Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1-XrYkpqw66FBM8pFbKrO2ufH5Yo.roa
File: 1-XrYkpqw66FBM8pFbKrO2ufH5Yo.roa (raw, json)
Hash identifier: xTcyFX9xjQZ9aNEPaL0nKEeMljQv1Yrsq6frn6BgKrQ=
Subject key identifier: F9:7A:D8:92:9A:B0:EB:A1:41:33:CA:45:6C:AA:CE:DA:E7:C7:E5:8A
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018FC9C0847D904CBC632964964F7E6D8C03
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1-XrYkpqw66FBM8pFbKrO2ufH5Yo.roa
Signing time: Thu 30 May 2024 13:46:28 +0000
ROA not before: Thu 30 May 2024 13:46:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 45.148.116.0/22 maxlen: 24
185.238.188.0/22 maxlen: 24
2a06:de01:d8::/45 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:97c1:8a2f::/48 maxlen: 48
2a0e:97c4:ac00::/38 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a0e:b107:1870::/48 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a0e:b107:278b::/48 maxlen: 48
2a10:ccc3:ccca::/48 maxlen: 48
2a10:ccc3:cccc::/48 maxlen: 48
2a10:ccc3:ccce::/47 maxlen: 48
2a10:ccc6:6660::/44 maxlen: 48
2a10:ccc7:9000::/38 maxlen: 48
Validation: Failed, certificate revoked on Sun 02 Jun 2024 13:37:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c9:c0:84:7d:90:4c:bc:63:29:64:96:4f:7e:6d:8c:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 30 13:46:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f97ad8929ab0eba14133ca456caacedae7c7e58a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c1:36:dd:f2:27:f9:b1:27:50:ab:cd:1b:ae:
dd:0b:ca:09:39:a1:73:ea:18:9a:98:80:d9:45:cd:
27:df:99:50:df:61:93:65:ca:30:a8:8d:5c:27:2e:
d6:54:1c:cb:58:1d:f2:fa:fa:b0:20:ad:cf:61:0c:
05:0b:77:3a:a1:23:79:f5:a6:e0:f0:98:a7:d1:92:
5c:aa:ae:2c:a7:06:80:81:52:b3:66:5e:eb:46:26:
13:31:43:cb:6d:30:d7:8b:0c:7c:6a:ad:84:ab:05:
17:e0:6f:db:f3:73:2e:d7:42:46:ac:3e:4f:37:84:
83:45:db:e5:a2:10:9e:0f:2f:50:41:09:84:d0:c7:
6b:76:8c:94:03:4b:7d:b0:30:98:31:fa:3f:0f:7b:
06:ce:c3:d0:d6:c7:34:d4:43:fc:8c:92:be:47:a0:
62:4d:d9:05:35:8b:9d:38:1c:60:52:6b:4c:0d:f2:
e6:6e:b1:db:cc:f5:61:8e:7e:e3:c3:0f:71:b6:96:
ed:84:09:81:b5:d1:0b:9d:02:77:38:d6:c5:8b:15:
59:4c:df:48:ab:13:f6:c1:ee:6b:d4:3f:17:6b:53:
f5:22:92:a9:83:33:20:8b:5a:c7:4c:1d:72:36:94:
77:a2:65:0f:94:9e:08:73:bf:27:40:1f:3d:23:93:
77:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:7A:D8:92:9A:B0:EB:A1:41:33:CA:45:6C:AA:CE:DA:E7:C7:E5:8A
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1-XrYkpqw66FBM8pFbKrO2ufH5Yo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.116.0/22
185.238.188.0/22
IPv6:
2a06:de01:d8::/45
2a0c:3b87:ff00::/40
2a0e:97c0:750::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:97c1:8a2f::/48
2a0e:97c4:ac00::/38
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
