Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/8c0c00-5fce-45cb-bbb7-01d9e9d31943/1/gDEibXfGakfF5ZY7t8OibDsnPuU.roa
File: gDEibXfGakfF5ZY7t8OibDsnPuU.roa (raw, json)
Hash identifier: VPQ5C9/1UNS3rGitSSMsd9TwAb4GfDrKw3R65H9tmHQ=
Subject key identifier: 80:31:22:6D:77:C6:6A:47:C5:E5:96:3B:B7:C3:A2:6C:3B:27:3E:E5
Certificate issuer: /CN=cff5dc76eb6f814ed601568fdd2c8110edef8c17
Certificate serial: 018CD382CE093C227D6E98FEF9B88A870796
Authority key identifier: CF:F5:DC:76:EB:6F:81:4E:D6:01:56:8F:DD:2C:81:10:ED:EF:8C:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z_XcdutvgU7WAVaP3SyBEO3vjBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/8c0c00-5fce-45cb-bbb7-01d9e9d31943/1/gDEibXfGakfF5ZY7t8OibDsnPuU.roa
Signing time: Thu 04 Jan 2024 08:06:54 +0000
ROA not before: Thu 04 Jan 2024 08:06:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60504
IP address blocks: 2a13:82c7::/32 maxlen: 32
2a13:82c5:2500::/40 maxlen: 40
2a13:82c5:1900::/40 maxlen: 40
2a13:82c5:5000::/36 maxlen: 36
2a13:82c5:1c00::/40 maxlen: 40
2a13:82c5:2000::/36 maxlen: 36
2a13:82c5:2d00::/40 maxlen: 40
2a13:82c4:1::/48 maxlen: 48
2a13:82c5:1700::/40 maxlen: 40
2a13:82c5:2b00::/40 maxlen: 40
2a13:82c5:1a00::/40 maxlen: 40
2a13:82c5:2e00::/40 maxlen: 40
2a13:82c5:1600::/40 maxlen: 40
2a13:82c5:2700::/40 maxlen: 40
2a13:82c5:2100::/40 maxlen: 40
2a13:82c5:2400::/40 maxlen: 40
2a13:82c5:1e00::/40 maxlen: 40
2a13:82c5:3000::/36 maxlen: 36
2a13:82c5:1300::/40 maxlen: 40
2a13:82c5:2a00::/40 maxlen: 40
2a13:82c5:2900::/40 maxlen: 40
2a13:82c5:2800::/40 maxlen: 40
2a13:82c5:1400::/40 maxlen: 40
2a13:82c5:1500::/40 maxlen: 40
2a13:82c5:2600::/40 maxlen: 40
2a13:82c5:1200::/40 maxlen: 40
2a13:82c5:1d00::/40 maxlen: 40
2a13:82c5:4000::/36 maxlen: 36
2a13:82c5:2300::/40 maxlen: 40
2a13:82c5:1000::/36 maxlen: 36
2a13:82c5:1b00::/40 maxlen: 40
2a13:82c5:2c00::/40 maxlen: 40
2a13:82c5:1800::/40 maxlen: 40
2a13:82c5:6000::/36 maxlen: 36
2a13:82c5:1100::/40 maxlen: 40
2a13:82c5:2200::/40 maxlen: 40
2a13:82c2::/32 maxlen: 32
2a13:82c1::/32 maxlen: 32
2a13:82c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 13 Jan 2024 09:39:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:d3:82:ce:09:3c:22:7d:6e:98:fe:f9:b8:8a:87:07:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cff5dc76eb6f814ed601568fdd2c8110edef8c17
Validity
Not Before: Jan 4 08:06:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8031226d77c66a47c5e5963bb7c3a26c3b273ee5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:71:7b:0f:a0:0c:41:de:b1:a0:c6:98:83:82:
2c:69:3f:fd:c3:ea:df:9b:44:6c:4d:0f:95:80:28:
77:7b:64:57:fb:17:ed:72:77:87:b4:5f:b1:5b:fa:
69:e7:ee:07:16:f5:a7:d6:d2:fd:9f:68:cc:8f:04:
cd:13:2a:81:ce:d7:d6:08:c7:d8:4a:10:c7:4d:80:
33:31:c5:03:81:9b:4a:90:e9:ec:1d:5e:9b:3c:68:
59:b0:b6:cd:a0:3c:84:8f:bf:f7:94:0e:e2:af:25:
54:dd:72:5a:d9:e0:47:9a:b5:f4:e7:88:49:c7:92:
09:8b:a4:b5:0f:98:87:e3:c7:c9:af:f0:a4:74:14:
5e:31:80:00:7a:09:9f:f5:d0:96:f0:0d:88:27:c6:
0e:ca:38:e2:9d:0b:c9:dd:5f:8e:23:c7:97:ec:6f:
18:24:7f:48:34:8f:ca:19:26:67:6e:eb:a9:62:26:
1d:25:21:91:be:c4:e6:5f:da:20:9a:58:79:2e:5f:
d8:50:ff:96:85:ab:f9:e0:55:8f:fa:a6:0c:9e:1f:
71:4b:64:45:b7:36:34:b3:15:36:8f:d8:77:99:5a:
1d:dc:fa:e8:15:19:aa:be:1c:4d:12:38:9f:80:1a:
5c:9f:16:36:78:32:84:9c:ee:ee:de:6b:1f:c8:10:
7f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:31:22:6D:77:C6:6A:47:C5:E5:96:3B:B7:C3:A2:6C:3B:27:3E:E5
X509v3 Authority Key Identifier:
keyid:CF:F5:DC:76:EB:6F:81:4E:D6:01:56:8F:DD:2C:81:10:ED:EF:8C:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z_XcdutvgU7WAVaP3SyBEO3vjBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/8c0c00-5fce-45cb-bbb7-01d9e9d31943/1/gDEibXfGakfF5ZY7t8OibDsnPuU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/8c0c00-5fce-45cb-bbb7-01d9e9d31943/1/z_XcdutvgU7WAVaP3SyBEO3vjBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:82c0::-2a13:82c2:ffff:ffff:ffff:ffff:ffff:ffff
2a13:82c4:1::/48
2a13:82c5:1000::-2a13:82c5:6fff:ffff:ffff:ffff:ffff:ffff
2a13:82c7::/32
Signature Algorithm: sha256WithRSAEncryption
a0:34:23:7c:9e:21:9c:30:d2:33:6d:26:69:75:dd:58:5a:6e:
58:32:ed:09:4f:68:c8:c9:9a:5c:6d:84:f6:df:b0:3e:e3:67:
7f:f9:b8:58:b7:37:e0:2e:48:8c:d1:13:99:b3:8c:a7:33:b4:
88:19:b9:51:26:c5:4c:32:dc:01:f4:f2:fc:dd:c8:4b:c8:9d:
d5:83:5d:e6:39:71:bf:50:af:17:1c:66:8b:30:cc:ab:9b:15:
b3:1e:01:17:e9:a0:bc:62:fa:e6:e7:00:f6:7d:4c:7f:eb:36:
90:aa:93:3a:67:0a:02:ca:26:03:f0:96:7c:06:cf:fc:63:8c:
32:11:ba:6c:91:91:84:3d:4e:16:5c:ed:c5:bf:5a:fc:9b:b0:
49:05:8d:c3:5a:e1:c1:2e:ea:fb:9d:b7:0d:e4:45:0a:56:37:
91:2c:c2:47:c5:c0:70:24:57:dd:3c:4e:cd:2d:58:41:f3:6c:
3d:5c:17:36:5a:c7:ff:12:77:39:cd:2b:3f:22:54:84:5d:26:
bb:09:13:02:27:fe:9f:e0:a8:a0:28:87:7d:39:ad:92:d0:8a:
4d:06:6f:1b:fa:a4:3f:3d:43:64:9d:ce:93:fd:4d:75:d7:a3:
d0:3e:4b:58:aa:9b:c7:21:ad:52:16:f2:69:cb:8b:3f:8f:4d:
74:83:b1:da
-----BEGIN CERTIFICATE-----
MIIFKTCCBBGgAwIBAgISAYzTgs4JPCJ9bpj++biKhweWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmZjVkYzc2ZWI2ZjgxNGVkNjAxNTY4ZmRkMmM4MTEwZWRl
ZjhjMTcwHhcNMjQwMTA0MDgwNjU0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MDMxMjI2ZDc3YzY2YTQ3YzVlNTk2M2JiN2MzYTI2YzNiMjczZWU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAknF7D6AMQd6xoMaYg4IsaT/9w+rf
m0RsTQ+VgCh3e2RX+xftcneHtF+xW/pp5+4HFvWn1tL9n2jMjwTNEyqBztfWCMfY
ShDHTYAzMcUDgZtKkOnsHV6bPGhZsLbNoDyEj7/3lA7iryVU3XJa2eBHmrX054hJ
x5IJi6S1D5iH48fJr/CkdBReMYAAegmf9dCW8A2IJ8YOyjjinQvJ3V+OI8eX7G8Y
JH9INI/KGSZnbuupYiYdJSGRvsTmX9ogmlh5Ll/YUP+Whav54FWP+qYMnh9xS2RF
tzY0sxU2j9h3mVod3ProFRmqvhxNEjifgBpcnxY2eDKEnO7u3msfyBB/ywIDAQAB
o4ICNTCCAjEwHQYDVR0OBBYEFIAxIm13xmpHxeWWO7fDomw7Jz7lMB8GA1UdIwQY
MBaAFM/13Hbrb4FO1gFWj90sgRDt74wXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvel9YY2R1dHZnVTdXQVZhUDNTeUJFTzN2akJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny84YzBjMDAtNWZjZS00NWNiLWJiYjct
MDFkOWU5ZDMxOTQzLzEvZ0RFaWJYZkdha2ZGNVpZN3Q4T2liRHNuUHVVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny84YzBjMDAtNWZjZS00NWNiLWJiYjctMDFkOWU5ZDMxOTQz
LzEvel9YY2R1dHZnVTdXQVZhUDNTeUJFTzN2akJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEsGCCsGAQUFBwEHAQH/BDwwOjA4BAIAAjAyMA4DBQYqE4LA
AwUAKhOCwgMHACoTgsQAATAQAwYEKhOCxRADBgQqE4LFYAMFACoTgscwDQYJKoZI
hvcNAQELBQADggEBAKA0I3yeIZww0jNtJml13Vhablgy7QlPaMjJmlxthPbfsD7j
Z3/5uFi3N+AuSIzRE5mzjKcztIgZuVEmxUwy3AH08vzdyEvIndWDXeY5cb9Qrxcc
ZoswzKubFbMeARfpoLxi+ubnAPZ9TH/rNpCqkzpnCgLKJgPwlnwGz/xjjDIRumyR
kYQ9ThZc7cW/WvybsEkFjcNa4cEu6vudtw3kRQpWN5EswkfFwHAkV908Ts0tWEHz
bD1cFzZax/8SdznNKz8iVIRdJrsJEwIn/p/gqKAoh305rZLQik0Gbxv6pD89Q2Sd
zpP9TXXXo9A+S1iqm8chrVIW8mnLiz+PTXSDsdo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:47 2024 by rpki-client on console-fra.rpki-client.org