Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/c69493-5264-49a4-b4da-63ae74bb203b/1/Q1BCm1VL0RAVQkGS4i1zlTgyJhs.roa
File: Q1BCm1VL0RAVQkGS4i1zlTgyJhs.roa (raw, json)
Hash identifier: 2uF3WFduGxlb9KSsTjAs6JcG29FvOhEU2IYsyv416jU=
Subject key identifier: 43:50:42:9B:55:4B:D1:10:15:42:41:92:E2:2D:73:95:38:32:26:1B
Certificate issuer: /CN=6b4cb3cd35efbc84f2a89a2f5d2c162c3d7ce15b
Certificate serial: 01856CE62B8409AABE044E746C782678A82C
Authority key identifier: 6B:4C:B3:CD:35:EF:BC:84:F2:A8:9A:2F:5D:2C:16:2C:3D:7C:E1:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a0yzzTXvvITyqJovXSwWLD184Vs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/c69493-5264-49a4-b4da-63ae74bb203b/1/Q1BCm1VL0RAVQkGS4i1zlTgyJhs.roa
Signing time: Sun 01 Jan 2023 10:35:01 +0000
ROA not before: Sun 01 Jan 2023 10:35:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44968
IP address blocks: 195.5.165.0/24 maxlen: 24
2001:67c:149c::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:2b:84:09:aa:be:04:4e:74:6c:78:26:78:a8:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b4cb3cd35efbc84f2a89a2f5d2c162c3d7ce15b
Validity
Not Before: Jan 1 10:35:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4350429b554bd11015424192e22d73953832261b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c5:75:7d:b3:ab:fb:cf:e0:39:69:b6:3e:1a:
52:9d:b5:af:d1:3f:93:96:5a:f7:78:e6:c1:a4:57:
70:65:3f:8c:b5:5b:6d:3d:21:dc:fb:4f:b8:3c:66:
9f:83:04:ac:3d:c1:03:26:1d:c9:ba:9e:55:5d:e4:
dd:34:0d:7d:46:87:02:f3:cf:ed:aa:0b:20:71:8b:
aa:f9:20:5b:af:ab:a1:dd:86:9e:22:8a:f7:c0:75:
03:a8:b7:e1:af:79:bc:e5:66:bc:c7:c6:db:73:73:
66:85:7b:f0:d6:e2:30:07:f7:ef:68:5f:1b:d1:4b:
9f:8b:a4:99:86:43:7f:74:63:91:c8:81:d3:c4:14:
29:93:ff:ec:5c:de:d0:78:fd:6d:a0:68:4e:e4:26:
5f:97:8a:a6:c6:0d:de:ec:9f:58:d3:59:a0:f6:c1:
3b:14:6b:55:1b:17:1a:95:21:ca:99:43:46:c0:92:
b7:22:3e:39:76:54:9b:83:02:d9:60:f7:16:a1:3b:
00:b8:53:85:c5:2f:0e:a4:2f:7f:76:69:cb:75:3b:
40:69:23:25:43:d4:b7:26:81:ff:e0:b2:b9:ac:e8:
ba:98:74:98:ed:6a:f8:5e:2f:75:38:d1:28:e8:96:
fc:f3:ab:54:a5:fb:b9:0a:e4:f8:df:ae:a1:a8:87:
52:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:50:42:9B:55:4B:D1:10:15:42:41:92:E2:2D:73:95:38:32:26:1B
X509v3 Authority Key Identifier:
keyid:6B:4C:B3:CD:35:EF:BC:84:F2:A8:9A:2F:5D:2C:16:2C:3D:7C:E1:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0yzzTXvvITyqJovXSwWLD184Vs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c69493-5264-49a4-b4da-63ae74bb203b/1/Q1BCm1VL0RAVQkGS4i1zlTgyJhs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c69493-5264-49a4-b4da-63ae74bb203b/1/a0yzzTXvvITyqJovXSwWLD184Vs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.5.165.0/24
