Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/qZZMWORx82VR_MpURteP9dki-W0.roa
File: qZZMWORx82VR_MpURteP9dki-W0.roa (raw, json)
Hash identifier: IUXXanC/8Q9Dq/3vgMzLMlwbTEaymWBefitL6No61so=
Subject key identifier: A9:96:4C:58:E4:71:F3:65:51:FC:CA:54:46:D7:8F:F5:D9:22:F9:6D
Certificate issuer: /CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Certificate serial: 018571B0ECBD6E2C0B8054FAF88130E0F490
Authority key identifier: 7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/qZZMWORx82VR_MpURteP9dki-W0.roa
Signing time: Mon 02 Jan 2023 08:54:58 +0000
ROA not before: Mon 02 Jan 2023 08:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21100
IP address blocks: 46.21.250.0/24 maxlen: 24
212.8.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b0:ec:bd:6e:2c:0b:80:54:fa:f8:81:30:e0:f4:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fcad89df1bf99a36f290cc3ef0f1e7b4d027533
Validity
Not Before: Jan 2 08:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a9964c58e471f36551fcca5446d78ff5d922f96d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ae:d4:73:56:0e:a1:8a:ef:5e:79:47:e4:68:
14:76:61:35:79:b8:f1:ea:23:98:ac:ac:50:cc:2b:
1b:52:fc:1c:02:c6:ce:32:99:06:36:04:88:83:72:
7c:be:a8:79:a5:9d:6f:76:f4:c5:7d:d9:c7:75:31:
41:c1:d1:c4:38:25:03:5f:32:9d:9c:87:bb:92:34:
90:cf:28:84:36:98:e8:71:1c:b5:8f:3b:da:d3:88:
1a:5e:e6:9c:47:28:44:ab:ad:27:29:f3:b5:3d:ba:
ea:c5:94:3e:ba:d7:9d:0a:13:8b:52:ab:3d:2c:87:
f0:2d:11:a7:32:bc:2f:4c:c8:b6:97:f0:5f:5e:0f:
22:5f:c9:a8:a4:9f:1c:2d:8e:fb:91:d6:b5:38:9a:
14:b5:2c:9f:ea:39:fe:4d:7b:78:1b:12:c6:9b:8a:
d9:f5:8c:66:ff:3c:26:c3:3c:56:40:3d:8c:5f:f0:
8c:6a:91:51:fe:55:2e:c3:e8:a3:c3:0e:c8:16:3a:
42:79:12:c4:6b:d3:9d:cb:26:e7:28:48:58:0d:6e:
d9:83:12:f7:8c:ae:cf:17:93:5b:43:54:56:eb:9b:
14:c3:c9:23:e9:98:b4:7a:1d:de:b0:5b:09:bd:53:
ff:e6:d7:ca:44:63:97:6c:15:bb:92:80:68:ce:d2:
c4:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:96:4C:58:E4:71:F3:65:51:FC:CA:54:46:D7:8F:F5:D9:22:F9:6D
X509v3 Authority Key Identifier:
keyid:7F:CA:D8:9D:F1:BF:99:A3:6F:29:0C:C3:EF:0F:1E:7B:4D:02:75:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8rYnfG_maNvKQzD7w8ee00CdTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/qZZMWORx82VR_MpURteP9dki-W0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f8b16-284f-4512-b3dc-015d9f1b4b50/1/f8rYnfG_maNvKQzD7w8ee00CdTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.21.250.0/24
212.8.245.0/24
Signature Algorithm: sha256WithRSAEncryption
81:fe:f7:7b:82:1a:88:28:ed:47:3c:d3:7a:92:8f:93:42:5c:
91:db:3f:86:a2:1e:95:5f:8c:2b:ef:67:53:db:8e:c6:78:ca:
79:4e:b8:3e:34:fa:3d:00:7c:75:4b:a3:72:c7:2f:7f:89:41:
3b:c2:05:99:ed:57:20:c3:03:12:c9:c3:aa:6d:2b:d8:b2:0d:
d4:ef:ba:70:1e:be:3b:53:9f:91:ec:c7:a7:de:80:97:00:a5:
14:04:8c:85:b7:56:71:5c:87:a5:3b:24:6f:1b:dc:56:d1:31:
2d:82:b8:42:e3:43:6c:e8:15:af:4a:65:9c:3b:e3:ee:eb:0d:
00:69:20:f6:19:aa:b9:db:ac:b8:a0:34:aa:09:0e:34:71:ba:
32:99:a3:93:75:22:7e:25:ee:82:40:ff:d4:c4:43:64:03:7c:
37:2c:de:86:c0:fb:27:a5:fc:1f:47:88:27:a2:01:a3:c8:0b:
ba:e4:e0:0c:83:3e:00:52:02:58:11:91:a5:5e:e6:83:06:3d:
5d:2b:2b:e2:35:f5:09:c4:6a:bc:0e:dc:a8:1e:18:05:53:18:
6c:d9:34:5f:ff:71:fa:fd:3a:f2:cf:74:f5:94:87:db:21:24:
cd:6d:65:50:cc:f5:99:a0:57:ae:b9:21:1a:8c:49:05:5b:24:
ea:55:e2:d3
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVxsOy9biwLgFT6+IEw4PSQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdmY2FkODlkZjFiZjk5YTM2ZjI5MGNjM2VmMGYxZTdiNGQw
Mjc1MzMwHhcNMjMwMTAyMDg1NDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhOTk2NGM1OGU0NzFmMzY1NTFmY2NhNTQ0NmQ3OGZmNWQ5MjJmOTZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyq7Uc1YOoYrvXnlH5GgUdmE1ebjx
6iOYrKxQzCsbUvwcAsbOMpkGNgSIg3J8vqh5pZ1vdvTFfdnHdTFBwdHEOCUDXzKd
nIe7kjSQzyiENpjocRy1jzva04gaXuacRyhEq60nKfO1PbrqxZQ+utedChOLUqs9
LIfwLRGnMrwvTMi2l/BfXg8iX8mopJ8cLY77kda1OJoUtSyf6jn+TXt4GxLGm4rZ
9Yxm/zwmwzxWQD2MX/CMapFR/lUuw+ijww7IFjpCeRLEa9OdyybnKEhYDW7ZgxL3
jK7PF5NbQ1RW65sUw8kj6Zi0eh3esFsJvVP/5tfKRGOXbBW7koBoztLESQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFKmWTFjkcfNlUfzKVEbXj/XZIvltMB8GA1UdIwQY
MBaAFH/K2J3xv5mjbykMw+8PHntNAnUzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZjhyWW5mR19tYU52S1F6RDd3OGVlMDBDZFRNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS85ZjhiMTYtMjg0Zi00NTEyLWIzZGMt
MDE1ZDlmMWI0YjUwLzEvcVpaTVdPUng4MlZSX01wVVJ0ZVA5ZGtpLVcwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS85ZjhiMTYtMjg0Zi00NTEyLWIzZGMtMDE1ZDlmMWI0YjUw
LzEvZjhyWW5mR19tYU52S1F6RDd3OGVlMDBDZFRNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALhX6AwQA
1Aj1MA0GCSqGSIb3DQEBCwUAA4IBAQCB/vd7ghqIKO1HPNN6ko+TQlyR2z+Goh6V
X4wr72dT247GeMp5Trg+NPo9AHx1S6Nyxy9/iUE7wgWZ7VcgwwMSycOqbSvYsg3U
77pwHr47U5+R7Men3oCXAKUUBIyFt1ZxXIelOyRvG9xW0TEtgrhC40Ns6BWvSmWc
O+Pu6w0AaSD2Gaq526y4oDSqCQ40cboymaOTdSJ+Je6CQP/UxENkA3w3LN6GwPsn
pfwfR4gnogGjyAu65OAMgz4AUgJYEZGlXuaDBj1dKyviNfUJxGq8DtyoHhgFUxhs
2TRf/3H6/Tryz3T1lIfbISTNbWVQzPWZoFeuuSEajEkFWyTqVeLT
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:12 2024 by rpki-client on console-fra.rpki-client.org