Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/6e6175-635a-4cc6-94ed-0dcf45a5af3d/1/QC8v_mufrVg7Snj9D_Ht89os9cQ.roa
File: QC8v_mufrVg7Snj9D_Ht89os9cQ.roa (raw, json)
Hash identifier: +Lua3sD+SN3fs3UvcZpuK39ELxBbVHLS3M7FvEq52KI=
Subject key identifier: 40:2F:2F:FE:6B:9F:AD:58:3B:4A:78:FD:0F:F1:ED:F3:DA:2C:F5:C4
Certificate issuer: /CN=f71b99831d44b0bf7c00c50977f60b1844349cf2
Certificate serial: 01856DD429A56D42E5E672BAAD1565F689DC
Authority key identifier: F7:1B:99:83:1D:44:B0:BF:7C:00:C5:09:77:F6:0B:18:44:34:9C:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9xuZgx1EsL98AMUJd_YLGEQ0nPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/6e6175-635a-4cc6-94ed-0dcf45a5af3d/1/QC8v_mufrVg7Snj9D_Ht89os9cQ.roa
Signing time: Sun 01 Jan 2023 14:54:58 +0000
ROA not before: Sun 01 Jan 2023 14:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42426
IP address blocks: 194.1.178.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d4:29:a5:6d:42:e5:e6:72:ba:ad:15:65:f6:89:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f71b99831d44b0bf7c00c50977f60b1844349cf2
Validity
Not Before: Jan 1 14:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=402f2ffe6b9fad583b4a78fd0ff1edf3da2cf5c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:5b:24:2a:5c:b8:df:52:b4:fb:e6:c5:a2:cd:
b0:2a:3c:f2:7d:5d:69:d8:01:84:af:2a:8c:da:9d:
b5:e9:c9:46:04:1c:b6:c3:6b:ab:aa:a2:88:00:6f:
2a:ce:fb:62:ec:62:22:10:e9:09:44:85:20:75:21:
b7:b4:b1:95:38:ea:fd:6f:2b:e8:e0:19:38:49:72:
41:7a:d9:b2:55:ad:c8:da:63:9f:8a:d1:b3:63:74:
e2:0b:07:43:aa:0a:6c:e9:fa:c7:1e:0f:65:c3:6f:
42:e1:67:ab:66:ae:93:73:56:1d:c5:d7:3e:ea:01:
5c:7c:5b:32:8a:4a:af:96:e1:9a:af:e3:bc:69:92:
72:40:ee:5b:8d:1a:e5:38:58:b2:9b:e5:0d:f4:d3:
13:62:7a:ed:a7:75:4e:1c:42:a9:33:f1:f8:3d:82:
20:af:bd:a1:06:04:07:2d:78:55:09:7d:65:7c:61:
74:9b:6d:e0:49:a2:e9:e6:71:1f:9b:5a:18:f0:11:
dc:ba:b2:94:fd:3e:59:8b:78:5f:97:45:49:28:80:
8f:24:d8:c3:2d:5d:a5:a7:83:db:e4:e5:28:ad:cb:
a8:78:86:b8:e1:2f:a2:a5:bf:5d:1d:85:55:0a:a4:
c1:94:d3:2c:7e:d7:4a:0e:af:a8:b3:21:5d:e8:52:
40:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:2F:2F:FE:6B:9F:AD:58:3B:4A:78:FD:0F:F1:ED:F3:DA:2C:F5:C4
X509v3 Authority Key Identifier:
keyid:F7:1B:99:83:1D:44:B0:BF:7C:00:C5:09:77:F6:0B:18:44:34:9C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9xuZgx1EsL98AMUJd_YLGEQ0nPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/6e6175-635a-4cc6-94ed-0dcf45a5af3d/1/QC8v_mufrVg7Snj9D_Ht89os9cQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/6e6175-635a-4cc6-94ed-0dcf45a5af3d/1/9xuZgx1EsL98AMUJd_YLGEQ0nPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.1.178.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:d9:1e:19:fc:31:b7:59:b2:c2:0b:97:ab:ff:22:5f:a8:8c:
1b:71:0d:f1:61:64:b0:fd:4d:18:a9:03:e1:c9:c6:30:31:5c:
be:11:3e:95:98:6d:bc:c9:64:45:d2:a9:0f:56:8e:95:8a:0c:
26:cb:23:08:44:9d:83:e8:66:cf:b1:46:37:4a:08:f9:72:71:
9a:63:e1:b1:0c:8d:21:9d:48:1e:95:23:ba:87:22:da:9f:45:
77:99:36:f8:97:0a:41:64:9d:13:26:a2:05:fb:fe:1a:e7:7b:
1b:c3:64:3a:64:e6:0a:30:88:51:0f:b0:13:67:fc:5c:cf:30:
d3:57:af:b9:44:5c:f0:c6:0e:59:76:17:59:f5:0b:b8:c6:3e:
8a:1b:ae:fe:a8:43:98:76:5d:bf:d1:9c:4e:fc:a4:e5:15:5e:
3e:b0:56:da:53:03:c0:9c:10:07:a9:ac:d5:ad:1c:1a:23:91:
08:5f:f5:42:f2:00:7f:a4:cf:76:21:fa:ba:c0:b5:67:87:99:
c8:2f:07:cd:bd:95:d7:be:2d:e8:1b:91:ef:2b:08:71:dd:d1:
f9:7c:ae:dc:f2:99:51:60:29:e9:ce:f2:fd:f1:dc:f0:51:12:
c0:d1:3b:8c:11:3b:73:dc:91:8a:84:cc:c3:5d:1f:36:29:55:
17:3d:a3:d7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVt1CmlbULl5nK6rRVl9oncMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY3MWI5OTgzMWQ0NGIwYmY3YzAwYzUwOTc3ZjYwYjE4NDQz
NDljZjIwHhcNMjMwMTAxMTQ1NDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MDJmMmZmZTZiOWZhZDU4M2I0YTc4ZmQwZmYxZWRmM2RhMmNmNWM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgVskKly431K0++bFos2wKjzyfV1p
2AGEryqM2p216clGBBy2w2urqqKIAG8qzvti7GIiEOkJRIUgdSG3tLGVOOr9byvo
4Bk4SXJBetmyVa3I2mOfitGzY3TiCwdDqgps6frHHg9lw29C4WerZq6Tc1Ydxdc+
6gFcfFsyikqvluGar+O8aZJyQO5bjRrlOFiym+UN9NMTYnrtp3VOHEKpM/H4PYIg
r72hBgQHLXhVCX1lfGF0m23gSaLp5nEfm1oY8BHcurKU/T5Zi3hfl0VJKICPJNjD
LV2lp4Pb5OUorcuoeIa44S+ipb9dHYVVCqTBlNMsftdKDq+osyFd6FJAzQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEAvL/5rn61YO0p4/Q/x7fPaLPXEMB8GA1UdIwQY
MBaAFPcbmYMdRLC/fADFCXf2CxhENJzyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOXh1Wmd4MUVzTDk4QU1VSmRfWUxHRVEwblBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC82ZTYxNzUtNjM1YS00Y2M2LTk0ZWQt
MGRjZjQ1YTVhZjNkLzEvUUM4dl9tdWZyVmc3U25qOURfSHQ4OW9zOWNRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOC82ZTYxNzUtNjM1YS00Y2M2LTk0ZWQtMGRjZjQ1YTVhZjNk
LzEvOXh1Wmd4MUVzTDk4QU1VSmRfWUxHRVEwblBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwgGyMA0G
CSqGSIb3DQEBCwUAA4IBAQCs2R4Z/DG3WbLCC5er/yJfqIwbcQ3xYWSw/U0YqQPh
ycYwMVy+ET6VmG28yWRF0qkPVo6VigwmyyMIRJ2D6GbPsUY3Sgj5cnGaY+GxDI0h
nUgelSO6hyLan0V3mTb4lwpBZJ0TJqIF+/4a53sbw2Q6ZOYKMIhRD7ATZ/xczzDT
V6+5RFzwxg5ZdhdZ9Qu4xj6KG67+qEOYdl2/0ZxO/KTlFV4+sFbaUwPAnBAHqazV
rRwaI5EIX/VC8gB/pM92Ifq6wLVnh5nILwfNvZXXvi3oG5HvKwhx3dH5fK7c8plR
YCnpzvL98dzwURLA0TuMETtz3JGKhMzDXR82KVUXPaPX
-----END CERTIFICATE-----
Generated at Mon Jan 1 06:31:51 2024 by rpki-client on console-fra.rpki-client.org