Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/qruDeccHYequDyGAvZsCU8BF_Zo.roa
File: qruDeccHYequDyGAvZsCU8BF_Zo.roa (raw, json)
Hash identifier: JUuk8zUBSxiYFOq9ZGhucFEImAQDkCdIf0NH+wbLQr8=
Subject key identifier: AA:BB:83:79:C7:07:61:EA:AE:0F:21:80:BD:9B:02:53:C0:45:FD:9A
Certificate issuer: /CN=86b22303de4b0a870fcfe7b6556c024f75c76a34
Certificate serial: 018570CBDDBA3AA5A600FADF4F9429087793
Authority key identifier: 86:B2:23:03:DE:4B:0A:87:0F:CF:E7:B6:55:6C:02:4F:75:C7:6A:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hrIjA95LCocPz-e2VWwCT3XHajQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/qruDeccHYequDyGAvZsCU8BF_Zo.roa
Signing time: Mon 02 Jan 2023 04:44:46 +0000
ROA not before: Mon 02 Jan 2023 04:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25591
IP address blocks: 5.183.68.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 05 Sep 2023 14:35:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:dd:ba:3a:a5:a6:00:fa:df:4f:94:29:08:77:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86b22303de4b0a870fcfe7b6556c024f75c76a34
Validity
Not Before: Jan 2 04:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aabb8379c70761eaae0f2180bd9b0253c045fd9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:e6:f4:58:1e:0e:02:49:6b:86:fe:6a:f7:37:
1d:e5:d4:93:31:33:df:79:f2:6f:ee:03:31:92:83:
7a:7a:78:af:15:bc:0e:86:6d:85:c6:82:20:f4:f0:
13:fa:25:ed:71:98:46:e7:19:4d:7d:75:ac:67:83:
1b:e1:05:ac:46:d2:6f:ea:46:fb:ee:0c:49:2c:2a:
bf:3a:ee:89:40:95:aa:28:fd:38:47:e8:e0:99:a4:
35:9c:5c:a7:d4:8b:b0:9c:b4:22:c0:7d:db:1a:35:
d4:9b:3b:86:8a:e7:a3:3e:14:da:76:4a:2a:f8:b6:
59:60:a9:00:9b:36:09:0a:a0:69:4c:c2:a2:5d:76:
3a:6a:4d:f4:79:53:b2:ce:1b:cf:10:1d:6c:d1:94:
18:ff:30:50:0d:dd:e2:1a:10:60:94:cf:74:43:0e:
67:c2:72:a8:fd:73:32:97:97:78:74:db:22:05:3e:
c4:c5:7a:08:34:6d:63:3c:5d:65:ab:c5:bb:f4:32:
90:8d:ce:e1:59:a7:49:1f:16:cc:60:e3:b1:0b:8a:
26:e7:59:de:c2:d2:43:87:2a:8b:ce:24:e5:29:35:
df:4e:ce:1b:49:5d:64:83:72:fd:39:77:33:a3:69:
3b:5d:6e:b5:0e:07:da:e5:43:f8:01:69:d4:1c:8a:
73:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:BB:83:79:C7:07:61:EA:AE:0F:21:80:BD:9B:02:53:C0:45:FD:9A
X509v3 Authority Key Identifier:
keyid:86:B2:23:03:DE:4B:0A:87:0F:CF:E7:B6:55:6C:02:4F:75:C7:6A:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hrIjA95LCocPz-e2VWwCT3XHajQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/qruDeccHYequDyGAvZsCU8BF_Zo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/afd70f-c300-49cb-b729-72ab5987f609/1/hrIjA95LCocPz-e2VWwCT3XHajQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.68.0/22
