Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/qTeV7AUr8XhxUPg3UZlGl8r8R5Q.roa
File: qTeV7AUr8XhxUPg3UZlGl8r8R5Q.roa (raw, json)
Hash identifier: Qd2RYGsdO/3rcJ2JlNrM6ZzkqPOxYINXfccOXc7d1wA=
Subject key identifier: A9:37:95:EC:05:2B:F1:78:71:50:F8:37:51:99:46:97:CA:FC:47:94
Certificate issuer: /CN=14bee0ebd06b4b812f9e13716e25f1c3c3d14cc6
Certificate serial: 018B8BACC092274D81D9330E064CB3A6BC39
Authority key identifier: 14:BE:E0:EB:D0:6B:4B:81:2F:9E:13:71:6E:25:F1:C3:C3:D1:4C:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/qTeV7AUr8XhxUPg3UZlGl8r8R5Q.roa
Signing time: Wed 01 Nov 2023 16:17:16 +0000
ROA not before: Wed 01 Nov 2023 16:17:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399471
IP address blocks: 37.0.15.0/24 maxlen: 24
37.0.14.0/24 maxlen: 24
85.202.168.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8b:ac:c0:92:27:4d:81:d9:33:0e:06:4c:b3:a6:bc:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14bee0ebd06b4b812f9e13716e25f1c3c3d14cc6
Validity
Not Before: Nov 1 16:17:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a93795ec052bf1787150f83751994697cafc4794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ae:36:04:c2:1a:f7:7e:ca:26:02:a0:e5:aa:
be:10:16:20:41:a5:21:0e:18:b2:4e:26:8c:b1:44:
97:ab:e8:2b:6c:a8:97:6b:70:d5:e6:a5:93:9a:a4:
d9:ac:00:90:ad:2b:2d:4e:47:8d:9e:4f:c3:05:13:
5d:47:ae:4b:47:fa:d0:79:06:e3:13:cc:0f:0f:21:
2e:e2:17:b1:f0:cb:8d:6b:13:e8:6a:8a:70:d6:5a:
bf:02:f9:07:bd:e5:ad:ae:b5:0a:89:e0:d6:cc:60:
e6:96:89:df:27:fb:b7:b0:4e:4a:e0:58:57:14:e0:
52:bc:0f:c4:d4:e3:d5:0f:2e:f8:78:ca:48:bb:17:
2d:db:fb:a3:f1:c8:93:a5:db:f5:b1:54:68:61:4e:
b6:41:41:6e:72:e8:c5:08:ab:4a:43:6d:42:2b:49:
5c:6e:bf:ce:f6:f3:35:de:59:7d:76:c6:f3:9c:f3:
93:ed:64:a2:32:8c:5c:41:03:d2:d1:36:83:b4:fc:
9e:b8:fe:46:0e:61:52:60:c8:d3:e7:16:5d:11:90:
25:7f:dd:a2:db:9b:71:a9:70:df:04:56:c8:2c:0a:
3c:22:f0:db:91:ef:56:7d:3d:8b:92:61:17:99:42:
e5:02:b1:c5:f4:77:7c:6b:e2:5e:15:b7:70:c4:ba:
f3:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:37:95:EC:05:2B:F1:78:71:50:F8:37:51:99:46:97:CA:FC:47:94
X509v3 Authority Key Identifier:
keyid:14:BE:E0:EB:D0:6B:4B:81:2F:9E:13:71:6E:25:F1:C3:C3:D1:4C:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FL7g69BrS4EvnhNxbiXxw8PRTMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/qTeV7AUr8XhxUPg3UZlGl8r8R5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/161c3f-b83d-45b1-aa8e-d1bb6b4dd701/1/FL7g69BrS4EvnhNxbiXxw8PRTMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.0.14.0/23
85.202.168.0/23
Signature Algorithm: sha256WithRSAEncryption
