Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/QC9KJHz6BiWyIBGTcu07xCBJy80.roa
File: QC9KJHz6BiWyIBGTcu07xCBJy80.roa (raw, json)
Hash identifier: Egif6wAO1br1i5J0xKCoCd9NnyQpxhLUogf5Stc+lns=
Subject key identifier: 40:2F:4A:24:7C:FA:06:25:B2:20:11:93:72:ED:3B:C4:20:49:CB:CD
Certificate issuer: /CN=c2d21e804ab7713ad7877dde603aa7824b31983c
Certificate serial: 018F99DF13D5CD6538BD5ED1FFCDFCDC2476
Authority key identifier: C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/QC9KJHz6BiWyIBGTcu07xCBJy80.roa
Signing time: Tue 21 May 2024 06:38:04 +0000
ROA not before: Tue 21 May 2024 06:38:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 4648
IP address blocks: 45.86.84.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 28 May 2024 04:13:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:99:df:13:d5:cd:65:38:bd:5e:d1:ff:cd:fc:dc:24:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2d21e804ab7713ad7877dde603aa7824b31983c
Validity
Not Before: May 21 06:38:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=402f4a247cfa0625b220119372ed3bc42049cbcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:3d:ff:34:a7:1c:0d:73:e7:74:20:d5:b2:ae:
89:da:4e:09:fd:0a:c8:91:10:38:2d:05:1a:d4:fe:
6b:db:9d:d9:97:f8:06:72:29:fe:06:78:39:e4:07:
80:3f:df:2c:d1:21:34:c9:bf:c1:0a:ca:d8:20:01:
7e:a2:3c:ce:d6:1b:af:4f:76:fd:c7:5e:a2:1d:91:
62:08:32:31:00:92:00:05:71:fb:df:eb:4b:77:c8:
f1:fb:ed:20:ba:2d:80:21:d6:4b:e5:b7:7b:21:0f:
4f:82:18:75:63:d7:5e:bd:99:5a:cc:8a:64:2b:38:
be:e0:c8:7f:6b:af:d6:e4:07:bc:a9:ad:77:1f:fe:
78:9f:1c:bc:39:71:59:f1:e1:d0:cc:9c:62:f9:3d:
fc:91:05:5c:4c:8f:a1:e5:f0:18:91:c1:13:12:6b:
18:16:bb:db:44:e1:5f:63:e7:c8:8b:03:53:fa:17:
06:9d:da:be:f2:c1:e1:77:02:27:69:34:e8:c3:33:
7d:7a:1d:60:45:ce:65:89:93:d6:40:b2:d2:dd:02:
1d:2c:81:1b:33:da:c9:b4:1d:0e:aa:ac:d2:28:f4:
99:c5:70:67:c2:95:6d:46:d1:76:32:b0:8f:53:e6:
c0:7f:7f:9b:49:a1:d6:da:f6:97:b4:f0:a7:02:3c:
79:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:2F:4A:24:7C:FA:06:25:B2:20:11:93:72:ED:3B:C4:20:49:CB:CD
X509v3 Authority Key Identifier:
keyid:C2:D2:1E:80:4A:B7:71:3A:D7:87:7D:DE:60:3A:A7:82:4B:31:98:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtIegEq3cTrXh33eYDqngksxmDw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/QC9KJHz6BiWyIBGTcu07xCBJy80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/04b446-4ae1-4fe5-b646-59ae09edbeb9/1/wtIegEq3cTrXh33eYDqngksxmDw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.84.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:ac:97:57:04:99:32:b9:67:80:51:d3:d5:97:90:0b:ea:2c:
06:9b:bf:71:d6:b6:0b:4e:c3:b2:7f:58:87:bc:1a:0c:54:af:
53:d4:c2:2e:70:da:6f:ca:de:b2:3d:66:14:91:c5:6d:c9:2f:
07:c7:5a:46:be:a5:86:3d:9a:ac:94:5d:c2:56:26:af:27:dc:
37:b3:15:48:49:23:5d:46:40:a2:49:3a:93:71:35:87:16:6c:
16:81:28:39:9e:d1:ca:a8:27:20:47:6e:c1:d7:b1:72:79:28:
ec:44:84:65:08:0f:4d:42:f1:88:12:b0:8a:9a:51:d5:79:d0:
99:3c:62:92:d1:0d:4c:ce:0c:4e:37:f8:b2:6e:aa:65:12:56:
c3:a7:a1:25:f9:e0:bb:84:57:22:09:4d:40:42:a4:6b:b7:dd:
12:67:6c:78:5a:64:b1:6f:b6:da:84:c9:91:46:9c:06:c3:6a:
a2:41:19:c4:68:06:a4:16:e4:a1:db:e7:57:7f:a5:60:9e:83:
5f:29:9d:08:cb:f2:bc:f6:10:bf:fc:71:84:47:aa:50:7c:84:
a5:99:07:9c:15:e0:73:10:78:cc:c4:a8:02:5e:33:40:46:cb:
eb:a7:d6:43:d4:3d:15:1e:d2:9e:23:b6:55:2d:00:03:41:17:
78:7a:61:78
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY+Z3xPVzWU4vV7R/8383CR2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyZDIxZTgwNGFiNzcxM2FkNzg3N2RkZTYwM2FhNzgyNGIz
MTk4M2MwHhcNMjQwNTIxMDYzODA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MDJmNGEyNDdjZmEwNjI1YjIyMDExOTM3MmVkM2JjNDIwNDljYmNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlz3/NKccDXPndCDVsq6J2k4J/QrI
kRA4LQUa1P5r253Zl/gGcin+Bng55AeAP98s0SE0yb/BCsrYIAF+ojzO1huvT3b9
x16iHZFiCDIxAJIABXH73+tLd8jx++0gui2AIdZL5bd7IQ9Pghh1Y9devZlazIpk
Kzi+4Mh/a6/W5Ae8qa13H/54nxy8OXFZ8eHQzJxi+T38kQVcTI+h5fAYkcETEmsY
FrvbROFfY+fIiwNT+hcGndq+8sHhdwInaTTowzN9eh1gRc5liZPWQLLS3QIdLIEb
M9rJtB0OqqzSKPSZxXBnwpVtRtF2MrCPU+bAf3+bSaHW2vaXtPCnAjx5LwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEAvSiR8+gYlsiARk3LtO8QgScvNMB8GA1UdIwQY
MBaAFMLSHoBKt3E614d93mA6p4JLMZg8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd3RJZWdFcTNjVHJYaDMzZVlEcW5na3N4bUR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS8wNGI0NDYtNGFlMS00ZmU1LWI2NDYt
NTlhZTA5ZWRiZWI5LzEvUUM5S0pIejZCaVd5SUJHVGN1MDd4Q0JKeTgwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS8wNGI0NDYtNGFlMS00ZmU1LWI2NDYtNTlhZTA5ZWRiZWI5
LzEvd3RJZWdFcTNjVHJYaDMzZVlEcW5na3N4bUR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVZUMA0G
CSqGSIb3DQEBCwUAA4IBAQBqrJdXBJkyuWeAUdPVl5AL6iwGm79x1rYLTsOyf1iH
vBoMVK9T1MIucNpvyt6yPWYUkcVtyS8Hx1pGvqWGPZqslF3CViavJ9w3sxVISSNd
RkCiSTqTcTWHFmwWgSg5ntHKqCcgR27B17FyeSjsRIRlCA9NQvGIErCKmlHVedCZ
PGKS0Q1MzgxON/iybqplElbDp6El+eC7hFciCU1AQqRrt90SZ2x4WmSxb7bahMmR
RpwGw2qiQRnEaAakFuSh2+dXf6VgnoNfKZ0Iy/K89hC//HGER6pQfISlmQecFeBz
EHjMxKgCXjNARsvrp9ZD1D0VHtKeI7ZVLQADQRd4emF4
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:51 2024 by rpki-client on console-fra.rpki-client.org