Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/V5HtVBpJSm4sSlT__DIizxaIqsQ.roa
File: V5HtVBpJSm4sSlT__DIizxaIqsQ.roa (raw, json)
Hash identifier: OfFbrlEcYbvYnBChDLoXIRltbx4lJbiquIqy9Q9Ypsk=
Subject key identifier: 57:91:ED:54:1A:49:4A:6E:2C:4A:54:FF:FC:32:22:CF:16:88:AA:C4
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E80F3D93FBDDD7A17A503BB8EF1ACD
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/V5HtVBpJSm4sSlT__DIizxaIqsQ.roa
Signing time: Mon 02 Jan 2023 05:15:34 +0000
ROA not before: Mon 02 Jan 2023 05:15:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211946
IP address blocks: 2a0e:b107:1c35::/48 maxlen: 48
2a0e:97c0:148::/48 maxlen: 48
2a0e:b107:1c3a::/48 maxlen: 48
2a0e:97c0:143::/48 maxlen: 48
2a0e:b107:1c3f::/48 maxlen: 48
2a0e:b107:1c34::/48 maxlen: 48
2a0e:97c0:141::/48 maxlen: 48
2a0e:b107:1c39::/48 maxlen: 48
2a0e:b107:1c3e::/48 maxlen: 48
2a0e:b107:1c33::/48 maxlen: 48
2a0e:97c0:142::/48 maxlen: 48
2a0e:b107:1c38::/48 maxlen: 48
2a0e:97c0:145::/48 maxlen: 48
2a0e:b107:1c3d::/48 maxlen: 48
2a0e:b107:1c32::/48 maxlen: 48
2a0e:b107:1c37::/48 maxlen: 48
2a0e:97c0:146::/48 maxlen: 48
2a0e:b107:1c3c::/48 maxlen: 48
2a0e:97c0:149::/48 maxlen: 48
2a0e:b107:1c31::/48 maxlen: 48
2a0e:97c0:144::/48 maxlen: 48
2a0e:b107:1c36::/48 maxlen: 48
2a0e:b107:1c3b::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 23 Jan 2023 10:50:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e8:0f:3d:93:fb:dd:d7:a1:7a:50:3b:b8:ef:1a:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5791ed541a494a6e2c4a54fffc3222cf1688aac4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:09:f7:6f:1a:6c:1b:66:00:c6:2b:e9:da:2c:
6e:38:70:0b:b2:c0:81:80:7c:2f:19:17:c0:e2:c6:
85:09:cf:9a:45:ca:31:54:1c:1b:30:14:8f:64:ee:
82:ce:5b:49:04:a6:ec:13:10:82:8b:d8:59:a1:9c:
43:34:c5:84:ae:f2:66:49:69:2c:de:e7:20:f4:86:
b7:d6:98:73:3d:d4:da:ab:e7:fb:1d:a2:2e:9a:42:
50:71:d0:36:f4:5d:f9:10:fa:dc:34:49:05:04:35:
24:aa:96:f5:24:e3:05:98:ea:e8:50:f6:d8:06:df:
b0:b9:03:4c:29:a7:a7:3a:4b:ae:9e:0e:47:db:61:
8e:f0:e0:a4:c4:f9:fb:54:b2:df:42:b3:a9:70:1b:
07:4e:fc:fc:0f:a9:94:79:fc:81:ac:80:59:dd:d4:
e2:21:1c:11:af:49:f6:11:e3:0b:20:aa:23:2f:7b:
eb:d9:78:cb:ff:43:58:ed:d1:c5:e6:d8:a4:92:48:
7f:a2:c2:83:9a:89:f1:32:53:d5:6e:96:67:41:ac:
a9:04:99:c8:08:41:0b:7e:4b:90:d3:93:fb:e2:f2:
a1:fe:2b:3a:59:96:d8:30:16:3a:b0:76:c5:75:0b:
66:7e:ba:4f:43:d8:0a:7c:32:c3:37:99:34:5d:b0:
4f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:91:ED:54:1A:49:4A:6E:2C:4A:54:FF:FC:32:22:CF:16:88:AA:C4
