Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/b903e9-6d09-4e20-b926-3692f96e33a9/1/RUFTvBwkl6fTU-6lK8uimysYrgQ.roa
File: RUFTvBwkl6fTU-6lK8uimysYrgQ.roa (raw, json)
Hash identifier: BgoRpDLO+F5WZGJu5gtYqIghe2OXsa5eI/2ponbssII=
Subject key identifier: 45:41:53:BC:1C:24:97:A7:D3:53:EE:A5:2B:CB:A2:9B:2B:18:AE:04
Certificate issuer: /CN=6ba26b56cee97f6020941bb17c6a7c6cea0f814a
Certificate serial: 01864E882680650D49364EC47FA8349AA034
Authority key identifier: 6B:A2:6B:56:CE:E9:7F:60:20:94:1B:B1:7C:6A:7C:6C:EA:0F:81:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a6JrVs7pf2AglBuxfGp8bOoPgUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/b903e9-6d09-4e20-b926-3692f96e33a9/1/RUFTvBwkl6fTU-6lK8uimysYrgQ.roa
Signing time: Tue 14 Feb 2023 06:06:30 +0000
ROA not before: Tue 14 Feb 2023 06:06:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210779
IP address blocks: 176.105.253.0/24 maxlen: 24
176.105.255.0/24 maxlen: 24
2a0d:c740:3c::/48 maxlen: 48
2a0d:c740:2c::/48 maxlen: 48
2a0d:c740:f::/48 maxlen: 48
2a0d:c740:a::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4e:88:26:80:65:0d:49:36:4e:c4:7f:a8:34:9a:a0:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ba26b56cee97f6020941bb17c6a7c6cea0f814a
Validity
Not Before: Feb 14 06:06:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=454153bc1c2497a7d353eea52bcba29b2b18ae04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:eb:f5:64:10:02:29:87:ba:b6:2c:01:3b:6c:
9f:87:c2:72:d6:3e:74:d9:d8:91:29:e7:f1:5f:4c:
5f:a4:d6:d3:81:09:df:c8:90:3e:6e:11:85:32:eb:
9b:1d:25:ea:64:23:88:0a:d4:6a:2a:d8:5a:75:d5:
fe:93:1d:66:90:22:fb:57:b7:60:11:02:01:39:05:
dc:3f:84:69:7a:b3:42:33:c0:cd:c5:90:d8:bf:7d:
d5:bf:be:74:48:c2:c7:fd:a6:d1:fe:e6:a1:5c:ee:
18:47:ea:62:5b:0d:8e:bb:9c:f4:6c:0e:01:54:c7:
62:d0:df:ee:ec:f6:2e:2d:f0:80:be:12:c7:bc:7b:
a9:99:38:5f:e9:cc:ff:05:08:c2:a4:eb:d8:35:5e:
03:06:da:5b:11:38:ec:16:7c:72:66:f8:c6:39:7e:
55:3e:d5:a2:69:f3:b9:ab:52:27:79:52:e5:39:93:
9a:b6:fc:7a:78:36:d9:f1:16:cc:36:b2:e3:85:b7:
6f:6d:87:91:f2:10:6d:e6:63:b8:92:e4:62:8d:ff:
6f:ff:13:1e:e4:7c:82:2c:17:eb:39:99:a1:f8:86:
c7:61:69:72:9b:73:28:72:92:a4:7b:f3:90:8b:5b:
58:24:5b:b6:9a:53:30:a9:09:36:83:15:53:80:20:
70:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:41:53:BC:1C:24:97:A7:D3:53:EE:A5:2B:CB:A2:9B:2B:18:AE:04
X509v3 Authority Key Identifier:
keyid:6B:A2:6B:56:CE:E9:7F:60:20:94:1B:B1:7C:6A:7C:6C:EA:0F:81:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6JrVs7pf2AglBuxfGp8bOoPgUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b903e9-6d09-4e20-b926-3692f96e33a9/1/RUFTvBwkl6fTU-6lK8uimysYrgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b903e9-6d09-4e20-b926-3692f96e33a9/1/a6JrVs7pf2AglBuxfGp8bOoPgUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.105.253.0/24
