Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/vsZ7XP9Ex1Y__2cKk2AOvyqeHi4.roa
File: vsZ7XP9Ex1Y__2cKk2AOvyqeHi4.roa (raw, json)
Hash identifier: d465HhZrMMP1tdtqhHk4MFD0X3IwtMGX0FZnttG2wxA=
Subject key identifier: BE:C6:7B:5C:FF:44:C7:56:3F:FF:67:0A:93:60:0E:BF:2A:9E:1E:2E
Certificate issuer: /CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0
Certificate serial: 019095F538B471EA9A3333C05297EEC0BCEC
Authority key identifier: 67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/vsZ7XP9Ex1Y__2cKk2AOvyqeHi4.roa
Signing time: Tue 09 Jul 2024 05:26:34 +0000
ROA not before: Tue 09 Jul 2024 05:26:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215355
IP address blocks: 2a14:67c0:100::/40 maxlen: 40
2a14:67c0:100::/48 maxlen: 48
2a14:67c0:101::/48 maxlen: 48
2a14:67c0:102::/48 maxlen: 48
2a14:67c0:103::/48 maxlen: 48
2a14:67c0:200::/40 maxlen: 40
Validation: Failed, certificate revoked on Tue 09 Jul 2024 09:18:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:95:f5:38:b4:71:ea:9a:33:33:c0:52:97:ee:c0:bc:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67f31bde46516347f4edfcbe30edac9a09e4e0e0
Validity
Not Before: Jul 9 05:26:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bec67b5cff44c7563fff670a93600ebf2a9e1e2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:6f:fb:5e:ed:7e:32:31:6b:44:ed:a5:cf:d2:
c8:2b:20:29:58:cf:85:dc:94:19:c9:da:c0:dd:8f:
01:61:33:38:8f:44:a8:3b:48:30:18:49:b9:6e:7a:
ac:78:22:d3:ae:c8:00:c2:d1:62:65:b4:c3:6e:40:
e8:37:96:89:a6:c2:e4:80:f8:0b:b9:22:0a:1d:57:
f9:4b:8a:83:08:54:9c:a7:00:e5:33:59:a8:cb:48:
de:3c:e9:9c:2f:fe:a4:2b:eb:2f:0f:94:1e:8f:01:
17:c1:69:bc:ac:31:60:2e:1d:e8:00:11:0b:e1:dd:
88:26:4f:d6:2c:9f:aa:92:f1:9f:68:96:35:8c:e0:
56:fa:ec:5d:6a:da:4a:c0:e6:8c:31:73:51:a8:3a:
05:f8:2e:cd:67:90:74:bd:e5:8d:c3:69:20:60:52:
52:88:6d:d7:88:64:27:1a:28:d8:b3:c5:b0:86:a2:
ff:4f:ce:92:5e:8f:08:c1:80:b9:d3:12:91:e7:19:
9e:c9:6e:b1:2e:fa:73:b7:16:7e:49:00:c0:03:a8:
cf:7f:0f:59:05:cc:07:ff:19:7f:eb:50:e0:fd:2c:
53:3f:77:0d:97:c7:e0:a3:0a:a4:4d:b9:cc:54:e6:
d6:4a:97:59:30:19:f1:6b:d3:89:9a:32:c0:65:39:
47:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:C6:7B:5C:FF:44:C7:56:3F:FF:67:0A:93:60:0E:BF:2A:9E:1E:2E
X509v3 Authority Key Identifier:
keyid:67:F3:1B:DE:46:51:63:47:F4:ED:FC:BE:30:ED:AC:9A:09:E4:E0:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z_Mb3kZRY0f07fy-MO2smgnk4OA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/vsZ7XP9Ex1Y__2cKk2AOvyqeHi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/732b6c-48e4-4350-8a56-f6cc4ef0f7df/1/Z_Mb3kZRY0f07fy-MO2smgnk4OA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:67c0:100::-2a14:67c0:2ff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
