Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/qt-NuWHmuJi83bNhfrIAYjjpGk4.roa
File: qt-NuWHmuJi83bNhfrIAYjjpGk4.roa (raw, json)
Hash identifier: n9iK2NR9Tth/bA8KoseLCcwNJ0CO/6YeuAbVBw3qZy4=
Subject key identifier: AA:DF:8D:B9:61:E6:B8:98:BC:DD:B3:61:7E:B2:00:62:38:E9:1A:4E
Certificate issuer: /CN=42f8ab2ba24879e45c445486fceb21af46656d5a
Certificate serial: 018DB312AC4A40B411E4763C94399BCEA05D
Authority key identifier: 42:F8:AB:2B:A2:48:79:E4:5C:44:54:86:FC:EB:21:AF:46:65:6D:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QvirK6JIeeRcRFSG_Oshr0ZlbVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/qt-NuWHmuJi83bNhfrIAYjjpGk4.roa
Signing time: Fri 16 Feb 2024 17:59:21 +0000
ROA not before: Fri 16 Feb 2024 17:59:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8100
IP address blocks: 217.147.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Feb 2024 22:45:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:b3:12:ac:4a:40:b4:11:e4:76:3c:94:39:9b:ce:a0:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42f8ab2ba24879e45c445486fceb21af46656d5a
Validity
Not Before: Feb 16 17:59:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aadf8db961e6b898bcddb3617eb2006238e91a4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:4c:f9:55:8e:80:88:97:96:4d:2c:ce:5e:d0:
63:9e:a7:8d:1a:3c:6f:6c:57:bb:94:d2:65:48:be:
5a:bf:4f:10:33:8a:46:7f:b0:79:ed:2d:90:79:cb:
7b:3b:4b:b1:85:d3:e6:fc:07:c8:e6:d9:24:56:26:
dc:04:cb:e5:0e:23:6e:e0:e3:5f:07:87:14:f8:e2:
17:3c:2f:98:6a:7c:c6:48:2e:02:9e:2b:81:20:9c:
8a:8b:77:bf:93:85:ef:98:7c:09:f0:af:f2:49:b1:
21:fc:c6:f1:07:29:ea:5c:51:a0:c1:81:b5:38:35:
8e:a9:d9:09:d5:8a:c8:ec:9f:92:c7:9a:bd:34:34:
e3:5c:a4:50:91:a9:7e:06:8b:49:7e:55:58:28:f7:
35:f0:80:d4:6d:3d:27:59:d7:19:10:d1:1e:db:7f:
17:38:97:b5:fb:c9:29:31:10:0b:c9:54:4e:12:31:
f5:22:76:ec:27:7a:2e:4d:65:60:03:e4:43:0b:67:
7f:5e:2f:04:58:43:df:08:10:16:1e:27:72:de:a1:
94:5f:a5:aa:9f:1d:1b:5c:55:2c:99:ef:e8:6c:70:
39:51:be:2e:9f:d4:aa:2d:f5:f0:5d:1a:a2:7d:33:
8a:9e:a7:1c:63:81:3a:b1:bc:b6:eb:4a:d1:84:1b:
9a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:DF:8D:B9:61:E6:B8:98:BC:DD:B3:61:7E:B2:00:62:38:E9:1A:4E
X509v3 Authority Key Identifier:
keyid:42:F8:AB:2B:A2:48:79:E4:5C:44:54:86:FC:EB:21:AF:46:65:6D:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QvirK6JIeeRcRFSG_Oshr0ZlbVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/qt-NuWHmuJi83bNhfrIAYjjpGk4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/QvirK6JIeeRcRFSG_Oshr0ZlbVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.147.166.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:62:4e:95:50:80:57:ef:22:8b:84:d2:a8:c8:66:ea:4a:cf:
f2:e9:6c:94:00:f1:9b:46:c4:ee:dd:79:f8:7a:85:95:3b:55:
0d:8e:f4:b9:f9:d7:9a:c6:bb:bd:30:ca:06:75:95:fb:00:d1:
a8:a8:6c:45:77:f5:45:14:76:7f:0f:af:c7:a0:c3:dc:69:43:
cf:33:bb:1d:32:1e:89:94:9b:f9:73:a9:93:dd:6f:08:8e:0b:
55:d8:d0:49:00:73:59:2c:cc:1a:f2:68:3d:7c:1e:e8:7e:39:
9c:04:23:91:aa:9f:78:9c:33:e9:20:ed:3d:d3:a1:15:47:09:
f0:73:e2:ed:80:55:a8:1d:63:a4:2d:65:c4:2a:c2:cc:28:14:
41:88:8b:e0:81:d3:10:a4:f6:a4:aa:2c:f4:71:27:89:24:2e:
db:a3:26:2f:a3:19:e0:dc:f1:8d:d2:e4:31:7b:39:40:64:54:
5d:99:56:5e:b6:a2:cc:b2:70:50:81:6e:cd:3d:bf:20:1b:8f:
ac:92:7a:ae:0e:b4:54:bb:b5:29:4e:37:4d:25:3b:28:e3:21:
07:9f:7e:f1:9f:35:22:ce:67:cd:03:06:9f:eb:16:bd:7e:95:
7b:31:9f:6a:af:eb:7d:de:7f:bb:62:a2:19:74:8b:27:14:89:
04:50:44:ae
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY2zEqxKQLQR5HY8lDmbzqBdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyZjhhYjJiYTI0ODc5ZTQ1YzQ0NTQ4NmZjZWIyMWFmNDY2
NTZkNWEwHhcNMjQwMjE2MTc1OTIxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYWRmOGRiOTYxZTZiODk4YmNkZGIzNjE3ZWIyMDA2MjM4ZTkxYTRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnEz5VY6AiJeWTSzOXtBjnqeNGjxv
bFe7lNJlSL5av08QM4pGf7B57S2Qect7O0uxhdPm/AfI5tkkVibcBMvlDiNu4ONf
B4cU+OIXPC+YanzGSC4CniuBIJyKi3e/k4XvmHwJ8K/ySbEh/MbxBynqXFGgwYG1
ODWOqdkJ1YrI7J+Sx5q9NDTjXKRQkal+BotJflVYKPc18IDUbT0nWdcZENEe238X
OJe1+8kpMRALyVROEjH1InbsJ3ouTWVgA+RDC2d/Xi8EWEPfCBAWHidy3qGUX6Wq
nx0bXFUsme/obHA5Ub4un9SqLfXwXRqifTOKnqccY4E6sby260rRhBuaXwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKrfjblh5riYvN2zYX6yAGI46RpOMB8GA1UdIwQY
MBaAFEL4qyuiSHnkXERUhvzrIa9GZW1aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXZpcks2SkllZVJjUkZTR19Pc2hyMFpsYlZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC9jMTdjNWQtNzU0My00NDBmLTg3OGYt
MTc2OWZlZjZiZTk2LzEvcXQtTnVXSG11Smk4M2JOaGZySUFZampwR2s0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC9jMTdjNWQtNzU0My00NDBmLTg3OGYtMTc2OWZlZjZiZTk2
LzEvUXZpcks2SkllZVJjUkZTR19Pc2hyMFpsYlZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2ZOmMA0G
CSqGSIb3DQEBCwUAA4IBAQA9Yk6VUIBX7yKLhNKoyGbqSs/y6WyUAPGbRsTu3Xn4
eoWVO1UNjvS5+deaxru9MMoGdZX7ANGoqGxFd/VFFHZ/D6/HoMPcaUPPM7sdMh6J
lJv5c6mT3W8IjgtV2NBJAHNZLMwa8mg9fB7ofjmcBCORqp94nDPpIO0906EVRwnw
c+LtgFWoHWOkLWXEKsLMKBRBiIvggdMQpPakqiz0cSeJJC7boyYvoxng3PGN0uQx
ezlAZFRdmVZetqLMsnBQgW7NPb8gG4+sknquDrRUu7UpTjdNJTso4yEHn37xnzUi
zmfNAwaf6xa9fpV7MZ9qr+t93n+7YqIZdIsnFIkEUESu
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:34:52 2025 by rpki-client