Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/0f2266-b4f1-48fc-b293-67932656e594/1/EgOyH9Q6Oun3vgUjetE8jEvfzlI.roa
File: EgOyH9Q6Oun3vgUjetE8jEvfzlI.roa (raw, json)
Hash identifier: 867D2IG2FUpeu5kHToSQeuUiJ3OG9tWxmPKPylLpQ8U=
Subject key identifier: 12:03:B2:1F:D4:3A:3A:E9:F7:BE:05:23:7A:D1:3C:8C:4B:DF:CE:52
Certificate issuer: /CN=603b31bc6e7f42f6303870f0234b40def71fa03d
Certificate serial: 0190DA14426BF099D66887FB7FE0AA553304
Authority key identifier: 60:3B:31:BC:6E:7F:42:F6:30:38:70:F0:23:4B:40:DE:F7:1F:A0:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YDsxvG5_QvYwOHDwI0tA3vcfoD0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/0f2266-b4f1-48fc-b293-67932656e594/1/EgOyH9Q6Oun3vgUjetE8jEvfzlI.roa
Signing time: Mon 22 Jul 2024 10:54:38 +0000
ROA not before: Mon 22 Jul 2024 10:54:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215123
IP address blocks: 2a14:37c0::/48 maxlen: 48
2a14:37c1::/32 maxlen: 32
2a14:37c2::/32 maxlen: 32
2a14:37c3::/32 maxlen: 32
2a14:37c4::/32 maxlen: 32
2a14:37c5::/32 maxlen: 32
2a14:37c6::/32 maxlen: 32
2a14:37c7::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 06 Aug 2024 14:52:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:da:14:42:6b:f0:99:d6:68:87:fb:7f:e0:aa:55:33:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=603b31bc6e7f42f6303870f0234b40def71fa03d
Validity
Not Before: Jul 22 10:54:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1203b21fd43a3ae9f7be05237ad13c8c4bdfce52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:58:eb:b9:e9:83:41:ec:3f:3e:aa:c0:25:03:
8a:45:f7:3e:4e:66:21:d8:94:cb:8f:db:7e:02:78:
cd:8b:13:fc:7b:ad:0f:5b:79:e4:04:25:11:1d:33:
fe:0e:17:8e:f9:4a:08:4b:03:84:8e:7b:c0:4c:53:
82:90:94:8b:29:23:eb:6a:76:c7:33:a9:9d:f2:2d:
0a:7f:ce:f2:55:0c:54:bd:82:a8:f1:f7:55:22:40:
0e:d1:9e:1d:07:5b:77:1d:1a:9d:52:e1:de:c1:e3:
49:9b:03:48:55:ef:7f:f6:12:ef:54:53:0d:df:47:
29:75:71:75:f0:67:09:4d:e2:83:4c:db:44:08:31:
04:4f:52:f0:89:a6:c3:ed:2c:8b:4a:5e:f5:2c:0a:
e8:9f:ff:8e:79:5f:41:42:10:8c:5a:cb:c8:72:5b:
7e:14:ef:b5:f2:c2:2f:61:0a:46:47:90:bb:ce:de:
0e:ff:f5:27:05:38:28:bb:c5:6f:7f:4f:19:5f:b6:
8b:71:93:53:fa:72:67:24:4c:12:bc:22:f4:09:5b:
8f:14:8b:34:8f:e1:9d:2e:cd:6f:17:bb:2a:4d:1e:
dc:88:f6:5f:15:d3:24:1d:ee:00:e6:84:e0:73:a4:
dc:91:23:22:44:a4:0a:8b:77:bc:90:9a:82:0a:2b:
55:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:03:B2:1F:D4:3A:3A:E9:F7:BE:05:23:7A:D1:3C:8C:4B:DF:CE:52
X509v3 Authority Key Identifier:
keyid:60:3B:31:BC:6E:7F:42:F6:30:38:70:F0:23:4B:40:DE:F7:1F:A0:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDsxvG5_QvYwOHDwI0tA3vcfoD0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/0f2266-b4f1-48fc-b293-67932656e594/1/EgOyH9Q6Oun3vgUjetE8jEvfzlI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/0f2266-b4f1-48fc-b293-67932656e594/1/YDsxvG5_QvYwOHDwI0tA3vcfoD0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:37c0::/48
