Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/597190-d6ef-457d-b46b-ee5c6aeca3e9/1/qtwBLEsSnCe5pf0rkAMv_E7brs8.roa
File: qtwBLEsSnCe5pf0rkAMv_E7brs8.roa (raw, json)
Hash identifier: zQ4aS37U4iOaSLH8Rs3OpXc9biWSrwg+ETPwYZKV89c=
Subject key identifier: AA:DC:01:2C:4B:12:9C:27:B9:A5:FD:2B:90:03:2F:FC:4E:DB:AE:CF
Certificate issuer: /CN=8b9939348f4dbfdb101f4f7a37c79c04747d0d03
Certificate serial: 01856E2F826B6960E7CC77389C91E2C64C37
Authority key identifier: 8B:99:39:34:8F:4D:BF:DB:10:1F:4F:7A:37:C7:9C:04:74:7D:0D:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5k5NI9Nv9sQH096N8ecBHR9DQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/597190-d6ef-457d-b46b-ee5c6aeca3e9/1/qtwBLEsSnCe5pf0rkAMv_E7brs8.roa
Signing time: Sun 01 Jan 2023 16:34:45 +0000
ROA not before: Sun 01 Jan 2023 16:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204957
IP address blocks: 91.196.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:2f:82:6b:69:60:e7:cc:77:38:9c:91:e2:c6:4c:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b9939348f4dbfdb101f4f7a37c79c04747d0d03
Validity
Not Before: Jan 1 16:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aadc012c4b129c27b9a5fd2b90032ffc4edbaecf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:5b:61:41:56:83:77:89:c2:9e:b0:49:1f:22:
f3:9c:bd:52:14:31:78:f7:61:87:ca:95:95:c9:7c:
e4:15:12:55:bf:c1:d8:5e:1e:56:96:c6:54:cb:29:
d9:ba:b9:9a:9e:8a:7e:56:92:73:70:43:18:ba:8c:
bf:dd:a7:12:2d:1d:9b:7b:7b:35:17:87:75:96:b9:
97:48:09:27:50:8c:bc:46:04:fe:81:96:88:3e:a9:
24:fb:83:b8:ce:ca:5a:32:d8:1d:42:37:b4:e6:6f:
2a:04:a3:24:7f:8c:11:77:70:3d:ad:90:d5:eb:02:
d6:88:b9:1a:cc:f3:17:5a:82:8e:a6:58:72:4c:a0:
03:33:c9:13:0b:e6:e1:f0:3f:22:8f:e6:c5:63:3d:
bc:c2:5c:b0:ec:36:60:24:f2:50:44:3c:f6:04:dc:
03:85:c6:a5:29:07:2d:e7:d6:30:f4:da:09:27:aa:
91:bf:f0:88:d9:7a:9c:92:dd:90:16:98:fd:07:24:
b5:1c:2f:c6:a3:dc:4b:0d:6c:1e:62:0d:74:f3:71:
19:7c:44:3d:89:e2:49:ab:79:0f:f2:84:f7:91:33:
e1:09:6e:75:99:83:54:ae:05:6f:62:98:ec:b9:f9:
71:13:cb:7d:13:dc:02:cb:a3:bc:49:48:91:49:55:
97:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:DC:01:2C:4B:12:9C:27:B9:A5:FD:2B:90:03:2F:FC:4E:DB:AE:CF
X509v3 Authority Key Identifier:
keyid:8B:99:39:34:8F:4D:BF:DB:10:1F:4F:7A:37:C7:9C:04:74:7D:0D:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5k5NI9Nv9sQH096N8ecBHR9DQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/597190-d6ef-457d-b46b-ee5c6aeca3e9/1/qtwBLEsSnCe5pf0rkAMv_E7brs8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/597190-d6ef-457d-b46b-ee5c6aeca3e9/1/i5k5NI9Nv9sQH096N8ecBHR9DQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.196.7.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:f9:ca:0b:57:4e:11:ee:9c:6b:8f:0b:a1:bf:0e:a2:0c:ed:
66:0d:5a:bc:07:1d:62:f8:9b:a0:df:02:e8:ca:66:94:c3:da:
70:54:ed:0d:d2:47:be:9b:c3:e7:03:27:d6:bd:b6:7e:e5:77:
fa:c6:5a:d5:0f:5a:1b:98:67:93:b6:9b:d1:75:40:8f:da:df:
b4:80:48:27:b3:be:37:0e:37:a2:07:d1:a1:54:f2:fa:18:c3:
b5:dc:a7:0c:4a:80:7a:49:b4:b1:d8:5f:06:8f:04:e3:16:6c:
4b:c4:f9:27:c6:96:03:7e:1f:2d:8c:ab:5f:f3:0f:ce:aa:49:
8a:8a:c8:5f:cd:b7:64:82:92:5a:f4:6a:37:23:1f:f2:89:51:
e4:fc:09:ad:12:4e:e5:b3:54:af:c8:46:b9:33:4f:79:14:aa:
da:44:c5:7c:21:cf:c2:70:54:1b:d3:9d:d3:84:b5:21:92:39:
67:ae:5e:84:c3:bd:ba:49:46:0b:e3:9d:5e:a3:3f:3a:27:02:
6e:a3:03:bb:67:32:9f:45:46:ed:e4:d8:58:78:d7:5c:b7:5a:
e1:ec:76:55:d7:43:cf:38:1f:12:9a:10:6b:29:86:b0:a8:7b:
b0:f6:20:d9:4c:11:43:9c:ed:cb:c8:71:b8:3b:8b:ce:89:88:
b8:b9:3c:13
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuL4JraWDnzHc4nJHixkw3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiOTkzOTM0OGY0ZGJmZGIxMDFmNGY3YTM3Yzc5YzA0NzQ3
ZDBkMDMwHhcNMjMwMTAxMTYzNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYWRjMDEyYzRiMTI5YzI3YjlhNWZkMmI5MDAzMmZmYzRlZGJhZWNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg1thQVaDd4nCnrBJHyLznL1SFDF4
92GHypWVyXzkFRJVv8HYXh5WlsZUyynZurmanop+VpJzcEMYuoy/3acSLR2be3s1
F4d1lrmXSAknUIy8RgT+gZaIPqkk+4O4zspaMtgdQje05m8qBKMkf4wRd3A9rZDV
6wLWiLkazPMXWoKOplhyTKADM8kTC+bh8D8ij+bFYz28wlyw7DZgJPJQRDz2BNwD
hcalKQct59Yw9NoJJ6qRv/CI2Xqckt2QFpj9ByS1HC/Go9xLDWweYg1083EZfEQ9
ieJJq3kP8oT3kTPhCW51mYNUrgVvYpjsuflxE8t9E9wCy6O8SUiRSVWX4QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKrcASxLEpwnuaX9K5ADL/xO267PMB8GA1UdIwQY
MBaAFIuZOTSPTb/bEB9PejfHnAR0fQ0DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTVrNU5JOU52OXNRSDA5Nk44ZWNCSFI5RFFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC81OTcxOTAtZDZlZi00NTdkLWI0NmIt
ZWU1YzZhZWNhM2U5LzEvcXR3QkxFc1NuQ2U1cGYwcmtBTXZfRTdicnM4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC81OTcxOTAtZDZlZi00NTdkLWI0NmItZWU1YzZhZWNhM2U5
LzEvaTVrNU5JOU52OXNRSDA5Nk44ZWNCSFI5RFFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW8QHMA0G
CSqGSIb3DQEBCwUAA4IBAQBL+coLV04R7pxrjwuhvw6iDO1mDVq8Bx1i+Jug3wLo
ymaUw9pwVO0N0ke+m8PnAyfWvbZ+5Xf6xlrVD1obmGeTtpvRdUCP2t+0gEgns743
DjeiB9GhVPL6GMO13KcMSoB6SbSx2F8GjwTjFmxLxPknxpYDfh8tjKtf8w/OqkmK
ishfzbdkgpJa9Go3Ix/yiVHk/AmtEk7ls1SvyEa5M095FKraRMV8Ic/CcFQb053T
hLUhkjlnrl6Ew726SUYL451eoz86JwJuowO7ZzKfRUbt5NhYeNdct1rh7HZV10PP
OB8SmhBrKYawqHuw9iDZTBFDnO3LyHG4O4vOiYi4uTwT
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:35 2024 by rpki-client on console-fra.rpki-client.org