Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/964c3c-b570-4113-b4aa-cfdf0311ad8c/1/JoqJ2Rj-4NDlHidP9EdqOwgmSjQ.roa
File: JoqJ2Rj-4NDlHidP9EdqOwgmSjQ.roa (raw, json)
Hash identifier: 9QF8WPHo6gkpnzhz4vSTptLvO6oelfvsCCkA5Zl/kDM=
Subject key identifier: 26:8A:89:D9:18:FE:E0:D0:E5:1E:27:4F:F4:47:6A:3B:08:26:4A:34
Certificate issuer: /CN=c4402c55758faee473938f8067a889ad5e271261
Certificate serial: 018B2F3BE28BDC61BC095D04979EA84FB982
Authority key identifier: C4:40:2C:55:75:8F:AE:E4:73:93:8F:80:67:A8:89:AD:5E:27:12:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xEAsVXWPruRzk4-AZ6iJrV4nEmE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/964c3c-b570-4113-b4aa-cfdf0311ad8c/1/JoqJ2Rj-4NDlHidP9EdqOwgmSjQ.roa
Signing time: Sat 14 Oct 2023 17:28:55 +0000
ROA not before: Sat 14 Oct 2023 17:28:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8676
IP address blocks: 194.24.162.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:2f:3b:e2:8b:dc:61:bc:09:5d:04:97:9e:a8:4f:b9:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4402c55758faee473938f8067a889ad5e271261
Validity
Not Before: Oct 14 17:28:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=268a89d918fee0d0e51e274ff4476a3b08264a34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e0:4f:1e:ab:5d:da:6e:d2:17:b8:6a:bc:31:
ea:68:69:9c:42:53:e5:1a:9b:03:f8:3d:dc:6a:4b:
15:d7:52:c6:fa:4e:4f:3a:f7:c4:46:85:98:f6:0f:
71:a3:05:e8:e7:64:19:23:47:c8:55:96:fc:e0:fa:
e4:99:9b:5b:69:3c:2d:ea:6d:0d:d7:1c:4f:ec:b6:
e1:59:90:06:b5:dc:c5:b1:be:4a:39:50:f8:ca:0c:
de:d9:93:7e:fa:b3:06:a3:a9:12:fd:a4:13:1c:26:
75:35:f3:0e:ef:c6:66:d0:87:e9:9c:fb:0a:11:e3:
3d:9a:61:ea:d0:88:5f:80:d6:eb:ca:dc:e2:f4:c2:
9d:0e:8f:b0:d5:cf:19:a8:93:89:04:73:7c:c7:7b:
79:37:0a:ed:bd:df:43:bb:f6:62:10:fb:7c:e9:2f:
f5:6e:4e:24:11:f7:cc:1f:2e:eb:d9:4c:54:ce:53:
4b:ef:38:4c:99:62:0a:b7:24:5c:c9:dc:87:e8:9f:
35:2e:4e:3d:db:a8:91:10:d1:de:c9:8b:df:a8:da:
80:db:25:db:85:82:3c:54:48:78:fe:88:c1:c1:41:
3f:4b:59:e4:a2:af:31:d8:60:2d:6a:49:bd:48:b3:
99:a4:e3:0d:e2:d3:1f:25:9c:d6:61:5e:49:ac:2d:
38:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:8A:89:D9:18:FE:E0:D0:E5:1E:27:4F:F4:47:6A:3B:08:26:4A:34
X509v3 Authority Key Identifier:
keyid:C4:40:2C:55:75:8F:AE:E4:73:93:8F:80:67:A8:89:AD:5E:27:12:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xEAsVXWPruRzk4-AZ6iJrV4nEmE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/964c3c-b570-4113-b4aa-cfdf0311ad8c/1/JoqJ2Rj-4NDlHidP9EdqOwgmSjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/964c3c-b570-4113-b4aa-cfdf0311ad8c/1/xEAsVXWPruRzk4-AZ6iJrV4nEmE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.24.162.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:a4:a3:0f:4b:fd:b4:82:eb:e1:bf:75:9a:97:24:86:1f:1e:
