Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/0b58ab-f707-4ab6-9ae8-0240e74476a7/1/QvtQFtGFUAfNn6blyN8JDA94bmM.roa
File: QvtQFtGFUAfNn6blyN8JDA94bmM.roa (raw, json)
Hash identifier: SssoremdHfoYwn7hyMjYqDFEHS3mrdXHuJS4L96+wiM=
Subject key identifier: 42:FB:50:16:D1:85:50:07:CD:9F:A6:E5:C8:DF:09:0C:0F:78:6E:63
Certificate issuer: /CN=4b8c7bd0c4486ba073ce2de53ba074d70e45b5e7
Certificate serial: 01856D2F2585789C349F0692CE7392AFB9E2
Authority key identifier: 4B:8C:7B:D0:C4:48:6B:A0:73:CE:2D:E5:3B:A0:74:D7:0E:45:B5:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S4x70MRIa6Bzzi3lO6B01w5Ftec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/0b58ab-f707-4ab6-9ae8-0240e74476a7/1/QvtQFtGFUAfNn6blyN8JDA94bmM.roa
Signing time: Sun 01 Jan 2023 11:54:44 +0000
ROA not before: Sun 01 Jan 2023 11:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35066
IP address blocks: 185.95.144.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:2f:25:85:78:9c:34:9f:06:92:ce:73:92:af:b9:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b8c7bd0c4486ba073ce2de53ba074d70e45b5e7
Validity
Not Before: Jan 1 11:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=42fb5016d1855007cd9fa6e5c8df090c0f786e63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:60:a8:9f:a1:92:75:11:a8:06:b9:1f:88:08:
d6:be:94:44:0b:b4:3a:6b:64:f9:a4:32:50:c6:50:
3f:b6:c0:4f:9f:4a:5b:f1:24:1f:bf:49:e2:f8:2a:
13:6c:ba:8b:07:c8:51:6d:7e:64:04:23:29:c9:69:
cb:3d:96:86:c5:e6:55:fa:b7:3e:e9:05:fa:4b:19:
90:c2:b7:5f:0c:2d:62:c0:35:24:77:9b:86:34:71:
eb:c2:40:0f:c1:26:48:6f:f2:1f:fe:1d:fa:38:cf:
15:07:50:93:91:47:8b:5d:72:df:59:ae:8d:f9:50:
1f:90:7e:18:be:41:6d:10:d5:b6:3f:bd:89:f6:2c:
eb:07:1b:08:bd:31:59:4d:38:76:fc:be:43:1a:ab:
e6:d7:6d:dd:61:b5:f4:a8:f3:aa:54:62:66:76:86:
bf:05:a9:3a:fa:c2:e1:2c:81:1f:ae:0b:b7:22:b7:
4c:6c:85:91:93:30:de:32:0f:c2:9b:31:d0:30:f7:
d7:da:14:8a:e8:df:78:a5:5a:38:11:35:94:da:37:
50:8c:0e:11:ec:55:f5:b0:d8:06:f1:ae:d0:9a:da:
d5:3c:4b:e0:1b:8b:aa:3e:92:59:6b:e7:c9:51:b5:
ad:2c:3a:36:2b:75:d1:33:d9:cd:94:8c:16:f6:85:
ae:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:FB:50:16:D1:85:50:07:CD:9F:A6:E5:C8:DF:09:0C:0F:78:6E:63
X509v3 Authority Key Identifier:
keyid:4B:8C:7B:D0:C4:48:6B:A0:73:CE:2D:E5:3B:A0:74:D7:0E:45:B5:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S4x70MRIa6Bzzi3lO6B01w5Ftec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0b58ab-f707-4ab6-9ae8-0240e74476a7/1/QvtQFtGFUAfNn6blyN8JDA94bmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/0b58ab-f707-4ab6-9ae8-0240e74476a7/1/S4x70MRIa6Bzzi3lO6B01w5Ftec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.95.144.0/22
