Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/qIruZFsziaFKWNLW_ZXCLVdbVRk.roa
File: qIruZFsziaFKWNLW_ZXCLVdbVRk.roa (raw, json)
Hash identifier: Snv97Rx9gAwBiNNgRilFhyUE1TB6DT7okmOJurFpQtk=
Subject key identifier: A8:8A:EE:64:5B:33:89:A1:4A:58:D2:D6:FD:95:C2:2D:57:5B:55:19
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018B5F944CF24A8D5081C2807D3FF1781627
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/qIruZFsziaFKWNLW_ZXCLVdbVRk.roa
Signing time: Tue 24 Oct 2023 02:47:16 +0000
ROA not before: Tue 24 Oct 2023 02:47:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200160
IP address blocks: 2a0e:b107:660::/44 maxlen: 48
2a0e:b107:1d60::/44 maxlen: 48
2a0e:b107:600::/44 maxlen: 48
2a0e:b107:1e00::/44 maxlen: 48
2a0e:b107:5e0::/44 maxlen: 48
2a0e:b107:6c0::/44 maxlen: 48
2a0e:b107:690::/44 maxlen: 48
2a0e:b107:5f0::/44 maxlen: 48
2a0e:b107:ad0::/44 maxlen: 48
2a0e:b107:2150::/44 maxlen: 48
2a0e:b107:5d0::/44 maxlen: 48
2a0e:b107:bb0::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5f:94:4c:f2:4a:8d:50:81:c2:80:7d:3f:f1:78:16:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 24 02:47:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a88aee645b3389a14a58d2d6fd95c22d575b5519
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ba:ed:bb:01:4d:5a:ea:99:3a:44:3d:40:62:
8e:30:30:91:28:14:00:12:17:63:9d:d4:25:37:3c:
0f:4c:10:b6:37:50:35:98:b5:bd:81:0e:30:80:f6:
61:43:7c:5d:88:34:37:54:11:65:a8:92:1e:61:13:
b4:3d:9f:1a:a2:eb:3b:f0:c1:3a:40:93:92:2d:43:
7f:d0:1f:07:87:7b:99:f0:1e:f0:fc:21:72:32:2b:
45:d9:08:2b:2c:7c:86:f0:98:4c:9c:3d:eb:eb:74:
83:42:91:00:e5:ef:06:03:a2:97:c7:e1:2e:ac:ce:
91:4f:1f:66:b1:05:79:7c:01:33:e6:72:4c:02:c4:
0d:eb:bc:4a:d9:02:c3:29:e6:69:fa:c9:a0:64:1f:
f5:08:53:70:8c:e6:9c:0d:16:0d:81:61:a1:bf:ab:
b8:3b:a6:44:24:9c:b3:6e:86:b0:41:d3:ef:23:90:
87:43:fd:79:55:df:32:c2:44:9e:28:b7:3b:32:b1:
5d:0d:85:b9:71:67:b8:d3:4a:b9:52:c6:86:9f:40:
d0:fb:c9:1c:0f:64:80:f5:f8:c4:0c:1b:3c:b2:ab:
27:1f:4d:c1:c5:11:86:0d:cc:8d:c1:84:d4:c3:cc:
7c:8d:43:70:2c:3b:3b:fd:a5:fc:3a:54:d6:8b:14:
f7:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:8A:EE:64:5B:33:89:A1:4A:58:D2:D6:FD:95:C2:2D:57:5B:55:19
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/qIruZFsziaFKWNLW_ZXCLVdbVRk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:5d0::-2a0e:b107:60f:ffff:ffff:ffff:ffff:ffff
2a0e:b107:660::/44
2a0e:b107:690::/44
2a0e:b107:6c0::/44
