Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/Q4HgYRUYPbmx__n11KEcGMGKkTc.roa
File: Q4HgYRUYPbmx__n11KEcGMGKkTc.roa (raw, json)
Hash identifier: Ic5CU9O2yOWv3CXI6uuyWDRo/FKiImh184e7iIQ/7sM=
Subject key identifier: 43:81:E0:61:15:18:3D:B9:B1:FF:F9:F5:D4:A1:1C:18:C1:8A:91:37
Certificate issuer: /CN=621b8e486eecae6124de10494fd39139ed4a37cb
Certificate serial: 01856DC1C76B5AA351D90EF1FC3099B69152
Authority key identifier: 62:1B:8E:48:6E:EC:AE:61:24:DE:10:49:4F:D3:91:39:ED:4A:37:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/Q4HgYRUYPbmx__n11KEcGMGKkTc.roa
Signing time: Sun 01 Jan 2023 14:34:53 +0000
ROA not before: Sun 01 Jan 2023 14:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30900
IP address blocks: 185.176.128.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:c7:6b:5a:a3:51:d9:0e:f1:fc:30:99:b6:91:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621b8e486eecae6124de10494fd39139ed4a37cb
Validity
Not Before: Jan 1 14:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4381e06115183db9b1fff9f5d4a11c18c18a9137
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:2b:8f:df:36:ea:fb:fe:10:ea:01:7a:63:20:
12:b6:51:e5:20:a1:70:cb:5d:7a:f8:84:43:ea:77:
61:6c:59:c1:28:bf:36:00:66:93:4c:a6:64:49:23:
e8:e0:53:55:bf:d3:87:1a:03:b3:37:2a:28:28:31:
b4:04:6a:12:fe:2c:2f:16:dc:11:3a:a5:ec:8e:1a:
98:80:f4:e6:1c:1e:6a:90:ad:b4:b4:c7:70:db:65:
14:4a:43:89:32:5f:b4:58:55:ba:25:b8:c1:2e:66:
ad:88:7b:25:db:80:e7:2b:82:4c:8d:79:d9:21:8d:
1f:aa:4b:df:45:dc:b1:17:fc:b8:17:83:80:ff:26:
1a:e2:fc:51:97:9f:11:fc:c4:b7:a8:c2:c5:79:86:
c9:04:4a:45:a0:2c:77:c1:b0:27:6c:42:1b:b3:b8:
fb:8a:42:90:b9:1f:04:93:97:22:a2:d4:e5:be:ae:
1e:8d:76:dd:4f:fa:25:f1:a9:11:55:64:94:63:c9:
8a:34:24:10:af:c6:2b:2f:49:ce:02:55:58:41:5f:
0c:99:44:95:32:10:30:e9:1e:79:f1:9f:61:90:55:
83:41:54:aa:11:21:0e:6a:03:96:6a:76:01:68:60:
c1:4d:bd:8d:c1:91:ad:fe:55:35:55:dd:e3:30:41:
6b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:81:E0:61:15:18:3D:B9:B1:FF:F9:F5:D4:A1:1C:18:C1:8A:91:37
X509v3 Authority Key Identifier:
keyid:62:1B:8E:48:6E:EC:AE:61:24:DE:10:49:4F:D3:91:39:ED:4A:37:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/Q4HgYRUYPbmx__n11KEcGMGKkTc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.176.128.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:7d:df:68:2c:2f:fc:52:ea:65:64:ea:e5:51:93:80:3b:bb:
5b:1e:bd:f9:fd:55:71:0d:1f:79:d1:46:e0:19:5a:cc:98:1e:
41:44:12:6d:1c:51:a0:6d:6d:65:8c:b1:32:a6:ca:00:41:c8:
62:85:ec:de:b8:29:f2:99:93:73:22:e2:c2:16:61:85:37:7a:
27:1e:11:7d:32:b6:6e:16:d5:bc:bd:8d:f9:a5:57:c1:f7:d5:
54:87:cc:96:e5:25:6b:a6:2b:91:ed:bb:b9:ed:05:00:8b:6c:
54:b5:8c:9f:46:0f:87:27:b3:54:87:4d:20:91:37:0d:75:b0:
10:d4:71:6d:e2:8b:30:f5:f1:20:65:ba:a1:75:58:16:71:d5:
9a:66:38:c7:1d:e3:c6:a4:b5:6a:a9:8f:b1:4e:c9:73:e4:22:
26:12:b7:52:5d:9f:23:25:a1:4c:fa:0a:71:a0:73:e4:28:c4:
fa:8e:48:13:ef:e1:c8:b2:4a:e0:24:77:73:6a:9c:68:5f:ac:
16:c5:2a:b0:fa:2d:3b:ed:12:36:e2:57:ad:d7:d1:f6:f5:07:
dc:44:93:0c:fd:a0:66:bd:80:73:e3:07:b8:dc:75:05:2e:65:
55:da:1b:9d:bd:68:50:0f:2f:6d:eb:36:8f:01:6c:e9:d2:84:
25:c8:9d:20
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVtwcdrWqNR2Q7x/DCZtpFSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyMWI4ZTQ4NmVlY2FlNjEyNGRlMTA0OTRmZDM5MTM5ZWQ0
YTM3Y2IwHhcNMjMwMTAxMTQzNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MzgxZTA2MTE1MTgzZGI5YjFmZmY5ZjVkNGExMWMxOGMxOGE5MTM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjSuP3zbq+/4Q6gF6YyAStlHlIKFw
y116+IRD6ndhbFnBKL82AGaTTKZkSSPo4FNVv9OHGgOzNyooKDG0BGoS/iwvFtwR
OqXsjhqYgPTmHB5qkK20tMdw22UUSkOJMl+0WFW6JbjBLmatiHsl24DnK4JMjXnZ
IY0fqkvfRdyxF/y4F4OA/yYa4vxRl58R/MS3qMLFeYbJBEpFoCx3wbAnbEIbs7j7
ikKQuR8Ek5ciotTlvq4ejXbdT/ol8akRVWSUY8mKNCQQr8YrL0nOAlVYQV8MmUSV
MhAw6R558Z9hkFWDQVSqESEOagOWanYBaGDBTb2NwZGt/lU1Vd3jMEFrQQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEOB4GEVGD25sf/59dShHBjBipE3MB8GA1UdIwQY
MBaAFGIbjkhu7K5hJN4QSU/TkTntSjfLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWh1T1NHN3NybUVrM2hCSlQ5T1JPZTFLTjhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC81NDIxM2QtYzNlZC00ZDY3LWI5YmYt
N2JhMTM2ZjUxZWY5LzEvUTRIZ1lSVVlQYm14X19uMTFLRWNHTUdLa1RjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC81NDIxM2QtYzNlZC00ZDY3LWI5YmYtN2JhMTM2ZjUxZWY5
LzEvWWh1T1NHN3NybUVrM2hCSlQ5T1JPZTFLTjhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCubCAMA0G
CSqGSIb3DQEBCwUAA4IBAQCgfd9oLC/8UuplZOrlUZOAO7tbHr35/VVxDR950Ubg
GVrMmB5BRBJtHFGgbW1ljLEypsoAQchihezeuCnymZNzIuLCFmGFN3onHhF9MrZu
FtW8vY35pVfB99VUh8yW5SVrpiuR7bu57QUAi2xUtYyfRg+HJ7NUh00gkTcNdbAQ
1HFt4osw9fEgZbqhdVgWcdWaZjjHHePGpLVqqY+xTslz5CImErdSXZ8jJaFM+gpx
oHPkKMT6jkgT7+HIskrgJHdzapxoX6wWxSqw+i077RI24let19H29QfcRJMM/aBm
vYBz4we43HUFLmVV2hudvWhQDy9t6zaPAWzp0oQlyJ0g
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:09 2024 by rpki-client on console-fra.rpki-client.org