Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/e29c87-4683-443e-883f-9abd1aa64be1/1/JDlz1bGQ9ZlP4_lXAwR5ayKaWMU.roa
File: JDlz1bGQ9ZlP4_lXAwR5ayKaWMU.roa (raw, json)
Hash identifier: LqH/Ng7bZEUvMGo3g4UeV+98FNhKVqh7yRTgAXtHvGk=
Subject key identifier: 24:39:73:D5:B1:90:F5:99:4F:E3:F9:57:03:04:79:6B:22:9A:58:C5
Certificate issuer: /CN=5ac466cc89f9db4e31c5400d2ae7a2bffdb22547
Certificate serial: 0187FB23078B61302B8C7D6D20D943E970B3
Authority key identifier: 5A:C4:66:CC:89:F9:DB:4E:31:C5:40:0D:2A:E7:A2:BF:FD:B2:25:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WsRmzIn5204xxUANKueiv_2yJUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/e29c87-4683-443e-883f-9abd1aa64be1/1/JDlz1bGQ9ZlP4_lXAwR5ayKaWMU.roa
Signing time: Mon 08 May 2023 11:33:09 +0000
ROA not before: Mon 08 May 2023 11:33:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8220
IP address blocks: 2a06:6541:1000::/36 maxlen: 36
2a06:6541:1440::/48 maxlen: 48
2a06:6541:1382::/48 maxlen: 48
2a06:6540:1000::/36 maxlen: 36
2a06:6540:1440::/48 maxlen: 48
2a06:6541:104b::/48 maxlen: 48
2a06:6540:1382::/48 maxlen: 48
2a06:6541:12c1::/48 maxlen: 48
2a06:6541:1241::/48 maxlen: 48
2a06:6541:1341::/48 maxlen: 48
2a06:6541:13c1::/48 maxlen: 48
2a06:6541:1301::/48 maxlen: 48
2a06:6541:1281::/48 maxlen: 48
2a06:6541:1201::/48 maxlen: 48
2a06:6541:11c1::/48 maxlen: 48
2a06:6541:4101::/48 maxlen: 48
2a06:6541:4181::/48 maxlen: 48
2a06:6541:1381::/48 maxlen: 48
2a06:6541:1001::/48 maxlen: 48
2a06:6540:104b::/48 maxlen: 48
2a06:6540:1381::/48 maxlen: 48
2a06:6540:1241::/48 maxlen: 48
2a06:6540:4101::/48 maxlen: 48
2a06:6540:1001::/48 maxlen: 48
2a06:6540:4181::/48 maxlen: 48
2a06:6540:1281::/48 maxlen: 48
2a06:6540:11c1::/48 maxlen: 48
2a06:6540:13c1::/48 maxlen: 48
2a06:6540:1301::/48 maxlen: 48
2a06:6540:1341::/48 maxlen: 48
2a06:6540:12c1::/48 maxlen: 48
2a06:6540:1201::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:fb:23:07:8b:61:30:2b:8c:7d:6d:20:d9:43:e9:70:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ac466cc89f9db4e31c5400d2ae7a2bffdb22547
Validity
Not Before: May 8 11:33:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=243973d5b190f5994fe3f9570304796b229a58c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:40:d0:86:5b:26:98:ff:05:44:45:0e:60:b5:
18:43:81:78:78:ec:2c:31:ab:72:64:6a:9e:71:c4:
c4:02:a5:70:30:53:91:98:f9:9f:2a:09:0e:28:11:
78:ca:1f:eb:fb:1f:ab:10:2a:da:39:1a:14:ac:5d:
76:bd:1c:c5:59:e6:42:c9:63:1d:76:d2:6e:3f:1e:
b7:d0:f2:96:5f:ef:13:4d:e1:f5:d7:2d:67:55:c2:
c9:3d:d1:8f:b9:07:ac:83:c9:6f:85:ab:dc:dc:d1:
9a:be:7a:21:e8:13:ed:4e:e7:72:4e:60:78:df:59:
0a:8d:53:fb:c8:ab:a6:65:1b:05:ae:45:7a:da:ee:
03:c2:c7:57:b2:15:c8:01:6e:d5:92:55:f6:3f:b3:
92:fc:df:43:63:25:5c:39:32:f4:b4:59:8a:8c:cb:
e3:a3:c0:11:c3:83:32:b9:0b:b9:62:8e:21:2d:22:
b9:64:b3:cd:2f:61:f5:c0:d8:d4:4e:93:45:eb:45:
d4:f7:54:71:db:7a:86:3f:97:0e:bf:a3:29:64:2c:
e3:e6:fd:28:d6:32:17:e5:5b:49:57:80:f5:84:26:
0a:ef:27:03:b3:45:70:a9:d6:77:23:18:ed:40:48:
2a:6a:20:69:7b:1c:ee:07:b0:0b:87:f9:cc:1f:77:
eb:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:39:73:D5:B1:90:F5:99:4F:E3:F9:57:03:04:79:6B:22:9A:58:C5
X509v3 Authority Key Identifier:
keyid:5A:C4:66:CC:89:F9:DB:4E:31:C5:40:0D:2A:E7:A2:BF:FD:B2:25:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WsRmzIn5204xxUANKueiv_2yJUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e29c87-4683-443e-883f-9abd1aa64be1/1/JDlz1bGQ9ZlP4_lXAwR5ayKaWMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e29c87-4683-443e-883f-9abd1aa64be1/1/WsRmzIn5204xxUANKueiv_2yJUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:6540:1000::/36
2a06:6540:4101::/48
2a06:6540:4181::/48
2a06:6541:1000::/36
2a06:6541:4101::/48
2a06:6541:4181::/48
Signature Algorithm: sha256WithRSAEncryption
79:7a:0c:a7:69:55:68:62:68:26:63:d6:27:16:80:54:63:0c:
b7:27:ed:9c:58:c5:df:8c:05:5c:5c:58:43:26:b2:e2:bd:8a:
a6:d5:00:af:05:bd:2a:42:65:a9:8b:e0:3c:a1:26:23:59:b0:
81:94:2e:a7:92:0d:59:c0:b0:50:62:f3:39:fd:cc:9d:f2:95:
87:b2:41:e8:78:45:3f:ac:ed:99:1a:00:04:8d:ad:b1:32:54:
63:34:3a:7f:69:0d:5f:91:05:02:ae:da:0b:7a:1c:24:d4:cc:
a8:13:d0:ef:e8:6d:c8:e8:2e:dd:7b:84:dc:43:66:19:dd:a1:
91:14:8b:d6:d2:e1:93:0b:e6:52:6e:ca:9b:0d:a7:78:9e:64:
cc:c3:b9:db:66:20:db:d7:3b:4c:6e:0c:0c:a6:27:66:28:31:
76:0e:9f:ef:c2:a1:f4:6b:0a:66:7b:ed:29:1e:54:be:59:b0:
f3:79:2d:a5:18:3f:e6:66:6c:86:db:d5:d6:30:e7:b7:26:fe:
91:b4:e5:b9:a1:d8:2b:b1:f1:64:c7:19:d5:73:c3:b6:17:ca:
06:83:47:0f:bb:b9:cf:3a:1b:b9:83:0c:2b:b9:e7:f5:e2:cb:
ba:09:84:d9:3b:96:95:b4:82:83:71:5d:2a:e2:e3:f6:89:26:
7b:4f:b8:2a
-----BEGIN CERTIFICATE-----
MIIFKzCCBBOgAwIBAgISAYf7IweLYTArjH1tINlD6XCzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVhYzQ2NmNjODlmOWRiNGUzMWM1NDAwZDJhZTdhMmJmZmRi
MjI1NDcwHhcNMjMwNTA4MTEzMzA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNDM5NzNkNWIxOTBmNTk5NGZlM2Y5NTcwMzA0Nzk2YjIyOWE1OGM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmUDQhlsmmP8FREUOYLUYQ4F4eOws
MatyZGqeccTEAqVwMFORmPmfKgkOKBF4yh/r+x+rECraORoUrF12vRzFWeZCyWMd
dtJuPx630PKWX+8TTeH11y1nVcLJPdGPuQesg8lvhavc3NGavnoh6BPtTudyTmB4
31kKjVP7yKumZRsFrkV62u4DwsdXshXIAW7VklX2P7OS/N9DYyVcOTL0tFmKjMvj
o8ARw4MyuQu5Yo4hLSK5ZLPNL2H1wNjUTpNF60XU91Rx23qGP5cOv6MpZCzj5v0o
1jIX5VtJV4D1hCYK7ycDs0VwqdZ3IxjtQEgqaiBpexzuB7ALh/nMH3frdQIDAQAB
o4ICNzCCAjMwHQYDVR0OBBYEFCQ5c9WxkPWZT+P5VwMEeWsimljFMB8GA1UdIwQY
MBaAFFrEZsyJ+dtOMcVADSrnor/9siVHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV3NSbXpJbjUyMDR4eFVBTkt1ZWl2XzJ5SlVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC9lMjljODctNDY4My00NDNlLTg4M2Yt
OWFiZDFhYTY0YmUxLzEvSkRsejFiR1E5WmxQNF9sWEF3UjVheUthV01VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC9lMjljODctNDY4My00NDNlLTg4M2YtOWFiZDFhYTY0YmUx
LzEvV3NSbXpJbjUyMDR4eFVBTkt1ZWl2XzJ5SlVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME0GCCsGAQUFBwEHAQH/BD4wPDA6BAIAAjA0AwYEKgZlQBAD
BwAqBmVAQQEDBwAqBmVAQYEDBgQqBmVBEAMHACoGZUFBAQMHACoGZUFBgTANBgkq
hkiG9w0BAQsFAAOCAQEAeXoMp2lVaGJoJmPWJxaAVGMMtyftnFjF34wFXFxYQyay
4r2KptUArwW9KkJlqYvgPKEmI1mwgZQup5INWcCwUGLzOf3MnfKVh7JB6HhFP6zt
mRoABI2tsTJUYzQ6f2kNX5EFAq7aC3ocJNTMqBPQ7+htyOgu3XuE3ENmGd2hkRSL
1tLhkwvmUm7Kmw2neJ5kzMO522Yg29c7TG4MDKYnZigxdg6f78Kh9GsKZnvtKR5U
vlmw83ktpRg/5mZshtvV1jDntyb+kbTluaHYK7HxZMcZ1XPDthfKBoNHD7u5zzob
uYMMK7nn9eLLugmE2TuWlbSCg3FdKuLj9okme0+4Kg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:43 2024 by rpki-client on console-ams.rpki-client.org