Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/O01WPox_2tliSQMz5eQveOpjGv8.roa
File: O01WPox_2tliSQMz5eQveOpjGv8.roa (raw, json)
Hash identifier: FWGPH7zmKbkV0hFrTU0XbzKgKfvH0+hdiQjDTfdYINk=
Subject key identifier: 3B:4D:56:3E:8C:7F:DA:D9:62:49:03:33:E5:E4:2F:78:EA:63:1A:FF
Certificate issuer: /CN=62becc4ba8a4d52498a0d2983a68b61383aa7fd7
Certificate serial: 018E86C02CA3537DAA56F2EC65356A1C2ADF
Authority key identifier: 62:BE:CC:4B:A8:A4:D5:24:98:A0:D2:98:3A:68:B6:13:83:AA:7F:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/O01WPox_2tliSQMz5eQveOpjGv8.roa
Signing time: Thu 28 Mar 2024 20:28:45 +0000
ROA not before: Thu 28 Mar 2024 20:28:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 22773
IP address blocks: 2a10:1c80::/30 maxlen: 30
2a10:1c84::/30 maxlen: 30
2a10:2500::/30 maxlen: 30
2a10:2504::/30 maxlen: 30
2a11:ed00::/30 maxlen: 30
2a11:ed04::/30 maxlen: 30
2a11:ef00::/30 maxlen: 30
2a11:ef04::/30 maxlen: 30
2a11:f100::/30 maxlen: 30
2a11:f104::/30 maxlen: 30
2a11:f300::/30 maxlen: 30
2a11:f304::/30 maxlen: 30
2a11:f500::/30 maxlen: 30
2a11:f504::/30 maxlen: 30
2a11:f900::/30 maxlen: 30
2a11:f904::/30 maxlen: 30
2a11:fb00::/30 maxlen: 30
2a11:fb04::/30 maxlen: 30
2a12:7240::/30 maxlen: 30
2a12:7244::/30 maxlen: 30
2a12:72c0::/30 maxlen: 30
2a12:72c4::/30 maxlen: 30
2a12:7340::/30 maxlen: 30
2a12:7344::/30 maxlen: 30
2a12:73c0::/30 maxlen: 30
2a12:73c4::/30 maxlen: 30
2a12:7440::/30 maxlen: 30
2a12:7444::/30 maxlen: 30
2a12:74c0::/30 maxlen: 30
2a12:74c4::/30 maxlen: 30
2a12:7540::/30 maxlen: 30
2a12:7544::/30 maxlen: 30
2a12:9ec0::/30 maxlen: 30
2a12:9ec4::/30 maxlen: 30
2a12:9f40::/30 maxlen: 30
2a12:9f44::/30 maxlen: 30
2a12:a140::/30 maxlen: 30
2a12:a144::/30 maxlen: 30
2a12:a1c0::/30 maxlen: 30
2a12:a1c4::/30 maxlen: 30
2a12:a240::/30 maxlen: 30
2a12:a244::/30 maxlen: 30
2a12:a2c0::/30 maxlen: 30
2a12:a2c4::/30 maxlen: 30
2a12:a540::/30 maxlen: 30
2a12:a544::/30 maxlen: 30
2a12:a640::/30 maxlen: 30
2a12:a644::/30 maxlen: 30
2a12:a6c0::/30 maxlen: 30
2a12:a6c4::/30 maxlen: 30
2a12:a740::/30 maxlen: 30
2a12:a744::/30 maxlen: 30
Validation: Failed, certificate revoked on Sat 13 Apr 2024 16:29:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:86:c0:2c:a3:53:7d:aa:56:f2:ec:65:35:6a:1c:2a:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62becc4ba8a4d52498a0d2983a68b61383aa7fd7