44:2d:2e:8f:1a:29:e7:1f:8c:2e:03:4b:cf:6e:d4:81:a5:a4:
83:6e:52:a0:0c:82:63:93:1d:96:4f:ba:ff:b6:01:40:66:27:
1b:74:ba:60:33:83:d5:5d:63:26:a3:5f:7c:56:f4:1f:b3:27:
99:30:58:44:c0:e6:0c:37:53:13:e2:4b:6f:34:e5:0b:46:a2:
6f:58:e8:b0:1c:86:9d:db:ce:a4:39:04:10:ad:95:d5:66:2b:
75:8a:66:53:23:cb:db:4a:cd:1f:3c:90:cb:03:62:92:95:e4:
80:e2:e1:7c:f3:f6:f2:57:1c:3e:8d:f9:f8:8e:80:8d:4f:01:
8b:19:83:0d:d0:9f:d6:92:50:8e:c2:83:1a:25:fe:82:d3:d3:
82:e6:a2:c9:9c:3b:c7:70:ca:3a:26:7f:fa:01:0e:72:2c:41:
10:c2:85:22:f1:92:f3:f4:a4:cc:0c:b3:6a:74:f9:5d:be:b6:
c3:5b:77:79:ac:bc:6f:18:4d:a8:56:d3:8c:44:69:6d:6b:82:
e6:56:a8:a0:02:89:11:98:1e:d7:2c:f9:cd:bd:5a:cb:86:10:
2b:f2:bd:4d:49:df:85:70:64:d3:6b:e7:0f:0a:31:3c:6a:23:
a9:79:e0:73:cd:7c:fc:c4:0e:38:ef:a5:e3:41:0a:06:94:ad:
3a:c9:1c:df
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAZCV9Ti0ceqaMzPAUpfuwLzsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY3ZjMxYmRlNDY1MTYzNDdmNGVkZmNiZTMwZWRhYzlhMDll
NGUwZTAwHhcNMjQwNzA5MDUyNjM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZWM2N2I1Y2ZmNDRjNzU2M2ZmZjY3MGE5MzYwMGViZjJhOWUxZTJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0W/7Xu1+MjFrRO2lz9LIKyApWM+F
3JQZydrA3Y8BYTM4j0SoO0gwGEm5bnqseCLTrsgAwtFiZbTDbkDoN5aJpsLkgPgL
uSIKHVf5S4qDCFScpwDlM1moy0jePOmcL/6kK+svD5QejwEXwWm8rDFgLh3oABEL
4d2IJk/WLJ+qkvGfaJY1jOBW+uxdatpKwOaMMXNRqDoF+C7NZ5B0veWNw2kgYFJS
iG3XiGQnGijYs8WwhqL/T86SXo8IwYC50xKR5xmeyW6xLvpztxZ+SQDAA6jPfw9Z
BcwH/xl/61Dg/SxTP3cNl8fgowqkTbnMVObWSpdZMBnxa9OJmjLAZTlHUwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFL7Ge1z/RMdWP/9nCpNgDr8qnh4uMB8GA1UdIwQY
MBaAFGfzG95GUWNH9O38vjDtrJoJ5ODgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYt
ZjZjYzRlZjBmN2RmLzEvdnNaN1hQOUV4MVlfXzJjS2syQU92eXFlSGk0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC83MzJiNmMtNDhlNC00MzUwLThhNTYtZjZjYzRlZjBmN2Rm
LzEvWl9NYjNrWlJZMGYwN2Z5LU1PMnNtZ25rNE9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASMBADBgAqFGfA
AQMGACoUZ8ACMA0GCSqGSIb3DQEBCwUAA4IBAQBELS6PGinnH4wuA0vPbtSBpaSD
blKgDIJjkx2WT7r/tgFAZicbdLpgM4PVXWMmo198VvQfsyeZMFhEwOYMN1MT4ktv
NOULRqJvWOiwHIad286kOQQQrZXVZit1imZTI8vbSs0fPJDLA2KSleSA4uF88/by
Vxw+jfn4joCNTwGLGYMN0J/WklCOwoMaJf6C09OC5qLJnDvHcMo6Jn/6AQ5yLEEQ
woUi8ZLz9KTMDLNqdPldvrbDW3d5rLxvGE2oVtOMRGlta4LmVqigAokRmB7XLPnN
vVrLhhAr8r1NSd+FcGTTa+cPCjE8aiOpeeBzzXz8xA4476XjQQoGlK06yRzf
-----END CERTIFICATE-----
Generated at Tue Jul 9 11:51:32 2024 by rpki-client on console-fra.rpki-client.org