Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/822b22-8ca3-469d-9083-345b2ab0db18/1/QEBknjMfWT01xqBxnL43QRcDarw.roa
File: QEBknjMfWT01xqBxnL43QRcDarw.roa (raw, json)
Hash identifier: v1g6OHdBnTZzOrQVW3Cw00aLTcSK5M+LMsxeLGU+kUY=
Subject key identifier: 40:40:64:9E:33:1F:59:3D:35:C6:A0:71:9C:BE:37:41:17:03:6A:BC
Certificate issuer: /CN=ce8a8d40e437adf4acd7cdb38e0402477a2e51a6
Certificate serial: 01872387369A8048679711538751AB0B1BE7
Authority key identifier: CE:8A:8D:40:E4:37:AD:F4:AC:D7:CD:B3:8E:04:02:47:7A:2E:51:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zoqNQOQ3rfSs182zjgQCR3ouUaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/822b22-8ca3-469d-9083-345b2ab0db18/1/QEBknjMfWT01xqBxnL43QRcDarw.roa
Signing time: Mon 27 Mar 2023 14:44:36 +0000
ROA not before: Mon 27 Mar 2023 14:44:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208396
IP address blocks: 194.26.118.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:23:87:36:9a:80:48:67:97:11:53:87:51:ab:0b:1b:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce8a8d40e437adf4acd7cdb38e0402477a2e51a6
Validity
Not Before: Mar 27 14:44:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4040649e331f593d35c6a0719cbe374117036abc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:8b:a0:21:50:67:98:a2:04:25:e3:7f:ea:83:
3b:64:e8:85:b4:75:42:02:f9:dc:ce:82:da:bf:26:
6f:31:ab:75:14:86:73:d8:82:42:a7:2f:c5:9f:c8:
c3:1b:e2:58:6a:52:55:30:4b:97:0c:26:a5:95:c7:
66:7c:8c:10:69:1b:5e:e4:ad:71:b6:40:32:8f:4a:
3b:4d:6c:15:91:e0:37:07:fb:6f:57:b2:6d:9d:ad:
83:6c:53:0b:33:5a:e6:6c:6e:6f:50:e8:7e:51:89:
a7:28:e9:92:81:55:87:60:80:73:f5:85:1c:c4:f7:
bb:1c:b2:8e:a9:9b:f2:01:1b:90:09:0c:f2:cc:2b:
66:dd:12:0c:b6:0c:17:fe:f4:a2:2f:f8:ce:09:c3:
dc:f4:d5:5a:9e:88:d9:ab:cc:4f:25:81:e1:ff:fe:
81:20:2f:2f:68:44:38:04:a6:e8:05:e0:07:26:18:
3c:fd:14:0a:21:c4:76:55:90:e1:20:89:80:a2:7d:
7f:7b:a4:34:5a:22:2c:0f:73:c7:5b:ca:bf:0b:53:
32:a8:3f:03:e9:5f:4d:c6:21:84:11:96:99:22:71:
6e:08:ad:b2:99:a0:07:c7:1c:04:05:82:15:8a:5e:
00:56:f1:68:5f:32:ec:58:23:3a:b8:7b:24:df:ad:
56:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:40:64:9E:33:1F:59:3D:35:C6:A0:71:9C:BE:37:41:17:03:6A:BC
X509v3 Authority Key Identifier:
keyid:CE:8A:8D:40:E4:37:AD:F4:AC:D7:CD:B3:8E:04:02:47:7A:2E:51:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zoqNQOQ3rfSs182zjgQCR3ouUaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/822b22-8ca3-469d-9083-345b2ab0db18/1/QEBknjMfWT01xqBxnL43QRcDarw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/822b22-8ca3-469d-9083-345b2ab0db18/1/zoqNQOQ3rfSs182zjgQCR3ouUaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.118.0/24
