Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/7kiDxGZ5f3Fsl6gjMsiAzmR2IXM.roa
File: 7kiDxGZ5f3Fsl6gjMsiAzmR2IXM.roa (raw, json)
Hash identifier: p3UqyxCPVkOdX7AfeQTBOO5dGovVxECQNR0kIfVJyk0=
Subject key identifier: EE:48:83:C4:66:79:7F:71:6C:97:A8:23:32:C8:80:CE:64:76:21:73
Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Certificate serial: 018D65E581C22AEA33A4AF6F0305F650AD5F
Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/7kiDxGZ5f3Fsl6gjMsiAzmR2IXM.roa
Signing time: Thu 01 Feb 2024 18:19:16 +0000
ROA not before: Thu 01 Feb 2024 18:19:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57604
IP address blocks: 139.28.72.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Feb 2024 07:02:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:65:e5:81:c2:2a:ea:33:a4:af:6f:03:05:f6:50:ad:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Validity
Not Before: Feb 1 18:19:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ee4883c466797f716c97a82332c880ce64762173
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:12:16:aa:3f:44:fb:94:1a:f0:e5:99:95:b6:
4c:28:13:a9:a0:a7:46:20:78:8f:20:b3:7e:d7:d7:
53:c9:1b:d2:25:61:43:b9:57:7a:74:b0:3e:5a:97:
c7:e8:fb:9a:6a:cf:f2:80:35:76:e2:d4:69:d7:a5:
06:51:98:78:ff:dc:37:07:04:10:e2:31:54:4a:02:
b5:18:e6:2b:a2:c2:21:5d:c5:d5:d8:d2:3f:f7:7b:
41:2a:3b:d9:1b:ff:91:9e:16:b6:6e:5e:a0:63:3d:
6e:92:94:a9:76:09:44:1a:3d:4b:82:02:96:48:fe:
3a:d2:37:ae:79:8c:e7:02:17:78:3a:ff:4a:9d:70:
80:34:4d:79:0a:c8:ef:0c:6d:91:cf:94:8b:76:f8:
17:d6:53:08:2d:1a:aa:7a:09:12:50:65:38:43:67:
07:af:46:ab:29:78:f6:2a:05:f4:37:28:cc:86:25:
c0:f2:61:8d:bd:4a:bc:c1:11:27:5d:0f:80:20:80:
47:6c:23:44:57:cd:df:cf:bd:f6:14:4f:38:8f:cb:
91:b1:a1:35:cb:24:56:d6:8d:fc:b0:7c:55:ef:0d:
f7:0e:76:1d:51:2b:b0:90:3d:38:e1:03:42:26:0d:
4d:4f:1c:4d:5c:65:c5:02:8e:2c:e8:13:c6:36:71:
94:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:48:83:C4:66:79:7F:71:6C:97:A8:23:32:C8:80:CE:64:76:21:73
X509v3 Authority Key Identifier:
keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/7kiDxGZ5f3Fsl6gjMsiAzmR2IXM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.72.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:65:45:7c:76:4c:e7:3c:4c:45:a2:ae:87:f3:81:84:cc:ee:
3a:86:51:ee:e7:38:63:9d:b8:56:de:f7:df:c3:00:7c:64:b1:
18:b7:c3:78:ff:6d:8b:d1:7d:91:ad:d2:e4:4c:4c:b1:fc:c0:
2e:cb:a4:13:49:d6:98:a6:71:9e:db:59:41:4a:ee:15:1d:28:
bc:93:9f:28:05:27:ba:ad:a3:42:60:88:56:5b:a7:77:17:fa:
9d:e0:56:90:ae:59:e8:46:fa:d7:f6:3b:df:37:35:60:5d:44:
5b:f1:ef:b4:26:c8:cf:fd:a0:ea:23:2d:e7:04:dd:5e:cb:5f:
25:fe:8a:49:e6:2a:f5:b3:71:83:55:eb:82:1d:d9:df:17:76:
da:70:7f:10:c7:1b:ce:b3:ac:1f:75:40:ec:b6:7b:18:23:58:
ff:66:8e:23:45:7c:c0:3b:c5:ea:bc:04:2d:16:c1:be:75:dd:
63:fd:65:f2:3b:15:e9:a5:b1:24:be:cf:9b:32:02:cb:4d:72:
72:6b:19:9a:36:28:a9:97:b3:d1:e0:8c:94:38:b6:63:76:58:
79:cf:3c:86:6c:aa:31:cd:d2:0b:f2:ce:35:16:d0:72:52:e8:
df:48:8f:4d:c9:38:3b:c5:df:32:e2:c5:a3:0e:cd:9a:56:f2:
38:02:2e:a0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY1l5YHCKuozpK9vAwX2UK1fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkMjBkZGQzOThkYWM4ZjYyY2MxMjUyNjMyNWYxODIxZmI3
MjRmNzUwHhcNMjQwMjAxMTgxOTE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZTQ4ODNjNDY2Nzk3ZjcxNmM5N2E4MjMzMmM4ODBjZTY0NzYyMTczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArxIWqj9E+5Qa8OWZlbZMKBOpoKdG
IHiPILN+19dTyRvSJWFDuVd6dLA+WpfH6Puaas/ygDV24tRp16UGUZh4/9w3BwQQ
4jFUSgK1GOYrosIhXcXV2NI/93tBKjvZG/+Rnha2bl6gYz1ukpSpdglEGj1LggKW
SP460jeueYznAhd4Ov9KnXCANE15CsjvDG2Rz5SLdvgX1lMILRqqegkSUGU4Q2cH
r0arKXj2KgX0NyjMhiXA8mGNvUq8wREnXQ+AIIBHbCNEV83fz732FE84j8uRsaE1
yyRW1o38sHxV7w33DnYdUSuwkD044QNCJg1NTxxNXGXFAo4s6BPGNnGUFwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFO5Ig8RmeX9xbJeoIzLIgM5kdiFzMB8GA1UdIwQY
MBaAFG0g3dOY2sj2LMElJjJfGCH7ck91MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmIt
MzZkZTY1NzIzMmJlLzEvN2tpRHhHWjVmM0ZzbDZnak1zaUF6bVIySVhNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmItMzZkZTY1NzIzMmJl
LzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCixxIMA0G
CSqGSIb3DQEBCwUAA4IBAQAaZUV8dkznPExFoq6H84GEzO46hlHu5zhjnbhW3vff
wwB8ZLEYt8N4/22L0X2RrdLkTEyx/MAuy6QTSdaYpnGe21lBSu4VHSi8k58oBSe6
raNCYIhWW6d3F/qd4FaQrlnoRvrX9jvfNzVgXURb8e+0JsjP/aDqIy3nBN1ey18l
/opJ5ir1s3GDVeuCHdnfF3bacH8QxxvOs6wfdUDstnsYI1j/Zo4jRXzAO8XqvAQt
FsG+dd1j/WXyOxXppbEkvs+bMgLLTXJyaxmaNiipl7PR4IyUOLZjdlh5zzyGbKox
zdIL8s41FtByUujfSI9NyTg7xd8y4sWjDs2aVvI4Ai6g
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:00 2024 by rpki-client on console-ams.rpki-client.org