Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/02wML_if5kE4hf8BXMADlnJhZyQ.roa
File: 02wML_if5kE4hf8BXMADlnJhZyQ.roa (raw, json)
Hash identifier: 7vmFs4YcDBm2prIDs4Uj4B9DE2rv84vEVK9J/ezG1ho=
Subject key identifier: D3:6C:0C:2F:F8:9F:E6:41:38:85:FF:01:5C:C0:03:96:72:61:67:24
Certificate issuer: /CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Certificate serial: 018D6512EF9FBDA7E4F3A58869C3ABF8176E
Authority key identifier: D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/02wML_if5kE4hf8BXMADlnJhZyQ.roa
Signing time: Thu 01 Feb 2024 14:29:16 +0000
ROA not before: Thu 01 Feb 2024 14:29:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210644
IP address blocks: 46.226.160.0/21 maxlen: 32
92.246.136.0/22 maxlen: 32
Validation: Failed, certificate revoked on Thu 21 Mar 2024 15:11:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:65:12:ef:9f:bd:a7:e4:f3:a5:88:69:c3:ab:f8:17:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Validity
Not Before: Feb 1 14:29:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d36c0c2ff89fe6413885ff015cc0039672616724
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:7b:c1:04:fb:b3:0f:14:f4:0a:0c:71:11:b4:
ce:2e:e2:79:82:c3:2c:2b:57:9d:15:f3:45:94:a1:
77:ff:31:a4:ed:98:b5:02:df:67:f4:11:1f:fc:eb:
14:f0:da:86:61:83:5d:29:3e:33:81:88:1c:e8:7f:
5d:d1:42:08:5d:b8:4e:8a:35:97:c2:50:7b:0a:d3:
32:3a:4f:9b:2d:ca:9e:5f:b5:23:f7:78:b6:30:bf:
5f:dd:29:13:7a:ab:7b:24:35:a1:35:eb:3d:80:62:
99:05:2b:e2:8e:cf:4a:29:97:93:4e:4d:25:6e:cb:
69:da:58:65:f5:5f:bc:1c:14:72:e3:0d:c2:3f:9b:
77:50:a0:e1:84:4d:97:96:69:e1:4a:11:e5:74:a4:
d2:f0:b9:f6:88:f0:47:de:c1:d5:ad:cd:9e:fd:92:
47:06:c5:db:31:03:cc:51:68:59:f0:47:90:08:aa:
4c:3f:e8:96:e9:eb:75:6b:25:dd:77:68:59:18:6a:
41:ca:d0:7b:08:1f:c5:97:b5:d5:6f:4b:0f:8c:56:
bf:7f:d0:d1:1a:fe:e4:01:4f:b4:b2:0c:83:b4:77:
b2:e4:4e:8f:61:1f:55:0a:52:0c:cb:9f:b5:af:b3:
36:5c:03:a8:8b:c6:c6:8a:3d:17:2d:54:9a:4c:af:
f9:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:6C:0C:2F:F8:9F:E6:41:38:85:FF:01:5C:C0:03:96:72:61:67:24
X509v3 Authority Key Identifier:
keyid:D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/02wML_if5kE4hf8BXMADlnJhZyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/0-lwM6NqqbzAwvFn5iDXyhSTy-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.226.160.0/21
92.246.136.0/22
Signature Algorithm: sha256WithRSAEncryption
58:db:fe:1f:5e:a8:c1:72:f9:0d:06:af:9c:59:5c:98:09:e7:
41:e9:99:b0:9e:1f:fa:7b:e0:26:46:43:ea:d2:f1:11:1c:19:
6d:f6:e2:66:61:37:e5:57:39:78:1d:60:31:a7:1a:89:d2:e3:
bd:c6:b2:da:a8:35:d3:37:78:95:52:a6:41:cb:ec:a1:f9:9f:
75:2f:11:98:2a:5b:d6:78:62:76:91:f6:d5:ca:a2:e1:73:49:
22:b7:84:fe:5b:d2:c7:93:93:7c:a7:f2:02:80:53:e3:d1:01:
f7:f1:61:f2:7f:c5:e8:d5:29:a4:9d:ab:cb:ea:03:f8:52:6f:
d7:7b:d3:8b:52:ed:c7:0d:0a:2c:c0:87:b9:67:c2:5f:9e:c3:
90:fd:46:84:e1:5e:3b:a3:64:4d:1d:10:d0:c5:4e:61:ab:12:
16:d9:1d:7e:e3:cb:1f:62:8d:a2:96:43:86:ee:dd:dc:b7:ce:
8b:11:82:e6:65:1e:a8:12:bb:83:d4:06:cf:dc:ff:85:63:4b:
94:37:2f:cd:b9:3d:52:f0:af:3e:41:a5:ab:b0:1b:b8:8d:0e:
f7:78:27:c0:f4:5a:5e:a9:3f:f4:47:2f:6a:d9:5e:c3:41:a4:
fd:5c:c0:8b:de:3b:0a:fb:04:67:af:47:b0:3e:fe:86:77:de:
5d:e0:00:5d
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY1lEu+fvafk86WIacOr+BduMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzZTk3MDMzYTM2YWE5YmNjMGMyZjE2N2U2MjBkN2NhMTQ5
M2NiZWEwHhcNMjQwMjAxMTQyOTE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMzZjMGMyZmY4OWZlNjQxMzg4NWZmMDE1Y2MwMDM5NjcyNjE2NzI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnXvBBPuzDxT0CgxxEbTOLuJ5gsMs
K1edFfNFlKF3/zGk7Zi1At9n9BEf/OsU8NqGYYNdKT4zgYgc6H9d0UIIXbhOijWX
wlB7CtMyOk+bLcqeX7Uj93i2ML9f3SkTeqt7JDWhNes9gGKZBSvijs9KKZeTTk0l
bstp2lhl9V+8HBRy4w3CP5t3UKDhhE2XlmnhShHldKTS8Ln2iPBH3sHVrc2e/ZJH
BsXbMQPMUWhZ8EeQCKpMP+iW6et1ayXdd2hZGGpBytB7CB/Fl7XVb0sPjFa/f9DR
Gv7kAU+0sgyDtHey5E6PYR9VClIMy5+1r7M2XAOoi8bGij0XLVSaTK/5aQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFNNsDC/4n+ZBOIX/AVzAA5ZyYWckMB8GA1UdIwQY
MBaAFNPpcDOjaqm8wMLxZ+Yg18oUk8vqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMC1sd002TnFxYnpBd3ZGbjVpRFh5aFNUeS1vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS81YTMyMGItZTk0Zi00MWM5LTgyZjMt
ZGJmOWQ0MWYxNzk4LzEvMDJ3TUxfaWY1a0U0aGY4QlhNQURsbkpoWnlRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82YS81YTMyMGItZTk0Zi00MWM5LTgyZjMtZGJmOWQ0MWYxNzk4
LzEvMC1sd002TnFxYnpBd3ZGbjVpRFh5aFNUeS1vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQDLuKgAwQC
XPaIMA0GCSqGSIb3DQEBCwUAA4IBAQBY2/4fXqjBcvkNBq+cWVyYCedB6Zmwnh/6
e+AmRkPq0vERHBlt9uJmYTflVzl4HWAxpxqJ0uO9xrLaqDXTN3iVUqZBy+yh+Z91
LxGYKlvWeGJ2kfbVyqLhc0kit4T+W9LHk5N8p/ICgFPj0QH38WHyf8Xo1SmknavL
6gP4Um/Xe9OLUu3HDQoswIe5Z8JfnsOQ/UaE4V47o2RNHRDQxU5hqxIW2R1+48sf
Yo2ilkOG7t3ct86LEYLmZR6oEruD1AbP3P+FY0uUNy/NuT1S8K8+QaWrsBu4jQ73
eCfA9FpeqT/0Ry9q2V7DQaT9XMCL3jsK+wRnr0ewPv6Gd95d4ABd
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:44 2024 by rpki-client on console-fra.rpki-client.org