Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/qz4yHoeP3gZadY6p7tfp3A9S5So.roa
File: qz4yHoeP3gZadY6p7tfp3A9S5So.roa (raw, json)
Hash identifier: xt+NWPAW84y3Aan5qPGPNn8Qg6JMGQyTsmlciZMB6mY=
Subject key identifier: AB:3E:32:1E:87:8F:DE:06:5A:75:8E:A9:EE:D7:E9:DC:0F:52:E5:2A
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018571B630A2C6607FF62F2AA468082C7999
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/qz4yHoeP3gZadY6p7tfp3A9S5So.roa
Signing time: Mon 02 Jan 2023 09:00:43 +0000
ROA not before: Mon 02 Jan 2023 09:00:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35699
IP address blocks: 194.26.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b6:30:a2:c6:60:7f:f6:2f:2a:a4:68:08:2c:79:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 09:00:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab3e321e878fde065a758ea9eed7e9dc0f52e52a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:23:28:bc:39:24:2a:dd:36:65:59:26:9d:af:
01:41:a7:6b:14:fa:b7:4a:5e:f8:5b:d1:c9:21:8b:
1a:0f:d9:22:1c:c1:9a:7d:a7:53:59:2e:cc:85:b9:
ed:53:87:cf:22:95:4f:69:75:1f:1b:50:3b:37:99:
72:61:4a:af:29:6f:ab:51:85:75:ef:c5:b8:08:ca:
31:13:b5:64:e1:1d:e8:22:94:07:8f:e8:37:42:f5:
62:eb:f0:ed:3f:3a:a9:ef:b1:47:f8:62:98:a2:51:
5e:ef:15:1d:c9:95:dc:fc:c5:79:dd:19:99:8c:c5:
75:20:e9:cb:3c:22:b6:11:ad:16:15:67:fc:a5:36:
af:9a:38:91:e2:48:61:ad:d7:db:41:ac:2a:6b:00:
1a:0f:cd:c8:db:fd:71:45:7c:ac:b4:03:b0:74:fe:
b0:36:1d:e5:92:ea:b4:eb:03:68:b3:fb:8f:95:03:
2f:35:9f:97:1c:5b:f4:b0:3e:82:59:ea:e4:fb:4f:
d3:84:b4:2c:5d:0f:35:28:a2:6e:f4:5e:3c:9d:2b:
59:a6:22:1d:72:f3:82:81:a5:8f:f7:b9:7f:0c:ee:
95:d8:52:0f:40:3a:4c:18:76:19:08:83:8e:d5:dc:
85:36:0f:e8:5d:6e:5b:76:fd:d9:b0:fb:59:ff:1c:
1f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:3E:32:1E:87:8F:DE:06:5A:75:8E:A9:EE:D7:E9:DC:0F:52:E5:2A
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/qz4yHoeP3gZadY6p7tfp3A9S5So.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.175.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:b6:ac:fc:53:18:c4:e1:f7:a8:fc:65:93:56:97:26:c8:4b:
4a:35:44:d3:78:04:4f:de:04:7d:37:cd:18:bc:49:8b:3b:9a:
72:a4:59:7b:94:33:de:f6:02:45:a4:ab:a4:80:c0:1d:02:43:
33:f1:87:cc:0c:90:6a:ca:c2:d1:fe:0e:6f:5e:c0:66:dc:59:
61:f7:5b:db:a0:0f:ae:06:44:79:d2:e3:a7:f9:bb:74:08:f5:
c1:22:57:ac:71:be:e6:27:8e:48:5d:f9:1a:54:1d:44:7d:3d:
04:09:0b:0b:07:f1:e3:0e:f9:0b:61:bc:59:0a:95:f5:e5:74:
eb:24:5f:ab:8e:69:32:0f:05:b1:23:dc:fc:06:59:f4:6f:5c:
f9:f5:c3:34:88:3d:9f:d6:cd:00:3c:e3:9e:93:95:30:bc:13:
af:55:55:89:50:9d:8f:f3:eb:15:ee:ef:cf:d5:be:8f:86:b7:
9f:53:1a:46:78:5e:7c:36:c1:c8:1d:5d:78:05:7f:53:79:c0:
44:d8:16:2e:c0:42:e7:52:da:1c:95:aa:4d:e2:57:b7:4e:0d:
4f:19:66:2a:0d:b3:c9:c4:33:21:f9:9d:7c:06:4a:0e:bd:02:
79:11:c6:c1:e2:8c:2e:38:33:9e:e6:54:24:66:e3:d5:6d:c7:
16:f9:72:36
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxtjCixmB/9i8qpGgILHmZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjMwMTAyMDkwMDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYjNlMzIxZTg3OGZkZTA2NWE3NThlYTllZWQ3ZTlkYzBmNTJlNTJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5iMovDkkKt02ZVkmna8BQadrFPq3
Sl74W9HJIYsaD9kiHMGafadTWS7MhbntU4fPIpVPaXUfG1A7N5lyYUqvKW+rUYV1
78W4CMoxE7Vk4R3oIpQHj+g3QvVi6/DtPzqp77FH+GKYolFe7xUdyZXc/MV53RmZ
jMV1IOnLPCK2Ea0WFWf8pTavmjiR4khhrdfbQawqawAaD83I2/1xRXystAOwdP6w
Nh3lkuq06wNos/uPlQMvNZ+XHFv0sD6CWerk+0/ThLQsXQ81KKJu9F48nStZpiId
cvOCgaWP97l/DO6V2FIPQDpMGHYZCIOO1dyFNg/oXW5bdv3ZsPtZ/xwfqQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKs+Mh6Hj94GWnWOqe7X6dwPUuUqMB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvcXo0eUhvZVAzZ1phZFk2cDd0ZnAzQTlTNVNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwhqvMA0G
CSqGSIb3DQEBCwUAA4IBAQCttqz8UxjE4feo/GWTVpcmyEtKNUTTeARP3gR9N80Y
vEmLO5pypFl7lDPe9gJFpKukgMAdAkMz8YfMDJBqysLR/g5vXsBm3Flh91vboA+u
BkR50uOn+bt0CPXBIlescb7mJ45IXfkaVB1EfT0ECQsLB/HjDvkLYbxZCpX15XTr
JF+rjmkyDwWxI9z8Bln0b1z59cM0iD2f1s0APOOek5UwvBOvVVWJUJ2P8+sV7u/P
1b6PhrefUxpGeF58NsHIHV14BX9TecBE2BYuwELnUtoclapN4le3Tg1PGWYqDbPJ
xDMh+Z18BkoOvQJ5EcbB4owuODOe5lQkZuPVbccW+XI2
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:29 2024 by rpki-client on console-ams.rpki-client.org