Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/aR-j-F27tyhvn7-25xBcw-AuNq4.roa
File: aR-j-F27tyhvn7-25xBcw-AuNq4.roa (raw, json)
Hash identifier: dgGWNRebeFmJyXE9l+jbskCBOlISD+mLLVURVI+pGvE=
Subject key identifier: 69:1F:A3:F8:5D:BB:B7:28:6F:9F:BF:B6:E7:10:5C:C3:E0:2E:36:AE
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018F277D22AD1FEB277C13E8C17E0825CBCD
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/aR-j-F27tyhvn7-25xBcw-AuNq4.roa
Signing time: Mon 29 Apr 2024 01:34:23 +0000
ROA not before: Mon 29 Apr 2024 01:34:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 45.148.116.0/22 maxlen: 24
185.238.188.0/22 maxlen: 24
2a06:de01:d0::/44 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:97c4:ac00::/38 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a0e:b107:1870::/48 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a0e:b107:278b::/48 maxlen: 48
2a10:ccc3:ccca::/48 maxlen: 48
2a10:ccc3:cccc::/48 maxlen: 48
2a10:ccc3:ccce::/47 maxlen: 48
2a10:ccc7:9000::/38 maxlen: 48
Validation: Failed, certificate revoked on Mon 29 Apr 2024 05:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:27:7d:22:ad:1f:eb:27:7c:13:e8:c1:7e:08:25:cb:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 29 01:34:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=691fa3f85dbbb7286f9fbfb6e7105cc3e02e36ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:02:ad:6d:40:25:b6:26:57:e5:1c:21:c3:30:
bf:ba:eb:a6:31:5f:74:e7:4f:49:87:0e:88:8c:3b:
44:34:c3:c8:ac:15:ed:ae:06:33:6b:16:71:e7:b0:
24:3f:46:d7:1d:ab:85:7a:ca:41:95:ee:04:d2:e4:
33:2c:b1:ca:b7:52:9d:08:c8:c8:35:f3:f9:41:c7:
d4:40:19:96:1a:0b:03:3d:30:24:ec:c9:38:45:3e:
27:6d:30:ae:84:df:ce:fd:59:b8:fd:39:52:30:38:
d7:55:e5:fa:54:10:cf:f1:ce:3f:87:32:37:1b:13:
f0:c8:cd:85:82:96:f7:7d:b7:88:c4:2f:53:99:9f:
50:9e:c4:52:99:fd:c1:bf:bf:69:67:2f:22:04:42:
53:57:b2:81:4f:c0:69:5b:16:a4:ab:e3:76:f2:c6:
d0:fe:a4:35:70:26:4e:06:2c:45:1b:18:43:9b:2b:
3f:ca:ca:57:b6:a6:d8:c2:d6:93:60:ce:f3:9f:eb:
13:10:da:ba:a3:70:ee:00:5e:18:c1:5b:2b:8f:60:
0e:d2:5f:8a:4c:33:0b:fa:b9:8f:ee:81:25:7e:a2:
9c:fe:ea:02:ef:fd:c8:83:fb:39:0e:66:1c:8b:04:
14:96:c6:44:53:1b:8b:b1:d0:0e:f0:57:97:f4:72:
10:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:1F:A3:F8:5D:BB:B7:28:6F:9F:BF:B6:E7:10:5C:C3:E0:2E:36:AE
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/aR-j-F27tyhvn7-25xBcw-AuNq4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.116.0/22
185.238.188.0/22
IPv6:
2a06:de01:d0::/44
2a0c:3b87:ff00::/40
2a0e:97c0:750::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:97c4:ac00::/38