05:c5:e5:33:c4:54:00:0c:05:bd:ac:6d:53:a7:b9:f7:03:f4:
e8:2c:bb:03:bb:c2:bb:81:fb:42:00:e2:4b:8a:8e:8c:6a:3e:
96:fb:70:45:c8:fe:fe:9a:a3:43:87:80:c1:75:1e:62:03:71:
fc:a8:f6:99:0a:45:80:cb:1a:9f:22:6f:1c:66:95:a1:33:7b:
23:b8:06:42:71:6b:df:19:ab:b9:ad:e1:2c:2d:af:49:e2:32:
2c:09:b2:7d:9c:02:97:da:1b:86:ce:d2:12:49:d2:47:f1:46:
92:7b:69:1d:96:07:83:a6:ab:d1:c8:59:f6:3b:2c:fc:5d:88:
a5:5f:03:34:45:0a:7d:6e:8a:b9:f7:69:3e:b7:22:6f:8e:58:
e9:87:aa:48:78:0a:dc:bd:be:43:43:ac:e9:05:05:be:2d:ad:
c7:a6:55:f8:04:7b:db:a1:3e:c5:94:53:92:a5:d8:0e:77:f2:
f1:4f:2f:ee:39:53:48:c5:cc:3f:17:b5:21:f9:36:18:22:7c:
2a:c3:f1:2a:30:98:97:ce:e1:9a:11:93:91:ed:0e:4a:a1:6a:
15:97:db:98:c8:99:63:c0:15:ff:1e:09:fc:be:71:43:ee:20:
26:ad:44:c2:c7:a8:ab:79:b0:8e:60:ae:f2:08:1c:b3:ca:9d:
0c:8b:bc:cf
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYuLrMCSJ02B2TMOBkyzprw5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE0YmVlMGViZDA2YjRiODEyZjllMTM3MTZlMjVmMWMzYzNk
MTRjYzYwHhcNMjMxMTAxMTYxNzE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhOTM3OTVlYzA1MmJmMTc4NzE1MGY4Mzc1MTk5NDY5N2NhZmM0Nzk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi642BMIa937KJgKg5aq+EBYgQaUh
DhiyTiaMsUSXq+grbKiXa3DV5qWTmqTZrACQrSstTkeNnk/DBRNdR65LR/rQeQbj
E8wPDyEu4hex8MuNaxPoaopw1lq/AvkHveWtrrUKieDWzGDmlonfJ/u3sE5K4FhX
FOBSvA/E1OPVDy74eMpIuxct2/uj8ciTpdv1sVRoYU62QUFucujFCKtKQ21CK0lc
br/O9vM13ll9dsbznPOT7WSiMoxcQQPS0TaDtPyeuP5GDmFSYMjT5xZdEZAlf92i
25txqXDfBFbILAo8IvDbke9WfT2LkmEXmULlArHF9Hd8a+JeFbdwxLrztwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFKk3lewFK/F4cVD4N1GZRpfK/EeUMB8GA1UdIwQY
MBaAFBS+4OvQa0uBL54TcW4l8cPD0UzGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRkw3ZzY5QnJTNEV2bmhOeGJpWHh3OFBSVE1ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8xNjFjM2YtYjgzZC00NWIxLWFhOGUt
ZDFiYjZiNGRkNzAxLzEvcVRlVjdBVXI4WGh4VVBnM1VabEdsOHI4UjVRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8xNjFjM2YtYjgzZC00NWIxLWFhOGUtZDFiYjZiNGRkNzAx
LzEvRkw3ZzY5QnJTNEV2bmhOeGJpWHh3OFBSVE1ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBJQAOAwQB
VcqoMA0GCSqGSIb3DQEBCwUAA4IBAQAFxeUzxFQADAW9rG1Tp7n3A/ToLLsDu8K7
gftCAOJLio6Maj6W+3BFyP7+mqNDh4DBdR5iA3H8qPaZCkWAyxqfIm8cZpWhM3sj
uAZCcWvfGau5reEsLa9J4jIsCbJ9nAKX2huGztISSdJH8UaSe2kdlgeDpqvRyFn2
Oyz8XYilXwM0RQp9boq592k+tyJvjljph6pIeArcvb5DQ6zpBQW+La3HplX4BHvb
oT7FlFOSpdgOd/LxTy/uOVNIxcw/F7Uh+TYYInwqw/EqMJiXzuGaEZOR7Q5KoWoV
l9uYyJljwBX/Hgn8vnFD7iAmrUTCx6irebCOYK7yCByzyp0Mi7zP
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:56 2024 by rpki-client on console-fra.rpki-client.org