Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/6Z5QU5aquBsy6b-C9oAsK0dhNpA.roa
File: 6Z5QU5aquBsy6b-C9oAsK0dhNpA.roa (raw, json)
Hash identifier: x1nUhLXVEL4Uguzl+OT/zoLn0J5f6OkaqBEz/rvVlww=
Subject key identifier: E9:9E:50:53:96:AA:B8:1B:32:E9:BF:82:F6:80:2C:2B:47:61:36:90
Certificate issuer: /CN=73f986c7705bd808c1b02ebd754fbfa91807e9b6
Certificate serial: 018636FB0EC5401F40806EC4830465E20455
Authority key identifier: 73:F9:86:C7:70:5B:D8:08:C1:B0:2E:BD:75:4F:BF:A9:18:07:E9:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_mGx3Bb2AjBsC69dU-_qRgH6bY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/6Z5QU5aquBsy6b-C9oAsK0dhNpA.roa
Signing time: Thu 09 Feb 2023 16:21:08 +0000
ROA not before: Thu 09 Feb 2023 16:21:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57758
IP address blocks: 185.167.204.0/22 maxlen: 24
185.167.207.0/24 maxlen: 24
2a0b:b600:3804::/48 maxlen: 48
2a0b:b600:3c04::/48 maxlen: 48
2a0b:b600:3802::/48 maxlen: 48
2a0b:b602::/32 maxlen: 48
2a0b:b600:110::/44 maxlen: 44
2a0b:b600:3803::/48 maxlen: 48
2a0b:b600:400::/38 maxlen: 48
2a0b:b600:3400::/38 maxlen: 48
2a0b:b600:2000::/38 maxlen: 48
2a0b:b600::/36 maxlen: 36
2a0b:b600:3800::/38 maxlen: 38
2a0b:b600:1400::/38 maxlen: 38
2a0b:b600:1800::/38 maxlen: 38
2a0b:b600:800::/38 maxlen: 38
2a0b:b600:2400::/38 maxlen: 38
2a0b:b600:3400::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:36:fb:0e:c5:40:1f:40:80:6e:c4:83:04:65:e2:04:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73f986c7705bd808c1b02ebd754fbfa91807e9b6
Validity
Not Before: Feb 9 16:21:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e99e505396aab81b32e9bf82f6802c2b47613690
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:75:ff:4a:20:49:e7:8a:96:68:19:79:e9:49:
38:e1:96:2b:69:41:3c:95:b6:30:ac:78:fc:3d:6d:
cb:6a:1e:fc:c7:3c:92:a9:60:8a:0d:08:74:9f:71:
ee:e7:bb:dc:0d:99:bd:dc:28:78:d5:67:52:59:21:
7c:28:fa:ed:88:3a:b9:26:28:96:03:7a:26:71:8b:
b2:3d:11:be:e2:01:3d:c7:3b:cb:25:21:b0:2c:f6:
cc:c3:6e:ce:e6:68:f2:0b:c8:85:85:bb:80:a0:3d:
d4:fe:4b:c2:76:66:09:2f:9c:01:fa:f4:c1:9b:28:
9a:6b:2c:13:fb:57:ac:f2:c8:0f:b8:d5:60:d9:7b:
f6:9d:9f:a4:29:29:e3:0a:91:29:8a:5a:fa:e0:a4:
54:d7:fb:a4:e5:2d:98:4a:05:7f:e7:b0:bb:38:6a:
d1:90:38:ab:1b:4c:1d:1b:f0:67:23:06:88:c3:f4:
e9:52:57:f6:45:d4:9f:1b:b6:3a:cf:5b:aa:0f:6e:
00:6c:38:cb:da:ee:04:3d:f5:1d:94:8d:d8:92:5d:
b4:6d:53:d2:a3:49:b2:d7:9b:0a:45:33:9c:d9:d4:
5b:e5:d8:a3:69:27:98:33:56:d2:28:4c:3e:da:ec:
8a:a0:e8:17:6a:ed:fd:59:b8:51:29:e0:53:0a:1b:
e7:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:9E:50:53:96:AA:B8:1B:32:E9:BF:82:F6:80:2C:2B:47:61:36:90
X509v3 Authority Key Identifier:
keyid:73:F9:86:C7:70:5B:D8:08:C1:B0:2E:BD:75:4F:BF:A9:18:07:E9:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_mGx3Bb2AjBsC69dU-_qRgH6bY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/6Z5QU5aquBsy6b-C9oAsK0dhNpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/db1aca-2659-42a3-a631-9a1295f02f2e/1/c_mGx3Bb2AjBsC69dU-_qRgH6bY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.204.0/22
