Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/qBLiuQb5w8ypJkHqZLf8fHfMW4M.roa
File: qBLiuQb5w8ypJkHqZLf8fHfMW4M.roa (raw, json)
Hash identifier: 2M71EsiesjJ2cZr1zxhHP3z8ii5QuNai80hhoD1OqZc=
Subject key identifier: A8:12:E2:B9:06:F9:C3:CC:A9:26:41:EA:64:B7:FC:7C:77:CC:5B:83
Certificate issuer: /CN=052005bb6c3d6865b89c10f33b0b994b74af963b
Certificate serial: 018CC26D7845AED3E475911A7F54229E96F8
Authority key identifier: 05:20:05:BB:6C:3D:68:65:B8:9C:10:F3:3B:0B:99:4B:74:AF:96:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSAFu2w9aGW4nBDzOwuZS3Svljs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/qBLiuQb5w8ypJkHqZLf8fHfMW4M.roa
Signing time: Mon 01 Jan 2024 00:30:03 +0000
ROA not before: Mon 01 Jan 2024 00:30:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39591
IP address blocks: 185.98.127.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Mar 2024 12:07:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:78:45:ae:d3:e4:75:91:1a:7f:54:22:9e:96:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=052005bb6c3d6865b89c10f33b0b994b74af963b
Validity
Not Before: Jan 1 00:30:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a812e2b906f9c3cca92641ea64b7fc7c77cc5b83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a7:25:9a:c8:c3:f9:55:36:b3:79:3f:84:93:
7a:0b:47:3f:bc:98:68:02:93:da:f5:43:70:c2:46:
07:0b:a2:23:0c:0a:5d:53:85:6b:91:28:7f:85:9b:
35:72:0a:e5:99:3a:7b:c2:7f:1b:af:87:5e:94:ff:
00:7f:c6:6e:27:1a:c1:f9:bd:a2:0d:b1:18:d4:cb:
1b:7b:c1:da:58:de:bd:76:9d:61:dc:74:f5:8c:1c:
93:11:1f:5d:e3:1d:5a:eb:cf:a7:84:e2:4e:82:88:
14:64:8f:20:fe:68:69:e9:33:b8:cd:57:bb:c9:36:
c8:e8:a6:c8:c6:ea:fd:4b:a6:c6:30:b4:cc:fd:9c:
d8:7e:96:f8:34:b8:17:00:3e:db:b5:4f:ad:9f:2b:
bb:b6:44:67:00:9f:1f:c1:56:99:67:70:79:cd:ec:
7c:07:e8:f0:4b:d5:66:4a:d8:a0:79:ec:46:af:1d:
91:35:45:51:7f:e4:29:c4:a9:50:8c:9a:44:d2:57:
24:49:17:f7:70:b8:5d:0f:3b:58:4a:f1:4d:26:d6:
b9:f6:88:36:1a:6e:9b:11:a8:6c:ee:0e:b3:85:46:
8b:00:6b:16:0c:b8:9d:e3:20:99:5a:b4:1c:28:0b:
3e:6c:0f:cd:bf:41:08:1d:e3:7e:3d:14:01:46:4b:
8d:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:12:E2:B9:06:F9:C3:CC:A9:26:41:EA:64:B7:FC:7C:77:CC:5B:83
X509v3 Authority Key Identifier:
keyid:05:20:05:BB:6C:3D:68:65:B8:9C:10:F3:3B:0B:99:4B:74:AF:96:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSAFu2w9aGW4nBDzOwuZS3Svljs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/qBLiuQb5w8ypJkHqZLf8fHfMW4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.98.127.0/24
Signature Algorithm: sha256WithRSAEncryption