2a14:37c1::-2a14:37c7:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
77:a8:43:77:1a:c7:77:c0:7e:73:ce:37:01:ff:bd:d6:a9:79:
25:37:e8:b7:51:f6:36:86:1c:eb:3c:01:fe:57:0d:95:e3:56:
f6:d6:9d:c7:82:fd:cb:31:77:3d:06:41:35:f2:26:3c:a0:1d:
29:93:69:d0:31:14:ec:82:48:58:93:0c:77:59:8f:55:cc:a7:
5d:51:b2:7b:db:62:96:8b:a3:42:af:de:2c:18:8f:07:38:cf:
2c:df:73:5d:43:5b:b3:3e:5e:14:52:7d:11:97:e9:12:e7:01:
5c:dd:c9:d0:57:7e:ce:56:7d:9e:a3:6c:4e:75:58:d0:0b:51:
e0:05:c4:1f:bc:9a:e1:85:20:91:3a:f3:bb:a7:94:bd:72:f7:
b2:40:13:94:2b:d3:f8:cd:c0:c3:67:7c:2e:63:4c:a8:dc:1d:
af:dc:c6:e8:36:5c:af:d8:96:90:6a:a3:0f:e1:4f:02:f7:21:
ac:8d:4c:8a:ab:7a:60:37:f7:af:d4:1d:a1:d5:52:86:14:1d:
1d:59:f3:d7:85:a9:2b:e6:b5:c7:23:db:d5:a1:34:52:4e:37:
37:b3:9d:e1:2f:19:df:29:d5:dd:97:f3:b1:3e:2b:3c:be:94:
03:c4:68:ef:24:48:b2:e0:0e:1c:4e:a3:8f:95:82:a1:08:aa:
11:a6:d4:29
-----BEGIN CERTIFICATE-----
MIIFEDCCA/igAwIBAgISAZDaFEJr8JnWaIf7f+CqVTMEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwM2IzMWJjNmU3ZjQyZjYzMDM4NzBmMDIzNGI0MGRlZjcx
ZmEwM2QwHhcNMjQwNzIyMTA1NDM4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMjAzYjIxZmQ0M2EzYWU5ZjdiZTA1MjM3YWQxM2M4YzRiZGZjZTUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArljruemDQew/PqrAJQOKRfc+TmYh
2JTLj9t+AnjNixP8e60PW3nkBCURHTP+DheO+UoISwOEjnvATFOCkJSLKSPranbH
M6md8i0Kf87yVQxUvYKo8fdVIkAO0Z4dB1t3HRqdUuHeweNJmwNIVe9/9hLvVFMN
30cpdXF18GcJTeKDTNtECDEET1LwiabD7SyLSl71LAron/+OeV9BQhCMWsvIclt+
FO+18sIvYQpGR5C7zt4O//UnBTgou8Vvf08ZX7aLcZNT+nJnJEwSvCL0CVuPFIs0
j+GdLs1vF7sqTR7ciPZfFdMkHe4A5oTgc6TckSMiRKQKi3e8kJqCCitVxQIDAQAB
o4ICHDCCAhgwHQYDVR0OBBYEFBIDsh/UOjrp974FI3rRPIxL385SMB8GA1UdIwQY
MBaAFGA7Mbxuf0L2MDhw8CNLQN73H6A9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWURzeHZHNV9Rdll3T0hEd0kwdEEzdmNmb0QwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8wZjIyNjYtYjRmMS00OGZjLWIyOTMt
Njc5MzI2NTZlNTk0LzEvRWdPeUg5UTZPdW4zdmdVamV0RThqRXZmemxJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC8wZjIyNjYtYjRmMS00OGZjLWIyOTMtNjc5MzI2NTZlNTk0
LzEvWURzeHZHNV9Rdll3T0hEd0kwdEEzdmNmb0QwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDIGCCsGAQUFBwEHAQH/BCMwITAfBAIAAjAZAwcAKhQ3wAAA
MA4DBQAqFDfBAwUDKhQ3wDANBgkqhkiG9w0BAQsFAAOCAQEAd6hDdxrHd8B+c843
Af+91ql5JTfot1H2NoYc6zwB/lcNleNW9tadx4L9yzF3PQZBNfImPKAdKZNp0DEU
7IJIWJMMd1mPVcynXVGye9tiloujQq/eLBiPBzjPLN9zXUNbsz5eFFJ9EZfpEucB
XN3J0Fd+zlZ9nqNsTnVY0AtR4AXEH7ya4YUgkTrzu6eUvXL3skATlCvT+M3Aw2d8
LmNMqNwdr9zG6DZcr9iWkGqjD+FPAvchrI1Miqt6YDf3r9QdodVShhQdHVnz14Wp
K+a1xyPb1aE0Uk43N7Od4S8Z3ynV3ZfzsT4rPL6UA8Ro7yRIsuAOHE6jj5WCoQiq
EabUKQ==
-----END CERTIFICATE-----
Generated at Tue Aug 6 18:36:43 2024 by rpki-client on console-fra.rpki-client.org