Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/qtCoRlK9aiCx-1sKt2VXOfANaPI.roa
File: qtCoRlK9aiCx-1sKt2VXOfANaPI.roa (raw, json)
Hash identifier: F8FD1jbcI50YOx+Qt3qJZOxNzammyVLT4ZECTnn6ZGM=
Subject key identifier: AA:D0:A8:46:52:BD:6A:20:B1:FB:5B:0A:B7:65:57:39:F0:0D:68:F2
Certificate issuer: /CN=bdfad23e11cf0d24a477594eba09f99acc6f1fff
Certificate serial: 01856CE62DFEA5518D8B7B5C478584E153A4
Authority key identifier: BD:FA:D2:3E:11:CF:0D:24:A4:77:59:4E:BA:09:F9:9A:CC:6F:1F:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/qtCoRlK9aiCx-1sKt2VXOfANaPI.roa
Signing time: Sun 01 Jan 2023 10:35:02 +0000
ROA not before: Sun 01 Jan 2023 10:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42751
IP address blocks: 77.222.32.0/21 maxlen: 21
Validation: Failed, certificate revoked on Fri 14 Apr 2023 14:23:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:2d:fe:a5:51:8d:8b:7b:5c:47:85:84:e1:53:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdfad23e11cf0d24a477594eba09f99acc6f1fff
Validity
Not Before: Jan 1 10:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aad0a84652bd6a20b1fb5b0ab7655739f00d68f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:3c:7b:4d:7c:e2:87:9c:de:c1:ee:63:dd:33:
f3:90:57:61:a6:86:41:40:29:6d:61:32:f4:64:bb:
7d:34:4e:e2:6a:c6:ec:8f:c0:56:44:a3:07:23:6d:
99:9c:a9:6a:d3:1f:94:c6:1f:1b:9d:dc:0c:3e:cc:
e4:74:b8:bc:8d:1e:04:c6:e4:e1:cb:3f:82:d0:c6:
21:6e:76:00:1d:7d:db:59:75:9a:1b:81:2c:e1:eb:
7c:9d:3f:db:69:be:04:43:1f:e2:d7:1e:1c:9e:78:
d8:85:d8:ca:74:70:bc:38:ba:64:2c:90:95:97:b1:
7f:30:32:0a:12:49:26:79:d0:b4:f9:45:8d:ca:bf:
df:73:35:76:44:fe:b5:21:29:8b:f0:c8:a4:6f:2e:
6e:92:08:af:20:e1:59:9b:ae:33:e5:f0:58:b0:91:
b0:77:55:0d:7d:28:3f:f9:66:a8:b9:fa:76:54:78:
fd:66:4b:b8:e5:9b:ef:41:01:e4:c7:33:76:b8:15:
7b:aa:a3:5c:01:a6:5d:6e:ba:3f:11:c2:06:10:b5:
4c:d0:85:cd:7b:9e:1e:ca:cc:56:4e:60:d9:7b:44:
5e:2f:c4:e5:04:9e:86:b6:43:0d:0b:09:0a:66:3c:
d3:cb:eb:b8:5f:8b:06:46:a4:38:5b:2d:75:0b:8b:
65:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:D0:A8:46:52:BD:6A:20:B1:FB:5B:0A:B7:65:57:39:F0:0D:68:F2
X509v3 Authority Key Identifier:
keyid:BD:FA:D2:3E:11:CF:0D:24:A4:77:59:4E:BA:09:F9:9A:CC:6F:1F:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vfrSPhHPDSSkd1lOugn5msxvH_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/qtCoRlK9aiCx-1sKt2VXOfANaPI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e25239-6ab0-4919-a76a-4f4e71e32084/1/vfrSPhHPDSSkd1lOugn5msxvH_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.222.32.0/21
Signature Algorithm: sha256WithRSAEncryption