20:21:33:36:d8:84:60:a6:89:23:97:9d:56:6b:bb:9a:90:28:
2f:88:2a:fc:07:3b:a9:2e:13:2f:1b:2e:6a:68:f3:d0:12:35:
1a:35:c4:d6:9e:7f:c4:34:e8:c2:a9:13:b3:b1:5e:48:ed:24:
71:2d:42:7e:db:ec:84:72:e1:07:11:12:44:31:70:69:e5:f6:
7d:79:a6:e9:35:98:41:8c:c2:d2:1f:85:27:46:a3:33:2b:7b:
e1:3f:32:95:4c:e6:da:81:54:0a:47:f6:e6:2c:07:0e:58:62:
9d:47:aa:31:6d:dd:d2:b1:f9:46:ed:6b:e7:15:1a:35:b1:11:
1f:96:fb:25:63:72:c5:8f:21:bc:ed:17:ef:10:95:df:36:ad:
96:7e:1c:e1:c0:8e:86:b5:88:b9:ec:52:cd:f0:50:76:6b:18:
8d:cf:54:44:4d:3b:4c:66:1f:95:6f:40:51:79:bd:18:cd:49:
ea:ad:65:16:6e:13:8b:e1:96:f3:72:38:c7:6e:86:9e:7d:44:
3a:a8:b0:1a:9b:dd:b8:9b:8e:7f:d5:7b:3c:ed:10:f4:ac:73:
96:96:45:3e:8a:4f:fe:f5:d0:ba:7f:52:6e:27:c7:6a:7a:78:
73:d9:f4:34:42:aa:78:fd:0b:1c:f2:94:38:58:77:0a:b9:12:
72:c5:fc:40
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzCbXhFrtPkdZEaf1Qinpb4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1MjAwNWJiNmMzZDY4NjViODljMTBmMzNiMGI5OTRiNzRh
Zjk2M2IwHhcNMjQwMTAxMDAzMDAzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhODEyZTJiOTA2ZjljM2NjYTkyNjQxZWE2NGI3ZmM3Yzc3Y2M1YjgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApqclmsjD+VU2s3k/hJN6C0c/vJho
ApPa9UNwwkYHC6IjDApdU4VrkSh/hZs1cgrlmTp7wn8br4delP8Af8ZuJxrB+b2i
DbEY1Msbe8HaWN69dp1h3HT1jByTER9d4x1a68+nhOJOgogUZI8g/mhp6TO4zVe7
yTbI6KbIxur9S6bGMLTM/ZzYfpb4NLgXAD7btU+tnyu7tkRnAJ8fwVaZZ3B5zex8
B+jwS9VmStigeexGrx2RNUVRf+QpxKlQjJpE0lckSRf3cLhdDztYSvFNJta59og2
Gm6bEahs7g6zhUaLAGsWDLid4yCZWrQcKAs+bA/Nv0EIHeN+PRQBRkuNgQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKgS4rkG+cPMqSZB6mS3/Hx3zFuDMB8GA1UdIwQY
MBaAFAUgBbtsPWhluJwQ8zsLmUt0r5Y7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlNBRnUydzlhR1c0bkJEek93dVpTM1N2bGpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi84M2ViMDktM2ExNC00NTViLTg4OTUt
YmEwYTc2ZjQzNzA0LzEvcUJMaXVRYjV3OHlwSmtIcVpMZjhmSGZNVzRNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi84M2ViMDktM2ExNC00NTViLTg4OTUtYmEwYTc2ZjQzNzA0
LzEvQlNBRnUydzlhR1c0bkJEek93dVpTM1N2bGpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuWJ/MA0G
CSqGSIb3DQEBCwUAA4IBAQAgITM22IRgpokjl51Wa7uakCgviCr8BzupLhMvGy5q
aPPQEjUaNcTWnn/ENOjCqROzsV5I7SRxLUJ+2+yEcuEHERJEMXBp5fZ9eabpNZhB
jMLSH4UnRqMzK3vhPzKVTObagVQKR/bmLAcOWGKdR6oxbd3SsflG7WvnFRo1sREf
lvslY3LFjyG87RfvEJXfNq2WfhzhwI6GtYi57FLN8FB2axiNz1RETTtMZh+Vb0BR
eb0YzUnqrWUWbhOL4ZbzcjjHboaefUQ6qLAam924m45/1Xs87RD0rHOWlkU+ik/+
9dC6f1JuJ8dqenhz2fQ0Qqp4/Qsc8pQ4WHcKuRJyxfxA
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:42 2024 by rpki-client on console-fra.rpki-client.org