Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/Q6SMpDmSEI_JSD5OSJNYPcx66NU.roa
File: Q6SMpDmSEI_JSD5OSJNYPcx66NU.roa (raw, json)
Hash identifier: OpD6GDhIhOdlloZLJRL7d+FtDYgaXMgY79GnHu9M0fw=
Subject key identifier: 43:A4:8C:A4:39:92:10:8F:C9:48:3E:4E:48:93:58:3D:CC:7A:E8:D5
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 018E0903333F182EEBE27610D46E5C28524E
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/Q6SMpDmSEI_JSD5OSJNYPcx66NU.roa
Signing time: Mon 04 Mar 2024 10:29:48 +0000
ROA not before: Mon 04 Mar 2024 10:29:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212150
IP address blocks: 46.23.110.0/24 maxlen: 24
164.215.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Mar 2024 15:21:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:09:03:33:3f:18:2e:eb:e2:76:10:d4:6e:5c:28:52:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Mar 4 10:29:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=43a48ca43992108fc9483e4e4893583dcc7ae8d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f1:fd:54:68:8d:51:17:d4:7e:55:c8:76:20:
12:2b:3a:c6:30:51:3c:12:24:4a:9a:a6:d0:74:b2:
64:88:e4:04:33:09:08:8a:a6:f0:c1:2c:18:8a:17:
6c:73:78:3d:d3:37:c9:18:68:71:f1:3c:72:7a:2c:
c9:00:09:0f:14:36:0a:5a:0c:a2:5d:25:b7:fe:e7:
1b:6d:b5:06:ba:a7:84:1d:8b:8c:c5:77:ea:ab:a5:
5f:94:f4:0e:3d:81:33:ba:60:0f:a8:3e:db:62:ec:
f2:26:49:84:05:b5:66:14:6b:9e:0c:24:55:9a:0c:
90:6b:d7:7a:31:4d:9e:73:6a:a8:11:42:8c:94:2a:
d0:4d:8d:8d:f3:aa:b2:79:08:e8:7f:50:d0:17:4e:
1f:0a:0a:21:eb:05:d5:7f:4d:23:c9:93:19:1c:d7:
ce:8e:dc:52:9d:48:7a:4f:c3:4c:ae:a7:09:d8:fa:
78:6a:6b:5a:4e:06:05:2a:16:b8:e1:bd:e5:f9:4a:
ea:1f:07:85:65:65:26:c7:1c:f1:cc:c2:d8:43:70:
ce:d2:83:d6:df:4b:15:b4:94:55:ae:cf:f6:71:d7:
15:9e:19:09:28:e4:64:4d:f0:47:f1:33:55:d7:b4:
a8:31:1d:af:de:eb:b1:c2:bd:b8:7d:18:df:98:7d:
cf:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:A4:8C:A4:39:92:10:8F:C9:48:3E:4E:48:93:58:3D:CC:7A:E8:D5
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/Q6SMpDmSEI_JSD5OSJNYPcx66NU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.23.110.0/24
164.215.97.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:35:99:bf:6c:17:e4:ad:28:6c:29:00:ba:62:3c:ec:49:0b:
57:1c:a7:8e:31:7c:d3:61:3d:47:2c:4f:ad:47:a5:52:0d:de:
4b:9d:f3:d5:d3:d3:e1:ee:fd:db:37:94:ad:fe:2f:df:0e:6b:
3e:d6:12:c2:bf:13:72:ec:34:3c:f7:7b:3c:21:fa:40:d6:ec:
71:25:82:5e:cc:a1:60:00:a2:55:9a:62:33:e8:84:a7:9d:df:
e2:d6:2d:11:17:bd:92:11:26:90:2b:d3:b4:1a:ed:3a:25:a6:
e0:3e:7b:4d:63:d8:85:c6:4d:a9:83:2c:17:f6:f5:de:49:01:
fb:35:48:63:8e:c7:09:f8:7d:fe:d0:4c:74:ac:70:1c:ed:d9:
97:78:01:96:2c:f1:16:e3:71:c4:19:52:bf:9a:7e:f0:61:ca:
87:9f:9d:52:1d:66:8a:0b:88:6e:77:3d:72:4a:d8:22:88:0b:
6a:b3:73:46:31:31:3b:6e:75:f2:6b:23:98:f1:52:ac:4b:46:
bb:2c:29:d9:f7:c2:10:bf:6a:4c:f8:7e:54:93:a9:47:39:ed:
70:b6:9f:81:03:3f:fa:6f:70:cc:5f:44:cc:8f:be:b7:e8:d2:
62:41:11:bb:44:7c:79:18:b7:db:d3:4c:5f:bc:73:b5:9e:1c:
2e:d7:5d:4a
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY4JAzM/GC7r4nYQ1G5cKFJOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkMDZhNDJiYjI0NDZlNTFmMTkyZWEzNzViZGY3ZWVjNWE1
MWM3N2YwHhcNMjQwMzA0MTAyOTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0M2E0OGNhNDM5OTIxMDhmYzk0ODNlNGU0ODkzNTgzZGNjN2FlOGQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsvH9VGiNURfUflXIdiASKzrGMFE8
EiRKmqbQdLJkiOQEMwkIiqbwwSwYihdsc3g90zfJGGhx8TxyeizJAAkPFDYKWgyi
XSW3/ucbbbUGuqeEHYuMxXfqq6VflPQOPYEzumAPqD7bYuzyJkmEBbVmFGueDCRV
mgyQa9d6MU2ec2qoEUKMlCrQTY2N86qyeQjof1DQF04fCgoh6wXVf00jyZMZHNfO
jtxSnUh6T8NMrqcJ2Pp4amtaTgYFKha44b3l+UrqHweFZWUmxxzxzMLYQ3DO0oPW
30sVtJRVrs/2cdcVnhkJKORkTfBH8TNV17SoMR2v3uuxwr24fRjfmH3PBQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFEOkjKQ5khCPyUg+TkiTWD3MeujVMB8GA1UdIwQY
MBaAFH0GpCuyRG5R8ZLqN1vffuxaUcd/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlFha0s3SkVibEh4a3VvM1c5OS03RnBSeDM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYy83ODAwMmEtNGZjMC00ZGJmLTg1ODUt
MmNmODA2YjJkMGYyLzEvUTZTTXBEbVNFSV9KU0Q1T1NKTllQY3g2Nk5VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYy83ODAwMmEtNGZjMC00ZGJmLTg1ODUtMmNmODA2YjJkMGYy
LzEvZlFha0s3SkVibEh4a3VvM1c5OS03RnBSeDM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALhduAwQA
pNdhMA0GCSqGSIb3DQEBCwUAA4IBAQC1NZm/bBfkrShsKQC6YjzsSQtXHKeOMXzT
YT1HLE+tR6VSDd5LnfPV09Ph7v3bN5St/i/fDms+1hLCvxNy7DQ893s8IfpA1uxx
JYJezKFgAKJVmmIz6ISnnd/i1i0RF72SESaQK9O0Gu06JabgPntNY9iFxk2pgywX
9vXeSQH7NUhjjscJ+H3+0Ex0rHAc7dmXeAGWLPEW43HEGVK/mn7wYcqHn51SHWaK
C4hudz1yStgiiAtqs3NGMTE7bnXyayOY8VKsS0a7LCnZ98IQv2pM+H5Uk6lHOe1w
tp+BAz/6b3DMX0TMj7636NJiQRG7RHx5GLfb00xfvHO1nhwu111K
-----END CERTIFICATE-----
Generated at Thu Mar 7 19:38:40 2024 by rpki-client on console-ams.rpki-client.org