Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/46ab42-c137-4bde-a32a-a44dd966ce50/1/a2YJQAQvfFxG9DfsNoT05aS5IhM.roa
File: a2YJQAQvfFxG9DfsNoT05aS5IhM.roa (raw, json)
Hash identifier: vjyTLPRZHYmluYzbDZsZliW4DFsT/NCYynrp60MsNL4=
Subject key identifier: 6B:66:09:40:04:2F:7C:5C:46:F4:37:EC:36:84:F4:E5:A4:B9:22:13
Certificate issuer: /CN=2fa08b970bc8cbd0e4453c896bdb822aa71ca26f
Certificate serial: 01929E3BE0D7B5D2546DD6401D23866BCBBE
Authority key identifier: 2F:A0:8B:97:0B:C8:CB:D0:E4:45:3C:89:6B:DB:82:2A:A7:1C:A2:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6CLlwvIy9DkRTyJa9uCKqccom8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/46ab42-c137-4bde-a32a-a44dd966ce50/1/a2YJQAQvfFxG9DfsNoT05aS5IhM.roa
Signing time: Fri 18 Oct 2024 06:06:17 +0000
ROA not before: Fri 18 Oct 2024 06:06:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57760
IP address blocks: 176.107.16.0/24 maxlen: 24
176.107.17.0/24 maxlen: 24
176.107.18.0/24 maxlen: 24
176.107.19.0/24 maxlen: 24
176.107.20.0/24 maxlen: 24
176.107.21.0/24 maxlen: 24
176.107.22.0/24 maxlen: 24
176.107.23.0/24 maxlen: 24
176.107.24.0/24 maxlen: 24
176.107.26.0/24 maxlen: 24
176.107.27.0/24 maxlen: 24
176.107.30.0/24 maxlen: 24
176.107.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:48:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:9e:3b:e0:d7:b5:d2:54:6d:d6:40:1d:23:86:6b:cb:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa08b970bc8cbd0e4453c896bdb822aa71ca26f
Validity
Not Before: Oct 18 06:06:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6b660940042f7c5c46f437ec3684f4e5a4b92213
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:20:f6:05:d2:ac:a4:47:b5:c7:88:29:11:09:
40:cd:4f:f7:df:9b:b9:c1:73:99:c2:d8:59:54:da:
d5:77:40:7d:a8:25:51:92:5b:97:34:3e:e7:40:9d:
bb:d7:00:10:67:e8:12:00:2b:b4:e7:61:88:04:15:
56:9b:bd:30:58:6f:fe:51:1b:fa:6f:8e:cd:17:c3:
91:85:56:e3:01:0a:3a:aa:2a:6a:88:25:83:5a:71:
b0:1b:62:a3:80:b5:04:17:3a:d9:c5:d7:68:2d:97:
1e:13:99:b7:72:c7:c7:67:c4:26:b1:b2:c7:c0:2c:
f0:d1:3e:27:d9:43:8a:68:25:d2:20:8b:7f:17:3c:
5c:50:5e:45:57:00:e8:e9:83:ad:f4:b5:39:6f:19:
9b:2f:89:15:ae:3c:0f:c6:95:30:59:b9:4c:3e:34:
5b:ca:8c:e5:d0:e8:f9:53:07:fa:c1:d9:6c:ad:b6:
c6:69:24:ad:41:dc:f2:f1:1b:11:79:42:bf:d1:d4:
ae:29:a5:c4:95:6c:40:10:78:1d:b2:a9:f9:f2:72:
79:be:00:82:2b:21:06:95:2d:9d:d4:24:6a:67:f0:
18:13:c9:7b:ac:51:c2:e2:21:38:f2:c2:46:5a:99:
6b:ef:bb:c8:d2:2e:86:72:87:3d:b5:50:f8:e2:af:
64:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:66:09:40:04:2F:7C:5C:46:F4:37:EC:36:84:F4:E5:A4:B9:22:13
X509v3 Authority Key Identifier:
keyid:2F:A0:8B:97:0B:C8:CB:D0:E4:45:3C:89:6B:DB:82:2A:A7:1C:A2:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6CLlwvIy9DkRTyJa9uCKqccom8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/46ab42-c137-4bde-a32a-a44dd966ce50/1/a2YJQAQvfFxG9DfsNoT05aS5IhM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/46ab42-c137-4bde-a32a-a44dd966ce50/1/L6CLlwvIy9DkRTyJa9uCKqccom8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.107.16.0-176.107.24.255
