Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/QeKkPXBP9ywOZqjG1ltycmSFH2Y.roa
File: QeKkPXBP9ywOZqjG1ltycmSFH2Y.roa (raw, json)
Hash identifier: BUbWdDbFwnVqjh2R1f5uZ9M8YT64naSxtgBEApJMun8=
Subject key identifier: 41:E2:A4:3D:70:4F:F7:2C:0E:66:A8:C6:D6:5B:72:72:64:85:1F:66
Certificate issuer: /CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Certificate serial: 01886D41BCE4C646A2DA337679DDC110F45B
Authority key identifier: 06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/QeKkPXBP9ywOZqjG1ltycmSFH2Y.roa
Signing time: Tue 30 May 2023 15:23:24 +0000
ROA not before: Tue 30 May 2023 15:23:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 194.143.218.0/24 maxlen: 24
194.143.223.0/24 maxlen: 24
45.155.240.0/23 maxlen: 24
45.155.242.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 May 2023 10:59:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:6d:41:bc:e4:c6:46:a2:da:33:76:79:dd:c1:10:f4:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Validity
Not Before: May 30 15:23:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41e2a43d704ff72c0e66a8c6d65b727264851f66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:e5:50:c4:b6:34:ac:6b:00:45:be:d7:f8:cc:
5b:00:60:4e:f0:70:21:d6:7c:05:8f:bc:c2:1a:c6:
5b:76:d6:77:65:43:d5:cc:23:b6:2d:3d:94:44:07:
12:ac:41:74:06:cb:e1:89:87:1d:65:a8:87:b8:6c:
e8:a2:1a:0c:a3:78:34:37:f9:78:e6:cd:b3:f0:02:
06:74:94:6d:e7:dd:fd:dc:84:55:26:e6:60:50:a5:
bf:97:ad:33:2d:43:76:e7:56:b1:66:e9:3e:c7:82:
79:79:4b:ec:0c:41:cb:9e:61:b6:de:08:a9:9a:25:
5f:c5:99:09:4b:14:31:0a:39:19:09:54:cf:d1:3c:
63:7c:4d:91:d0:18:bd:09:f3:2a:b0:b9:bb:ce:08:
28:8f:4b:02:cf:d9:84:f8:06:61:fd:fa:24:30:ca:
cd:84:6d:b0:e4:62:cf:c8:0b:88:0e:32:b8:d8:40:
4f:36:06:c5:75:1a:0f:83:34:ef:61:c8:2d:5f:15:
06:23:31:b4:4f:06:d4:bd:8f:3e:bd:cd:4a:51:f9:
57:02:7a:89:64:7a:1b:c3:69:8d:a8:98:b0:31:92:
8b:6d:5d:11:a7:59:32:a6:71:4b:c3:90:ab:2b:38:
2b:ab:77:e8:2b:2e:c2:8b:97:3d:76:6b:3c:af:71:
74:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:E2:A4:3D:70:4F:F7:2C:0E:66:A8:C6:D6:5B:72:72:64:85:1F:66
X509v3 Authority Key Identifier:
keyid:06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/QeKkPXBP9ywOZqjG1ltycmSFH2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.240.0/22
194.143.218.0/24
194.143.223.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:c9:a8:94:b1:6c:4b:61:3a:1f:1a:0d:84:4e:77:cb:a8:51:
2e:c0:5e:72:73:df:d3:7f:b8:a3:63:45:e6:ea:2a:10:2b:d2:
