Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/QYw_XiYlH48jjewbFY87atdB13A.roa
File: QYw_XiYlH48jjewbFY87atdB13A.roa (raw, json)
Hash identifier: kw6sgKut7ZK27qs+Ms4IQ6m4F+acCfpLo5vVQFdcnfE=
Subject key identifier: 41:8C:3F:5E:26:25:1F:8F:23:8D:EC:1B:15:8F:3B:6A:D7:41:D7:70
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 019237AF9DD6B3B3F8DA37FD2B9A3B5A3DD4
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/QYw_XiYlH48jjewbFY87atdB13A.roa
Signing time: Sat 28 Sep 2024 08:11:48 +0000
ROA not before: Sat 28 Sep 2024 08:11:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57271
IP address blocks: 2a0e:5382::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 07 Oct 2024 14:14:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:37:af:9d:d6:b3:b3:f8:da:37:fd:2b:9a:3b:5a:3d:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: Sep 28 08:11:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=418c3f5e26251f8f238dec1b158f3b6ad741d770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:11:e3:80:b0:9e:ae:06:56:57:1a:76:58:42:
a2:b8:ca:f7:6e:11:46:58:fc:44:13:09:aa:e1:25:
15:7d:ca:49:8c:3b:0a:8e:23:13:f2:40:de:ae:b9:
52:d1:82:c2:45:63:ea:bb:72:d5:b2:c4:f7:31:03:
9d:86:1d:95:07:45:9f:d8:26:d1:b8:9b:30:f6:c0:
16:51:25:ea:18:76:c2:a0:11:0d:52:e8:43:b7:41:
d0:f0:a0:91:b7:05:6e:d9:b4:38:43:a7:fd:3f:6c:
87:0a:65:2d:de:0d:2a:7b:59:58:1d:be:62:ff:dd:
be:73:95:38:67:cd:7c:36:be:e3:04:15:46:b0:15:
3d:65:75:1f:3f:4d:5c:8e:1a:12:7f:d3:55:b0:a9:
63:b9:c4:60:b0:55:ef:92:0a:eb:f8:8b:a5:15:78:
9c:af:95:15:09:83:7e:46:16:e3:b0:a9:b2:35:9b:
fe:e6:43:ba:39:89:54:4d:df:c8:cb:59:5e:41:9a:
28:1e:50:ea:bf:64:b9:6e:17:cd:ae:29:52:9c:82:
f2:94:13:c2:0b:41:98:08:36:53:b4:0c:d7:bb:75:
a6:c2:6c:4b:17:c1:fc:a3:e5:60:af:99:b3:6d:bc:
21:c5:55:31:2c:88:d7:b2:fb:57:f4:4c:e4:c6:1c:
a2:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:8C:3F:5E:26:25:1F:8F:23:8D:EC:1B:15:8F:3B:6A:D7:41:D7:70
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/QYw_XiYlH48jjewbFY87atdB13A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:5382::/32
Signature Algorithm: sha256WithRSAEncryption
83:47:6a:90:13:00:3e:e6:7a:0e:99:ec:e0:4d:80:09:79:4d:
97:08:b4:63:47:9a:ab:24:2b:34:46:98:97:db:17:40:de:c2:
6c:50:29:f9:0e:94:30:8c:6a:b6:c5:d4:b0:37:2a:4b:b8:0f:
b0:9a:42:17:00:77:a6:c9:a7:79:44:5c:bd:54:aa:b0:c8:b5:
04:c6:0b:5a:0b:92:27:76:f1:f7:de:ff:1a:a4:75:36:10:74:
0c:2c:42:24:f1:30:1e:67:ae:02:0a:e5:96:80:8a:16:ff:68:
35:91:f1:2f:a9:67:d3:e2:34:27:8c:a9:70:37:1d:8c:49:ea:
00:21:79:18:a3:72:4d:cb:ac:ad:30:7d:91:ed:d4:58:45:86:
fc:67:4f:b7:de:1e:e2:0f:ee:44:c4:6a:18:03:ad:a7:6e:99:
a0:26:39:b9:f2:8e:61:3f:43:c0:4e:49:ff:66:f6:08:f6:92:
cb:53:2f:c8:5c:99:74:72:fe:05:b3:f9:5c:10:04:ec:fd:0c:
19:0d:66:da:2f:a3:2b:39:dd:f8:12:b9:42:a7:24:7b:f2:8f:
70:e4:50:df:e2:73:8e:44:b7:6f:2b:a8:d2:64:e2:76:ce:34:
45:7e:c3:2c:21:47:90:a7:bf:de:1e:cd:c5:df:b1:c1:cc:5d:
cd:86:9a:6d
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZI3r53Ws7P42jf9K5o7Wj3UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkYTM5NDFjMjdjZmU1YzIzNGM0YmYyMjFlY2IyYTU3OWIy
ZGVhYWIwHhcNMjQwOTI4MDgxMTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MThjM2Y1ZTI2MjUxZjhmMjM4ZGVjMWIxNThmM2I2YWQ3NDFkNzcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzBHjgLCergZWVxp2WEKiuMr3bhFG
WPxEEwmq4SUVfcpJjDsKjiMT8kDerrlS0YLCRWPqu3LVssT3MQOdhh2VB0Wf2CbR
uJsw9sAWUSXqGHbCoBENUuhDt0HQ8KCRtwVu2bQ4Q6f9P2yHCmUt3g0qe1lYHb5i
/92+c5U4Z818Nr7jBBVGsBU9ZXUfP01cjhoSf9NVsKljucRgsFXvkgrr+IulFXic
r5UVCYN+RhbjsKmyNZv+5kO6OYlUTd/Iy1leQZooHlDqv2S5bhfNrilSnILylBPC
C0GYCDZTtAzXu3WmwmxLF8H8o+Vgr5mzbbwhxVUxLIjXsvtX9EzkxhyiGQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFEGMP14mJR+PI43sGxWPO2rXQddwMB8GA1UdIwQY
MBaAFF2jlBwnz+XCNMS/Ih7LKlebLeqrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGFPVUhDZlA1Y0kweEw4aUhzc3FWNXN0NnFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC8zMGVkM2UtYzRjNC00ZGU4LWI0ZjEt
ZjExYTM5ZjI2YzNiLzEvUVl3X1hpWWxINDhqamV3YkZZODdhdGRCMTNBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC8zMGVkM2UtYzRjNC00ZGU4LWI0ZjEtZjExYTM5ZjI2YzNi
LzEvWGFPVUhDZlA1Y0kweEw4aUhzc3FWNXN0NnFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKg5TgjAN
BgkqhkiG9w0BAQsFAAOCAQEAg0dqkBMAPuZ6Dpns4E2ACXlNlwi0Y0eaqyQrNEaY
l9sXQN7CbFAp+Q6UMIxqtsXUsDcqS7gPsJpCFwB3psmneURcvVSqsMi1BMYLWguS
J3bx997/GqR1NhB0DCxCJPEwHmeuAgrlloCKFv9oNZHxL6ln0+I0J4ypcDcdjEnq
ACF5GKNyTcusrTB9ke3UWEWG/GdPt94e4g/uRMRqGAOtp26ZoCY5ufKOYT9DwE5J
/2b2CPaSy1MvyFyZdHL+BbP5XBAE7P0MGQ1m2i+jKznd+BK5Qqcke/KPcORQ3+Jz
jkS3byuo0mTids40RX7DLCFHkKe/3h7Nxd+xwcxdzYaabQ==
-----END CERTIFICATE-----
Generated at Mon Oct 7 20:37:57 2024 by rpki-client on console-fra.rpki-client.org