Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/RqyqfgsF3W5CVffjCS1FuPy3K2U.roa
File: RqyqfgsF3W5CVffjCS1FuPy3K2U.roa (raw, json)
Hash identifier: 8KSSgI05UoOqjfs7b5/J23tBVsbxlPjgw2Fv5SDyAMA=
Subject key identifier: 46:AC:AA:7E:0B:05:DD:6E:42:55:F7:E3:09:2D:45:B8:FC:B7:2B:65
Certificate issuer: /CN=39732dcd0c35426144f9f026754179dfaebe8958
Certificate serial: 01856CC1430F0E7536115C54AA6F519136FB
Authority key identifier: 39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/RqyqfgsF3W5CVffjCS1FuPy3K2U.roa
Signing time: Sun 01 Jan 2023 09:54:43 +0000
ROA not before: Sun 01 Jan 2023 09:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59909
IP address blocks: 45.90.76.0/22 maxlen: 24
2a0c:b5c0::/29 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:c1:43:0f:0e:75:36:11:5c:54:aa:6f:51:91:36:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39732dcd0c35426144f9f026754179dfaebe8958
Validity
Not Before: Jan 1 09:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=46acaa7e0b05dd6e4255f7e3092d45b8fcb72b65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:70:ff:a0:7b:63:7e:71:f4:35:65:aa:21:91:
33:38:3e:36:39:77:38:4b:72:59:78:9e:d1:cf:f5:
df:c7:3e:03:41:60:b8:aa:f2:4a:08:c1:02:52:26:
2d:e7:a8:49:3a:eb:9c:ab:ef:3f:ab:a3:3a:5d:0c:
19:88:1c:8c:81:8c:f4:33:70:d8:45:6e:7d:46:e6:
57:0b:82:c4:1d:76:20:58:37:16:b8:5e:cc:98:4f:
33:5f:0a:57:ef:86:c1:90:cc:98:f7:36:f4:94:f5:
c4:d4:33:d7:a7:6b:49:1f:c3:6f:fa:d7:2b:05:29:
9c:4f:28:38:ad:05:c2:d7:51:ec:e3:e0:ee:01:4d:
35:99:3a:08:14:46:a9:d7:2f:9c:d0:d8:aa:e9:a8:
86:e6:49:a5:b4:1a:15:88:41:28:c0:1b:aa:3f:02:
7d:1d:8f:fb:57:17:f0:be:d1:5d:b3:0e:de:6d:0e:
ab:6c:93:67:14:8b:65:fa:bc:1d:aa:3d:ef:6e:ae:
25:13:b6:0e:08:4b:85:39:6d:f1:ff:01:e9:74:10:
91:78:23:d0:f4:a7:b0:84:7b:40:50:00:6d:a0:be:
4f:1b:3c:15:b5:83:b1:f9:30:fc:3f:5f:79:07:b7:
fd:e7:92:37:fa:d8:08:2c:52:63:cb:26:f2:74:6a:
0f:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:AC:AA:7E:0B:05:DD:6E:42:55:F7:E3:09:2D:45:B8:FC:B7:2B:65
X509v3 Authority Key Identifier:
keyid:39:73:2D:CD:0C:35:42:61:44:F9:F0:26:75:41:79:DF:AE:BE:89:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OXMtzQw1QmFE-fAmdUF5366-iVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/RqyqfgsF3W5CVffjCS1FuPy3K2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/237106-d08d-4aa0-ac82-f60af2a82060/1/OXMtzQw1QmFE-fAmdUF5366-iVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.76.0/22
IPv6:
2a0c:b5c0::/29
Signature Algorithm: sha256WithRSAEncryption