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
2a0e:b107:278b::/48
2a10:ccc3:ccca::/48
2a10:ccc3:cccc::/48
2a10:ccc3:ccce::/47
2a10:ccc7:9000::/38
Signature Algorithm: sha256WithRSAEncryption
ae:f9:65:e5:3d:3c:7e:16:2b:fe:f2:29:d1:ad:b4:ce:17:8c:
f6:12:28:2f:ec:16:38:76:c9:04:b7:56:d1:f8:7f:96:da:a8:
20:85:9f:6c:46:37:59:81:c4:9e:98:2d:11:59:f0:fd:47:92:
8c:eb:46:e5:f0:c5:74:00:db:d9:a8:28:33:6f:7f:7f:44:e9:
38:da:1b:42:0d:c4:da:be:fa:5f:7c:b9:cb:59:0d:79:ca:77:
5d:fa:0b:02:bd:1b:ca:4b:b5:6b:9a:cd:f2:54:67:0c:5c:13:
9c:05:ca:22:1e:90:f3:64:7d:57:63:f7:23:a9:16:15:a7:28:
16:ef:f7:67:6e:9a:1c:27:87:c2:96:9a:32:01:af:7e:fb:19:
75:b9:90:62:d7:2a:ca:05:84:3a:57:47:3a:a0:02:e3:0b:f2:
30:82:c2:18:47:6b:b6:af:98:c2:46:a1:9a:13:97:a0:52:93:
76:86:70:e7:b0:76:64:b6:0f:53:d7:8b:a0:c1:4f:42:b2:bf:
5e:7f:f9:45:3c:4e:73:c5:ad:ef:a1:7e:71:8d:a9:50:ed:0b:
cd:8b:ba:b7:5f:82:c4:77:8a:cd:6b:90:75:5b:f8:3a:f7:d3:
39:09:57:f2:32:ac:d1:21:a0:c0:08:f2:ce:19:dd:10:26:2c:
45:0b:a6:0f
-----BEGIN CERTIFICATE-----
MIIFnzCCBIegAwIBAgISAY8nfSKtH+snfBPowX4IJcvNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjQwNDI5MDEzNDIzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2OTFmYTNmODVkYmJiNzI4NmY5ZmJmYjZlNzEwNWNjM2UwMmUzNmFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmQKtbUAltiZX5RwhwzC/uuumMV90
509Jhw6IjDtENMPIrBXtrgYzaxZx57AkP0bXHauFespBle4E0uQzLLHKt1KdCMjI
NfP5QcfUQBmWGgsDPTAk7Mk4RT4nbTCuhN/O/Vm4/TlSMDjXVeX6VBDP8c4/hzI3
GxPwyM2Fgpb3fbeIxC9TmZ9QnsRSmf3Bv79pZy8iBEJTV7KBT8BpWxakq+N28sbQ
/qQ1cCZOBixFGxhDmys/yspXtqbYwtaTYM7zn+sTENq6o3DuAF4YwVsrj2AO0l+K
TDML+rmP7oElfqKc/uoC7/3Ig/s5DmYciwQUlsZEUxuLsdAO8FeX9HIQQwIDAQAB
o4ICqzCCAqcwHQYDVR0OBBYEFGkfo/hdu7cob5+/tucQXMPgLjauMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvYVItai1GMjd0eWh2bjctMjV4QmN3LUF1TnE0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHABggrBgEFBQcBBwEB/wSBsDCBrTASBAIAATAMAwQCLZR0
AwQCue68MIGWBAIAAjCBjwMHBCoG3gEA0AMGACoMO4f/AwcAKg6XwAdQMBIDBwAq
DpfAB5EDBwAqDpfAB5IDBgIqDpfErAMHACoOsQcJ9AMHACoOsQcJ9gMHACoOsQcN
8gMHACoOsQcYcAMHACoOsQcbngMHACoOsQcniwMHACoQzMPMygMHACoQzMPMzAMH
ASoQzMPMzgMGAioQzMeQMA0GCSqGSIb3DQEBCwUAA4IBAQCu+WXlPTx+Fiv+8inR
rbTOF4z2Eigv7BY4dskEt1bR+H+W2qgghZ9sRjdZgcSemC0RWfD9R5KM60bl8MV0
ANvZqCgzb39/ROk42htCDcTavvpffLnLWQ15yndd+gsCvRvKS7Vrms3yVGcMXBOc
BcoiHpDzZH1XY/cjqRYVpygW7/dnbpocJ4fClpoyAa9++xl1uZBi1yrKBYQ6V0c6
oALjC/IwgsIYR2u2r5jCRqGaE5egUpN2hnDnsHZktg9T14ugwU9Csr9ef/lFPE5z
xa3voX5xjalQ7QvNi7q3X4LEd4rNa5B1W/g699M5CVfyMqzRIaDACPLOGd0QJixF
C6YP
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:34 2024 by rpki-client on console-fra.rpki-client.org