Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/OLTw5GURRBtE8qgmri5exWIt0AY.roa
File: OLTw5GURRBtE8qgmri5exWIt0AY.roa (raw, json)
Hash identifier: Klx/CaEvhwRQvwktReFrKPdhr1rfMIt/RM8I3Ytmpko=
Subject key identifier: 38:B4:F0:E4:65:11:44:1B:44:F2:A8:26:AE:2E:5E:C5:62:2D:D0:06
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 019057A3ED85797CBD416E06F6629D5C73B1
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/OLTw5GURRBtE8qgmri5exWIt0AY.roa
Signing time: Thu 27 Jun 2024 03:01:19 +0000
ROA not before: Thu 27 Jun 2024 03:01:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202941
IP address blocks: 2a0e:b107:1e10::/48 maxlen: 48
2a0e:b107:1e11::/48 maxlen: 48
2a0e:b107:1e12::/48 maxlen: 48
2a0e:b107:1e13::/48 maxlen: 48
2a0e:b107:1e14::/48 maxlen: 48
2a0e:b107:1e15::/48 maxlen: 48
2a0e:b107:1e16::/48 maxlen: 48
2a0e:b107:1e17::/48 maxlen: 48
2a0e:b107:1e18::/48 maxlen: 48
2a0e:b107:1e19::/48 maxlen: 48
2a0e:b107:1e1a::/48 maxlen: 48
2a0e:b107:1e1b::/48 maxlen: 48
2a0e:b107:1e1c::/48 maxlen: 48
2a0e:b107:1e1d::/48 maxlen: 48
2a0e:b107:1e1e::/48 maxlen: 48
2a0e:b107:1e1f::/48 maxlen: 48
2a10:2f00:187::/48 maxlen: 48
2a13:8380::/32 maxlen: 48
2a13:8381::/32 maxlen: 48
2a13:8382::/32 maxlen: 48
2a13:8383::/32 maxlen: 48
2a13:8384::/32 maxlen: 48
2a13:8385::/32 maxlen: 48
2a13:8386::/32 maxlen: 48
Validation: Failed, certificate revoked on Sat 03 Aug 2024 08:46:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:57:a3:ed:85:79:7c:bd:41:6e:06:f6:62:9d:5c:73:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 27 03:01:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=38b4f0e46511441b44f2a826ae2e5ec5622dd006
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:4d:32:a9:2c:8b:85:80:b9:69:17:16:fc:d4:
26:fc:73:52:22:9a:23:cc:e6:d0:a9:e3:34:52:56:
3b:70:6b:58:f0:57:24:2f:9a:88:b9:17:8a:fa:36:
d6:79:60:89:be:66:41:d3:58:0e:88:be:f2:6f:64:
a0:84:3e:74:9e:fe:9c:28:6e:ab:e4:6d:a3:24:8a:
81:e2:bf:8a:bb:77:99:fc:23:6f:60:dc:dd:9c:75:
54:e4:34:a0:5a:da:46:ba:e2:4e:06:de:54:85:a3:
e2:ba:03:37:db:2d:a9:0a:72:2c:6e:0d:84:62:ec:
48:6f:e4:1e:80:b1:52:6a:a0:77:4d:84:e6:50:c5:
bc:55:f2:1c:26:31:60:b1:89:d8:83:a8:93:93:0f:
1b:e3:ef:01:1b:31:c5:7f:01:e4:3c:cd:94:00:76:
11:3d:14:5f:45:51:9f:2c:41:b7:f7:f3:aa:b3:3b:
18:68:0f:b3:39:53:15:ed:e9:68:c7:ad:01:65:42:
19:98:88:62:22:e6:6f:fb:a5:cf:91:3f:5e:2e:92:
d2:e9:92:e6:d6:87:f8:28:71:40:79:5e:fe:10:67:
2c:42:12:9e:3e:91:fc:3a:f7:b6:4c:82:29:41:0d:
d6:28:ce:1f:86:39:ee:8c:64:a7:4c:1d:29:ba:80:
3c:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:B4:F0:E4:65:11:44:1B:44:F2:A8:26:AE:2E:5E:C5:62:2D:D0:06
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/OLTw5GURRBtE8qgmri5exWIt0AY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1e10::/44
2a10:2f00:187::/48
2a13:8380::-2a13:8386:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
ae:71:1d:f3:b6:65:20:c1:ac:bf:47:1d:d1:c1:cb:ad:1e:90:
e0:62:52:d9:72:9f:78:7f:fc:b3:15:e6:af:53:6e:c6:fe:9e:
66:16:dd:88:aa:96:91:29:7a:d2:7c:f0:e3:3c:39:10:fe:e6:
5e:79:3c:5f:26:0d:74:57:8b:a2:45:61:74:33:b8:43:f9:6b:
5a:25:a7:2f:2c:9d:8d:76:34:ac:a9:cf:fa:a7:9c:70:10:29:
53:76:d0:6b:27:a9:6b:66:6d:34:fc:66:ef:de:01:67:f5:31:
e5:4e:7e:fc:8a:8d:4c:3b:99:b9:64:b7:3c:24:09:04:b8:80:
16:11:33:74:1a:97:b7:32:25:1c:8b:8e:9c:04:01:37:b8:35:
0b:7f:89:7d:75:74:e2:54:6f:cd:96:93:d7:8c:5e:c8:4d:e4:
9c:4c:ea:f6:2b:a2:61:f4:f2:03:7c:e5:4e:96:50:e1:03:2b:
d0:3a:20:9e:46:0f:44:03:8f:7a:27:ec:f6:83:db:6a:c5:fb:
71:fa:08:1f:41:8b:90:3c:22:97:92:24:01:13:5a:53:09:05:
6b:fc:ea:cf:09:e1:cf:53:2e:a6:57:21:44:2e:eb:c0:fe:21:
df:86:0d:0a:c8:5a:61:69:8a:49:a7:3f:ea:05:62:98:9e:f6:
ae:67:c0:44
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgISAZBXo+2FeXy9QW4G9mKdXHOxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjQwNjI3MDMwMTE5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOGI0ZjBlNDY1MTE0NDFiNDRmMmE4MjZhZTJlNWVjNTYyMmRkMDA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr00yqSyLhYC5aRcW/NQm/HNSIpoj
zObQqeM0UlY7cGtY8FckL5qIuReK+jbWeWCJvmZB01gOiL7yb2SghD50nv6cKG6r
5G2jJIqB4r+Ku3eZ/CNvYNzdnHVU5DSgWtpGuuJOBt5UhaPiugM32y2pCnIsbg2E
YuxIb+QegLFSaqB3TYTmUMW8VfIcJjFgsYnYg6iTkw8b4+8BGzHFfwHkPM2UAHYR
PRRfRVGfLEG39/OqszsYaA+zOVMV7elox60BZUIZmIhiIuZv+6XPkT9eLpLS6ZLm
1of4KHFAeV7+EGcsQhKePpH8Ove2TIIpQQ3WKM4fhjnujGSnTB0puoA8gQIDAQAB
o4ICJTCCAiEwHQYDVR0OBBYEFDi08ORlEUQbRPKoJq4uXsViLdAGMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvT0xUdzVHVVJSQnRFOHFnbXJpNWV4V0l0MEFZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCwwKjAoBAIAAjAiAwcEKg6xBx4Q
AwcAKhAvAAGHMA4DBQcqE4OAAwUAKhODhjANBgkqhkiG9w0BAQsFAAOCAQEArnEd
87ZlIMGsv0cd0cHLrR6Q4GJS2XKfeH/8sxXmr1Nuxv6eZhbdiKqWkSl60nzw4zw5
EP7mXnk8XyYNdFeLokVhdDO4Q/lrWiWnLyydjXY0rKnP+qeccBApU3bQayepa2Zt
NPxm794BZ/Ux5U5+/IqNTDuZuWS3PCQJBLiAFhEzdBqXtzIlHIuOnAQBN7g1C3+J
fXV04lRvzZaT14xeyE3knEzq9iuiYfTyA3zlTpZQ4QMr0DognkYPRAOPeifs9oPb
asX7cfoIH0GLkDwil5IkARNaUwkFa/zqzwnhz1MuplchRC7rwP4h34YNCshaYWmK
Sac/6gVimJ72rmfARA==
-----END CERTIFICATE-----
Generated at Sat Aug 3 10:31:20 2024 by rpki-client on console-fra.rpki-client.org