de:82:7f:50:bd:e4:ff:37:25:c0:c9:8b:3c:3b:ff:45:23:70:
d1:3d:68:13:9b:39:13:7a:b6:2d:ef:21:a2:c9:aa:70:60:39:
0d:27:00:14:44:cb:e7:6c:26:22:22:9b:f1:aa:31:eb:e6:52:
05:53:34:b4:1e:fa:94:f0:62:01:49:81:14:1e:9a:37:26:b0:
1c:04:28:60:f6:e4:b0:51:b0:d7:40:88:bd:45:1e:f9:93:d6:
ae:79:22:91:eb:a9:23:ac:a5:09:64:9c:0d:0b:c8:53:40:a0:
6e:aa:ee:cd:9a:45:c1:a4:4c:2c:01:1e:0d:c1:3a:7f:e7:dc:
b5:72:13:73:35:81:41:30:ca:03:e6:16:16:5c:b5:69:b6:7f:
df:6d:fd:b7:77:56:27:55:32:fd:0f:d4:e5:99:be:eb:99:4a:
42:42:5e:f8:1f:ff:47:c9:56:ff:11:ff:8f:60:ba:bd:ae:f1:
cc:f4:9f:53:95:ea:53:48:fe:05:4d:09:60:3a:4e:c3:c0:10:
69:0d:2c:e1:ae:88:70:0c:08:96:f4:f0:3c:e1:19:c2:07:1f:
01:86:4b:27
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYhtQbzkxkai2jN2ed3BEPRbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2NzFkY2M3YTlhYzczNTFjNzFlMGJjMjI3OGNmNDVmZDAy
MGFlMmUwHhcNMjMwNTMwMTUyMzI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MWUyYTQzZDcwNGZmNzJjMGU2NmE4YzZkNjViNzI3MjY0ODUxZjY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9OVQxLY0rGsARb7X+MxbAGBO8HAh
1nwFj7zCGsZbdtZ3ZUPVzCO2LT2URAcSrEF0BsvhiYcdZaiHuGzoohoMo3g0N/l4
5s2z8AIGdJRt59393IRVJuZgUKW/l60zLUN251axZuk+x4J5eUvsDEHLnmG23gip
miVfxZkJSxQxCjkZCVTP0TxjfE2R0Bi9CfMqsLm7zggoj0sCz9mE+AZh/fokMMrN
hG2w5GLPyAuIDjK42EBPNgbFdRoPgzTvYcgtXxUGIzG0TwbUvY8+vc1KUflXAnqJ
ZHobw2mNqJiwMZKLbV0Rp1kypnFLw5CrKzgrq3foKy7Ci5c9dms8r3F0qQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFEHipD1wT/csDmaoxtZbcnJkhR9mMB8GA1UdIwQY
MBaAFAZx3MeprHNRxx4LwieM9F/QIK4uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQm5IY3g2bXNjMUhISGd2Q0o0ejBYOUFncmk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS8xZjk0OTMtZDQ2OC00YTdjLThjNGIt
MWRkZWM0Y2NlMjRjLzEvUWVLa1BYQlA5eXdPWnFqRzFsdHljbVNGSDJZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS8xZjk0OTMtZDQ2OC00YTdjLThjNGItMWRkZWM0Y2NlMjRj
LzEvQm5IY3g2bXNjMUhISGd2Q0o0ejBYOUFncmk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQCLZvwAwQA
wo/aAwQAwo/fMA0GCSqGSIb3DQEBCwUAA4IBAQC3yaiUsWxLYTofGg2ETnfLqFEu
wF5yc9/Tf7ijY0Xm6ioQK9Legn9QveT/NyXAyYs8O/9FI3DRPWgTmzkTerYt7yGi
yapwYDkNJwAURMvnbCYiIpvxqjHr5lIFUzS0HvqU8GIBSYEUHpo3JrAcBChg9uSw
UbDXQIi9RR75k9aueSKR66kjrKUJZJwNC8hTQKBuqu7NmkXBpEwsAR4NwTp/59y1
chNzNYFBMMoD5hYWXLVptn/fbf23d1YnVTL9D9Tlmb7rmUpCQl74H/9HyVb/Ef+P
YLq9rvHM9J9TlepTSP4FTQlgOk7DwBBpDSzhrohwDAiW9PA84RnCBx8Bhksn
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:40 2024 by rpki-client on console-ams.rpki-client.org