Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/08900f-b361-47ad-893f-7351f869b42b/1/f4pzOypnYpGaX188tXRyTs4rNu4.roa
File: f4pzOypnYpGaX188tXRyTs4rNu4.roa (raw, json)
Hash identifier: zjmDhHJYAm7Hb/a5TPOxad3f5adiJafHgClaAutndyA=
Subject key identifier: 7F:8A:73:3B:2A:67:62:91:9A:5F:5F:3C:B5:74:72:4E:CE:2B:36:EE
Certificate issuer: /CN=6090cdd31d3a71da1ce4a4bd85f1987e3ca4eafa
Certificate serial: 018572DEE071F8FC3AECC48660C1BDFF6828
Authority key identifier: 60:90:CD:D3:1D:3A:71:DA:1C:E4:A4:BD:85:F1:98:7E:3C:A4:EA:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YJDN0x06cdoc5KS9hfGYfjyk6vo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/08900f-b361-47ad-893f-7351f869b42b/1/f4pzOypnYpGaX188tXRyTs4rNu4.roa
Signing time: Mon 02 Jan 2023 14:24:47 +0000
ROA not before: Mon 02 Jan 2023 14:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48149
IP address blocks: 94.253.80.0/20 maxlen: 20
2a01:4207::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:de:e0:71:f8:fc:3a:ec:c4:86:60:c1:bd:ff:68:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6090cdd31d3a71da1ce4a4bd85f1987e3ca4eafa
Validity
Not Before: Jan 2 14:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7f8a733b2a6762919a5f5f3cb574724ece2b36ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d9:48:e9:4f:6e:75:f8:2c:dd:1e:d0:b9:2b:
f3:05:5f:ce:a7:ad:86:1b:81:7d:1f:7a:d8:b8:cf:
73:3e:ff:e6:05:d6:52:60:95:34:39:85:db:29:9f:
07:af:f0:88:a0:06:02:b7:57:9b:b4:ef:fb:b8:a1:
1f:4d:61:58:eb:a3:eb:e4:4d:e5:dc:9f:d8:fc:5d:
c9:31:6c:a6:33:d3:6d:f3:06:b4:a6:5c:20:a3:51:
67:7a:9b:86:1b:53:a8:32:b6:86:28:51:48:f3:09:
df:b3:d5:17:9f:61:3d:91:8a:81:62:c3:e3:a0:c8:
1c:dc:07:e2:0a:2e:a2:66:6a:d7:b7:e2:24:4a:17:
70:05:52:b6:fb:6e:f5:37:b9:d2:8e:79:c9:3b:fb:
1d:c2:08:4e:dd:92:a7:2c:1e:ee:47:a3:d9:a7:5b:
b8:8e:fe:89:a5:15:7b:69:c7:d2:b5:d5:70:ac:9f:
98:98:6e:39:e3:35:8d:ab:a4:9e:af:b7:88:69:01:
86:ff:c4:bd:92:94:09:dc:98:24:42:64:39:88:d7:
66:cd:8c:ff:09:61:d3:a1:35:10:a0:97:bb:29:1e:
8b:f1:69:b7:8d:cf:1a:c8:6f:ab:b6:df:63:ed:b1:
60:d9:ba:ec:9c:91:09:61:03:c4:a7:08:78:60:fd:
ca:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:8A:73:3B:2A:67:62:91:9A:5F:5F:3C:B5:74:72:4E:CE:2B:36:EE
X509v3 Authority Key Identifier:
keyid:60:90:CD:D3:1D:3A:71:DA:1C:E4:A4:BD:85:F1:98:7E:3C:A4:EA:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YJDN0x06cdoc5KS9hfGYfjyk6vo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/08900f-b361-47ad-893f-7351f869b42b/1/f4pzOypnYpGaX188tXRyTs4rNu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/08900f-b361-47ad-893f-7351f869b42b/1/YJDN0x06cdoc5KS9hfGYfjyk6vo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.253.80.0/20
