Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/2f4605-356a-4af6-b15d-c42f9abf1477/1/VTu_QNXbZMiI3xvE1tOqcWrAbpg.roa
File: VTu_QNXbZMiI3xvE1tOqcWrAbpg.roa (raw, json)
Hash identifier: vm/XxLFjaXxMR3fdoFKvLj5dOB+SAKqESD7sKo9XC3g=
Subject key identifier: 55:3B:BF:40:D5:DB:64:C8:88:DF:1B:C4:D6:D3:AA:71:6A:C0:6E:98
Certificate issuer: /CN=973bec33ae738c98958819c6c13bb335ee34ab4c
Certificate serial: 0185CF6703150A0966A161C6987783B63583
Authority key identifier: 97:3B:EC:33:AE:73:8C:98:95:88:19:C6:C1:3B:B3:35:EE:34:AB:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lzvsM65zjJiViBnGwTuzNe40q0w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/2f4605-356a-4af6-b15d-c42f9abf1477/1/VTu_QNXbZMiI3xvE1tOqcWrAbpg.roa
Signing time: Fri 20 Jan 2023 13:38:32 +0000
ROA not before: Fri 20 Jan 2023 13:38:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 2.59.202.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 15 Feb 2023 19:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:cf:67:03:15:0a:09:66:a1:61:c6:98:77:83:b6:35:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=973bec33ae738c98958819c6c13bb335ee34ab4c
Validity
Not Before: Jan 20 13:38:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=553bbf40d5db64c888df1bc4d6d3aa716ac06e98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:09:bd:2d:e3:72:59:af:cf:29:06:33:96:a1:
8c:96:b5:c1:9a:f1:36:28:02:a0:66:03:3b:30:0b:
73:f6:77:f5:2a:3e:61:15:45:84:9d:c5:09:3a:5e:
2f:cf:57:63:73:00:0f:e9:2f:b9:c3:8a:0e:40:7d:
96:34:86:2e:45:6b:6c:a6:81:52:d4:55:e2:7c:64:
c6:e1:6d:3a:42:16:5f:33:ea:b6:9a:a1:d7:01:f1:
06:96:4c:6c:0d:83:b2:a4:d3:13:8a:4b:d2:4a:c1:
3f:f4:d0:8d:c7:d7:0d:0e:22:39:03:22:3e:0b:b4:
ba:b5:f8:d2:fe:7b:8b:4e:31:b6:9f:05:89:97:47:
c8:8d:88:eb:2b:f8:4a:10:ac:df:ab:22:a4:b2:46:
a3:59:46:64:f9:56:88:98:42:44:e7:20:60:36:d8:
76:1c:49:c9:38:4c:cb:e0:be:a6:15:ea:00:b5:3d:
f4:a6:b8:ef:f5:ec:d1:e4:d3:b8:e8:f5:19:d9:00:
4e:c1:da:82:49:48:ab:5a:a1:9b:50:bb:94:f7:09:
90:04:d5:8b:09:3e:00:92:41:11:cd:d2:38:3c:a5:
18:f3:11:8d:ef:7e:2e:59:20:eb:1c:6f:6e:6a:63:
b2:b8:f7:2d:98:6f:a3:84:68:f2:b5:12:4e:a0:86:
75:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:3B:BF:40:D5:DB:64:C8:88:DF:1B:C4:D6:D3:AA:71:6A:C0:6E:98
X509v3 Authority Key Identifier:
keyid:97:3B:EC:33:AE:73:8C:98:95:88:19:C6:C1:3B:B3:35:EE:34:AB:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lzvsM65zjJiViBnGwTuzNe40q0w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/2f4605-356a-4af6-b15d-c42f9abf1477/1/VTu_QNXbZMiI3xvE1tOqcWrAbpg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/2f4605-356a-4af6-b15d-c42f9abf1477/1/lzvsM65zjJiViBnGwTuzNe40q0w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.202.0/23