Signature Algorithm: sha256WithRSAEncryption
38:52:a4:48:cd:d7:af:dd:34:e2:3c:64:ff:c2:f6:a5:16:92:
33:b0:a1:8b:36:f1:0c:31:a8:fa:8e:2b:39:36:df:fc:4f:57:
1e:69:88:82:90:0e:d3:97:65:d3:e5:f9:a9:6a:09:96:98:f7:
dc:94:f4:bd:0e:94:ee:b7:e7:d2:85:52:bf:bd:98:36:b3:b3:
9c:72:09:f2:fd:97:a9:67:f2:53:df:4c:3b:c5:30:17:66:53:
d6:71:d3:9a:05:79:be:42:31:39:6f:2b:30:3f:d1:67:37:d6:
78:a2:a9:bc:24:17:ad:e4:1f:50:eb:89:ae:f7:53:61:76:96:
15:71:0d:06:f3:e5:2f:8f:25:13:1e:3a:ed:da:c9:a6:f9:dd:
fb:93:6b:ce:0f:4d:e4:78:78:40:11:00:9a:4c:f7:0b:89:9a:
a0:f3:e0:be:b5:c6:01:df:16:48:f0:3c:ee:46:fd:a5:d2:08:
02:28:fe:c8:14:30:75:1f:50:cb:1b:dc:1b:9d:c5:cf:4d:00:
7b:c2:e5:08:87:82:3d:5e:30:87:5f:06:2f:ea:25:58:37:54:
d8:bc:6a:32:b1:9a:e3:7a:27:00:ca:f8:88:d9:0b:24:f7:78:
8d:91:9c:97:44:02:a0:be:7b:00:fc:d9:94:c4:a4:90:26:d5:
80:ab:ae:e1
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtLyWFeJw0nwaSznOSr7niMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiOGM3YmQwYzQ0ODZiYTA3M2NlMmRlNTNiYTA3NGQ3MGU0
NWI1ZTcwHhcNMjMwMTAxMTE1NDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MmZiNTAxNmQxODU1MDA3Y2Q5ZmE2ZTVjOGRmMDkwYzBmNzg2ZTYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs2Con6GSdRGoBrkfiAjWvpREC7Q6
a2T5pDJQxlA/tsBPn0pb8SQfv0ni+CoTbLqLB8hRbX5kBCMpyWnLPZaGxeZV+rc+
6QX6SxmQwrdfDC1iwDUkd5uGNHHrwkAPwSZIb/If/h36OM8VB1CTkUeLXXLfWa6N
+VAfkH4YvkFtENW2P72J9izrBxsIvTFZTTh2/L5DGqvm123dYbX0qPOqVGJmdoa/
Bak6+sLhLIEfrgu3IrdMbIWRkzDeMg/CmzHQMPfX2hSK6N94pVo4ETWU2jdQjA4R
7FX1sNgG8a7QmtrVPEvgG4uqPpJZa+fJUbWtLDo2K3XRM9nNlIwW9oWu8wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEL7UBbRhVAHzZ+m5cjfCQwPeG5jMB8GA1UdIwQY
MBaAFEuMe9DESGugc84t5TugdNcORbXnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUzR4NzBNUklhNkJ6emkzbE82QjAxdzVGdGVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS8wYjU4YWItZjcwNy00YWI2LTlhZTgt
MDI0MGU3NDQ3NmE3LzEvUXZ0UUZ0R0ZVQWZObjZibHlOOEpEQTk0Ym1NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS8wYjU4YWItZjcwNy00YWI2LTlhZTgtMDI0MGU3NDQ3NmE3
LzEvUzR4NzBNUklhNkJ6emkzbE82QjAxdzVGdGVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuV+QMA0G
CSqGSIb3DQEBCwUAA4IBAQA4UqRIzdev3TTiPGT/wvalFpIzsKGLNvEMMaj6jis5
Nt/8T1ceaYiCkA7Tl2XT5fmpagmWmPfclPS9DpTut+fShVK/vZg2s7Occgny/Zep
Z/JT30w7xTAXZlPWcdOaBXm+QjE5byswP9FnN9Z4oqm8JBet5B9Q64mu91NhdpYV
cQ0G8+UvjyUTHjrt2smm+d37k2vOD03keHhAEQCaTPcLiZqg8+C+tcYB3xZI8Dzu
Rv2l0ggCKP7IFDB1H1DLG9wbncXPTQB7wuUIh4I9XjCHXwYv6iVYN1TYvGoysZrj
eicAyviI2Qsk93iNkZyXRAKgvnsA/NmUxKSQJtWAq67h
-----END CERTIFICATE-----
Generated at Mon Jan 1 15:02:42 2024 by rpki-client on console-ams.rpki-client.org