IPv6:
2a01:4207::/48
Signature Algorithm: sha256WithRSAEncryption
17:06:69:96:f7:fc:10:5c:ca:04:8b:b8:82:c1:3f:dc:c1:50:
16:b0:8f:82:0d:58:27:2a:72:8f:cf:62:e6:93:fd:bf:b5:63:
3a:aa:6d:97:63:a2:12:86:0f:5b:f6:d1:e6:11:77:be:d8:25:
64:42:d1:45:eb:d9:68:b4:04:d7:6b:c2:62:d0:b1:e4:86:ba:
c6:24:13:d7:22:67:41:ca:13:14:4d:a6:81:bb:78:30:c1:ed:
e2:72:fd:01:08:ea:c5:82:92:ae:9f:5b:1a:7a:b0:2d:32:40:
1b:b6:02:a9:76:a6:dc:b4:78:2f:82:87:02:23:88:c2:7c:a8:
4d:98:b9:8c:08:9e:4f:2f:47:c0:6c:35:b0:b7:07:0d:ea:92:
31:d3:30:52:8d:4a:fb:e9:95:79:16:c8:15:be:e1:07:10:31:
bd:5a:a9:9f:2b:02:44:59:df:b0:93:c3:b7:94:4f:f4:41:d6:
81:01:f1:17:4d:68:bd:4e:29:c5:a1:3c:10:ae:c8:a3:dd:86:
e6:30:ed:a1:1b:31:6c:d1:da:73:08:9e:85:b2:18:2b:0a:a5:
0d:9b:5e:b1:5c:63:81:f2:08:a5:cc:fb:e3:08:4b:ab:71:9b:
2f:f6:e9:73:f0:79:d1:f3:0f:4a:71:da:79:5f:6d:1f:ec:17:
26:bc:8e:e6
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYVy3uBx+Pw67MSGYMG9/2goMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwOTBjZGQzMWQzYTcxZGExY2U0YTRiZDg1ZjE5ODdlM2Nh
NGVhZmEwHhcNMjMwMTAyMTQyNDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZjhhNzMzYjJhNjc2MjkxOWE1ZjVmM2NiNTc0NzI0ZWNlMmIzNmVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp9lI6U9udfgs3R7QuSvzBV/Op62G
G4F9H3rYuM9zPv/mBdZSYJU0OYXbKZ8Hr/CIoAYCt1ebtO/7uKEfTWFY66Pr5E3l
3J/Y/F3JMWymM9Nt8wa0plwgo1FnepuGG1OoMraGKFFI8wnfs9UXn2E9kYqBYsPj
oMgc3AfiCi6iZmrXt+IkShdwBVK2+271N7nSjnnJO/sdwghO3ZKnLB7uR6PZp1u4
jv6JpRV7acfStdVwrJ+YmG454zWNq6Ser7eIaQGG/8S9kpQJ3JgkQmQ5iNdmzYz/
CWHToTUQoJe7KR6L8Wm3jc8ayG+rtt9j7bFg2brsnJEJYQPEpwh4YP3KWQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFH+KczsqZ2KRml9fPLV0ck7OKzbuMB8GA1UdIwQY
MBaAFGCQzdMdOnHaHOSkvYXxmH48pOr6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUpETjB4MDZjZG9jNUtTOWhmR1lmanlrNnZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8wODkwMGYtYjM2MS00N2FkLTg5M2Yt
NzM1MWY4NjliNDJiLzEvZjRwek95cG5ZcEdhWDE4OHRYUnlUczRyTnU0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC8wODkwMGYtYjM2MS00N2FkLTg5M2YtNzM1MWY4NjliNDJi
LzEvWUpETjB4MDZjZG9jNUtTOWhmR1lmanlrNnZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQEXv1QMA8E
AgACMAkDBwAqAUIHAAAwDQYJKoZIhvcNAQELBQADggEBABcGaZb3/BBcygSLuILB
P9zBUBawj4INWCcqco/PYuaT/b+1YzqqbZdjohKGD1v20eYRd77YJWRC0UXr2Wi0
BNdrwmLQseSGusYkE9ciZ0HKExRNpoG7eDDB7eJy/QEI6sWCkq6fWxp6sC0yQBu2
Aql2pty0eC+ChwIjiMJ8qE2YuYwInk8vR8BsNbC3Bw3qkjHTMFKNSvvplXkWyBW+
4QcQMb1aqZ8rAkRZ37CTw7eUT/RB1oEB8RdNaL1OKcWhPBCuyKPdhuYw7aEbMWzR
2nMInoWyGCsKpQ2bXrFcY4HyCKXM++MIS6txmy/26XPwedHzD0px2nlfbR/sFya8
juY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:11 2024 by rpki-client on console-fra.rpki-client.org