Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/914ZSZj_q_0aMnOxEFzF_tp1hCE.roa
File: 914ZSZj_q_0aMnOxEFzF_tp1hCE.roa (raw, json)
Hash identifier: TJDuc+7issTGTEK6XAGkQ61PpDxJT0bSs5M9Ai/cie8=
Subject key identifier: F7:5E:19:49:98:FF:AB:FD:1A:32:73:B1:10:5C:C5:FE:DA:75:84:21
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 0190FEFBF95ACD7D8CE6EFA0ED28A3AAB032
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/914ZSZj_q_0aMnOxEFzF_tp1hCE.roa
Signing time: Mon 29 Jul 2024 14:54:04 +0000
ROA not before: Mon 29 Jul 2024 14:54:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 2a06:b3c0::/29 maxlen: 29
2a11:f240::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 30 Jul 2024 14:06:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:fe:fb:f9:5a:cd:7d:8c:e6:ef:a0:ed:28:a3:aa:b0:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jul 29 14:54:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f75e194998ffabfd1a3273b1105cc5feda758421
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:db:c2:62:23:77:21:be:d4:50:a4:47:fe:8a:
a7:a3:42:32:7a:44:0a:81:31:80:16:f6:9b:4d:05:
05:55:5d:ec:6f:4f:d2:62:45:b3:c6:ea:85:c6:60:
44:19:ff:f6:99:09:82:d0:38:70:2b:8a:73:93:fe:
41:3c:59:68:81:ed:89:38:be:98:55:14:67:2f:55:
ac:98:da:0a:1d:d0:a6:9a:c9:8e:85:05:e6:c5:c2:
f3:0d:17:79:e6:f9:4d:79:c9:e5:ae:60:dc:21:5e:
f1:12:97:32:c3:cd:22:48:8a:78:e0:9c:eb:16:85:
58:1c:68:d9:ce:ef:9e:5b:d8:44:63:e1:36:2a:0c:
3f:fa:39:6f:94:9d:a5:f6:98:6e:8d:9d:20:35:26:
ba:2c:f8:23:0d:e6:72:94:b0:03:22:02:9a:f8:f0:
8e:c6:d9:2d:4c:bf:a2:09:6d:da:eb:2d:3f:d4:96:
37:ab:64:44:76:18:03:38:0c:ac:ca:84:3f:11:f7:
bd:ac:3c:23:8b:93:da:18:d4:04:e8:9e:44:71:06:
ab:9b:9b:79:29:ba:a7:f2:27:74:eb:53:e1:6d:18:
b3:a4:5a:71:5b:8c:3b:81:88:77:b7:75:ef:df:0a:
a8:59:6d:43:3d:9c:2b:cc:87:2d:96:55:62:90:41:
ea:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:5E:19:49:98:FF:AB:FD:1A:32:73:B1:10:5C:C5:FE:DA:75:84:21
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/914ZSZj_q_0aMnOxEFzF_tp1hCE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:b3c0::/29
2a11:f240::/29
Signature Algorithm: sha256WithRSAEncryption
c1:92:34:dd:f0:63:88:6c:7e:3c:32:28:32:8b:53:7b:0e:a2:
d2:08:87:89:d5:82:ac:a0:57:b8:80:29:7d:10:60:cd:8d:58:
e2:d6:ea:db:18:a8:8f:3a:1a:ff:1d:0d:6c:36:57:54:e0:79:
ba:6c:75:2d:4c:f9:d2:7d:6b:8c:72:08:18:64:2f:ce:43:9b:
82:44:d3:bb:be:90:34:75:fb:17:ae:36:2b:79:c7:47:07:ed:
f4:37:0d:9a:a4:98:3b:f6:7a:79:87:2c:03:af:7e:31:93:e5:
17:25:35:d5:2c:8d:04:31:8a:71:f4:95:aa:a3:4a:15:dd:be:
d1:db:98:01:36:cc:e7:92:11:2f:08:59:87:b0:a8:e5:50:2f:
69:1c:5b:42:12:21:67:d9:4f:06:8f:dc:f4:3e:70:ed:93:de:
9e:3d:a6:46:3a:76:fc:2d:63:f1:0d:f1:40:9f:24:dd:c5:30:
d6:bb:0f:1b:c3:c2:c9:e5:70:21:0e:93:67:d7:f5:ed:aa:b1:
35:fb:a9:67:5b:84:e7:49:29:35:5b:aa:fb:dd:35:07:9e:61:
bf:8f:24:4f:12:6c:49:47:af:b0:9a:bd:c6:bf:d3:ee:16:7f:
c9:19:f3:cd:c5:af:55:64:8c:f7:de:49:8a:d8:16:cb:ba:df:
72:40:37:2e
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAZD++/lazX2M5u+g7SijqrAyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4OWQ2YjU1ZDZhNjg4ZWU1ZTMzODE4ODNiYjVhZjY4NDMz
Mjc2ZTMwHhcNMjQwNzI5MTQ1NDA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNzVlMTk0OTk4ZmZhYmZkMWEzMjczYjExMDVjYzVmZWRhNzU4NDIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx9vCYiN3Ib7UUKRH/oqno0IyekQK
gTGAFvabTQUFVV3sb0/SYkWzxuqFxmBEGf/2mQmC0DhwK4pzk/5BPFloge2JOL6Y
VRRnL1WsmNoKHdCmmsmOhQXmxcLzDRd55vlNecnlrmDcIV7xEpcyw80iSIp44Jzr
FoVYHGjZzu+eW9hEY+E2Kgw/+jlvlJ2l9phujZ0gNSa6LPgjDeZylLADIgKa+PCO
xtktTL+iCW3a6y0/1JY3q2REdhgDOAysyoQ/Efe9rDwji5PaGNQE6J5EcQarm5t5
Kbqn8id061PhbRizpFpxW4w7gYh3t3Xv3wqoWW1DPZwrzIctllVikEHqWQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFPdeGUmY/6v9GjJzsRBcxf7adYQhMB8GA1UdIwQY
MBaAFBida1XWpojuXjOBiDu1r2hDMnbjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUt
YTJhNGM2YTYyMWNkLzEvOTE0WlNaal9xXzBhTW5PeEVGekZfdHAxaENFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUtYTJhNGM2YTYyMWNk
LzEvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUDKgazwAMF
AyoR8kAwDQYJKoZIhvcNAQELBQADggEBAMGSNN3wY4hsfjwyKDKLU3sOotIIh4nV
gqygV7iAKX0QYM2NWOLW6tsYqI86Gv8dDWw2V1TgebpsdS1M+dJ9a4xyCBhkL85D
m4JE07u+kDR1+xeuNit5x0cH7fQ3DZqkmDv2enmHLAOvfjGT5RclNdUsjQQxinH0
laqjShXdvtHbmAE2zOeSES8IWYewqOVQL2kcW0ISIWfZTwaP3PQ+cO2T3p49pkY6
dvwtY/EN8UCfJN3FMNa7DxvDwsnlcCEOk2fX9e2qsTX7qWdbhOdJKTVbqvvdNQee
Yb+PJE8SbElHr7Cavca/0+4Wf8kZ883Fr1VkjPfeSYrYFsu633JANy4=
-----END CERTIFICATE-----
Generated at Tue Jul 30 17:42:17 2024 by rpki-client on console-ams.rpki-client.org