Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/EQQ5b06sVXbqNgHs_H5NgAwjmmg.roa
File: EQQ5b06sVXbqNgHs_H5NgAwjmmg.roa (raw, json)
Hash identifier: f974fCj/3sE25IG6z86uUqdd4pixCN+Kb8/1hKySl0E=
Subject key identifier: 11:04:39:6F:4E:AC:55:76:EA:36:01:EC:FC:7E:4D:80:0C:23:9A:68
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E7D48B0C7DBA6B5C08E33021A275F
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/EQQ5b06sVXbqNgHs_H5NgAwjmmg.roa
Signing time: Mon 02 Jan 2023 06:15:01 +0000
ROA not before: Mon 02 Jan 2023 06:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210890
IP address blocks: 2a0c:b641:220::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:7d:48:b0:c7:db:a6:b5:c0:8e:33:02:1a:27:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1104396f4eac5576ea3601ecfc7e4d800c239a68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:a8:04:ff:c5:2c:4e:97:85:53:6e:2a:80:87:
5d:d8:4f:77:29:d5:c5:86:3a:38:d3:ba:ff:c4:28:
ec:7b:98:49:70:2e:6b:a7:69:70:b3:cd:c9:e5:b3:
b1:01:a6:87:34:a7:17:d0:a3:c4:d4:31:ff:2d:74:
98:1e:be:31:9e:f0:39:9a:44:90:42:b4:dc:64:33:
7c:27:4c:5b:07:75:88:08:bc:c7:de:b8:75:51:4d:
c4:7d:70:5a:3b:43:a0:fc:c1:c8:07:2c:33:de:1e:
a1:83:ab:78:b2:1a:5b:fa:3c:bc:f0:41:27:4c:83:
e2:e7:4d:f8:5a:c3:b9:9d:13:61:d1:8a:cb:80:28:
a0:fb:90:94:2a:81:c3:a0:5b:b7:2c:09:c7:bf:5a:
71:89:83:5b:3a:88:02:7e:51:8d:93:c1:a2:2e:82:
c6:39:dc:20:f0:82:8b:4b:c5:ff:f8:c0:91:2d:85:
97:d6:55:87:d2:b2:3b:c7:df:12:31:b0:9f:6f:e3:
9a:02:84:cd:cc:72:66:4e:fb:d9:5c:56:e3:90:dd:
42:18:7b:06:27:9d:e0:bc:bf:bf:b5:7d:c8:42:f6:
89:a8:cf:08:f5:76:41:d0:4e:c4:87:92:46:d8:ab:
20:b5:c9:77:fe:14:d3:d8:20:db:83:86:95:39:a0:
1b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:04:39:6F:4E:AC:55:76:EA:36:01:EC:FC:7E:4D:80:0C:23:9A:68
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/EQQ5b06sVXbqNgHs_H5NgAwjmmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:220::/44
Signature Algorithm: sha256WithRSAEncryption
77:68:be:ff:f0:1e:63:5a:20:61:62:4e:31:d1:d4:a1:4c:c8:
ac:a1:03:d4:31:c7:c3:a1:f5:6d:de:9b:06:5a:6d:df:62:b8:
05:ee:9b:46:c0:ce:52:6f:32:d4:1d:ef:eb:91:36:a0:f6:54:
a9:30:59:11:53:34:9d:60:90:45:96:03:15:44:25:79:56:0d:
2a:85:7a:5a:b5:46:55:ce:02:61:59:ae:fd:ad:35:55:fd:4c:
cc:7f:a8:9c:7a:54:bf:9f:82:65:a4:4b:a1:51:fe:7a:8e:ef:
ef:08:bf:66:a7:9f:c8:2a:cf:25:bb:9c:23:d3:f9:53:44:3f:
7b:87:56:3a:51:26:1a:37:46:4e:af:66:04:82:2b:49:5e:14:
a3:84:76:f0:e7:e6:50:2e:1c:c8:ef:43:70:05:14:11:b0:a3:
c8:27:07:ae:43:f2:cb:ac:72:80:92:ef:23:0b:d9:c5:28:0f:
f8:3a:43:61:92:5c:06:f0:9c:8b:1f:33:96:c0:b1:4e:fa:c4:
20:9e:09:a2:20:6f:af:46:6e:33:68:2c:f6:3a:94:e7:c4:53:
9b:c4:54:71:e4:21:7e:b2:e7:61:53:50:9a:45:a6:ed:cc:04:
d1:12:6c:00:e8:f6:59:14:ce:c9:4d:0c:8f:c5:84:15:64:72:
3c:fa:28:0b
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVxHn1IsMfbprXAjjMCGidfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi
MzUwNTgwHhcNMjMwMTAyMDYxNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMTA0Mzk2ZjRlYWM1NTc2ZWEzNjAxZWNmYzdlNGQ4MDBjMjM5YTY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnagE/8UsTpeFU24qgIdd2E93KdXF
hjo407r/xCjse5hJcC5rp2lws83J5bOxAaaHNKcX0KPE1DH/LXSYHr4xnvA5mkSQ
QrTcZDN8J0xbB3WICLzH3rh1UU3EfXBaO0Og/MHIBywz3h6hg6t4shpb+jy88EEn
TIPi5034WsO5nRNh0YrLgCig+5CUKoHDoFu3LAnHv1pxiYNbOogCflGNk8GiLoLG
Odwg8IKLS8X/+MCRLYWX1lWH0rI7x98SMbCfb+OaAoTNzHJmTvvZXFbjkN1CGHsG
J53gvL+/tX3IQvaJqM8I9XZB0E7Eh5JG2Ksgtcl3/hTT2CDbg4aVOaAbqwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFBEEOW9OrFV26jYB7Px+TYAMI5poMB8GA1UdIwQY
MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et
NWVjOGM4ZWQ2MGZkLzEvRVFRNWIwNnNWWGJxTmdIc19INU5nQXdqbW1nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk
LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQIg
MA0GCSqGSIb3DQEBCwUAA4IBAQB3aL7/8B5jWiBhYk4x0dShTMisoQPUMcfDofVt
3psGWm3fYrgF7ptGwM5SbzLUHe/rkTag9lSpMFkRUzSdYJBFlgMVRCV5Vg0qhXpa
tUZVzgJhWa79rTVV/UzMf6icelS/n4JlpEuhUf56ju/vCL9mp5/IKs8lu5wj0/lT
RD97h1Y6USYaN0ZOr2YEgitJXhSjhHbw5+ZQLhzI70NwBRQRsKPIJweuQ/LLrHKA
ku8jC9nFKA/4OkNhklwG8JyLHzOWwLFO+sQgngmiIG+vRm4zaCz2OpTnxFObxFRx
5CF+sudhU1CaRabtzATREmwA6PZZFM7JTQyPxYQVZHI8+igL
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:37 2024 by rpki-client on console-ams.rpki-client.org