176.105.255.0/24
IPv6:
2a0d:c740:a::/48
2a0d:c740:f::/48
2a0d:c740:2c::/48
2a0d:c740:3c::/48
Signature Algorithm: sha256WithRSAEncryption
ed:cb:09:9a:6e:8d:89:8c:34:ba:e9:35:ce:95:f9:df:8d:42:
d3:c6:3c:35:bd:6d:4e:b5:75:18:69:c2:1e:0f:fd:e6:1e:64:
bf:2b:11:32:d6:03:0d:9e:31:5a:f1:21:d9:ed:bd:1e:57:5e:
e5:9d:15:3a:48:67:e6:dd:df:12:f0:59:a6:51:cb:aa:69:b3:
38:57:1f:80:9d:0c:0d:88:45:78:39:7e:a3:f5:cf:4c:28:ff:
27:a6:77:f3:18:59:72:da:7f:d4:88:c2:3a:42:83:ea:d1:fe:
6d:36:5e:33:e0:cf:ed:a3:e9:65:74:f5:05:69:66:d0:9a:ac:
86:69:a8:14:83:73:1e:af:aa:ac:e5:3d:d4:fc:5c:e1:14:79:
49:f2:00:13:58:a4:ed:e6:31:96:4b:1b:50:4b:3c:79:f1:15:
09:5b:be:5c:1d:d6:89:95:c9:45:68:e5:d0:eb:94:fb:c9:03:
c8:f1:d8:43:bd:6d:52:91:79:eb:3e:74:bb:41:b5:5c:33:b3:
3c:cd:31:07:0e:7c:6d:3c:ff:cb:df:75:88:85:22:d4:2f:91:
9a:79:32:c7:32:94:10:e7:f6:c4:84:99:5d:8f:de:a3:b6:0b:
8e:3e:33:25:64:5f:c4:51:eb:df:a2:2a:2f:fb:1f:d8:80:20:
bf:8a:5e:02
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgISAYZOiCaAZQ1JNk7Ef6g0mqA0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiYTI2YjU2Y2VlOTdmNjAyMDk0MWJiMTdjNmE3YzZjZWEw
ZjgxNGEwHhcNMjMwMjE0MDYwNjMwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NTQxNTNiYzFjMjQ5N2E3ZDM1M2VlYTUyYmNiYTI5YjJiMThhZTA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAquv1ZBACKYe6tiwBO2yfh8Jy1j50
2diRKefxX0xfpNbTgQnfyJA+bhGFMuubHSXqZCOICtRqKthaddX+kx1mkCL7V7dg
EQIBOQXcP4RperNCM8DNxZDYv33Vv750SMLH/abR/uahXO4YR+piWw2Ou5z0bA4B
VMdi0N/u7PYuLfCAvhLHvHupmThf6cz/BQjCpOvYNV4DBtpbETjsFnxyZvjGOX5V
PtWiafO5q1IneVLlOZOatvx6eDbZ8RbMNrLjhbdvbYeR8hBt5mO4kuRijf9v/xMe
5HyCLBfrOZmh+IbHYWlym3MocpKke/OQi1tYJFu2mlMwqQk2gxVTgCBwRQIDAQAB
o4ICOzCCAjcwHQYDVR0OBBYEFEVBU7wcJJen01PupSvLopsrGK4EMB8GA1UdIwQY
MBaAFGuia1bO6X9gIJQbsXxqfGzqD4FKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYTZKclZzN3BmMkFnbEJ1eGZHcDhiT29QZ1VvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS9iOTAzZTktNmQwOS00ZTIwLWI5MjYt
MzY5MmY5NmUzM2E5LzEvUlVGVHZCd2tsNmZUVS02bEs4dWlteXNZcmdRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS9iOTAzZTktNmQwOS00ZTIwLWI5MjYtMzY5MmY5NmUzM2E5
LzEvYTZKclZzN3BmMkFnbEJ1eGZHcDhiT29QZ1VvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFEGCCsGAQUFBwEHAQH/BEIwQDASBAIAATAMAwQAsGn9AwQA
sGn/MCoEAgACMCQDBwAqDcdAAAoDBwAqDcdAAA8DBwAqDcdAACwDBwAqDcdAADww
DQYJKoZIhvcNAQELBQADggEBAO3LCZpujYmMNLrpNc6V+d+NQtPGPDW9bU61dRhp
wh4P/eYeZL8rETLWAw2eMVrxIdntvR5XXuWdFTpIZ+bd3xLwWaZRy6ppszhXH4Cd
DA2IRXg5fqP1z0wo/yemd/MYWXLaf9SIwjpCg+rR/m02XjPgz+2j6WV09QVpZtCa
rIZpqBSDcx6vqqzlPdT8XOEUeUnyABNYpO3mMZZLG1BLPHnxFQlbvlwd1omVyUVo
5dDrlPvJA8jx2EO9bVKRees+dLtBtVwzszzNMQcOfG08/8vfdYiFItQvkZp5Mscy
lBDn9sSEmV2P3qO2C44+MyVkX8RR69+iKi/7H9iAIL+KXgI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:41 2024 by rpki-client on console-ams.rpki-client.org