Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/7a683b-fa78-4112-b6b6-155fb3fe287e/1/qupGyW44erYezn3SFd55gPanL8Q.roa
File: qupGyW44erYezn3SFd55gPanL8Q.roa (raw, json)
Hash identifier: AL5zpiKVh/Py2oIeMjhGRRrtdaIWq7vrHygRl3mP4Yo=
Subject key identifier: AA:EA:46:C9:6E:38:7A:B6:1E:CE:7D:D2:15:DE:79:80:F6:A7:2F:C4
Certificate issuer: /CN=cec3b347a216bc437b0bd4cf0bc8cda65e8c2d3b
Certificate serial: 018824B53E2730DEA8D487D4A188D4730AE8
Authority key identifier: CE:C3:B3:47:A2:16:BC:43:7B:0B:D4:CF:0B:C8:CD:A6:5E:8C:2D:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsOzR6IWvEN7C9TPC8jNpl6MLTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/7a683b-fa78-4112-b6b6-155fb3fe287e/1/qupGyW44erYezn3SFd55gPanL8Q.roa
Signing time: Tue 16 May 2023 13:17:17 +0000
ROA not before: Tue 16 May 2023 13:17:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41963
IP address blocks: 91.102.184.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:24:b5:3e:27:30:de:a8:d4:87:d4:a1:88:d4:73:0a:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cec3b347a216bc437b0bd4cf0bc8cda65e8c2d3b
Validity
Not Before: May 16 13:17:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aaea46c96e387ab61ece7dd215de7980f6a72fc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:12:50:14:ac:15:b2:d0:df:e4:f1:e5:ad:60:
5a:07:34:cf:13:04:dd:07:06:d6:ce:39:9a:16:57:
22:5e:db:a3:d3:ce:db:bd:f5:ad:53:c5:bb:76:77:
ba:c9:59:d4:b8:0d:c1:b5:41:83:fb:e7:71:f0:b2:
1e:b3:d1:03:d0:09:38:49:46:53:64:26:bd:7d:1d:
6d:7f:47:7c:d7:d8:83:6f:5c:a5:02:b4:c5:52:8a:
da:9b:57:f2:1e:9c:39:6b:22:8b:0b:fa:6b:70:9c:
4c:1f:e6:db:01:ed:c1:5c:64:05:dd:de:eb:ee:3d:
d3:a6:54:b4:fc:20:71:ba:d0:e8:0e:12:c4:9b:c2:
83:ce:f8:94:5e:05:ec:4d:42:4c:a3:15:41:31:ce:
ad:5b:19:90:66:ae:23:c6:07:ae:26:f3:5a:8f:d7:
c7:07:4e:c9:30:a1:1d:a6:01:65:24:35:76:2a:82:
8a:0c:b0:07:5e:80:25:f7:06:84:26:66:dd:a3:cd:
1e:70:5f:2a:a7:1d:a0:e7:c0:22:e3:49:20:8e:6a:
13:09:46:7c:6c:64:a7:65:28:2d:24:72:0f:91:ef:
29:bf:62:e7:4d:1f:67:19:49:af:06:39:77:66:c3:
6e:6a:27:66:93:b9:30:88:48:9e:28:bc:34:fc:7b:
92:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:EA:46:C9:6E:38:7A:B6:1E:CE:7D:D2:15:DE:79:80:F6:A7:2F:C4
X509v3 Authority Key Identifier:
keyid:CE:C3:B3:47:A2:16:BC:43:7B:0B:D4:CF:0B:C8:CD:A6:5E:8C:2D:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsOzR6IWvEN7C9TPC8jNpl6MLTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/7a683b-fa78-4112-b6b6-155fb3fe287e/1/qupGyW44erYezn3SFd55gPanL8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/7a683b-fa78-4112-b6b6-155fb3fe287e/1/zsOzR6IWvEN7C9TPC8jNpl6MLTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.102.184.0/21
