Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/CqZ6-kCuyYbXjCPnXZVATDOHc0U.roa
File: CqZ6-kCuyYbXjCPnXZVATDOHc0U.roa (raw, json)
Hash identifier: GQvrA1joBixTl1vVCRCncRVPvzmKud6g8+Kh+mvfPvg=
Subject key identifier: 0A:A6:7A:FA:40:AE:C9:86:D7:8C:23:E7:5D:95:40:4C:33:87:73:45
Certificate issuer: /CN=0f2f8b2b94721e928f6188b5cf15053144dedf8c
Certificate serial: 018C53753A15399030EF90C0D9F83ECD18B6
Authority key identifier: 0F:2F:8B:2B:94:72:1E:92:8F:61:88:B5:CF:15:05:31:44:DE:DF:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dy-LK5RyHpKPYYi1zxUFMUTe34w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/CqZ6-kCuyYbXjCPnXZVATDOHc0U.roa
Signing time: Sun 10 Dec 2023 11:20:40 +0000
ROA not before: Sun 10 Dec 2023 11:20:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210001
IP address blocks: 185.124.151.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:53:75:3a:15:39:90:30:ef:90:c0:d9:f8:3e:cd:18:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f2f8b2b94721e928f6188b5cf15053144dedf8c
Validity
Not Before: Dec 10 11:20:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0aa67afa40aec986d78c23e75d95404c33877345
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:8d:e4:a3:4e:95:e3:3d:6e:f9:e0:dd:8b:c1:
a9:53:60:8c:30:cd:8c:5e:53:a0:16:ae:a1:dd:03:
b3:ad:06:2b:f3:d0:b8:99:1f:c1:4b:a7:14:9d:b9:
46:af:58:5d:37:de:d3:6a:ba:a1:67:30:a4:b1:18:
16:45:f2:c1:84:54:87:6c:51:49:4a:9e:55:b0:9e:
cc:d3:f7:d9:2c:75:ef:3d:36:ef:32:8c:d1:c9:30:
0f:2a:36:48:2d:2d:b9:24:72:6f:d9:81:80:1a:54:
19:a7:e0:f0:76:85:a3:f5:44:53:aa:e8:f7:b5:de:
1b:a5:36:4b:53:23:9d:b8:b4:df:eb:7e:19:58:97:
57:8b:2b:85:cc:f2:4d:15:cf:40:c7:29:a3:27:b1:
1d:dd:17:1c:0d:85:6d:36:9a:30:a8:46:3a:8e:43:
c5:6e:c9:90:54:21:3d:3c:f0:a1:ec:4e:28:18:6c:
57:34:27:51:72:c1:3a:c6:52:32:09:4a:17:9d:f5:
09:98:a8:c8:4a:b7:c9:32:39:27:35:66:2e:e0:b0:
1a:a3:cc:73:c3:d8:87:f8:ea:c7:19:03:5d:31:85:
85:f8:ac:6a:93:9b:5f:82:64:1a:d0:73:95:7d:c0:
69:42:7e:3e:58:6f:b7:cf:d6:d3:e7:03:5a:03:ab:
9d:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:A6:7A:FA:40:AE:C9:86:D7:8C:23:E7:5D:95:40:4C:33:87:73:45
X509v3 Authority Key Identifier:
keyid:0F:2F:8B:2B:94:72:1E:92:8F:61:88:B5:CF:15:05:31:44:DE:DF:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dy-LK5RyHpKPYYi1zxUFMUTe34w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/CqZ6-kCuyYbXjCPnXZVATDOHc0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/Dy-LK5RyHpKPYYi1zxUFMUTe34w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.151.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:c3:9c:0d:2b:fd:18:84:27:a8:e4:7d:a6:03:de:02:7e:d5:
3d:82:e4:70:c8:51:7d:c9:5c:6f:f1:45:5c:e5:0b:b2:de:b3:
60:bc:77:cd:62:3a:60:59:85:f7:60:ca:86:25:6b:db:c8:c9:
8e:5d:cc:34:e5:8b:3d:8c:8d:42:98:b5:cc:9d:24:17:12:83:
c7:bd:29:e6:35:86:15:9b:80:ed:eb:7e:eb:4c:ce:ba:ba:75:
b8:8b:d0:f6:11:2a:c5:f4:c6:ee:2d:96:dd:0e:c4:c8:e1:fd:
3a:c9:85:5d:bd:54:0f:8e:63:ad:85:52:b5:5e:5f:a9:86:12:
00:60:12:5c:a3:8a:48:3b:1d:63:83:9b:f9:8e:0e:61:a1:90:
f9:6f:3d:74:63:fa:f4:e8:19:5d:04:41:c3:38:34:39:36:71:
f3:77:42:5d:25:1b:b2:2e:e6:bc:fd:5a:20:08:85:30:99:6c:
32:aa:0d:08:5e:65:ea:7b:ab:e3:72:51:cb:01:1d:2b:5d:77:
2b:6b:56:1f:26:05:3a:3d:73:29:b4:f4:ec:f2:4a:3c:c6:e6:
2d:36:f7:e3:d8:22:7f:dd:39:b1:c6:41:88:ed:be:0a:36:8a:
14:5f:16:bc:01:a6:00:99:4d:f4:55:b5:de:96:f6:1f:36:68:
b0:70:f2:a2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYxTdToVOZAw75DA2fg+zRi2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmMmY4YjJiOTQ3MjFlOTI4ZjYxODhiNWNmMTUwNTMxNDRk
ZWRmOGMwHhcNMjMxMjEwMTEyMDQwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYWE2N2FmYTQwYWVjOTg2ZDc4YzIzZTc1ZDk1NDA0YzMzODc3MzQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxI3ko06V4z1u+eDdi8GpU2CMMM2M
XlOgFq6h3QOzrQYr89C4mR/BS6cUnblGr1hdN97TarqhZzCksRgWRfLBhFSHbFFJ
Sp5VsJ7M0/fZLHXvPTbvMozRyTAPKjZILS25JHJv2YGAGlQZp+DwdoWj9URTquj3
td4bpTZLUyOduLTf634ZWJdXiyuFzPJNFc9AxymjJ7Ed3RccDYVtNpowqEY6jkPF
bsmQVCE9PPCh7E4oGGxXNCdRcsE6xlIyCUoXnfUJmKjISrfJMjknNWYu4LAao8xz
w9iH+OrHGQNdMYWF+Kxqk5tfgmQa0HOVfcBpQn4+WG+3z9bT5wNaA6udjQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAqmevpArsmG14wj512VQEwzh3NFMB8GA1UdIwQY
MBaAFA8viyuUch6Sj2GItc8VBTFE3t+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRHktTEs1UnlIcEtQWVlpMXp4VUZNVVRlMzR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi80ZTU5MDItZTI4My00OTE2LWEzM2Mt
NzIyNmE4ODQ1ZTAxLzEvQ3FaNi1rQ3V5WWJYakNQblhaVkFURE9IYzBVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi80ZTU5MDItZTI4My00OTE2LWEzM2MtNzIyNmE4ODQ1ZTAx
LzEvRHktTEs1UnlIcEtQWVlpMXp4VUZNVVRlMzR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuXyXMA0G
CSqGSIb3DQEBCwUAA4IBAQBaw5wNK/0YhCeo5H2mA94CftU9guRwyFF9yVxv8UVc
5Quy3rNgvHfNYjpgWYX3YMqGJWvbyMmOXcw05Ys9jI1CmLXMnSQXEoPHvSnmNYYV
m4Dt637rTM66unW4i9D2ESrF9MbuLZbdDsTI4f06yYVdvVQPjmOthVK1Xl+phhIA
YBJco4pIOx1jg5v5jg5hoZD5bz10Y/r06BldBEHDODQ5NnHzd0JdJRuyLua8/Vog
CIUwmWwyqg0IXmXqe6vjclHLAR0rXXcra1YfJgU6PXMptPTs8ko8xuYtNvfj2CJ/
3TmxxkGI7b4KNooUXxa8AaYAmU30VbXelvYfNmiwcPKi
-----END CERTIFICATE-----
Generated at Mon Jan 1 23:37:48 2024 by rpki-client on console-fra.rpki-client.org