79:77:e2:43:83:c6:d0:7a:1d:70:9d:72:35:e9:da:95:34:83:
0b:00:e3:8a:ad:fb:09:17:3d:23:7b:68:5a:85:0d:22:97:a4:
fa:f6:a3:c8:d6:59:83:36:be:a6:79:db:e9:60:02:39:34:9f:
83:aa:f6:c3:d6:49:aa:da:f2:5d:f2:00:28:62:c5:75:7b:ce:
22:02:fe:bd:7a:d2:c0:21:a5:ba:4b:86:95:06:2f:27:25:b4:
7f:a6:47:22:84:32:90:98:e3:c0:f9:d4:10:22:91:e7:32:9b:
79:24:b1:36:b5:a8:20:e2:02:f0:3d:f9:e6:bd:32:8e:4a:4e:
94:75:3a:73:de:52:12:5f:db:e8:60:09:88:66:29:9e:fb:b0:
14:1d:22:c4:75:32:07:a9:23:7e:c7:68:76:5a:07:f1:ae:9d:
4e:6b:f6:27:47:90:41:cb:0c:1e:ec:c7:97:1e:56:f4:56:49:
c4:e3:ff:54:d3:fe:4d:46:e5:66:f4:4c:96:06:3e:39:3e:5d:
56:2c:38:ea:60:5f:2f:f7:60:d9:b9:1a:f7:35:03:f5:4d:21:
50:53:cd:c9:eb:2b:67:57:dc:37:94:e8:aa:d1:e9:42:64:1b:
68:0d:73:79
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYsvO+KL3GG8CV0El56oT7mCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM0NDAyYzU1NzU4ZmFlZTQ3MzkzOGY4MDY3YTg4OWFkNWUy
NzEyNjEwHhcNMjMxMDE0MTcyODU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNjhhODlkOTE4ZmVlMGQwZTUxZTI3NGZmNDQ3NmEzYjA4MjY0YTM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvuBPHqtd2m7SF7hqvDHqaGmcQlPl
GpsD+D3caksV11LG+k5POvfERoWY9g9xowXo52QZI0fIVZb84PrkmZtbaTwt6m0N
1xxP7LbhWZAGtdzFsb5KOVD4ygze2ZN++rMGo6kS/aQTHCZ1NfMO78Zm0IfpnPsK
EeM9mmHq0IhfgNbrytzi9MKdDo+w1c8ZqJOJBHN8x3t5Nwrtvd9Du/ZiEPt86S/1
bk4kEffMHy7r2UxUzlNL7zhMmWIKtyRcydyH6J81Lk4926iRENHeyYvfqNqA2yXb
hYI8VEh4/ojBwUE/S1nkoq8x2GAtakm9SLOZpOMN4tMfJZzWYV5JrC04wQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCaKidkY/uDQ5R4nT/RHajsIJko0MB8GA1UdIwQY
MBaAFMRALFV1j67kc5OPgGeoia1eJxJhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveEVBc1ZYV1BydVJ6azQtQVo2aUpyVjRuRW1FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy85NjRjM2MtYjU3MC00MTEzLWI0YWEt
Y2ZkZjAzMTFhZDhjLzEvSm9xSjJSai00TkRsSGlkUDlFZHFPd2dtU2pRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy85NjRjM2MtYjU3MC00MTEzLWI0YWEtY2ZkZjAzMTFhZDhj
LzEveEVBc1ZYV1BydVJ6azQtQVo2aUpyVjRuRW1FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwhiiMA0G
CSqGSIb3DQEBCwUAA4IBAQBcpKMPS/20guvhv3WalySGHx55d+JDg8bQeh1wnXI1
6dqVNIMLAOOKrfsJFz0je2hahQ0il6T69qPI1lmDNr6medvpYAI5NJ+DqvbD1kmq
2vJd8gAoYsV1e84iAv69etLAIaW6S4aVBi8nJbR/pkcihDKQmOPA+dQQIpHnMpt5
JLE2tagg4gLwPfnmvTKOSk6UdTpz3lISX9voYAmIZime+7AUHSLEdTIHqSN+x2h2
Wgfxrp1Oa/YnR5BBywwe7MeXHlb0VknE4/9U0/5NRuVm9EyWBj45Pl1WLDjqYF8v
92DZuRr3NQP1TSFQU83J6ytnV9w3lOiq0elCZBtoDXN5
-----END CERTIFICATE-----
Generated at Mon Jan 1 11:40:24 2024 by rpki-client on console-fra.rpki-client.org