Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/6zZQERqNTdHEnaLxj2H587K5yjo.roa
File: 6zZQERqNTdHEnaLxj2H587K5yjo.roa (raw, json)
Hash identifier: AdNCyNQPVkaYb+a6jYSzj6dBi2Dvfyh9lhMrsR0XzTo=
Subject key identifier: EB:36:50:11:1A:8D:4D:D1:C4:9D:A2:F1:8F:61:F9:F3:B2:B9:CA:3A
Certificate issuer: /CN=17067977efd14bc89fb0daba03bb0f600fbb0184
Certificate serial: 0193297965FBAD7DF09F4615656F4FA28D76
Authority key identifier: 17:06:79:77:EF:D1:4B:C8:9F:B0:DA:BA:03:BB:0F:60:0F:BB:01:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/6zZQERqNTdHEnaLxj2H587K5yjo.roa
Signing time: Thu 14 Nov 2024 07:00:42 +0000
ROA not before: Thu 14 Nov 2024 07:00:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 86.110.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Nov 2024 14:50:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:29:79:65:fb:ad:7d:f0:9f:46:15:65:6f:4f:a2:8d:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17067977efd14bc89fb0daba03bb0f600fbb0184
Validity
Not Before: Nov 14 07:00:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eb3650111a8d4dd1c49da2f18f61f9f3b2b9ca3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f6:0c:03:6d:50:17:3a:4e:31:5a:62:19:ca:
d9:2f:ea:86:b1:13:5f:6d:16:a0:a6:3e:62:ee:63:
2a:4a:a6:c7:ff:b3:f6:05:d4:9a:7f:a1:cf:86:88:
e2:9b:cb:9c:87:20:ea:b0:38:92:fe:fe:e4:c5:3e:
2c:c5:c3:d7:5d:1d:f3:ce:68:7f:df:97:72:80:74:
d6:f3:f7:88:a6:26:30:64:49:54:e2:ce:27:11:aa:
e4:8a:5d:23:e0:db:7f:d1:6f:bc:3f:9d:39:f4:df:
de:57:f8:b9:23:6f:0f:ed:a4:39:eb:1e:6a:93:57:
b3:de:cc:31:bc:31:cf:e8:f5:dc:e0:51:7b:6a:39:
68:fd:4a:fa:85:d4:60:95:b1:5b:00:d7:b2:0c:c8:
a0:45:39:24:2c:ff:a1:ac:b6:0f:44:7e:ea:ac:13:
9f:19:54:4d:98:95:48:45:eb:d2:aa:2a:2a:d6:cd:
cf:50:95:ca:a6:44:7f:39:ae:fc:59:66:f5:ca:34:
23:45:3f:4a:4b:ad:d0:1f:7b:96:36:51:18:45:7a:
4d:c6:70:4b:89:92:fc:fe:9c:6a:99:f1:a7:a7:b2:
66:7d:f0:1d:ae:69:f4:4c:db:e9:5e:5c:29:ec:93:
05:16:4a:58:5d:0d:26:6a:fa:78:63:0b:51:2b:fa:
fb:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:36:50:11:1A:8D:4D:D1:C4:9D:A2:F1:8F:61:F9:F3:B2:B9:CA:3A
X509v3 Authority Key Identifier:
keyid:17:06:79:77:EF:D1:4B:C8:9F:B0:DA:BA:03:BB:0F:60:0F:BB:01:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/6zZQERqNTdHEnaLxj2H587K5yjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/e1ad7a-12e7-4fd0-b61e-d1a7772db076/1/FwZ5d-_RS8ifsNq6A7sPYA-7AYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.110.59.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:db:18:e8:92:0d:cc:6d:81:f8:d5:ed:9b:99:ae:08:b9:9a:
4b:69:7d:7c:6c:e3:4b:82:ca:28:22:ce:db:d4:a1:96:a7:8e:
74:d5:5c:c8:f3:08:54:f4:2c:7e:04:28:3e:65:83:a2:05:af:
57:4f:ea:25:7b:db:52:75:3e:1c:7e:3a:bd:f0:1a:47:77:a5:
8b:96:64:51:2f:5c:60:4d:fe:fa:c1:28:bf:50:d8:e3:a3:49:
4e:ab:6b:0f:df:05:88:0b:5a:11:d9:3a:09:f9:3a:04:d7:3f:
6f:44:a5:0b:a3:a7:54:ce:fc:fb:79:ba:87:39:e0:53:fa:11:
59:17:12:7a:c5:5c:86:b9:00:26:ca:e7:57:5a:e4:f0:b8:3d:
9b:a9:42:f6:e7:20:92:27:17:f5:58:eb:04:09:a5:6b:4c:9b:
27:0f:3f:70:34:1a:94:93:48:40:8e:09:2b:a3:25:96:b5:7d:
79:cc:60:66:9b:c6:e2:68:2e:9d:6a:1d:77:70:a8:7c:58:54:
c3:89:21:61:e6:01:e7:66:fb:ae:ae:85:50:3c:b5:59:b6:30:
4c:78:ff:8f:b7:73:58:7d:34:da:61:15:94:bd:45:7c:e6:eb:
01:c5:d7:13:c1:2f:a6:06:14:7b:5f:e0:6f:53:ec:e9:68:9f:
21:2a:c6:01
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZMpeWX7rX3wn0YVZW9Poo12MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3MDY3OTc3ZWZkMTRiYzg5ZmIwZGFiYTAzYmIwZjYwMGZi
YjAxODQwHhcNMjQxMTE0MDcwMDQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYjM2NTAxMTFhOGQ0ZGQxYzQ5ZGEyZjE4ZjYxZjlmM2IyYjljYTNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAufYMA21QFzpOMVpiGcrZL+qGsRNf
bRagpj5i7mMqSqbH/7P2BdSaf6HPhojim8uchyDqsDiS/v7kxT4sxcPXXR3zzmh/
35dygHTW8/eIpiYwZElU4s4nEarkil0j4Nt/0W+8P5059N/eV/i5I28P7aQ56x5q
k1ez3swxvDHP6PXc4FF7ajlo/Ur6hdRglbFbANeyDMigRTkkLP+hrLYPRH7qrBOf
GVRNmJVIRevSqioq1s3PUJXKpkR/Oa78WWb1yjQjRT9KS63QH3uWNlEYRXpNxnBL
iZL8/pxqmfGnp7JmffAdrmn0TNvpXlwp7JMFFkpYXQ0mavp4YwtRK/r7rQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOs2UBEajU3RxJ2i8Y9h+fOyuco6MB8GA1UdIwQY
MBaAFBcGeXfv0UvIn7DaugO7D2APuwGEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRndaNWQtX1JTOGlmc05xNkE3c1BZQS03QVlRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9lMWFkN2EtMTJlNy00ZmQwLWI2MWUt
ZDFhNzc3MmRiMDc2LzEvNnpaUUVScU5UZEhFbmFMeGoySDU4N0s1eWpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS9lMWFkN2EtMTJlNy00ZmQwLWI2MWUtZDFhNzc3MmRiMDc2
LzEvRndaNWQtX1JTOGlmc05xNkE3c1BZQS03QVlRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVm47MA0G
CSqGSIb3DQEBCwUAA4IBAQBt2xjokg3MbYH41e2bma4IuZpLaX18bONLgsooIs7b
1KGWp4501VzI8whU9Cx+BCg+ZYOiBa9XT+ole9tSdT4cfjq98BpHd6WLlmRRL1xg
Tf76wSi/UNjjo0lOq2sP3wWIC1oR2ToJ+ToE1z9vRKULo6dUzvz7ebqHOeBT+hFZ
FxJ6xVyGuQAmyudXWuTwuD2bqUL25yCSJxf1WOsECaVrTJsnDz9wNBqUk0hAjgkr
oyWWtX15zGBmm8biaC6dah13cKh8WFTDiSFh5gHnZvuuroVQPLVZtjBMeP+Pt3NY
fTTaYRWUvUV85usBxdcTwS+mBhR7X+BvU+zpaJ8hKsYB
-----END CERTIFICATE-----
Generated at Wed Nov 20 17:27:22 2024 by rpki-client on console-ams.rpki-client.org