Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/QyyYzuAd0fQEUi8As4DbjjXR-gw.roa
File: QyyYzuAd0fQEUi8As4DbjjXR-gw.roa (raw, json)
Hash identifier: rkj8/Nfrglm4Y5wb3rXVr6TtMhnf/R+d1yXYtb9WNWU=
Subject key identifier: 43:2C:98:CE:E0:1D:D1:F4:04:52:2F:00:B3:80:DB:8E:35:D1:FA:0C
Certificate issuer: /CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Certificate serial: 018B6733497639F35BC9BBDE1E9B59DF7475
Authority key identifier: F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/QyyYzuAd0fQEUi8As4DbjjXR-gw.roa
Signing time: Wed 25 Oct 2023 14:18:16 +0000
ROA not before: Wed 25 Oct 2023 14:18:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24940
IP address blocks: 89.42.83.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:67:33:49:76:39:f3:5b:c9:bb:de:1e:9b:59:df:74:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1d46e0e3e8caaaed4a529bd7d7308bd1ef01c1d
Validity
Not Before: Oct 25 14:18:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=432c98cee01dd1f404522f00b380db8e35d1fa0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:4c:bf:18:53:bf:2b:6f:50:cb:39:7f:f7:84:
e2:dc:bb:5b:fa:d6:d9:18:2d:b6:a7:d3:26:f5:dc:
cc:e7:62:68:49:68:10:93:59:bd:af:cf:70:a0:bd:
7c:8d:35:91:4b:75:b4:4e:28:6e:19:40:00:34:0f:
2c:d9:9a:6b:86:55:88:b2:2b:38:c1:87:fa:93:00:
f4:a3:9b:be:ba:00:6d:a4:0c:e4:ab:30:43:fa:1f:
8a:dd:1d:28:f7:95:43:1b:e0:5a:04:98:93:6d:99:
42:d6:d6:34:b7:89:89:0d:2d:dc:be:21:c2:cd:46:
fa:7c:92:c8:3b:68:c6:08:b7:f4:26:51:cd:22:dc:
78:5e:18:69:f4:26:1a:cd:ca:8e:e1:32:71:8c:5d:
70:7a:5d:6f:70:94:ec:38:fa:4f:e1:89:0a:3a:53:
ce:f2:ec:61:c0:b9:53:cf:1f:21:93:fe:b5:f3:6a:
bd:d0:b3:54:36:b3:b4:85:4a:b6:7f:00:c6:94:83:
be:43:3a:dd:3e:06:51:4c:df:f9:72:46:6a:de:50:
81:eb:47:30:dd:b6:53:3b:12:c5:52:a6:a6:7c:ff:
0f:f7:70:3f:00:e8:30:04:5f:0c:cf:c1:0c:d8:af:
7a:c2:17:52:db:2f:5a:c9:5e:1b:a6:5e:79:d4:04:
58:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:2C:98:CE:E0:1D:D1:F4:04:52:2F:00:B3:80:DB:8E:35:D1:FA:0C
X509v3 Authority Key Identifier:
keyid:F1:D4:6E:0E:3E:8C:AA:AE:D4:A5:29:BD:7D:73:08:BD:1E:F0:1C:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/QyyYzuAd0fQEUi8As4DbjjXR-gw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/84eb44-bbdf-46c1-b043-b42f23d828c3/1/8dRuDj6Mqq7UpSm9fXMIvR7wHB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.42.83.0/24
Signature Algorithm: sha256WithRSAEncryption
16:e5:09:e7:a2:0e:e1:1c:26:ab:2f:a5:c4:f7:22:e8:83:8a:
16:12:37:6b:55:92:4a:f0:89:3e:c5:09:ca:89:28:45:c2:54:
4b:cf:e6:1a:a4:88:bb:bb:a9:7c:59:59:75:b5:62:3f:a3:0d:
57:78:35:97:d1:de:50:ea:10:b2:bd:cc:72:5f:fb:07:ed:df:
62:57:5c:5b:82:ed:6f:eb:71:6c:bf:ae:c6:71:d7:fb:4f:ee:
ca:ab:38:1a:09:09:4e:02:f3:96:f4:38:f5:13:b3:35:16:6b:
2a:e7:6e:14:98:17:a8:ff:52:78:88:25:ac:79:a6:a7:93:9f:
98:81:21:0b:a0:22:f7:96:3a:c2:ac:4f:98:63:b6:0a:d0:a4:
fe:37:97:64:f1:b0:ed:d2:c6:bd:56:7b:28:74:a7:bb:11:be:
b6:f7:6b:d6:fc:fe:57:52:ca:35:6b:74:c8:7a:97:94:2b:83:
af:39:b0:c0:46:8f:94:fa:fb:99:3e:77:de:52:6b:41:dc:56:
ac:e4:6a:62:6f:fb:7a:2c:50:ce:3d:3c:b3:c6:0b:69:c6:f2:
17:67:38:28:61:eb:d3:f2:18:b8:70:65:56:e2:78:53:5e:ca:
52:32:ca:ce:c7:db:4f:e3:ee:bf:f9:2d:89:f4:85:2e:55:f1:
ff:47:fb:5c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYtnM0l2OfNbybveHptZ33R1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYxZDQ2ZTBlM2U4Y2FhYWVkNGE1MjliZDdkNzMwOGJkMWVm
MDFjMWQwHhcNMjMxMDI1MTQxODE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MzJjOThjZWUwMWRkMWY0MDQ1MjJmMDBiMzgwZGI4ZTM1ZDFmYTBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl0y/GFO/K29Qyzl/94Ti3Ltb+tbZ
GC22p9Mm9dzM52JoSWgQk1m9r89woL18jTWRS3W0TihuGUAANA8s2ZprhlWIsis4
wYf6kwD0o5u+ugBtpAzkqzBD+h+K3R0o95VDG+BaBJiTbZlC1tY0t4mJDS3cviHC
zUb6fJLIO2jGCLf0JlHNItx4Xhhp9CYazcqO4TJxjF1wel1vcJTsOPpP4YkKOlPO
8uxhwLlTzx8hk/6182q90LNUNrO0hUq2fwDGlIO+QzrdPgZRTN/5ckZq3lCB60cw
3bZTOxLFUqamfP8P93A/AOgwBF8Mz8EM2K96whdS2y9ayV4bpl551ARYTQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEMsmM7gHdH0BFIvALOA24410foMMB8GA1UdIwQY
MBaAFPHUbg4+jKqu1KUpvX1zCL0e8BwdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOGRSdURqNk1xcTdVcFNtOWZYTUl2Ujd3SEIwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi84NGViNDQtYmJkZi00NmMxLWIwNDMt
YjQyZjIzZDgyOGMzLzEvUXl5WXp1QWQwZlFFVWk4QXM0RGJqalhSLWd3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi84NGViNDQtYmJkZi00NmMxLWIwNDMtYjQyZjIzZDgyOGMz
LzEvOGRSdURqNk1xcTdVcFNtOWZYTUl2Ujd3SEIwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAWSpTMA0G
CSqGSIb3DQEBCwUAA4IBAQAW5Qnnog7hHCarL6XE9yLog4oWEjdrVZJK8Ik+xQnK
iShFwlRLz+YapIi7u6l8WVl1tWI/ow1XeDWX0d5Q6hCyvcxyX/sH7d9iV1xbgu1v
63Fsv67Gcdf7T+7KqzgaCQlOAvOW9Dj1E7M1Fmsq524UmBeo/1J4iCWseaank5+Y
gSELoCL3ljrCrE+YY7YK0KT+N5dk8bDt0sa9VnsodKe7Eb6292vW/P5XUso1a3TI
epeUK4OvObDARo+U+vuZPnfeUmtB3Fas5Gpib/t6LFDOPTyzxgtpxvIXZzgoYevT
8hi4cGVW4nhTXspSMsrOx9tP4+6/+S2J9IUuVfH/R/tc
-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:36 2024 by rpki-client on console-fra.rpki-client.org