUhFuK60NVdWPif7WRU22r+X20PbtqojBvgb5Ap/j9dIh0wa/Vp1eLZN
QEg5MlePPiZKHM19KW9WJuNBqjka0cpK+AB03qFT+iOKYVIQlvGpEY8OgvuHuJFs
p1+7+49jiJc4t7Qj0Mcrfqss/Of7HbP1Ip92XaoS0U5Y
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:28 2024 by rpki-client on console-ams.rpki-client.org