Signature Algorithm: sha256WithRSAEncryption
38:4b:f6:f2:89:a9:fe:3b:c2:d6:0b:6b:a4:25:f7:68:af:7f:
31:b2:01:e7:aa:08:a9:a9:6d:2c:72:46:87:53:71:02:96:9d:
c0:f1:42:f7:90:eb:05:0a:77:1a:a5:2b:da:82:62:24:d3:65:
f1:cb:bc:5e:e6:dd:4f:48:81:0e:4c:95:a7:4f:db:88:37:96:
0c:55:52:3c:16:ea:e1:77:28:73:7a:ec:31:ac:9f:bf:17:e2:
aa:82:33:16:dd:ee:87:33:ac:7f:1a:8c:c7:83:9b:e3:2f:04:
1e:26:ea:42:25:9e:ce:90:f7:cc:77:a1:05:9f:51:22:8b:45:
28:04:c6:29:f3:cf:08:5e:89:32:72:16:9f:9a:2b:c5:f7:ff:
74:2b:07:83:0a:ae:b1:d4:e5:3a:27:31:f2:df:35:17:4c:33:
85:8e:23:03:73:f3:dd:a9:95:36:29:0d:50:5d:a8:30:fe:77:
ee:0d:25:0d:44:29:6b:39:60:0a:9d:36:b7:99:6e:83:4d:38:
22:08:1b:77:3e:a9:04:59:8e:8f:de:52:ce:e3:4a:7e:e7:53:
5a:1d:a2:5b:c1:f0:31:d4:01:da:c0:c4:47:4f:ab:2d:fc:80:
5c:3b:11:b2:22:a8:80:db:ff:e6:2e:42:84:d9:91:3a:1a:50:
f3:0c:bd:3c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYcjhzaagEhnlxFTh1GrCxvnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNlOGE4ZDQwZTQzN2FkZjRhY2Q3Y2RiMzhlMDQwMjQ3N2Ey
ZTUxYTYwHhcNMjMwMzI3MTQ0NDM2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MDQwNjQ5ZTMzMWY1OTNkMzVjNmEwNzE5Y2JlMzc0MTE3MDM2YWJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnougIVBnmKIEJeN/6oM7ZOiFtHVC
AvnczoLavyZvMat1FIZz2IJCpy/Fn8jDG+JYalJVMEuXDCallcdmfIwQaRte5K1x
tkAyj0o7TWwVkeA3B/tvV7Jtna2DbFMLM1rmbG5vUOh+UYmnKOmSgVWHYIBz9YUc
xPe7HLKOqZvyARuQCQzyzCtm3RIMtgwX/vSiL/jOCcPc9NVanojZq8xPJYHh//6B
IC8vaEQ4BKboBeAHJhg8/RQKIcR2VZDhIImAon1/e6Q0WiIsD3PHW8q/C1MyqD8D
6V9NxiGEEZaZInFuCK2ymaAHxxwEBYIVil4AVvFoXzLsWCM6uHsk361WTQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEBAZJ4zH1k9NcagcZy+N0EXA2q8MB8GA1UdIwQY
MBaAFM6KjUDkN630rNfNs44EAkd6LlGmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvem9xTlFPUTNyZlNzMTgyempnUUNSM291VWFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS84MjJiMjItOGNhMy00NjlkLTkwODMt
MzQ1YjJhYjBkYjE4LzEvUUVCa25qTWZXVDAxeHFCeG5MNDNRUmNEYXJ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS84MjJiMjItOGNhMy00NjlkLTkwODMtMzQ1YjJhYjBkYjE4
LzEvem9xTlFPUTNyZlNzMTgyempnUUNSM291VWFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwhp2MA0G
CSqGSIb3DQEBCwUAA4IBAQA4S/byian+O8LWC2ukJfdor38xsgHnqgipqW0sckaH
U3EClp3A8UL3kOsFCncapSvagmIk02Xxy7xe5t1PSIEOTJWnT9uIN5YMVVI8Furh
dyhzeuwxrJ+/F+KqgjMW3e6HM6x/GozHg5vjLwQeJupCJZ7OkPfMd6EFn1Eii0Uo
BMYp888IXokychafmivF9/90KweDCq6x1OU6JzHy3zUXTDOFjiMDc/PdqZU2KQ1Q
Xagw/nfuDSUNRClrOWAKnTa3mW6DTTgiCBt3PqkEWY6P3lLO40p+51NaHaJbwfAx
1AHawMRHT6st/IBcOxGyIqiA2//mLkKE2ZE6GlDzDL08
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:01 2023 by rpki-client on console-fra.rpki-client.org