Validity
Not Before: Mar 28 20:28:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3b4d563e8c7fdad962490333e5e42f78ea631aff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:70:68:34:87:72:c2:c4:2d:56:30:78:62:4a:
0a:d2:f1:3d:98:90:fa:ac:cc:c8:98:0d:f2:73:b1:
ca:2c:83:a9:75:bb:fd:1d:01:72:35:3a:76:27:51:
fa:0a:4a:fc:18:3f:43:fe:0f:52:21:0a:80:6e:8e:
2f:f6:a0:f3:f2:72:36:ad:a1:54:45:16:f2:ce:79:
70:d4:d8:3f:1d:9e:6e:ea:37:2e:67:53:40:bf:2f:
ef:7c:c1:bc:95:69:62:15:68:03:cd:31:fa:12:6e:
07:fc:65:16:11:bf:5c:67:97:56:2d:a7:45:b7:59:
fa:83:d7:ab:1a:f8:ee:93:d0:21:95:c6:af:2d:4f:
c3:ff:b8:da:0c:e5:ce:f6:eb:86:bd:9a:f5:e1:a8:
e5:3c:c5:b7:75:95:0f:ab:6f:34:76:c4:59:65:70:
2f:cf:59:c0:da:fe:8d:48:1f:a3:c4:75:81:f8:5a:
71:ee:ce:3f:90:64:12:3b:5c:11:e0:ed:0a:6e:76:
15:a7:bb:ab:9c:b9:e5:78:b1:71:bb:81:61:7d:37:
90:33:b5:b7:99:dc:b6:c8:5a:4c:79:3f:46:4a:a3:
9b:0c:55:44:b2:0f:96:c1:51:5a:af:8a:1a:69:53:
2d:38:78:02:12:01:ce:13:65:80:86:1f:09:68:2d:
db:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:4D:56:3E:8C:7F:DA:D9:62:49:03:33:E5:E4:2F:78:EA:63:1A:FF
X509v3 Authority Key Identifier:
keyid:62:BE:CC:4B:A8:A4:D5:24:98:A0:D2:98:3A:68:B6:13:83:AA:7F:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/O01WPox_2tliSQMz5eQveOpjGv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9c493b-417b-4af6-9f43-2ff14c218719/1/Yr7MS6ik1SSYoNKYOmi2E4Oqf9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:1c80::/29
2a10:2500::/29
2a11:ed00::/29
2a11:ef00::/29
2a11:f100::/29
2a11:f300::/29
2a11:f500::/29
2a11:f900::/29
2a11:fb00::/29
2a12:7240::/29
2a12:72c0::/29
2a12:7340::/29
2a12:73c0::/29
2a12:7440::/29
2a12:74c0::/29
2a12:7540::/29
2a12:9ec0::/29
2a12:9f40::/29
2a12:a140::/29
2a12:a1c0::/29
2a12:a240::/29
2a12:a2c0::/29
2a12:a540::/29
2a12:a640::/29
2a12:a6c0::/29
2a12:a740::/29
Signature Algorithm: sha256WithRSAEncryption
02:7c:e4:f9:f1:51:23:7f:50:96:1a:9a:71:97:cd:47:e8:0c:
50:0b:05:d8:05:ce:28:f5:07:4a:91:3a:f9:70:1d:91:d7:4d:
33:ff:e8:25:f4:c7:83:8e:5d:77:09:dd:0b:03:51:12:95:a0:
a0:0e:c5:2c:b0:45:32:ef:c2:ee:4b:fd:30:f3:84:52:51:d6:
70:5b:3c:55:d1:d7:44:f3:a6:52:18:ce:f6:e2:83:ba:72:c6:
42:4a:65:c9:42:cf:93:37:c8:95:f7:23:79:18:ef:36:7a:be:
57:9a:e9:0c:60:ce:8a:75:9b:85:56:08:16:f1:5e:8e:ff:3f:
36:1a:85:d4:ab:08:d3:a0:c1:18:25:e5:cf:0f:d8:05:79:da:
32:30:ad:a6:19:49:aa:1d:80:6c:aa:1f:1e:75:e0:a8:e6:bf:
1d:3d:ad:11:fb:99:a2:ec:97:44:6d:3d:5c:67:ea:fb:12:78:
e3:2a:96:73:64:d5:f9:b8:0a:8a:77:09:32:25:3c:a0:b6:ce:
ba:b5:ca:ee:aa:1b:97:21:67:41:4b:4d:5d:81:05:86:58:da:
b0:df:53:48:4e:a6:2d:04:15:31:b8:89:75:96:86:bf:c4:0d:
47:fc:29:20:b0:7e:c7:02:a5:f2:57:fb:fd:45:6f:f0:8f:06:
5d:7b:f3:8c
-----BEGIN CERTIFICATE-----
MIIFsjCCBJqgAwIBAgISAY6GwCyjU32qVvLsZTVqHCrfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyYmVjYzRiYThhNGQ1MjQ5OGEwZDI5ODNhNjhiNjEzODNh
YTdmZDcwHhcNMjQwMzI4MjAyODQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYjRkNTYzZThjN2ZkYWQ5NjI0OTAzMzNlNWU0MmY3OGVhNjMxYWZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtXBoNIdywsQtVjB4YkoK0vE9mJD6
rMzImA3yc7HKLIOpdbv9HQFyNTp2J1H6Ckr8GD9D/g9SIQqAbo4v9qDz8nI2raFU
RRbyznlw1Ng/HZ5u6jcuZ1NAvy/vfMG8lWliFWgDzTH6Em4H/GUWEb9cZ5dWLadF
t1n6g9erGvjuk9AhlcavLU/D/7jaDOXO9uuGvZr14ajlPMW3dZUPq280dsRZZXAv
z1nA2v6NSB+jxHWB+Fpx7s4/kGQSO1wR4O0KbnYVp7urnLnleLFxu4FhfTeQM7W3
mdy2yFpMeT9GSqObDFVEsg+WwVFar4oaaVMtOHgCEgHOE2WAhh8JaC3bUwIDAQAB
o4ICvjCCArowHQYDVR0OBBYEFDtNVj6Mf9rZYkkDM+XkL3jqYxr/MB8GA1UdIwQY
MBaAFGK+zEuopNUkmKDSmDpothODqn/XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXI3TVM2aWsxU1NZb05LWU9taTJFNE9xZjljLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85YzQ5M2ItNDE3Yi00YWY2LTlmNDMt
MmZmMTRjMjE4NzE5LzEvTzAxV1BveF8ydGxpU1FNejVlUXZlT3BqR3Y4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni85YzQ5M2ItNDE3Yi00YWY2LTlmNDMtMmZmMTRjMjE4NzE5
LzEvWXI3TVM2aWsxU1NZb05LWU9taTJFNE9xZjljLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHTBggrBgEFBQcBBwEB/wSBwzCBwDCBvQQCAAIwgbYDBQMq
EByAAwUDKhAlAAMFAyoR7QADBQMqEe8AAwUDKhHxAAMFAyoR8wADBQMqEfUAAwUD
KhH5AAMFAyoR+wADBQMqEnJAAwUDKhJywAMFAyoSc0ADBQMqEnPAAwUDKhJ0QAMF
AyoSdMADBQMqEnVAAwUDKhKewAMFAyoSn0ADBQMqEqFAAwUDKhKhwAMFAyoSokAD
BQMqEqLAAwUDKhKlQAMFAyoSpkADBQMqEqbAAwUDKhKnQDANBgkqhkiG9w0BAQsF
AAOCAQEAAnzk+fFRI39QlhqacZfNR+gMUAsF2AXOKPUHSpE6+XAdkddNM//oJfTH
g45ddwndCwNREpWgoA7FLLBFMu/C7kv9MPOEUlHWcFs8VdHXRPOmUhjO9uKDunLG
QkplyULPkzfIlfcjeRjvNnq+V5rpDGDOinWbhVYIFvFejv8/NhqF1KsI06DBGCXl
zw/YBXnaMjCtphlJqh2AbKofHnXgqOa/HT2tEfuZouyXRG09XGfq+xJ44yqWc2TV
+bgKincJMiU8oLbOurXK7qoblyFnQUtNXYEFhljasN9TSE6mLQQVMbiJdZaGv8QN
R/wpILB+xwKl8lf7/UVv8I8GXXvzjA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:35 2024 by rpki-client on console-ams.rpki-client.org