Signature Algorithm: sha256WithRSAEncryption
49:4e:ca:00:4b:7c:bc:c9:2e:79:22:a5:91:a1:e6:d9:ee:eb:
4a:f2:e1:4d:50:5d:88:03:1c:1d:80:cf:ad:b5:23:37:b0:29:
e7:30:e7:2d:ba:00:44:57:77:9b:75:df:bb:76:63:f2:93:cd:
31:2c:ab:83:65:a7:e2:2e:23:1f:7d:f9:ad:15:8c:f2:36:f0:
11:78:f3:6d:4b:92:9e:c4:48:2f:dd:7c:28:69:37:36:45:1c:
44:cf:37:47:6d:0f:04:27:41:9f:27:27:08:f7:b4:92:a7:4e:
fe:24:38:95:59:fa:90:ee:2d:19:b1:75:84:fc:a1:f3:12:72:
d9:e7:eb:3d:8a:47:9c:71:02:c1:d7:a2:64:7e:22:cb:b9:63:
b0:4e:1f:66:dd:07:30:b0:24:12:b0:7e:53:c8:f8:b6:82:f2:
a7:fc:42:15:29:b4:d4:f2:53:de:e0:73:db:c0:71:03:12:2f:
35:9a:7a:3b:45:61:25:01:d5:a3:4d:c0:90:a9:30:d0:ef:a2:
66:85:84:b6:6d:4f:cc:4f:5a:ca:a9:91:a7:de:6a:35:29:90:
9c:fc:81:d7:da:cd:8e:c6:61:05:e2:59:8f:3a:83:0b:22:03:
d1:7a:53:a2:35:fa:c8:b8:b1:d9:f8:fb:f5:5d:12:8e:0a:79:
fd:6a:0f:01
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYXPZwMVCglmoWHGmHeDtjWDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3M2JlYzMzYWU3MzhjOTg5NTg4MTljNmMxM2JiMzM1ZWUz
NGFiNGMwHhcNMjMwMTIwMTMzODMyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NTNiYmY0MGQ1ZGI2NGM4ODhkZjFiYzRkNmQzYWE3MTZhYzA2ZTk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnwm9LeNyWa/PKQYzlqGMlrXBmvE2
KAKgZgM7MAtz9nf1Kj5hFUWEncUJOl4vz1djcwAP6S+5w4oOQH2WNIYuRWtspoFS
1FXifGTG4W06QhZfM+q2mqHXAfEGlkxsDYOypNMTikvSSsE/9NCNx9cNDiI5AyI+
C7S6tfjS/nuLTjG2nwWJl0fIjYjrK/hKEKzfqyKkskajWUZk+VaImEJE5yBgNth2
HEnJOEzL4L6mFeoAtT30prjv9ezR5NO46PUZ2QBOwdqCSUirWqGbULuU9wmQBNWL
CT4AkkERzdI4PKUY8xGN734uWSDrHG9uamOyuPctmG+jhGjytRJOoIZ1iwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFU7v0DV22TIiN8bxNbTqnFqwG6YMB8GA1UdIwQY
MBaAFJc77DOuc4yYlYgZxsE7szXuNKtMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbHp2c002NXpqSmlWaUJuR3dUdXpOZTQwcTB3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS8yZjQ2MDUtMzU2YS00YWY2LWIxNWQt
YzQyZjlhYmYxNDc3LzEvVlR1X1FOWGJaTWlJM3h2RTF0T3FjV3JBYnBnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS8yZjQ2MDUtMzU2YS00YWY2LWIxNWQtYzQyZjlhYmYxNDc3
LzEvbHp2c002NXpqSmlWaUJuR3dUdXpOZTQwcTB3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBAjvKMA0G
CSqGSIb3DQEBCwUAA4IBAQBJTsoAS3y8yS55IqWRoebZ7utK8uFNUF2IAxwdgM+t
tSM3sCnnMOctugBEV3ebdd+7dmPyk80xLKuDZafiLiMfffmtFYzyNvARePNtS5Ke
xEgv3XwoaTc2RRxEzzdHbQ8EJ0GfJycI97SSp07+JDiVWfqQ7i0ZsXWE/KHzEnLZ
5+s9ikeccQLB16JkfiLLuWOwTh9m3QcwsCQSsH5TyPi2gvKn/EIVKbTU8lPe4HPb
wHEDEi81mno7RWElAdWjTcCQqTDQ76JmhYS2bU/MT1rKqZGn3mo1KZCc/IHX2s2O
xmEF4lmPOoMLIgPRelOiNfrIuLHZ+Pv1XRKOCnn9ag8B
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:04 2024 by rpki-client on console-ams.rpki-client.org