Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/QavfoSsD75-JXD3quoiotciuZzk.roa
File: QavfoSsD75-JXD3quoiotciuZzk.roa (raw, json)
Hash identifier: NRqhytMxj7jiFOR+8Mpz8RyU1FDhr5gojJsmjgKi44I=
Subject key identifier: 41:AB:DF:A1:2B:03:EF:9F:89:5C:3D:EA:BA:88:A8:B5:C8:AE:67:39
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0187FF96DE01169E5AD6CF40BB1558B31863
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/QavfoSsD75-JXD3quoiotciuZzk.roa
Signing time: Tue 09 May 2023 08:18:09 +0000
ROA not before: Tue 09 May 2023 08:18:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 395092
IP address blocks: 5.253.36.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:ff:96:de:01:16:9e:5a:d6:cf:40:bb:15:58:b3:18:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: May 9 08:18:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41abdfa12b03ef9f895c3deaba88a8b5c8ae6739
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:27:0c:ce:ff:43:a1:08:c7:2f:8a:e3:08:e7:
1e:88:aa:39:40:07:b9:3d:02:4e:8e:55:7c:f3:e6:
c6:ab:c7:9c:94:27:5d:aa:26:c0:58:28:07:d4:bf:
32:51:32:28:a8:74:9b:76:26:26:a4:3d:05:24:e9:
e4:8a:bb:67:d8:72:73:d3:fe:62:68:78:48:7e:12:
43:65:02:ed:6b:5e:a0:5e:e5:d9:2a:cb:d4:e4:38:
7a:83:34:00:59:28:e1:09:d6:b4:b2:8c:10:35:2f:
0e:10:c4:5d:e9:46:51:10:47:b6:d0:b5:f0:a4:8f:
d3:58:8f:f1:8d:65:26:19:20:37:0c:90:d1:66:62:
e6:ed:11:0c:d4:4f:8d:15:df:4d:6c:95:5c:1a:ac:
92:71:53:a9:e5:c5:1d:76:43:26:ad:3a:66:40:2e:
85:ca:98:d5:6c:21:4e:89:45:84:27:d2:8c:32:83:
d8:e2:0c:26:9d:c0:1d:2e:a9:4e:a6:35:5e:1e:42:
f3:7c:6a:07:b1:f3:4c:71:ce:dc:fe:8b:45:2d:7e:
ef:2f:ba:61:45:16:73:2b:e8:b9:07:8d:0b:89:1b:
bc:21:30:66:29:08:56:30:e5:41:74:9f:3d:6b:18:
10:3d:37:f3:2c:0a:e7:59:4d:f2:86:9e:cd:cf:2c:
b5:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:AB:DF:A1:2B:03:EF:9F:89:5C:3D:EA:BA:88:A8:B5:C8:AE:67:39
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/QavfoSsD75-JXD3quoiotciuZzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.36.0/24
Signature Algorithm: sha256WithRSAEncryption
37:87:c8:44:45:93:93:9e:bc:78:54:7f:78:03:f6:64:f2:a1:
33:41:64:b2:1f:4a:b9:1d:8d:34:fc:1c:fd:76:58:ad:7d:cc:
36:da:86:b3:26:d5:30:84:5f:f2:a9:3f:2e:c6:a1:77:e3:d0:
09:b7:28:f9:6e:35:7c:85:b7:4e:f4:a1:71:9e:82:d0:d2:c8:
e3:aa:16:cb:85:1e:90:97:f2:a2:55:a3:73:aa:6d:72:5c:43:
01:56:74:9c:f9:51:fb:61:f3:ed:b9:17:ba:fb:7c:f6:41:da:
da:a3:18:a6:84:f5:17:32:45:7b:44:e2:a5:97:37:e8:1c:9c:
f5:0f:17:1e:36:bd:be:24:43:ab:93:a4:48:46:07:75:a4:73:
09:7c:13:3f:be:23:1d:29:0d:37:a9:a9:d1:28:42:59:8e:9f:
10:0c:d5:6e:0a:b5:a5:69:2b:44:8c:41:c7:81:dc:c4:60:59:
4a:6f:b7:d3:c7:88:8a:77:09:31:50:71:ed:22:c8:7f:17:af:
ce:d1:9b:36:60:f8:89:e1:26:5b:d8:5b:f0:59:35:6c:05:bf:
9f:94:52:1e:06:9b:68:9c:f3:08:62:97:09:f4:ef:1a:8f:25:
7d:d2:7f:6f:e1:ba:bd:6d:f2:e3:f2:78:41:42:be:e4:90:f6:
a6:d9:61:68
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYf/lt4BFp5a1s9AuxVYsxhjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyZmRiNjc2NTRkZjYxODRlN2Q2MGM0MTUwZWE5NTMzYzJj
Zjk3MDQwHhcNMjMwNTA5MDgxODA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MWFiZGZhMTJiMDNlZjlmODk1YzNkZWFiYTg4YThiNWM4YWU2NzM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxScMzv9DoQjHL4rjCOceiKo5QAe5
PQJOjlV88+bGq8eclCddqibAWCgH1L8yUTIoqHSbdiYmpD0FJOnkirtn2HJz0/5i
aHhIfhJDZQLta16gXuXZKsvU5Dh6gzQAWSjhCda0sowQNS8OEMRd6UZREEe20LXw
pI/TWI/xjWUmGSA3DJDRZmLm7REM1E+NFd9NbJVcGqyScVOp5cUddkMmrTpmQC6F
ypjVbCFOiUWEJ9KMMoPY4gwmncAdLqlOpjVeHkLzfGoHsfNMcc7c/otFLX7vL7ph
RRZzK+i5B40LiRu8ITBmKQhWMOVBdJ89axgQPTfzLArnWU3yhp7Nzyy11QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEGr36ErA++fiVw96rqIqLXIrmc5MB8GA1UdIwQY
MBaAFGL9tnZU32GE59YMQVDqlTPCz5cEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTct
ZTg2MTIxYzU5NGRmLzEvUWF2Zm9Tc0Q3NS1KWEQzcXVvaW90Y2l1WnprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi83MDQwNzEtOGRjMC00ZWQ2LTk0NTctZTg2MTIxYzU5NGRm
LzEvWXYyMmRsVGZZWVRuMWd4QlVPcVZNOExQbHdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQABf0kMA0G
CSqGSIb3DQEBCwUAA4IBAQA3h8hERZOTnrx4VH94A/Zk8qEzQWSyH0q5HY00/Bz9
dlitfcw22oazJtUwhF/yqT8uxqF349AJtyj5bjV8hbdO9KFxnoLQ0sjjqhbLhR6Q
l/KiVaNzqm1yXEMBVnSc+VH7YfPtuRe6+3z2QdraoximhPUXMkV7ROKllzfoHJz1
DxceNr2+JEOrk6RIRgd1pHMJfBM/viMdKQ03qanRKEJZjp8QDNVuCrWlaStEjEHH
gdzEYFlKb7fTx4iKdwkxUHHtIsh/F6/O0Zs2YPiJ4SZb2FvwWTVsBb+flFIeBpto
nPMIYpcJ9O8ajyV90n9v4bq9bfLj8nhBQr7kkPam2WFo
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:29 2023 by rpki-client on console-fra.rpki-client.org