Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/k57fojrnYVRNCrjgXuUfuL-OTeQ.roa
File: k57fojrnYVRNCrjgXuUfuL-OTeQ.roa (raw, json)
Hash identifier: d2AYNnL988CKL/2W5JOTRy4gVhPMJtRl2vM3nrKcSBo=
Subject key identifier: 93:9E:DF:A2:3A:E7:61:54:4D:0A:B8:E0:5E:E5:1F:B8:BF:8E:4D:E4
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 019145ABAE136ADF2383492A1220E4FB17CC
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/k57fojrnYVRNCrjgXuUfuL-OTeQ.roa
Signing time: Mon 12 Aug 2024 08:19:24 +0000
ROA not before: Mon 12 Aug 2024 08:19:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197992
IP address blocks: 2a11:9600::/29 maxlen: 29
2a11:dcc0::/29 maxlen: 29
2a14:c0::/29 maxlen: 29
2a14:140::/29 maxlen: 29
2a14:1c0::/29 maxlen: 29
2a14:f40::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 30 Aug 2024 12:25:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:45:ab:ae:13:6a:df:23:83:49:2a:12:20:e4:fb:17:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Aug 12 08:19:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=939edfa23ae761544d0ab8e05ee51fb8bf8e4de4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:67:a9:40:93:a8:d7:ec:c1:74:77:2f:84:af:
d7:6a:69:e6:f4:2a:fd:73:bc:e3:3e:4c:12:0f:8f:
4c:00:98:3e:c2:ba:29:e8:99:f2:47:17:e1:23:ea:
08:18:32:53:bf:88:2b:8a:38:9f:de:ce:a9:20:3e:
a8:81:2a:b4:74:2a:c9:cf:92:73:5b:6c:31:d1:96:
14:f2:15:1f:67:87:68:fa:ca:ee:17:5f:69:73:1e:
e0:cb:71:c9:a6:8f:57:98:f2:a1:2a:ca:3e:21:a9:
ef:3e:76:94:66:c6:66:c9:e9:58:cf:78:f0:f0:91:
ea:9f:d0:2d:57:b6:09:86:0c:7f:2b:d4:9a:51:6d:
cc:29:b1:2d:26:f6:e7:15:ef:d4:8c:2e:56:7f:31:
c9:db:1d:a1:a3:e4:da:b4:10:f3:6c:38:6b:a4:4f:
80:e5:0f:7c:fe:14:7c:77:ec:6b:cd:7a:5a:f1:5a:
97:cf:5d:24:4e:ba:90:78:26:bd:ad:5c:fe:44:9e:
9c:24:aa:1c:21:4a:ed:95:84:05:0d:9d:48:8f:0d:
89:9c:3c:31:71:8c:e4:7e:ff:5d:3c:95:37:b0:f9:
fd:97:4e:4e:86:14:29:a2:2a:67:0f:58:58:c0:cd:
2c:52:b1:3a:a6:85:3e:f0:e9:6c:e3:11:ea:73:b3:
3f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:9E:DF:A2:3A:E7:61:54:4D:0A:B8:E0:5E:E5:1F:B8:BF:8E:4D:E4
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/k57fojrnYVRNCrjgXuUfuL-OTeQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:9600::/29
2a11:dcc0::/29
2a14:c0::/29
2a14:140::/29
2a14:1c0::/29
2a14:f40::/29
Signature Algorithm: sha256WithRSAEncryption
97:95:53:6e:fb:b7:fd:8a:86:36:db:ab:30:7f:4f:94:fe:59:
30:0e:c2:9f:32:8f:f7:06:fe:8e:30:a8:9f:2f:42:28:c8:2f:
4e:95:89:59:13:35:9a:48:44:e8:8a:34:52:14:41:c2:c9:47:
c9:8c:e8:dd:7d:d5:15:1c:24:f1:d5:bd:db:1f:9e:8d:a5:9b:
92:32:bc:8a:cf:45:bf:ec:3b:f4:d2:ae:e8:b0:56:5a:d0:8d:
9e:22:3d:c3:45:4e:fb:b5:18:c7:3a:fd:b6:75:0e:81:84:cd:
10:56:6f:54:eb:10:2d:a1:68:0d:db:78:31:81:ca:08:79:a5:
40:aa:ae:d4:3a:da:76:e6:dd:e2:60:47:bb:ea:7b:b8:4b:48:
34:fa:89:bf:06:18:3d:50:7b:cf:a2:2e:03:b4:b0:b5:bb:ee:
56:8b:b4:30:45:bb:b0:2a:01:7a:4f:94:a9:f6:46:af:9f:91:
0b:dc:b0:61:fb:b6:69:46:b7:5c:e6:8e:bf:13:52:c6:ee:da:
a9:b5:5e:44:5d:bf:79:95:ab:ee:8d:8b:56:d6:5f:df:77:a9:
28:5c:6c:4c:e1:cc:5c:b0:ff:7e:75:46:a6:54:c1:b1:25:83:
a4:44:23:65:ce:33:58:cd:97:ff:4d:14:b0:7b:7a:24:5a:6e:
be:0e:27:cc
-----BEGIN CERTIFICATE-----
MIIFITCCBAmgAwIBAgISAZFFq64Tat8jg0kqEiDk+xfMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4OWQ2YjU1ZDZhNjg4ZWU1ZTMzODE4ODNiYjVhZjY4NDMz
Mjc2ZTMwHhcNMjQwODEyMDgxOTI0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MzllZGZhMjNhZTc2MTU0NGQwYWI4ZTA1ZWU1MWZiOGJmOGU0ZGU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7GepQJOo1+zBdHcvhK/Xamnm9Cr9
c7zjPkwSD49MAJg+wrop6JnyRxfhI+oIGDJTv4grijif3s6pID6ogSq0dCrJz5Jz
W2wx0ZYU8hUfZ4do+sruF19pcx7gy3HJpo9XmPKhKso+IanvPnaUZsZmyelYz3jw
8JHqn9AtV7YJhgx/K9SaUW3MKbEtJvbnFe/UjC5WfzHJ2x2ho+TatBDzbDhrpE+A
5Q98/hR8d+xrzXpa8VqXz10kTrqQeCa9rVz+RJ6cJKocIUrtlYQFDZ1Ijw2JnDwx
cYzkfv9dPJU3sPn9l05OhhQpoipnD1hYwM0sUrE6poU+8Ols4xHqc7M/4QIDAQAB
o4ICLTCCAikwHQYDVR0OBBYEFJOe36I652FUTQq44F7lH7i/jk3kMB8GA1UdIwQY
MBaAFBida1XWpojuXjOBiDu1r2hDMnbjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUt
YTJhNGM2YTYyMWNkLzEvazU3Zm9qcm5ZVlJOQ3JqZ1h1VWZ1TC1PVGVRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUtYTJhNGM2YTYyMWNk
LzEvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAAjAqAwUDKhGWAAMF
AyoR3MADBQMqFADAAwUDKhQBQAMFAyoUAcADBQMqFA9AMA0GCSqGSIb3DQEBCwUA
A4IBAQCXlVNu+7f9ioY226swf0+U/lkwDsKfMo/3Bv6OMKifL0IoyC9OlYlZEzWa
SEToijRSFEHCyUfJjOjdfdUVHCTx1b3bH56NpZuSMryKz0W/7Dv00q7osFZa0I2e
Ij3DRU77tRjHOv22dQ6BhM0QVm9U6xAtoWgN23gxgcoIeaVAqq7UOtp25t3iYEe7
6nu4S0g0+om/Bhg9UHvPoi4DtLC1u+5Wi7QwRbuwKgF6T5Sp9kavn5EL3LBh+7Zp
Rrdc5o6/E1LG7tqptV5EXb95lavujYtW1l/fd6koXGxM4cxcsP9+dUamVMGxJYOk
RCNlzjNYzZf/TRSwe3okWm6+DifM
-----END CERTIFICATE-----
Generated at Fri Aug 30 15:01:26 2024 by rpki-client on console-ams.rpki-client.org