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/V5HtVBpJSm4sSlT__DIizxaIqsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:141::-2a0e:97c0:146:ffff:ffff:ffff:ffff:ffff
2a0e:97c0:148::/47
2a0e:b107:1c31::-2a0e:b107:1c3f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
70:4c:af:97:93:64:22:e4:b9:9a:96:a3:b4:e3:f7:4f:59:83:
c3:d2:4f:16:b4:de:96:65:eb:85:72:e6:32:5e:dc:9a:d8:4a:
f6:77:29:dc:dc:fd:ef:c2:06:62:d3:24:6e:eb:1c:c4:5c:ed:
d9:be:6d:fb:d1:55:f9:a4:a5:ef:01:ca:20:b4:3c:8c:e8:9b:
7e:7d:88:67:d1:6a:0c:69:ff:cb:5b:5f:0f:d5:f5:e5:e3:6f:
1a:a3:80:06:0f:82:c2:38:d1:e6:2f:b5:9f:2b:d2:bc:04:39:
96:9c:da:80:08:1c:f6:33:98:46:c1:bc:f1:9a:54:e5:f3:aa:
d4:80:2b:bc:46:52:2f:a1:58:ce:a9:b9:75:96:a2:3d:13:07:
f3:93:72:b4:7a:80:9a:cf:f8:fd:9b:93:5b:88:42:4e:a3:7b:
51:87:d0:72:79:f7:f5:89:33:98:00:c7:60:d6:2c:c5:cf:85:
5e:98:89:1f:f5:3f:db:96:59:4b:b3:d0:28:dd:1a:83:b4:62:
3b:b5:15:a9:7b:82:db:06:4b:7f:41:cc:9a:a4:c7:3c:d8:bf:
91:09:40:3c:83:99:af:4e:e7:e9:bd:08:c1:16:4f:32:0c:eb:
99:a7:dd:58:a9:ea:1d:4a:87:00:af:a7:30:36:1c:c3:58:9e:
a2:9e:6a:e4
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgISAYVw6A89k/vd16F6UDu47xrNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwMTAyMDUxNTM0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NzkxZWQ1NDFhNDk0YTZlMmM0YTU0ZmZmYzMyMjJjZjE2ODhhYWM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhgn3bxpsG2YAxivp2ixuOHALssCB
gHwvGRfA4saFCc+aRcoxVBwbMBSPZO6CzltJBKbsExCCi9hZoZxDNMWErvJmSWks
3ucg9Ia31phzPdTaq+f7HaIumkJQcdA29F35EPrcNEkFBDUkqpb1JOMFmOroUPbY
Bt+wuQNMKaenOkuung5H22GO8OCkxPn7VLLfQrOpcBsHTvz8D6mUefyBrIBZ3dTi
IRwRr0n2EeMLIKojL3vr2XjL/0NY7dHF5tikkkh/osKDmonxMlPVbpZnQaypBJnI
CEELfkuQ05P74vKh/is6WZbYMBY6sHbFdQtmfrpPQ9gKfDLDN5k0XbBPdwIDAQAB
o4ICNDCCAjAwHQYDVR0OBBYEFFeR7VQaSUpuLEpU//wyIs8WiKrEMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvVjVIdFZCcEpTbTRzU2xUX19ESWl6eGFJcXNRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEoGCCsGAQUFBwEHAQH/BDswOTA3BAIAAjAxMBIDBwAqDpfA
AUEDBwAqDpfAAUYDBwEqDpfAAUgwEgMHACoOsQccMQMHBioOsQccADANBgkqhkiG
9w0BAQsFAAOCAQEAcEyvl5NkIuS5mpajtOP3T1mDw9JPFrTelmXrhXLmMl7cmthK
9ncp3Nz978IGYtMkbuscxFzt2b5t+9FV+aSl7wHKILQ8jOibfn2IZ9FqDGn/y1tf
D9X15eNvGqOABg+CwjjR5i+1nyvSvAQ5lpzagAgc9jOYRsG88ZpU5fOq1IArvEZS
L6FYzqm5dZaiPRMH85NytHqAms/4/ZuTW4hCTqN7UYfQcnn39YkzmADHYNYsxc+F
XpiJH/U/25ZZS7PQKN0ag7RiO7UVqXuC2wZLf0HMmqTHPNi/kQlAPIOZr07n6b0I
wRZPMgzrmafdWKnqHUqHAK+nMDYcw1ieop5q5A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:04 2024 by rpki-client on console-ams.rpki-client.org