62:ae:4c:8b:7d:88:c4:1d:43:72:5e:34:78:0c:d0:d4:7d:b1:
38:0e:31:b9:f6:12:ac:1e:af:ee:f7:f5:db:a1:40:e7:96:09:
52:e0:73:14:f4:5f:0a:8f:e6:2d:79:a5:16:0b:9d:56:57:4d:
bb:29:4a:cc:4f:b7:52:fa:cd:15:30:65:45:f3:bf:b9:14:0e:
af:8c:cf:06:d7:76:ab:15:29:8c:2c:5a:8b:a7:3a:a6:4a:16:
93:ae:d7:2b:f7:fb:0f:f1:c0:05:45:76:ae:74:27:30:9e:ef:
24:0d:7a:7d:12:8c:30:39:81:76:1a:94:7e:16:bb:68:27:08:
a8:71:9c:12:77:ea:83:e9:01:23:82:45:8d:cc:13:5a:da:8a:
92:ac:79:70:16:21:ab:fc:3a:a5:d2:bb:e4:c5:db:2e:05:d6:
94:bf:80:05:50:95:f1:cc:51:c3:cb:6f:e7:29:ef:cc:6d:87:
2a:9e:99:84:7b:4e:b8:5a:1c:19:9c:8e:bf:17:e4:d3:e0:c5:
f3:2b:ea:1d:47:8a:65:28:9d:d0:af:34:0f:ae:af:4a:d8:ce:
25:21:72:81:28:76:12:2e:aa:1e:10:27:d9:3c:d9:ef:9a:2c:
de:08:7c:3f:19:76:b3:05:c3:e2:39:32:27:af:32:a6:60:b6:
49:d0:48:96
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVswUMPDnU2EVxUqm9RkTb7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5NzMyZGNkMGMzNTQyNjE0NGY5ZjAyNjc1NDE3OWRmYWVi
ZTg5NTgwHhcNMjMwMTAxMDk1NDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NmFjYWE3ZTBiMDVkZDZlNDI1NWY3ZTMwOTJkNDViOGZjYjcyYjY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6nD/oHtjfnH0NWWqIZEzOD42OXc4
S3JZeJ7Rz/Xfxz4DQWC4qvJKCMECUiYt56hJOuucq+8/q6M6XQwZiByMgYz0M3DY
RW59RuZXC4LEHXYgWDcWuF7MmE8zXwpX74bBkMyY9zb0lPXE1DPXp2tJH8Nv+tcr
BSmcTyg4rQXC11Hs4+DuAU01mToIFEap1y+c0Niq6aiG5kmltBoViEEowBuqPwJ9
HY/7VxfwvtFdsw7ebQ6rbJNnFItl+rwdqj3vbq4lE7YOCEuFOW3x/wHpdBCReCPQ
9KewhHtAUABtoL5PGzwVtYOx+TD8P195B7f955I3+tgILFJjyybydGoPBQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFEasqn4LBd1uQlX34wktRbj8tytlMB8GA1UdIwQY
MBaAFDlzLc0MNUJhRPnwJnVBed+uvolYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yMzcxMDYtZDA4ZC00YWEwLWFjODIt
ZjYwYWYyYTgyMDYwLzEvUnF5cWZnc0YzVzVDVmZmakNTMUZ1UHkzSzJVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy8yMzcxMDYtZDA4ZC00YWEwLWFjODItZjYwYWYyYTgyMDYw
LzEvT1hNdHpRdzFRbUZFLWZBbWRVRjUzNjYtaVZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLVpMMA0E
AgACMAcDBQMqDLXAMA0GCSqGSIb3DQEBCwUAA4IBAQBirkyLfYjEHUNyXjR4DNDU
fbE4DjG59hKsHq/u9/XboUDnlglS4HMU9F8Kj+YteaUWC51WV027KUrMT7dS+s0V
MGVF87+5FA6vjM8G13arFSmMLFqLpzqmShaTrtcr9/sP8cAFRXaudCcwnu8kDXp9
EowwOYF2GpR+FrtoJwiocZwSd+qD6QEjgkWNzBNa2oqSrHlwFiGr/Dql0rvkxdsu
BdaUv4AFUJXxzFHDy2/nKe/MbYcqnpmEe064WhwZnI6/F+TT4MXzK+odR4plKJ3Q
rzQPrq9K2M4lIXKBKHYSLqoeECfZPNnvmizeCHw/GXazBcPiOTInrzKmYLZJ0EiW
-----END CERTIFICATE-----
Generated at Tue Jan 2 09:20:11 2024 by rpki-client on console-fra.rpki-client.org