3e:ce:4b:fd:a2:9d:13:60:d6:d0:1e:42:ca:2a:73:6d:16:dd:
46:ae:21:33:10:ef:8e:89:dd:0c:1b:8f:9b:35:0b:22:f5:50:
f9:29:e6:8e:55:95:f7:fe:61:06:83:06:fe:f1:4e:2a:a9:3f:
2f:4a:de:c1:20:46:64:18:0e:8f:ec:72:6f:fd:c9:bc:d6:ed:
79:1f:b5:c0:eb:d6:fc:7b:8b:eb:0e:e7:4f:29:65:19:c1:bf:
0c:20:75:90:28:bc:52:7d:e4:ab:61:eb:6e:97:cc:4d:cd:09:
57:47:36:2b:b6:45:1a:5e:8e:39:57:94:3d:29:64:77:cc:51:
70:20:6a:f2:83:dd:03:7b:5f:1b:e6:c8:91:65:2e:70:07:4c:
ce:ab:d4:50:83:0f:29:28:99:bb:60:9a:05:37:32:45:15:a1:
90:d6:23:19:a1:3c:c2:a6:89:35:12:ea:1d:43:86:0e:d4:fa:
85:9e:25:99:26:49:70:dc:a6:ed:f9:cb:f3:9c:75:cf:5b:8e:
4d:8a:17:01:59:3c:7a:18:28:aa:1b:b3:a6:db:9f:5b:e4:90:
98:6a:03:9c:99:3f:16:ac:55:cf:a7:3e:ad:cd:dc:37:d2:dc:
c7:d4:cd:3e:4c:b6:5c:e8:6c:8a:88:cc:5a:6b:cc:c9:a0:76:
ce:33:9c:10
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVs5i3+pVGNi3tcR4WE4VOkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkZmFkMjNlMTFjZjBkMjRhNDc3NTk0ZWJhMDlmOTlhY2M2
ZjFmZmYwHhcNMjMwMTAxMTAzNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYWQwYTg0NjUyYmQ2YTIwYjFmYjViMGFiNzY1NTczOWYwMGQ2OGYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgjx7TXzih5zewe5j3TPzkFdhpoZB
QCltYTL0ZLt9NE7iasbsj8BWRKMHI22ZnKlq0x+Uxh8bndwMPszkdLi8jR4ExuTh
yz+C0MYhbnYAHX3bWXWaG4Es4et8nT/bab4EQx/i1x4cnnjYhdjKdHC8OLpkLJCV
l7F/MDIKEkkmedC0+UWNyr/fczV2RP61ISmL8Mikby5ukgivIOFZm64z5fBYsJGw
d1UNfSg/+Waoufp2VHj9Zku45ZvvQQHkxzN2uBV7qqNcAaZdbro/EcIGELVM0IXN
e54eysxWTmDZe0ReL8TlBJ6GtkMNCwkKZjzTy+u4X4sGRqQ4Wy11C4tl8QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKrQqEZSvWogsftbCrdlVznwDWjyMB8GA1UdIwQY
MBaAFL360j4Rzw0kpHdZTroJ+ZrMbx//MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmZyU1BoSFBEU1NrZDFsT3VnbjVtc3h2SF84LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9lMjUyMzktNmFiMC00OTE5LWE3NmEt
NGY0ZTcxZTMyMDg0LzEvcXRDb1JsSzlhaUN4LTFzS3QyVlhPZkFOYVBJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9lMjUyMzktNmFiMC00OTE5LWE3NmEtNGY0ZTcxZTMyMDg0
LzEvdmZyU1BoSFBEU1NrZDFsT3VnbjVtc3h2SF84LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDTd4gMA0G
CSqGSIb3DQEBCwUAA4IBAQA+zkv9op0TYNbQHkLKKnNtFt1GriEzEO+Oid0MG4+b
NQsi9VD5KeaOVZX3/mEGgwb+8U4qqT8vSt7BIEZkGA6P7HJv/cm81u15H7XA69b8
e4vrDudPKWUZwb8MIHWQKLxSfeSrYetul8xNzQlXRzYrtkUaXo45V5Q9KWR3zFFw
IGryg90De18b5siRZS5wB0zOq9RQgw8pKJm7YJoFNzJFFaGQ1iMZoTzCpok1Euod
Q4YO1PqFniWZJklw3Kbt+cvznHXPW45NihcBWTx6GCiqG7Om259b5JCYagOcmT8W
rFXPpz6tzdw30tzH1M0+TLZc6GyKiMxaa8zJoHbOM5wQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:13 2024 by rpki-client on console-ams.rpki-client.org