Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/E0PNPwnEWHzM1yaoUtTHuFvyzI0.roa
File: E0PNPwnEWHzM1yaoUtTHuFvyzI0.roa (raw, json)
Hash identifier: NWbegEdSAoH8DkqpJZVJM9rCImmYNBX97r/aReN+Saw=
Subject key identifier: 13:43:CD:3F:09:C4:58:7C:CC:D7:26:A8:52:D4:C7:B8:5B:F2:CC:8D
Certificate issuer: /CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Certificate serial: 018F68CB2C70C6066EB22703C70A163FE5C0
Authority key identifier: C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/E0PNPwnEWHzM1yaoUtTHuFvyzI0.roa
Signing time: Sat 11 May 2024 17:54:56 +0000
ROA not before: Sat 11 May 2024 17:54:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212271
IP address blocks: 2a05:4140::/29 maxlen: 48
2a05:4140:3::/48 maxlen: 48
2a05:4140:4::/48 maxlen: 48
2a05:4140:5::/48 maxlen: 48
2a05:4140:8::/48 maxlen: 48
2a05:4140:9::/48 maxlen: 48
2a05:4140:10::/48 maxlen: 48
2a05:4140:15::/48 maxlen: 48
2a05:4140:16::/48 maxlen: 48
2a05:4140:29::/48 maxlen: 48
2a05:4140:30::/48 maxlen: 48
2a05:4140:31::/48 maxlen: 48
2a05:4140:32::/48 maxlen: 48
2a05:4140:33::/48 maxlen: 48
2a05:4140:34::/48 maxlen: 48
2a05:4140:35::/48 maxlen: 64
2a05:4140:36::/48 maxlen: 48
2a05:4140:37::/48 maxlen: 48
2a05:4140:48::/48 maxlen: 48
2a05:4140:100::/40 maxlen: 48
2a05:4140:187::/48 maxlen: 48
2a05:4140:190::/48 maxlen: 48
2a05:4140:300::/40 maxlen: 40
2a05:4140:400::/40 maxlen: 48
2a11:e100::/29 maxlen: 48
2a11:e102::/32 maxlen: 32
2a11:e103::/32 maxlen: 32
2a11:e107::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 11 Jun 2024 18:45:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:68:cb:2c:70:c6:06:6e:b2:27:03:c7:0a:16:3f:e5:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Validity
Not Before: May 11 17:54:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1343cd3f09c4587cccd726a852d4c7b85bf2cc8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:29:b5:44:bc:e1:16:63:3c:e3:10:ac:4e:20:
be:02:f5:ae:9b:66:97:05:a8:eb:bb:ac:71:0b:a1:
1a:b0:5c:85:91:a1:75:4a:1d:3f:4e:74:a7:a1:eb:
c8:85:00:e7:1f:c5:06:b5:c4:11:2b:b8:02:af:58:
70:d4:02:62:f4:99:2a:61:6d:fe:b0:cc:8b:fb:dd:
0d:a4:70:8b:1a:87:ad:b7:8c:95:57:7c:6a:4a:d3:
73:00:5f:c1:5e:f4:e1:cd:a1:f8:07:5e:08:93:27:
37:8a:a5:0a:87:8c:7c:fc:c7:dd:c6:58:76:64:0c:
3c:38:3c:d3:89:0b:70:0c:a6:60:b8:7e:d6:69:2f:
d1:b4:73:2d:d7:8c:af:9e:eb:a4:fe:31:cc:77:72:
d0:1e:46:60:e3:c6:0c:24:d5:02:0f:2b:96:d2:89:
db:0d:10:65:82:5e:26:1e:bb:cb:f6:2d:34:1e:6d:
c2:40:e1:3b:e4:f1:91:74:6c:f2:0b:88:3e:c6:90:
42:4b:53:dd:95:ad:81:2e:eb:36:88:2f:74:b6:d3:
24:1b:fe:20:8b:97:2b:ed:2b:8b:18:7f:00:4a:ff:
0f:18:15:66:3c:9b:f1:99:e0:4e:36:26:4a:b9:19:
23:ba:07:26:c0:4b:31:0f:d5:45:65:57:53:54:3d:
7c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:43:CD:3F:09:C4:58:7C:CC:D7:26:A8:52:D4:C7:B8:5B:F2:CC:8D
X509v3 Authority Key Identifier:
keyid:C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/E0PNPwnEWHzM1yaoUtTHuFvyzI0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/x0xgresM1XaM91b1YrG1zFucGAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:4140::/29
2a11:e100::/29
Signature Algorithm: sha256WithRSAEncryption
78:2e:55:ac:84:5a:54:ee:c4:41:37:bc:8d:65:c1:d7:2a:eb:
65:ef:d6:73:e1:80:f6:47:9e:29:27:cf:60:03:3f:45:ea:75:
19:80:2d:4c:ec:6c:a2:f4:61:61:dc:c6:18:a2:63:19:e4:56:
fb:f7:b5:27:64:74:91:7f:5c:e4:44:f1:85:b4:eb:60:26:2d:
d8:c9:d5:f5:1c:a7:53:e8:d7:03:e9:3e:ac:a7:4d:62:91:99:
15:95:cd:db:68:4e:50:23:ef:f5:1b:f5:ed:4a:c3:0c:22:56:
3d:49:38:0e:8c:14:12:3b:fe:2a:e4:2e:99:56:fe:b2:79:f6:
3f:40:2a:71:fb:b9:3f:85:3c:a2:fc:e3:3c:9a:2b:8c:ae:64:
60:12:3e:09:07:16:36:f0:49:e4:0c:d2:0a:d0:3c:bb:dd:4a:
e9:3d:0d:f7:4d:b3:55:4a:38:9c:a4:c3:6d:24:4f:0d:b5:31:
fb:53:22:04:be:a3:39:a7:ca:a8:db:e3:34:22:1f:46:de:a3:
c8:55:b8:03:ca:7b:28:39:16:ce:56:40:21:9f:ea:ab:58:a3:
7c:ee:f9:1d:bb:0a:e4:70:a0:42:d5:2b:ed:f9:c6:62:ba:cb:
d3:7b:18:08:48:25:bc:20:2b:ca:2d:73:a3:aa:4e:bb:26:74:
b1:33:83:14
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAY9oyyxwxgZusicDxwoWP+XAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM3NGM2MGFkZWIwY2Q1NzY4Y2Y3NTZmNTYyYjFiNWNjNWI5
YzE4MGEwHhcNMjQwNTExMTc1NDU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMzQzY2QzZjA5YzQ1ODdjY2NkNzI2YTg1MmQ0YzdiODViZjJjYzhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnym1RLzhFmM84xCsTiC+AvWum2aX
Bajru6xxC6EasFyFkaF1Sh0/TnSnoevIhQDnH8UGtcQRK7gCr1hw1AJi9JkqYW3+
sMyL+90NpHCLGoett4yVV3xqStNzAF/BXvThzaH4B14Ikyc3iqUKh4x8/Mfdxlh2
ZAw8ODzTiQtwDKZguH7WaS/RtHMt14yvnuuk/jHMd3LQHkZg48YMJNUCDyuW0onb
DRBlgl4mHrvL9i00Hm3CQOE75PGRdGzyC4g+xpBCS1Pdla2BLus2iC90ttMkG/4g
i5cr7SuLGH8ASv8PGBVmPJvxmeBONiZKuRkjugcmwEsxD9VFZVdTVD18zwIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFBNDzT8JxFh8zNcmqFLUx7hb8syNMB8GA1UdIwQY
MBaAFMdMYK3rDNV2jPdW9WKxtcxbnBgKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveDB4Z3Jlc00xWGFNOTFiMVlyRzF6RnVjR0FvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi9hZGI2NWMtZjZmNy00NDk1LWJhMjMt
ODg1ZTg0ZTc1MTJlLzEvRTBQTlB3bkVXSHpNMXlhb1V0VEh1RnZ5ekkwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi9hZGI2NWMtZjZmNy00NDk1LWJhMjMtODg1ZTg0ZTc1MTJl
LzEveDB4Z3Jlc00xWGFNOTFiMVlyRzF6RnVjR0FvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUDKgVBQAMF
AyoR4QAwDQYJKoZIhvcNAQELBQADggEBAHguVayEWlTuxEE3vI1lwdcq62Xv1nPh
gPZHniknz2ADP0XqdRmALUzsbKL0YWHcxhiiYxnkVvv3tSdkdJF/XORE8YW062Am
LdjJ1fUcp1Po1wPpPqynTWKRmRWVzdtoTlAj7/Ub9e1KwwwiVj1JOA6MFBI7/irk
LplW/rJ59j9AKnH7uT+FPKL84zyaK4yuZGASPgkHFjbwSeQM0grQPLvdSuk9DfdN
s1VKOJykw20kTw21MftTIgS+ozmnyqjb4zQiH0beo8hVuAPKeyg5Fs5WQCGf6qtY
o3zu+R27CuRwoELVK+35xmK6y9N7GAhIJbwgK8otc6OqTrsmdLEzgxQ=
-----END CERTIFICATE-----
Generated at Tue Jun 11 23:34:15 2024 by rpki-client on console-ams.rpki-client.org