Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/C5m0V7nTg2oD9RSiNlzMPaa6dH8.roa
File: C5m0V7nTg2oD9RSiNlzMPaa6dH8.roa (raw, json)
Hash identifier: beDK3V2Hq1BYe2OLnQwtUq+06vXvoV1oUNmeX0xjWhs=
Subject key identifier: 0B:99:B4:57:B9:D3:83:6A:03:F5:14:A2:36:5C:CC:3D:A6:BA:74:7F
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018F87DE4F98A42AADBC468DFE42ADB67F4F
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/C5m0V7nTg2oD9RSiNlzMPaa6dH8.roa
Signing time: Fri 17 May 2024 18:44:04 +0000
ROA not before: Fri 17 May 2024 18:44:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 53667
IP address blocks: 2a06:cac0::/29 maxlen: 36
2a12:ec0::/29 maxlen: 36
2a12:1900::/29 maxlen: 36
2a12:6640::/29 maxlen: 36
Validation: Failed, certificate revoked on Sun 26 May 2024 15:49:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:87:de:4f:98:a4:2a:ad:bc:46:8d:fe:42:ad:b6:7f:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: May 17 18:44:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0b99b457b9d3836a03f514a2365ccc3da6ba747f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:49:c6:d9:a8:ce:cf:b6:d0:2e:b2:7c:22:78:
2c:cd:bf:bc:a0:29:60:ac:fc:98:e7:4e:8a:6f:80:
2f:52:88:8f:5d:62:5b:79:00:03:4e:52:5b:a9:21:
5d:df:80:25:de:74:b6:39:b9:ff:2c:88:c9:74:5e:
7d:f4:50:60:2c:cf:ef:ee:13:fe:ab:2a:f9:2f:74:
87:6d:8c:53:0f:a0:7c:fa:4f:d7:39:d5:64:fd:e4:
5c:92:a1:e1:21:ee:9d:2f:41:e7:5c:c6:33:95:d3:
c6:86:f5:92:1b:4d:84:65:fd:67:6f:bc:66:4d:18:
f6:e1:6a:e5:d7:ec:f6:20:86:b2:7f:b5:7c:8a:4e:
2b:86:6c:a7:08:41:50:94:f6:96:30:72:27:89:83:
56:ca:55:63:f4:0d:12:88:e5:5d:07:d4:d9:e1:af:
d2:a3:4d:96:e4:03:d4:62:28:a2:ea:49:e4:2c:73:
b9:45:53:64:ac:60:a1:db:14:c0:92:b0:b8:47:8e:
14:06:51:32:18:13:6e:3d:95:62:bf:8b:4b:62:4a:
50:51:6c:2c:b9:cc:e1:30:b4:3b:44:6f:af:d1:28:
e9:f2:ca:2b:ab:e5:a8:dc:d3:ca:c6:5e:5b:f5:1d:
16:02:a6:30:9b:52:82:d9:c0:e3:04:db:e1:c3:8b:
e1:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:99:B4:57:B9:D3:83:6A:03:F5:14:A2:36:5C:CC:3D:A6:BA:74:7F
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/C5m0V7nTg2oD9RSiNlzMPaa6dH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:cac0::/29
2a12:ec0::/29
2a12:1900::/29
2a12:6640::/29
Signature Algorithm: sha256WithRSAEncryption
46:b0:b5:c2:f3:67:e3:8c:4c:40:3f:8d:f9:d5:12:e0:76:7c:
66:45:fc:b5:87:c6:90:ae:fa:3d:50:f6:da:75:e2:c3:36:35:
b8:21:4a:ce:82:48:dc:3e:8c:f7:aa:40:53:fd:b2:79:44:dc:
99:1f:2c:c4:56:47:f2:d0:a0:81:f2:56:b8:75:0a:a1:85:a0:
02:27:90:94:af:3f:d4:34:6c:2c:ec:05:7f:00:ff:84:98:c4:
fe:2e:9b:85:92:50:20:d8:93:2b:38:92:42:4b:8a:01:71:10:
b0:c1:65:6b:4e:6a:32:6b:9e:60:39:91:77:35:fb:10:e3:b5:
bf:b9:0d:22:d1:89:cb:ff:cf:b4:05:4c:f3:a3:2a:16:06:d0:
25:8c:42:1f:51:03:8f:ae:24:b9:26:e8:15:41:de:ea:64:d9:
41:28:46:34:d5:2e:d7:2e:2d:11:93:9e:f3:a2:fd:a3:15:6c:
9d:b1:bf:53:f3:0a:30:86:e8:c9:00:a8:68:cf:6b:0a:95:4a:
f8:46:86:68:b1:1b:41:24:71:56:c8:0f:3e:c0:1d:04:d5:82:
53:98:94:44:62:19:ea:a6:e2:0d:fa:ea:fd:d3:0b:bb:7c:bb:
de:9b:0e:ea:ab:68:1b:24:d9:fb:8c:36:3c:da:b9:0d:32:7b:
15:55:8d:c8
-----BEGIN CERTIFICATE-----
MIIFEzCCA/ugAwIBAgISAY+H3k+YpCqtvEaN/kKttn9PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4OWQ2YjU1ZDZhNjg4ZWU1ZTMzODE4ODNiYjVhZjY4NDMz
Mjc2ZTMwHhcNMjQwNTE3MTg0NDA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYjk5YjQ1N2I5ZDM4MzZhMDNmNTE0YTIzNjVjY2MzZGE2YmE3NDdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsUnG2ajOz7bQLrJ8Ingszb+8oClg
rPyY506Kb4AvUoiPXWJbeQADTlJbqSFd34Al3nS2Obn/LIjJdF599FBgLM/v7hP+
qyr5L3SHbYxTD6B8+k/XOdVk/eRckqHhIe6dL0HnXMYzldPGhvWSG02EZf1nb7xm
TRj24Wrl1+z2IIayf7V8ik4rhmynCEFQlPaWMHIniYNWylVj9A0SiOVdB9TZ4a/S
o02W5APUYiii6knkLHO5RVNkrGCh2xTAkrC4R44UBlEyGBNuPZViv4tLYkpQUWws
uczhMLQ7RG+v0Sjp8sorq+Wo3NPKxl5b9R0WAqYwm1KC2cDjBNvhw4vhEwIDAQAB
o4ICHzCCAhswHQYDVR0OBBYEFAuZtFe504NqA/UUojZczD2munR/MB8GA1UdIwQY
MBaAFBida1XWpojuXjOBiDu1r2hDMnbjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUt
YTJhNGM2YTYyMWNkLzEvQzVtMFY3blRnMm9EOVJTaU5sek1QYWE2ZEg4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUtYTJhNGM2YTYyMWNk
LzEvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDUGCCsGAQUFBwEHAQH/BCYwJDAiBAIAAjAcAwUDKgbKwAMF
AyoSDsADBQMqEhkAAwUDKhJmQDANBgkqhkiG9w0BAQsFAAOCAQEARrC1wvNn44xM
QD+N+dUS4HZ8ZkX8tYfGkK76PVD22nXiwzY1uCFKzoJI3D6M96pAU/2yeUTcmR8s
xFZH8tCggfJWuHUKoYWgAieQlK8/1DRsLOwFfwD/hJjE/i6bhZJQINiTKziSQkuK
AXEQsMFla05qMmueYDmRdzX7EOO1v7kNItGJy//PtAVM86MqFgbQJYxCH1EDj64k
uSboFUHe6mTZQShGNNUu1y4tEZOe86L9oxVsnbG/U/MKMIboyQCoaM9rCpVK+EaG
aLEbQSRxVsgPPsAdBNWCU5iURGIZ6qbiDfrq/dMLu3y73psO6qtoGyTZ+4w2PNq5
DTJ7FVWNyA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:37 2024 by rpki-client on console-fra.rpki-client.org