Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/QQByUrrfobw4atESg_tdke691yY.roa
File: QQByUrrfobw4atESg_tdke691yY.roa (raw, json)
Hash identifier: HAbb5SswvyQ7rhQjjiqGSvCmC5+sZiYdDYeg5E2Jjkg=
Subject key identifier: 41:00:72:52:BA:DF:A1:BC:38:6A:D1:12:83:FB:5D:91:EE:BD:D7:26
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01881C75EA764F3E2BBCFB1A0770C1EFDAE3
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/QQByUrrfobw4atESg_tdke691yY.roa
Signing time: Sun 14 May 2023 22:51:09 +0000
ROA not before: Sun 14 May 2023 22:51:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 139989
IP address blocks: 2a10:cc40:111::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1c:75:ea:76:4f:3e:2b:bc:fb:1a:07:70:c1:ef:da:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 14 22:51:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41007252badfa1bc386ad11283fb5d91eebdd726
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c7:c9:3c:de:89:b8:40:90:29:ab:7c:8f:78:
51:a4:5f:15:a9:97:ee:cf:46:ca:b2:1d:f9:97:f3:
6f:17:3a:9b:97:ef:98:4b:82:e2:aa:fa:00:7e:5d:
ed:ee:a7:e4:fc:ba:ec:17:74:82:86:1e:33:a9:a9:
64:f9:29:25:57:c6:4f:74:42:cb:ad:38:03:97:29:
53:4a:76:bf:7c:f7:13:be:48:21:17:a5:51:fd:8a:
19:f7:28:97:3e:19:69:00:7e:48:30:28:a7:16:60:
fc:6e:2e:21:ff:39:dc:03:99:c5:1f:06:c3:97:0a:
72:62:dd:b4:e2:d1:1b:6f:e7:c7:81:c4:5b:ae:a4:
54:0a:e1:78:c7:ce:37:1c:12:dc:30:35:be:1a:85:
0b:ea:3f:d2:6c:c8:e9:d4:a1:ec:0f:29:78:79:c6:
50:30:00:fb:85:27:49:0d:70:44:d7:1e:4c:6f:e3:
1e:fd:cf:ce:f8:3d:ed:df:75:73:a7:b0:90:0d:04:
c0:61:b2:57:61:a7:cc:35:7c:97:c7:25:5c:22:66:
ab:27:53:b4:d8:77:98:1f:bf:bb:52:47:4e:9e:b0:
5f:fa:dc:eb:8c:3f:d9:11:32:87:15:68:fb:4f:e8:
c0:66:4c:c6:2c:5c:84:a5:5f:03:c6:cd:5e:1b:63:
36:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:00:72:52:BA:DF:A1:BC:38:6A:D1:12:83:FB:5D:91:EE:BD:D7:26
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/QQByUrrfobw4atESg_tdke691yY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:cc40:111::/48
Signature Algorithm: sha256WithRSAEncryption
85:d5:21:57:40:2d:e6:57:9d:cd:12:1d:70:e5:b0:5e:01:1e:
07:c7:99:c8:81:5b:3e:b7:76:1e:64:a1:b6:a5:ea:0e:d4:ac:
cb:30:14:8f:b6:77:46:6d:4d:03:4b:48:3a:82:95:29:73:01:
34:33:32:f2:06:f9:35:23:d2:51:c7:1d:ea:3f:3e:03:81:40:
20:0c:7b:53:08:d0:f8:ad:4e:9e:3b:a9:75:d1:7c:c3:44:f5:
16:47:74:52:c5:02:4c:13:20:97:2e:77:18:83:f2:b4:05:28:
bd:b5:81:b5:b6:7f:f8:59:44:36:ee:19:5e:18:57:98:f8:ed:
f5:8f:71:21:d7:2f:61:ed:34:68:74:09:56:3f:40:13:1b:c0:
94:3e:a4:76:e8:01:a0:c3:fb:40:9b:13:83:5a:f0:47:11:5e:
08:80:c1:de:7a:08:d4:cd:a9:c4:12:db:18:d4:ff:ab:88:d9:
ff:02:45:61:22:92:6f:45:7c:7f:14:22:28:81:5d:1d:8d:b4:
6e:8f:35:03:ed:f9:c1:6c:0d:c6:a4:27:e9:0f:58:24:b5:95:
de:65:d8:1b:c0:1d:e6:33:66:1f:8d:a5:d3:d6:a6:82:a2:5e:
26:92:43:57:66:8d:70:46:56:54:f8:31:54:94:8d:bf:a2:2e:
85:38:ca:3c
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYgcdep2Tz4rvPsaB3DB79rjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwNTE0MjI1MTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MTAwNzI1MmJhZGZhMWJjMzg2YWQxMTI4M2ZiNWQ5MWVlYmRkNzI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAycfJPN6JuECQKat8j3hRpF8VqZfu
z0bKsh35l/NvFzqbl++YS4LiqvoAfl3t7qfk/LrsF3SChh4zqalk+SklV8ZPdELL
rTgDlylTSna/fPcTvkghF6VR/YoZ9yiXPhlpAH5IMCinFmD8bi4h/zncA5nFHwbD
lwpyYt204tEbb+fHgcRbrqRUCuF4x843HBLcMDW+GoUL6j/SbMjp1KHsDyl4ecZQ
MAD7hSdJDXBE1x5Mb+Me/c/O+D3t33Vzp7CQDQTAYbJXYafMNXyXxyVcImarJ1O0
2HeYH7+7UkdOnrBf+tzrjD/ZETKHFWj7T+jAZkzGLFyEpV8Dxs1eG2M2iwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFEEAclK636G8OGrREoP7XZHuvdcmMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvUVFCeVVycmZvYnc0YXRFU2dfdGRrZTY5MXlZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhDMQAER
MA0GCSqGSIb3DQEBCwUAA4IBAQCF1SFXQC3mV53NEh1w5bBeAR4Hx5nIgVs+t3Ye
ZKG2peoO1KzLMBSPtndGbU0DS0g6gpUpcwE0MzLyBvk1I9JRxx3qPz4DgUAgDHtT
CND4rU6eO6l10XzDRPUWR3RSxQJMEyCXLncYg/K0BSi9tYG1tn/4WUQ27hleGFeY
+O31j3Eh1y9h7TRodAlWP0ATG8CUPqR26AGgw/tAmxODWvBHEV4IgMHeegjUzanE
EtsY1P+riNn/AkVhIpJvRXx/FCIogV0djbRujzUD7fnBbA3GpCfpD1gktZXeZdgb
wB3mM2YfjaXT1qaCol4mkkNXZo1wRlZU+DFUlI2/oi6FOMo8
Generated at Sat Aug 12 23:18:56 2023 by rpki-client on console-fra.rpki-client.org