2a0e:b107:278b::/48
2a10:ccc3:ccca::/48
2a10:ccc3:cccc::/48
2a10:ccc3:ccce::/47
2a10:ccc6:6660::/44
2a10:ccc7:9000::/38
Signature Algorithm: sha256WithRSAEncryption
0c:89:0b:90:db:13:49:1e:7c:3b:b4:8f:0f:bf:c3:bd:54:c7:
06:4a:40:76:7a:11:5f:8d:ac:1d:79:4a:34:dc:a4:72:7f:ab:
ac:a9:86:9e:78:59:1b:ce:19:6f:de:a5:39:df:0a:5f:8b:47:
4e:1d:3e:ee:5f:0c:f2:c2:62:dd:0f:54:24:20:30:01:6e:1e:
31:07:d7:32:e3:dc:39:61:df:ca:1c:8a:74:43:2b:e5:e8:4d:
d2:3d:a2:51:c3:68:6b:b1:a3:7e:a5:c5:74:77:36:47:33:38:
d3:44:5f:af:08:b4:63:af:20:7f:b2:e4:77:9e:6c:e4:68:90:
50:42:e3:ff:95:ea:a8:2d:47:de:05:81:41:fb:24:ce:be:6a:
7e:e6:7f:43:8d:3a:27:b3:18:e2:38:ae:2a:c3:b9:59:79:dc:
b8:80:88:f1:a6:51:2e:ca:77:a6:aa:12:4f:61:1a:3b:d7:d8:
98:32:26:e4:2a:5c:b4:b7:82:27:69:7a:f6:20:b1:24:28:4f:
05:8c:6b:ca:ea:25:33:c5:69:7f:f2:71:16:08:a4:17:36:46:
c7:ec:06:3c:cf:cc:39:ae:f2:bf:96:de:0a:17:48:f6:63:51:
ed:d0:45:ab:8a:38:98:be:56:29:87:c9:75:04:14:e3:f0:a2:
e5:7e:5a:0d
-----BEGIN CERTIFICATE-----
MIIFsjCCBJqgAwIBAgISAY/JwIR9kEy8Yylklk9+bYwDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjQwNTMwMTM0NjI4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOTdhZDg5MjlhYjBlYmExNDEzM2NhNDU2Y2FhY2VkYWU3YzdlNThhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo8E23fIn+bEnUKvNG67dC8oJOaFz
6hiamIDZRc0n35lQ32GTZcowqI1cJy7WVBzLWB3y+vqwIK3PYQwFC3c6oSN59abg
8Jin0ZJcqq4spwaAgVKzZl7rRiYTMUPLbTDXiwx8aq2EqwUX4G/b83Mu10JGrD5P
N4SDRdvlohCeDy9QQQmE0MdrdoyUA0t9sDCYMfo/D3sGzsPQ1sc01EP8jJK+R6Bi
TdkFNYudOBxgUmtMDfLmbrHbzPVhjn7jww9xtpbthAmBtdELnQJ3ONbFixVZTN9I
qxP2we5r1D8Xa1P1IpKpgzMgi1rHTB1yNpR3omUPlJ4Ic78nQB89I5N3awIDAQAB
o4ICvjCCArowHQYDVR0OBBYEFPl62JKasOuhQTPKRWyqztrnx+WKMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvMS1YcllrcHF3NjZGQk04cEZiS3JPMnVmSDVZby5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNTEvNDk1N2E0LWNlNTktNDMxNS05OTc2LWRjNWVjNzQ4ZjZh
NS8xL1kta1djWHF4SE16eEh2SDdYQkx1UVpVUHJacy5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjCB0gYIKwYBBQUHAQcBAf8EgcIwgb8wEgQCAAEwDAMEAi2U
dAMEArnuvDCBqAQCAAIwgaEDBwMqBt4BANgDBgAqDDuH/wMHACoOl8AHUDASAwcA
Kg6XwAeRAwcAKg6XwAeSAwcAKg6XwYovAwYCKg6XxKwDBwAqDrEHCfQDBwAqDrEH
CfYDBwAqDrEHDfIDBwAqDrEHGHADBwAqDrEHG54DBwAqDrEHJ4sDBwAqEMzDzMoD
BwAqEMzDzMwDBwEqEMzDzM4DBwQqEMzGZmADBgIqEMzHkDANBgkqhkiG9w0BAQsF
AAOCAQEADIkLkNsTSR58O7SPD7/DvVTHBkpAdnoRX42sHXlKNNykcn+rrKmGnnhZ
G84Zb96lOd8KX4tHTh0+7l8M8sJi3Q9UJCAwAW4eMQfXMuPcOWHfyhyKdEMr5ehN
0j2iUcNoa7GjfqXFdHc2RzM400Rfrwi0Y68gf7Lkd55s5GiQUELj/5XqqC1H3gWB
Qfskzr5qfuZ/Q406J7MY4jiuKsO5WXncuICI8aZRLsp3pqoST2EaO9fYmDIm5Cpc
tLeCJ2l69iCxJChPBYxryuolM8Vpf/JxFgikFzZGx+wGPM/MOa7yv5beChdI9mNR
7dBFq4o4mL5WKYfJdQQU4/Ci5X5aDQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:21 2024 by rpki-client on console-fra.rpki-client.org