Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/f-iZr877S933gJEsGNyX603KCXg.roa
File: f-iZr877S933gJEsGNyX603KCXg.roa (raw, json)
Hash identifier: 8WjvxSLeVdBaTOGiCDsOaWxRNRYpvvyOlmVwqsBCyCM=
Subject key identifier: 7F:E8:99:AF:CE:FB:4B:DD:F7:80:91:2C:18:DC:97:EB:4D:CA:09:78
Certificate issuer: /CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Certificate serial: 018A5C2C58CBBB707B6C61C2D1314A15677D
Authority key identifier: C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/f-iZr877S933gJEsGNyX603KCXg.roa
Signing time: Sun 03 Sep 2023 17:52:04 +0000
ROA not before: Sun 03 Sep 2023 17:52:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216395
IP address blocks: 2a05:4140:7::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5c:2c:58:cb:bb:70:7b:6c:61:c2:d1:31:4a:15:67:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Validity
Not Before: Sep 3 17:52:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7fe899afcefb4bddf780912c18dc97eb4dca0978
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:94:d8:85:1e:d3:e6:63:dd:29:f8:e7:4b:29:
c7:eb:1a:fd:82:e5:6b:42:de:c0:64:d0:df:db:4b:
29:4d:a1:b8:33:81:04:16:6f:dd:49:7a:08:6c:13:
0f:1b:b3:c9:a4:f3:b6:57:8e:ae:9c:e5:13:ec:e2:
94:30:5d:d8:df:28:96:68:39:34:c9:d7:e4:c2:68:
e6:00:9b:6b:34:46:7c:95:9e:7c:ee:cc:aa:e8:5d:
37:04:56:70:68:da:85:83:2b:b8:0e:88:99:49:c5:
b9:75:5b:a1:0a:c2:7c:5a:01:39:a2:a8:c0:19:01:
e1:93:c5:3f:85:bd:59:cb:18:a6:13:a0:70:85:71:
be:02:b5:b4:e7:8a:2d:5f:92:6f:f9:07:12:9f:b6:
cd:4a:98:eb:a7:49:08:48:6f:00:2d:c8:5c:3b:79:
08:5d:66:76:d8:a1:8f:07:67:13:0b:ff:29:1d:84:
47:e9:6b:32:13:aa:fe:83:35:fb:55:a4:f9:c2:fe:
a7:14:a9:c7:48:5e:a9:2f:43:78:8f:99:02:bd:62:
c1:71:c6:52:e7:fd:1d:d2:f8:2c:a0:79:79:14:eb:
ba:42:a5:cf:6e:51:2a:61:d5:81:bb:76:fe:96:58:
c0:c2:fc:01:a7:0d:59:d4:b3:18:c4:a3:0d:df:6e:
90:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:E8:99:AF:CE:FB:4B:DD:F7:80:91:2C:18:DC:97:EB:4D:CA:09:78
X509v3 Authority Key Identifier:
keyid:C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/f-iZr877S933gJEsGNyX603KCXg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/x0xgresM1XaM91b1YrG1zFucGAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:4140:7::/48
Signature Algorithm: sha256WithRSAEncryption
43:b8:da:40:16:be:6b:aa:5b:21:67:25:b0:cd:28:d8:34:84:
81:26:1b:e0:f9:5f:9e:1e:79:f3:25:e2:19:06:11:fd:d1:cd:
28:8a:85:23:bc:ec:e5:de:1c:0c:ee:45:58:c1:2c:ce:17:18:
27:27:26:2d:e4:d7:4c:32:55:df:7c:b9:84:b3:d9:96:74:83:
80:c3:4f:55:57:80:e5:c8:08:54:4b:66:10:2a:95:34:9c:3f:
b5:03:3e:ad:34:9d:a7:8e:1b:56:6d:e9:b1:da:51:33:e2:0e:
de:fa:35:f3:f5:e4:d4:c1:59:e3:63:6a:97:46:e1:ba:88:ec:
71:08:8e:4b:d7:1e:91:ff:b5:a2:de:bd:06:d8:71:74:83:a7:
ca:3c:31:51:9d:fc:49:d0:9e:9c:75:79:91:a9:fb:1f:88:61:
7b:3b:ac:68:52:60:28:78:3a:f9:71:66:78:14:c0:eb:c8:60:
42:d4:a5:80:7b:e8:10:82:63:aa:a3:35:e6:3e:9c:58:89:4a:
26:e3:7d:32:ea:46:c9:b0:63:c0:5e:88:cf:c3:02:14:72:bb:
08:b2:cc:4b:ea:23:3e:f0:b1:08:d7:02:eb:81:cb:da:19:b2:
c9:b7:f1:21:6c:d6:92:94:33:a3:ae:0d:44:26:96:f4:25:02:
68:22:02:50
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYpcLFjLu3B7bGHC0TFKFWd9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM3NGM2MGFkZWIwY2Q1NzY4Y2Y3NTZmNTYyYjFiNWNjNWI5
YzE4MGEwHhcNMjMwOTAzMTc1MjA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZmU4OTlhZmNlZmI0YmRkZjc4MDkxMmMxOGRjOTdlYjRkY2EwOTc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhZTYhR7T5mPdKfjnSynH6xr9guVr
Qt7AZNDf20spTaG4M4EEFm/dSXoIbBMPG7PJpPO2V46unOUT7OKUMF3Y3yiWaDk0
ydfkwmjmAJtrNEZ8lZ587syq6F03BFZwaNqFgyu4DoiZScW5dVuhCsJ8WgE5oqjA
GQHhk8U/hb1ZyximE6BwhXG+ArW054otX5Jv+QcSn7bNSpjrp0kISG8ALchcO3kI
XWZ22KGPB2cTC/8pHYRH6WsyE6r+gzX7VaT5wv6nFKnHSF6pL0N4j5kCvWLBccZS
5/0d0vgsoHl5FOu6QqXPblEqYdWBu3b+lljAwvwBpw1Z1LMYxKMN326QRQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFH/oma/O+0vd94CRLBjcl+tNygl4MB8GA1UdIwQY
MBaAFMdMYK3rDNV2jPdW9WKxtcxbnBgKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveDB4Z3Jlc00xWGFNOTFiMVlyRzF6RnVjR0FvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi9hZGI2NWMtZjZmNy00NDk1LWJhMjMt
ODg1ZTg0ZTc1MTJlLzEvZi1pWnI4NzdTOTMzZ0pFc0dOeVg2MDNLQ1hnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi9hZGI2NWMtZjZmNy00NDk1LWJhMjMtODg1ZTg0ZTc1MTJl
LzEveDB4Z3Jlc00xWGFNOTFiMVlyRzF6RnVjR0FvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgVBQAAH
MA0GCSqGSIb3DQEBCwUAA4IBAQBDuNpAFr5rqlshZyWwzSjYNISBJhvg+V+eHnnz
JeIZBhH90c0oioUjvOzl3hwM7kVYwSzOFxgnJyYt5NdMMlXffLmEs9mWdIOAw09V
V4DlyAhUS2YQKpU0nD+1Az6tNJ2njhtWbemx2lEz4g7e+jXz9eTUwVnjY2qXRuG6
iOxxCI5L1x6R/7Wi3r0G2HF0g6fKPDFRnfxJ0J6cdXmRqfsfiGF7O6xoUmAoeDr5
cWZ4FMDryGBC1KWAe+gQgmOqozXmPpxYiUom430y6kbJsGPAXojPwwIUcrsIssxL
6iM+8LEI1wLrgcvaGbLJt/EhbNaSlDOjrg1EJpb0JQJoIgJQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:53 2024 by rpki-client on console-fra.rpki-client.org