IPv6:
2a0b:b600::/36
2a0b:b600:1400::-2a0b:b600:1bff:ffff:ffff:ffff:ffff:ffff
2a0b:b600:2000::/37
2a0b:b600:3400::-2a0b:b600:3bff:ffff:ffff:ffff:ffff:ffff
2a0b:b600:3c04::/48
2a0b:b602::/32
Signature Algorithm: sha256WithRSAEncryption
ac:33:41:b3:9d:16:90:3c:44:cb:4f:3a:4f:3e:b4:95:72:52:
8f:54:63:39:ef:21:50:ed:7d:20:d4:1b:15:a3:84:51:45:a2:
12:5e:8b:09:96:8d:0d:97:6c:30:4f:ca:8e:93:54:42:54:f9:
5f:c3:24:69:29:07:d9:8f:b0:19:c5:37:d1:da:90:39:cc:96:
2a:b4:9a:ee:66:24:e2:85:25:93:83:bc:a4:dd:e9:e3:82:f5:
18:ae:ff:d0:77:3d:03:c8:34:d0:42:2a:4a:3a:f5:18:ad:92:
9c:d7:fe:95:66:4d:bb:53:ab:e7:9e:4f:53:31:41:2a:d7:23:
82:53:10:a0:b4:3e:a6:46:93:ef:63:a9:d9:6c:36:5f:44:57:
5f:3c:1a:78:df:9a:6e:44:d6:4c:02:f1:aa:30:9f:3f:31:25:
8d:76:67:05:07:07:28:63:ee:0a:04:cc:0b:60:fe:de:af:4f:
f1:f7:fb:b2:99:81:45:f8:b8:9a:df:ff:06:0a:ef:be:fd:8a:
8f:91:61:bc:31:69:97:bf:c3:8d:14:e9:f6:1e:b4:dc:a9:c8:
eb:3e:cf:94:f1:6c:f0:5e:41:f4:d5:f9:c3:64:b6:12:68:b1:
ac:45:9e:13:d5:01:a2:35:9e:88:b7:7b:dc:f6:a4:60:0e:48:
0c:93:dc:d8
-----BEGIN CERTIFICATE-----
MIIFSTCCBDGgAwIBAgISAYY2+w7FQB9AgG7EgwRl4gRVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczZjk4NmM3NzA1YmQ4MDhjMWIwMmViZDc1NGZiZmE5MTgw
N2U5YjYwHhcNMjMwMjA5MTYyMTA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOTllNTA1Mzk2YWFiODFiMzJlOWJmODJmNjgwMmMyYjQ3NjEzNjkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkXX/SiBJ54qWaBl56Uk44ZYraUE8
lbYwrHj8PW3Lah78xzySqWCKDQh0n3Hu57vcDZm93Ch41WdSWSF8KPrtiDq5JiiW
A3omcYuyPRG+4gE9xzvLJSGwLPbMw27O5mjyC8iFhbuAoD3U/kvCdmYJL5wB+vTB
myiaaywT+1es8sgPuNVg2Xv2nZ+kKSnjCpEpilr64KRU1/uk5S2YSgV/57C7OGrR
kDirG0wdG/BnIwaIw/TpUlf2RdSfG7Y6z1uqD24AbDjL2u4EPfUdlI3Ykl20bVPS
o0my15sKRTOc2dRb5dijaSeYM1bSKEw+2uyKoOgXau39WbhRKeBTChvn0QIDAQAB
o4ICVTCCAlEwHQYDVR0OBBYEFOmeUFOWqrgbMum/gvaALCtHYTaQMB8GA1UdIwQY
MBaAFHP5hsdwW9gIwbAuvXVPv6kYB+m2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY19tR3gzQmIyQWpCc0M2OWRVLV9xUmdINmJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOC9kYjFhY2EtMjY1OS00MmEzLWE2MzEt
OWExMjk1ZjAyZjJlLzEvNlo1UVU1YXF1QnN5NmItQzlvQXNLMGRoTnBBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOC9kYjFhY2EtMjY1OS00MmEzLWE2MzEtOWExMjk1ZjAyZjJl
LzEvY19tR3gzQmIyQWpCc0M2OWRVLV9xUmdINmJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGsGCCsGAQUFBwEHAQH/BFwwWjAMBAIAATAGAwQCuafMMEoE
AgACMEQDBgQqC7YAADAQAwYCKgu2ABQDBgIqC7YAGAMGAyoLtgAgMBADBgIqC7YA
NAMGAioLtgA4AwcAKgu2ADwEAwUAKgu2AjANBgkqhkiG9w0BAQsFAAOCAQEArDNB
s50WkDxEy086Tz60lXJSj1RjOe8hUO19INQbFaOEUUWiEl6LCZaNDZdsME/KjpNU
QlT5X8MkaSkH2Y+wGcU30dqQOcyWKrSa7mYk4oUlk4O8pN3p44L1GK7/0Hc9A8g0
0EIqSjr1GK2SnNf+lWZNu1Or555PUzFBKtcjglMQoLQ+pkaT72Op2Ww2X0RXXzwa
eN+abkTWTALxqjCfPzEljXZnBQcHKGPuCgTMC2D+3q9P8ff7spmBRfi4mt//Bgrv
vv2Kj5FhvDFpl7/DjRTp9h603KnI6z7PlPFs8F5B9NX5w2S2EmixrEWeE9UBojWe
iLd73PakYA5IDJPc2A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:14 2024 by rpki-client on console-fra.rpki-client.org