Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/abb8fc-a82b-4157-b28e-e139fbc279b9/1/YjQUzbjPbvUnSs9hNUgpkll3OdM.roa
File: YjQUzbjPbvUnSs9hNUgpkll3OdM.roa (raw, json)
Hash identifier: EPGHTyU3RMtG3vZ8qVAqmLQCoq3S/Jbe0yZsEkpx2x0=
Subject key identifier: 62:34:14:CD:B8:CF:6E:F5:27:4A:CF:61:35:48:29:92:59:77:39:D3
Certificate issuer: /CN=6f138f2e033f942bb94e731ff452448c6802ae82
Certificate serial: 0185734CBCFD4F5E571025911D39AEC41345
Authority key identifier: 6F:13:8F:2E:03:3F:94:2B:B9:4E:73:1F:F4:52:44:8C:68:02:AE:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bxOPLgM_lCu5TnMf9FJEjGgCroI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/abb8fc-a82b-4157-b28e-e139fbc279b9/1/YjQUzbjPbvUnSs9hNUgpkll3OdM.roa
Signing time: Mon 02 Jan 2023 16:24:46 +0000
ROA not before: Mon 02 Jan 2023 16:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59632
IP address blocks: 176.124.104.0/21 maxlen: 21
2001:67c:744::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:4c:bc:fd:4f:5e:57:10:25:91:1d:39:ae:c4:13:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f138f2e033f942bb94e731ff452448c6802ae82
Validity
Not Before: Jan 2 16:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=623414cdb8cf6ef5274acf6135482992597739d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:dd:3d:f7:56:0d:d2:ca:10:e0:9b:f8:c5:34:
be:e0:7e:a3:21:8a:b6:03:6e:7d:51:3b:8c:68:e3:
ed:3f:da:e6:b5:66:85:86:d5:96:09:e9:fe:99:00:
1f:03:70:bb:f2:9f:a8:ce:74:27:1a:47:12:f5:ea:
b2:fa:b0:31:64:d9:52:87:7d:7a:41:d0:08:f5:db:
7e:2e:a8:9d:2f:16:fd:49:06:00:28:1d:06:fa:3c:
38:ae:d3:49:cf:a4:c9:c4:84:42:a5:8a:78:75:bc:
f2:dc:25:5d:bd:9d:0b:24:7e:3a:e4:76:ed:3a:54:
e9:9f:55:0f:8b:80:f3:c5:ef:e8:23:1f:34:61:76:
31:85:b9:ea:39:65:75:0e:fe:87:ad:dc:12:49:5f:
d3:a0:9e:d5:14:46:c2:69:ac:24:2f:4c:2b:9a:97:
7a:d1:18:fc:a7:6b:78:21:33:07:55:cd:e8:2c:e9:
7f:c9:40:87:07:db:fb:4c:0f:44:17:5a:36:15:d3:
e7:5f:87:2b:08:bd:36:62:e7:a0:26:16:a6:74:fa:
35:d5:c0:56:a7:7f:e9:a5:dd:ba:5b:8d:41:a3:cc:
f1:2e:8b:f4:23:e6:ec:4f:d8:60:09:d0:45:63:86:
e7:d0:57:7a:42:d3:6b:60:bd:90:1d:45:4c:fb:e3:
f3:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:34:14:CD:B8:CF:6E:F5:27:4A:CF:61:35:48:29:92:59:77:39:D3
X509v3 Authority Key Identifier:
keyid:6F:13:8F:2E:03:3F:94:2B:B9:4E:73:1F:F4:52:44:8C:68:02:AE:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bxOPLgM_lCu5TnMf9FJEjGgCroI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/abb8fc-a82b-4157-b28e-e139fbc279b9/1/YjQUzbjPbvUnSs9hNUgpkll3OdM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/abb8fc-a82b-4157-b28e-e139fbc279b9/1/bxOPLgM_lCu5TnMf9FJEjGgCroI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.124.104.0/21
