Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/fa5782-801c-4893-9328-3e0b84478b9d/1/1-UqRLalffIgB7dwv5a12hGQAzBE.roa
File: 1-UqRLalffIgB7dwv5a12hGQAzBE.roa (raw, json)
Hash identifier: fJxihM2Vi38RkJQ2e92RUqqKvLEQOYEMgMsNKiFa7mE=
Subject key identifier: F9:4A:91:2D:A9:5F:7C:88:01:ED:DC:2F:E5:AD:76:84:64:00:CC:11
Certificate issuer: /CN=400fe172a0c7e33c43ccaaee3a1ef42cd009e91e
Certificate serial: 01856B932A9B6CF05AF23BE9B5A8804A3E78
Authority key identifier: 40:0F:E1:72:A0:C7:E3:3C:43:CC:AA:EE:3A:1E:F4:2C:D0:09:E9:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QA_hcqDH4zxDzKruOh70LNAJ6R4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/fa5782-801c-4893-9328-3e0b84478b9d/1/1-UqRLalffIgB7dwv5a12hGQAzBE.roa
Signing time: Sun 01 Jan 2023 04:24:44 +0000
ROA not before: Sun 01 Jan 2023 04:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15404
IP address blocks: 109.107.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:93:2a:9b:6c:f0:5a:f2:3b:e9:b5:a8:80:4a:3e:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=400fe172a0c7e33c43ccaaee3a1ef42cd009e91e
Validity
Not Before: Jan 1 04:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f94a912da95f7c8801eddc2fe5ad76846400cc11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:aa:97:07:1c:d7:bc:71:b6:43:ac:86:96:e9:
a4:dc:73:8f:5f:4f:0f:b9:43:bc:9a:c5:fe:9c:ce:
13:68:a2:2f:75:1a:ce:ad:55:8b:75:e0:56:75:73:
16:49:c9:4a:7d:a6:74:77:c6:99:ad:01:a5:17:70:
97:19:82:c0:73:e1:3d:d9:49:4f:37:14:09:6a:b9:
07:1f:e7:75:68:5f:93:2a:55:24:3f:c7:0f:67:94:
11:8b:42:d6:00:41:d5:ec:f0:db:f3:5f:3d:e6:b4:
77:96:91:9e:c3:9b:eb:fd:d6:5e:4a:81:29:74:01:
0e:78:2c:1e:5e:1b:16:33:3d:b0:15:57:bd:7f:f7:
4f:44:3f:1d:e4:ca:90:23:ee:0a:53:fe:99:0e:7f:
37:ab:77:a9:83:47:c6:c1:3d:ae:ad:85:73:cc:e5:
b6:19:08:ae:24:40:ab:c4:15:b7:f8:af:45:4d:cb:
5f:09:51:37:70:87:6c:f4:64:2c:79:00:43:37:61:
62:a7:5f:46:54:af:bf:9a:eb:fa:01:c1:6f:84:84:
4e:ee:0c:cc:89:c2:3d:9a:98:b1:47:43:29:5f:bc:
30:3a:e2:58:cf:d5:94:ea:25:4c:c1:45:45:4e:91:
66:67:77:06:3d:91:f2:8b:5d:a6:a7:52:08:0f:fa:
1f:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:4A:91:2D:A9:5F:7C:88:01:ED:DC:2F:E5:AD:76:84:64:00:CC:11
X509v3 Authority Key Identifier:
keyid:40:0F:E1:72:A0:C7:E3:3C:43:CC:AA:EE:3A:1E:F4:2C:D0:09:E9:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QA_hcqDH4zxDzKruOh70LNAJ6R4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/fa5782-801c-4893-9328-3e0b84478b9d/1/1-UqRLalffIgB7dwv5a12hGQAzBE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/fa5782-801c-4893-9328-3e0b84478b9d/1/QA_hcqDH4zxDzKruOh70LNAJ6R4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.107.145.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:25:aa:02:49:4a:b9:a2:5a:6b:7c:c8:3d:a5:ce:f5:d5:42:
da:b3:aa:ae:e9:62:90:59:82:30:fe:55:46:87:ac:06:75:20:
21:42:91:41:66:93:e1:df:40:76:94:b2:18:0f:ae:a2:25:cc:
b5:62:5d:4c:ab:e5:57:8c:78:47:5c:c1:d7:0a:79:67:98:bf:
26:b1:3c:c2:2a:87:3e:c9:b9:35:62:22:a1:d2:e7:dc:58:aa:
8f:ed:5b:fe:45:9c:dd:33:fd:9d:99:98:80:de:eb:85:06:ba:
84:8c:62:af:2b:17:9b:fe:d4:7f:d4:67:1d:aa:fb:dd:ae:e2:
66:fa:9b:8d:03:be:c9:5c:69:0a:59:2a:dc:8a:62:3c:c1:7c:
24:b6:dc:e3:4a:48:b6:8c:05:5d:4a:a5:15:ea:65:a7:83:ae:
e6:9b:ee:23:2c:5e:27:e0:a9:75:bd:29:2f:ac:19:a6:f7:96:
ea:58:77:3d:d3:bd:d9:82:68:f2:cc:bf:dc:6d:44:ec:1c:ee:
15:37:1e:cd:a3:ec:e0:92:e5:9f:35:66:91:e4:cd:d1:b6:a1:
f2:6a:87:9d:0f:bb:ff:f1:6b:0c:09:48:52:49:4e:0f:89:49:
fb:fd:0d:91:52:ee:06:bb:eb:6b:6d:4b:b3:4c:b9:a7:dd:e2:
b9:15:2a:a1
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVrkyqbbPBa8jvptaiASj54MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwMGZlMTcyYTBjN2UzM2M0M2NjYWFlZTNhMWVmNDJjZDAw
OWU5MWUwHhcNMjMwMTAxMDQyNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOTRhOTEyZGE5NWY3Yzg4MDFlZGRjMmZlNWFkNzY4NDY0MDBjYzExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtKqXBxzXvHG2Q6yGlumk3HOPX08P
uUO8msX+nM4TaKIvdRrOrVWLdeBWdXMWSclKfaZ0d8aZrQGlF3CXGYLAc+E92UlP
NxQJarkHH+d1aF+TKlUkP8cPZ5QRi0LWAEHV7PDb81895rR3lpGew5vr/dZeSoEp
dAEOeCweXhsWMz2wFVe9f/dPRD8d5MqQI+4KU/6ZDn83q3epg0fGwT2urYVzzOW2
GQiuJECrxBW3+K9FTctfCVE3cIds9GQseQBDN2Fip19GVK+/muv6AcFvhIRO7gzM
icI9mpixR0MpX7wwOuJYz9WU6iVMwUVFTpFmZ3cGPZHyi12mp1IID/ofnwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPlKkS2pX3yIAe3cL+WtdoRkAMwRMB8GA1UdIwQY
MBaAFEAP4XKgx+M8Q8yq7joe9CzQCekeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUFfaGNxREg0enhEektydU9oNzBMTkFKNlI0LmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS9mYTU3ODItODAxYy00ODkzLTkzMjgt
M2UwYjg0NDc4YjlkLzEvMS1VcVJMYWxmZklnQjdkd3Y1YTEyaEdRQXpCRS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvN2EvZmE1NzgyLTgwMWMtNDg5My05MzI4LTNlMGI4NDQ3OGI5
ZC8xL1FBX2hjcURINHp4RHpLcnVPaDcwTE5BSjZSNC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAG1rkTAN
BgkqhkiG9w0BAQsFAAOCAQEAoiWqAklKuaJaa3zIPaXO9dVC2rOqrulikFmCMP5V
RoesBnUgIUKRQWaT4d9AdpSyGA+uoiXMtWJdTKvlV4x4R1zB1wp5Z5i/JrE8wiqH
Psm5NWIiodLn3Fiqj+1b/kWc3TP9nZmYgN7rhQa6hIxirysXm/7Uf9RnHar73a7i
ZvqbjQO+yVxpClkq3IpiPMF8JLbc40pItowFXUqlFeplp4Ou5pvuIyxeJ+Cpdb0p
L6wZpveW6lh3PdO92YJo8sy/3G1E7BzuFTcezaPs4JLlnzVmkeTN0bah8mqHnQ+7
//FrDAlIUklOD4lJ+/0NkVLuBrvra21Ls0y5p93iuRUqoQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:23 2024 by rpki-client on console-ams.rpki-client.org