Signature Algorithm: sha256WithRSAEncryption
7e:d0:ee:13:20:03:1a:fc:44:3b:62:74:b2:70:ce:2b:52:63:
dc:5c:d4:95:79:08:b1:73:68:84:3d:7c:fa:7f:3f:cc:d5:6d:
e9:ed:d8:3f:4f:7d:ae:38:62:2b:30:a0:fa:c4:1d:05:90:ed:
c2:19:d7:9a:cc:b9:df:cc:4b:ab:fd:cc:62:78:fe:38:9c:34:
5f:0b:b8:4e:57:50:90:f5:2a:ce:7f:c0:2f:06:ec:71:62:9c:
dc:6c:43:03:23:bd:19:9f:dd:6e:ab:29:c9:22:4b:59:11:80:
0e:a4:0e:e8:57:d6:86:0d:bd:d9:f5:e8:8b:e1:91:9b:63:f4:
81:e7:31:e7:c6:64:a0:47:47:a9:53:90:5b:29:e9:a8:39:e3:
f8:9f:f1:98:b1:94:42:2e:56:4f:d9:20:d5:5f:60:d8:3b:66:
1c:28:bc:f5:3f:d1:41:af:f5:ea:e0:83:57:49:6a:d9:34:68:
18:41:17:df:41:29:07:d6:ed:79:fe:62:31:cd:f0:f7:e1:b0:
f0:fb:18:fc:e6:44:cd:bf:97:43:c3:ef:58:c6:40:6e:e3:66:
58:44:7f:c8:3b:f2:88:90:1e:a5:61:42:cd:e7:7e:42:94:9f:
c0:e6:eb:41:49:48:2b:57:fd:02:d2:fd:a3:f9:66:46:c3:f7:
e6:23:f7:2a
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYgktT4nMN6o1IfUoYjUcwroMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNlYzNiMzQ3YTIxNmJjNDM3YjBiZDRjZjBiYzhjZGE2NWU4
YzJkM2IwHhcNMjMwNTE2MTMxNzE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYWVhNDZjOTZlMzg3YWI2MWVjZTdkZDIxNWRlNzk4MGY2YTcyZmM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApxJQFKwVstDf5PHlrWBaBzTPEwTd
BwbWzjmaFlciXtuj087bvfWtU8W7dne6yVnUuA3BtUGD++dx8LIes9ED0Ak4SUZT
ZCa9fR1tf0d819iDb1ylArTFUoram1fyHpw5ayKLC/prcJxMH+bbAe3BXGQF3d7r
7j3TplS0/CBxutDoDhLEm8KDzviUXgXsTUJMoxVBMc6tWxmQZq4jxgeuJvNaj9fH
B07JMKEdpgFlJDV2KoKKDLAHXoAl9waEJmbdo80ecF8qpx2g58Ai40kgjmoTCUZ8
bGSnZSgtJHIPke8pv2LnTR9nGUmvBjl3ZsNuaidmk7kwiEieKLw0/HuSEQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKrqRsluOHq2Hs590hXeeYD2py/EMB8GA1UdIwQY
MBaAFM7Ds0eiFrxDewvUzwvIzaZejC07MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvenNPelI2SVd2RU43QzlUUEM4ak5wbDZNTFRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny83YTY4M2ItZmE3OC00MTEyLWI2YjYt
MTU1ZmIzZmUyODdlLzEvcXVwR3lXNDRlclllem4zU0ZkNTVnUGFuTDhRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny83YTY4M2ItZmE3OC00MTEyLWI2YjYtMTU1ZmIzZmUyODdl
LzEvenNPelI2SVd2RU43QzlUUEM4ak5wbDZNTFRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDW2a4MA0G
CSqGSIb3DQEBCwUAA4IBAQB+0O4TIAMa/EQ7YnSycM4rUmPcXNSVeQixc2iEPXz6
fz/M1W3p7dg/T32uOGIrMKD6xB0FkO3CGdeazLnfzEur/cxieP44nDRfC7hOV1CQ
9SrOf8AvBuxxYpzcbEMDI70Zn91uqynJIktZEYAOpA7oV9aGDb3Z9eiL4ZGbY/SB
5zHnxmSgR0epU5BbKemoOeP4n/GYsZRCLlZP2SDVX2DYO2YcKLz1P9FBr/Xq4INX
SWrZNGgYQRffQSkH1u15/mIxzfD34bDw+xj85kTNv5dDw+9YxkBu42ZYRH/IO/KI
kB6lYULN535ClJ/A5utBSUgrV/0C0v2j+WZGw/fmI/cq
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:42 2024 by rpki-client on console-ams.rpki-client.org