2a0e:b107:ad0::/44
2a0e:b107:bb0::/44
2a0e:b107:1d60::/44
2a0e:b107:1e00::/44
2a0e:b107:2150::/44
Signature Algorithm: sha256WithRSAEncryption
cc:39:ce:aa:ae:68:be:04:5b:6c:97:a5:de:9b:d6:68:88:2a:
d9:8d:b6:80:67:58:55:87:6a:b1:f9:00:52:c4:2a:a5:a7:6f:
08:a1:0a:71:f8:8b:2f:12:9b:52:f4:a4:1f:04:64:d5:0b:bb:
f0:28:62:3c:0e:d0:09:33:ef:16:32:99:d5:cf:cc:f3:85:f4:
a1:65:2d:85:d5:68:a3:c3:54:74:5c:38:35:c5:d5:ca:55:ed:
94:3f:33:bc:df:35:b9:11:2c:4a:60:88:ea:37:8e:5f:dd:61:
56:9b:7d:1c:82:55:b9:ff:52:98:d2:ef:26:dc:af:5c:6c:72:
0c:3b:40:84:ec:60:7f:6f:a0:eb:4e:72:5c:dd:f3:4e:83:9b:
6b:16:90:de:26:b8:c9:79:63:88:45:9f:c0:3b:24:50:9d:a8:
d0:03:56:a6:8c:7f:70:4a:61:b5:2b:18:0d:eb:66:c0:6a:8b:
2f:21:16:2a:61:37:cb:ea:bd:b6:17:d6:52:68:0c:c2:32:ea:
29:65:d8:07:9c:5d:46:2d:79:71:f9:f6:04:6e:9a:35:64:cd:
be:83:86:87:c4:f8:0b:cd:1c:69:32:19:75:03:a2:f1:80:aa:
56:14:e4:58:69:03:ec:46:83:3a:8f:ef:47:ca:0c:0a:30:46:
82:a0:50:dc
-----BEGIN CERTIFICATE-----
MIIFUzCCBDugAwIBAgISAYtflEzySo1QgcKAfT/xeBYnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMxMDI0MDI0NzE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhODhhZWU2NDViMzM4OWExNGE1OGQyZDZmZDk1YzIyZDU3NWI1NTE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlbrtuwFNWuqZOkQ9QGKOMDCRKBQA
EhdjndQlNzwPTBC2N1A1mLW9gQ4wgPZhQ3xdiDQ3VBFlqJIeYRO0PZ8aous78ME6
QJOSLUN/0B8Hh3uZ8B7w/CFyMitF2QgrLHyG8JhMnD3r63SDQpEA5e8GA6KXx+Eu
rM6RTx9msQV5fAEz5nJMAsQN67xK2QLDKeZp+smgZB/1CFNwjOacDRYNgWGhv6u4
O6ZEJJyzboawQdPvI5CHQ/15Vd8ywkSeKLc7MrFdDYW5cWe400q5UsaGn0DQ+8kc
D2SA9fjEDBs8sqsnH03BxRGGDcyNwYTUw8x8jUNwLDs7/aX8OlTWixT3LwIDAQAB
o4ICXzCCAlswHQYDVR0OBBYEFKiK7mRbM4mhSljS1v2Vwi1XW1UZMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvcUlydVpGc3ppYUZLV05MV19aWENMVmRiVlJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHUGCCsGAQUFBwEHAQH/BGYwZDBiBAIAAjBcMBIDBwQqDrEH
BdADBwQqDrEHBgADBwQqDrEHBmADBwQqDrEHBpADBwQqDrEHBsADBwQqDrEHCtAD
BwQqDrEHC7ADBwQqDrEHHWADBwQqDrEHHgADBwQqDrEHIVAwDQYJKoZIhvcNAQEL
BQADggEBAMw5zqquaL4EW2yXpd6b1miIKtmNtoBnWFWHarH5AFLEKqWnbwihCnH4
iy8Sm1L0pB8EZNULu/AoYjwO0Akz7xYymdXPzPOF9KFlLYXVaKPDVHRcODXF1cpV
7ZQ/M7zfNbkRLEpgiOo3jl/dYVabfRyCVbn/UpjS7ybcr1xscgw7QITsYH9voOtO
clzd806Dm2sWkN4muMl5Y4hFn8A7JFCdqNADVqaMf3BKYbUrGA3rZsBqiy8hFiph
N8vqvbYX1lJoDMIy6ill2AecXUYteXH59gRumjVkzb6DhofE+AvNHGkyGXUDovGA
qlYU5FhpA+xGgzqP70fKDAowRoKgUNw=
-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:33 2024 by rpki-client on console-fra.rpki-client.org