IPv6:
2001:67c:744::/48
Signature Algorithm: sha256WithRSAEncryption
bd:2c:c8:ac:7c:45:29:57:81:70:48:f5:34:26:32:58:b1:30:
a9:21:99:e6:d4:22:ae:ec:b9:0a:7f:3e:a6:57:45:3a:6c:2c:
fa:e5:c1:28:77:22:f0:ac:65:cf:2f:aa:2e:83:d5:a8:87:f6:
ad:ec:38:f2:c0:2f:62:0b:6d:6f:07:c3:42:5d:99:5f:c5:cf:
04:5f:1e:d9:f8:1f:bc:f7:f5:12:44:8c:eb:ac:c9:d3:ce:06:
51:63:88:6e:f8:4e:cd:f0:c5:e9:ee:01:07:f9:d4:3f:49:13:
25:2c:b2:78:bf:00:d5:85:e9:af:10:08:7e:e2:38:ee:a7:8d:
64:5c:60:7b:e8:0f:0d:c7:d0:a7:65:b7:56:1c:74:b1:90:63:
96:e9:d5:07:d1:fa:a4:ed:d4:1b:42:a1:f6:a7:52:cb:59:02:
bd:75:16:c6:96:8b:e1:df:ea:a3:df:fa:03:76:cf:41:1e:de:
be:9d:b3:fb:4d:18:4b:be:22:31:7a:f6:b6:61:36:3c:9e:7c:
b9:22:ac:48:e4:f5:0a:62:45:5b:d1:a2:70:9c:f2:bf:a3:22:
01:85:06:36:80:96:9b:ce:f0:f6:df:04:40:1f:7a:ef:3e:01:
5b:8e:7c:f2:67:d3:d3:a1:29:24:58:8c:f1:86:d8:e6:a2:c7:
a6:a0:5b:02
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYVzTLz9T15XECWRHTmuxBNFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmMTM4ZjJlMDMzZjk0MmJiOTRlNzMxZmY0NTI0NDhjNjgw
MmFlODIwHhcNMjMwMTAyMTYyNDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MjM0MTRjZGI4Y2Y2ZWY1Mjc0YWNmNjEzNTQ4Mjk5MjU5NzczOWQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArN0991YN0soQ4Jv4xTS+4H6jIYq2
A259UTuMaOPtP9rmtWaFhtWWCen+mQAfA3C78p+oznQnGkcS9eqy+rAxZNlSh316
QdAI9dt+LqidLxb9SQYAKB0G+jw4rtNJz6TJxIRCpYp4dbzy3CVdvZ0LJH465Hbt
OlTpn1UPi4Dzxe/oIx80YXYxhbnqOWV1Dv6HrdwSSV/ToJ7VFEbCaawkL0wrmpd6
0Rj8p2t4ITMHVc3oLOl/yUCHB9v7TA9EF1o2FdPnX4crCL02YuegJhamdPo11cBW
p3/ppd26W41Bo8zxLov0I+bsT9hgCdBFY4bn0Fd6QtNrYL2QHUVM++PzhQIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFGI0FM24z271J0rPYTVIKZJZdznTMB8GA1UdIwQY
MBaAFG8Tjy4DP5QruU5zH/RSRIxoAq6CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnhPUExnTV9sQ3U1VG5NZjlGSkVqR2dDcm9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZS9hYmI4ZmMtYTgyYi00MTU3LWIyOGUt
ZTEzOWZiYzI3OWI5LzEvWWpRVXpialBidlVuU3M5aE5VZ3BrbGwzT2RNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZS9hYmI4ZmMtYTgyYi00MTU3LWIyOGUtZTEzOWZiYzI3OWI5
LzEvYnhPUExnTV9sQ3U1VG5NZjlGSkVqR2dDcm9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDsHxoMA8E
AgACMAkDBwAgAQZ8B0QwDQYJKoZIhvcNAQELBQADggEBAL0syKx8RSlXgXBI9TQm
MlixMKkhmebUIq7suQp/PqZXRTpsLPrlwSh3IvCsZc8vqi6D1aiH9q3sOPLAL2IL
bW8Hw0JdmV/FzwRfHtn4H7z39RJEjOusydPOBlFjiG74Ts3wxenuAQf51D9JEyUs
sni/ANWF6a8QCH7iOO6njWRcYHvoDw3H0Kdlt1YcdLGQY5bp1QfR+qTt1BtCofan
UstZAr11FsaWi+Hf6qPf+gN2z0Ee3r6ds/tNGEu+IjF69rZhNjyefLkirEjk9Qpi
RVvRonCc8r+jIgGFBjaAlpvO8PbfBEAfeu8+AVuOfPJn09OhKSRYjPGG2Oaix6ag
WwI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:27 2024 by rpki-client on console-ams.rpki-client.org