IPv6:
2001:67c:149c::/48
Signature Algorithm: sha256WithRSAEncryption
2b:1f:28:f6:48:cd:93:79:6f:9c:09:55:1c:14:a2:00:43:b1:
cc:12:fb:bc:15:5f:c7:93:ca:18:2a:bf:20:65:bc:0b:da:04:
8b:fe:3e:e4:b5:39:21:1a:96:74:3f:a1:11:47:ba:fb:2f:f9:
10:43:07:60:3a:f5:3d:2e:30:07:03:a1:93:bc:84:62:4b:26:
0f:14:a9:13:0e:29:b7:34:74:32:7c:ba:f4:d1:73:21:21:85:
dc:61:06:cf:71:c6:87:03:eb:da:b4:dd:10:a4:58:39:19:b9:
d2:0a:c0:14:3c:70:f0:f2:22:6e:c3:fd:80:ad:d3:8f:e8:e6:
e6:fe:9d:ad:af:7b:25:6a:9b:da:65:28:df:ff:93:83:be:25:
bc:46:18:1e:99:fb:4f:4e:b8:8c:ef:9a:fd:65:51:36:1c:48:
eb:94:60:03:5c:31:b5:35:df:47:78:04:ec:a6:79:35:ea:43:
9d:de:3b:d6:cf:6e:78:d6:8e:6a:e1:e3:08:99:04:02:d8:14:
8c:ff:8f:ce:29:ea:4f:6d:16:87:34:e0:51:f4:cc:5e:f4:0e:
55:75:59:64:a1:d4:92:2f:65:d9:6a:e6:be:52:0e:8e:e4:6f:
9e:a4:51:8b:7a:90:04:bc:5c:98:ab:8b:ea:6c:4f:c7:ee:98:
08:5b:45:68
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYVs5iuECaq+BE50bHgmeKgsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiNGNiM2NkMzVlZmJjODRmMmE4OWEyZjVkMmMxNjJjM2Q3
Y2UxNWIwHhcNMjMwMTAxMTAzNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MzUwNDI5YjU1NGJkMTEwMTU0MjQxOTJlMjJkNzM5NTM4MzIyNjFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnMV1fbOr+8/gOWm2PhpSnbWv0T+T
llr3eObBpFdwZT+MtVttPSHc+0+4PGafgwSsPcEDJh3Jup5VXeTdNA19RocC88/t
qgsgcYuq+SBbr6uh3YaeIor3wHUDqLfhr3m85Wa8x8bbc3NmhXvw1uIwB/fvaF8b
0Uufi6SZhkN/dGORyIHTxBQpk//sXN7QeP1toGhO5CZfl4qmxg3e7J9Y01mg9sE7
FGtVGxcalSHKmUNGwJK3Ij45dlSbgwLZYPcWoTsAuFOFxS8OpC9/dmnLdTtAaSMl
Q9S3JoH/4LK5rOi6mHSY7Wr4Xi91ONEo6Jb886tUpfu5CuT4366hqIdSgwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFENQQptVS9EQFUJBkuItc5U4MiYbMB8GA1UdIwQY
MBaAFGtMs80177yE8qiaL10sFiw9fOFbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYTB5enpUWHZ2SVR5cUpvdlhTd1dMRDE4NFZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy9jNjk0OTMtNTI2NC00OWE0LWI0ZGEt
NjNhZTc0YmIyMDNiLzEvUTFCQ20xVkwwUkFWUWtHUzRpMXpsVGd5SmhzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYy9jNjk0OTMtNTI2NC00OWE0LWI0ZGEtNjNhZTc0YmIyMDNi
LzEvYTB5enpUWHZ2SVR5cUpvdlhTd1dMRDE4NFZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAwwWlMA8E
AgACMAkDBwAgAQZ8FJwwDQYJKoZIhvcNAQELBQADggEBACsfKPZIzZN5b5wJVRwU
ogBDscwS+7wVX8eTyhgqvyBlvAvaBIv+PuS1OSEalnQ/oRFHuvsv+RBDB2A69T0u
MAcDoZO8hGJLJg8UqRMOKbc0dDJ8uvTRcyEhhdxhBs9xxocD69q03RCkWDkZudIK
wBQ8cPDyIm7D/YCt04/o5ub+na2veyVqm9plKN//k4O+JbxGGB6Z+09OuIzvmv1l
UTYcSOuUYANcMbU130d4BOymeTXqQ53eO9bPbnjWjmrh4wiZBALYFIz/j84p6k9t
Foc04FH0zF70DlV1WWSh1JIvZdlq5r5SDo7kb56kUYt6kAS8XJiri+psT8fumAhb
RWg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:48 2024 by rpki-client on console-fra.rpki-client.org