176.107.26.0/23
176.107.30.0/23
Signature Algorithm: sha256WithRSAEncryption
74:a9:8e:00:89:77:7d:1e:a8:d3:f0:a6:44:3c:62:5d:30:1f:
82:35:ed:ea:74:1f:34:7a:fe:37:65:e3:0c:76:17:a7:ba:7c:
d9:68:a1:f0:7c:e6:be:4a:2a:e9:d0:22:1d:c8:90:a2:09:ff:
0d:5e:3c:37:98:62:13:3e:12:8c:4b:36:8e:cc:09:81:74:90:
fe:12:9a:0d:6d:4e:c3:be:83:05:a2:34:79:9e:c5:90:f8:51:
93:52:88:bd:54:95:ff:5b:d9:47:b8:7a:42:7f:98:3e:c1:03:
8d:1e:b0:e5:f0:e0:b4:4b:42:d1:91:3f:48:4d:35:2b:fd:a1:
7c:fd:36:58:75:2d:e3:8f:c5:0e:1f:59:7e:fd:47:be:fd:ab:
b2:aa:67:32:ce:0c:1f:96:eb:2a:49:bb:ad:60:07:b2:7d:3e:
b0:86:5b:0b:c1:06:80:51:e4:71:20:11:97:56:53:df:77:a0:
99:95:23:62:6d:fe:cc:d9:d9:ab:d2:87:10:e3:02:08:a9:ca:
cb:c1:94:21:f7:d0:6d:b8:d7:91:9e:cb:18:c0:60:5d:58:68:
c9:a8:8d:f2:21:3d:8e:f5:16:df:b2:ff:08:b6:b5:32:d0:34:
25:35:bf:0f:bf:20:09:04:c0:08:02:6e:45:0d:f5:53:ba:da:
4b:89:9b:8a
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgISAZKeO+DXtdJUbdZAHSOGa8u+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmYTA4Yjk3MGJjOGNiZDBlNDQ1M2M4OTZiZGI4MjJhYTcx
Y2EyNmYwHhcNMjQxMDE4MDYwNjE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YjY2MDk0MDA0MmY3YzVjNDZmNDM3ZWMzNjg0ZjRlNWE0YjkyMjEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsSD2BdKspEe1x4gpEQlAzU/335u5
wXOZwthZVNrVd0B9qCVRkluXND7nQJ271wAQZ+gSACu052GIBBVWm70wWG/+URv6
b47NF8ORhVbjAQo6qipqiCWDWnGwG2KjgLUEFzrZxddoLZceE5m3csfHZ8QmsbLH
wCzw0T4n2UOKaCXSIIt/FzxcUF5FVwDo6YOt9LU5bxmbL4kVrjwPxpUwWblMPjRb
yozl0Oj5Uwf6wdlsrbbGaSStQdzy8RsReUK/0dSuKaXElWxAEHgdsqn58nJ5vgCC
KyEGlS2d1CRqZ/AYE8l7rFHC4iE48sJGWplr77vI0i6Gcoc9tVD44q9kRQIDAQAB
o4ICHTCCAhkwHQYDVR0OBBYEFGtmCUAEL3xcRvQ37DaE9OWkuSITMB8GA1UdIwQY
MBaAFC+gi5cLyMvQ5EU8iWvbgiqnHKJvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTDZDTGx3dkl5OURrUlR5SmE5dUNLcWNjb204LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC80NmFiNDItYzEzNy00YmRlLWEzMmEt
YTQ0ZGQ5NjZjZTUwLzEvYTJZSlFBUXZmRnhHOURmc05vVDA1YVM1SWhNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOC80NmFiNDItYzEzNy00YmRlLWEzMmEtYTQ0ZGQ5NjZjZTUw
LzEvTDZDTGx3dkl5OURrUlR5SmE5dUNLcWNjb204LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaMAwDBASwaxAD
BACwaxgDBAGwaxoDBAGwax4wDQYJKoZIhvcNAQELBQADggEBAHSpjgCJd30eqNPw
pkQ8Yl0wH4I17ep0HzR6/jdl4wx2F6e6fNloofB85r5KKunQIh3IkKIJ/w1ePDeY
YhM+EoxLNo7MCYF0kP4Smg1tTsO+gwWiNHmexZD4UZNSiL1Ulf9b2Ue4ekJ/mD7B
A40esOXw4LRLQtGRP0hNNSv9oXz9Nlh1LeOPxQ4fWX79R779q7KqZzLODB+W6ypJ
u61gB7J9PrCGWwvBBoBR5HEgEZdWU993oJmVI2Jt/szZ2avShxDjAgipysvBlCH3
0G2415GeyxjAYF1YaMmojfIhPY71Ft+y/wi2tTLQNCU1vw+/IAkEwAgCbkUN9VO6
2kuJm4o=
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:11 2025 by rpki-client