Signature Algorithm: sha256WithRSAEncryption
60:26:82:0d:f7:20:97:a7:e7:b7:91:30:2b:c0:4f:70:f1:e5:
d6:6f:0f:cd:1b:42:21:8b:6d:03:34:98:c6:c0:fb:d5:ad:79:
76:9d:29:e0:e2:57:e8:c5:c2:fc:3e:14:38:52:83:1b:d8:85:
1b:20:3f:d6:ce:52:5a:b9:2f:e0:42:b7:58:ab:65:46:ca:77:
ce:0f:7d:06:42:59:24:dd:a4:3f:3d:41:96:35:51:e9:b6:b3:
40:0d:bc:67:bd:e3:62:ce:94:ed:5a:d0:65:a7:13:60:7e:67:
1c:b5:61:e5:86:90:4c:a3:a2:ea:e1:0e:00:b5:b0:60:c1:06:
b5:fd:bd:56:a8:ab:94:b8:60:88:45:2f:7c:12:13:30:fe:98:
cd:86:99:2b:d3:86:47:44:b0:68:7f:80:7c:cd:57:6d:cb:9d:
93:41:9b:d5:72:5e:52:48:6b:81:2c:b9:c7:a6:42:ca:4a:ef:
12:22:94:ec:f1:de:c3:8f:55:70:c0:4e:bf:71:8d:04:12:34:
6a:e9:0b:a3:45:52:46:95:d9:8d:9b:9e:80:e9:d0:81:e9:95:
4f:2d:b6:f0:31:70:ee:dc:4c:c2:3f:55:96:d8:25:de:0a:6f:
f0:cb:a9:9f:6a:7c:bb:f5:ae:c0:05:18:1f:9a:fa:57:08:e4:
c0:b1:78:c3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwy926OqWmAPrfT5QpCHeTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2YjIyMzAzZGU0YjBhODcwZmNmZTdiNjU1NmMwMjRmNzVj
NzZhMzQwHhcNMjMwMTAyMDQ0NDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYWJiODM3OWM3MDc2MWVhYWUwZjIxODBiZDliMDI1M2MwNDVmZDlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhOb0WB4OAklrhv5q9zcd5dSTMTPf
efJv7gMxkoN6enivFbwOhm2FxoIg9PAT+iXtcZhG5xlNfXWsZ4Mb4QWsRtJv6kb7
7gxJLCq/Ou6JQJWqKP04R+jgmaQ1nFyn1IuwnLQiwH3bGjXUmzuGiuejPhTadkoq
+LZZYKkAmzYJCqBpTMKiXXY6ak30eVOyzhvPEB1s0ZQY/zBQDd3iGhBglM90Qw5n
wnKo/XMyl5d4dNsiBT7ExXoING1jPF1lq8W79DKQjc7hWadJHxbMYOOxC4om51ne
wtJDhyqLziTlKTXfTs4bSV1kg3L9OXczo2k7XW61Dgfa5UP4AWnUHIpzaQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKq7g3nHB2Hqrg8hgL2bAlPARf2aMB8GA1UdIwQY
MBaAFIayIwPeSwqHD8/ntlVsAk91x2o0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHJJakE5NUxDb2NQei1lMlZXd0NUM1hIYWpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC9hZmQ3MGYtYzMwMC00OWNiLWI3Mjkt
NzJhYjU5ODdmNjA5LzEvcXJ1RGVjY0hZZXF1RHlHQXZac0NVOEJGX1pvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC9hZmQ3MGYtYzMwMC00OWNiLWI3MjktNzJhYjU5ODdmNjA5
LzEvaHJJakE5NUxDb2NQei1lMlZXd0NUM1hIYWpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCBbdEMA0G
CSqGSIb3DQEBCwUAA4IBAQBgJoIN9yCXp+e3kTArwE9w8eXWbw/NG0Ihi20DNJjG
wPvVrXl2nSng4lfoxcL8PhQ4UoMb2IUbID/WzlJauS/gQrdYq2VGynfOD30GQlkk
3aQ/PUGWNVHptrNADbxnveNizpTtWtBlpxNgfmcctWHlhpBMo6Lq4Q4AtbBgwQa1
/b1WqKuUuGCIRS98EhMw/pjNhpkr04ZHRLBof4B8zVdty52TQZvVcl5SSGuBLLnH
pkLKSu8SIpTs8d7Dj1VwwE6/cY0EEjRq6QujRVJGldmNm56A6dCB6ZVPLbbwMXDu
3EzCP1WW2CXeCm/wy6mfany79a7ABRgfmvpXCOTAsXjD
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:26 2024 by rpki-client on console-fra.rpki-client.org