Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/IoNzk9pjZ8e01ZF1AOyYit4Ny2c.roa
File: IoNzk9pjZ8e01ZF1AOyYit4Ny2c.roa (raw, json)
Hash identifier: /lnpcO4eoqXMd2EeZplddZvicxUydXFOkXg/KRP6Wt8=
Subject key identifier: 22:83:73:93:DA:63:67:C7:B4:D5:91:75:00:EC:98:8A:DE:0D:CB:67
Certificate issuer: /CN=17b5042fc20d9bab1676e09af7ff1ba5bfadae75
Certificate serial: 01904876DD66A50591F1C3C8320B6FF3AE71
Authority key identifier: 17:B5:04:2F:C2:0D:9B:AB:16:76:E0:9A:F7:FF:1B:A5:BF:AD:AE:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/IoNzk9pjZ8e01ZF1AOyYit4Ny2c.roa
Signing time: Mon 24 Jun 2024 04:17:47 +0000
ROA not before: Mon 24 Jun 2024 04:17:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60262
IP address blocks: 2a03:cc40::/29 maxlen: 29
2a0c:e500::/29 maxlen: 29
2a10:1d80::/29 maxlen: 29
2a11:1300::/29 maxlen: 29
2a11:1ac0::/29 maxlen: 29
2a11:3140::/29 maxlen: 29
2a11:3c80::/29 maxlen: 29
2a11:5340::/29 maxlen: 29
2a11:53c0::/29 maxlen: 29
2a11:5500::/29 maxlen: 29
2a11:7a00::/29 maxlen: 29
2a11:7dc0::/29 maxlen: 29
2a11:8380::/29 maxlen: 29
2a11:ac00::/29 maxlen: 29
2a11:b040::/29 maxlen: 29
2a11:b300::/29 maxlen: 29
2a11:c000::/29 maxlen: 29
2a11:ec80::/29 maxlen: 29
2a12:600::/29 maxlen: 29
2a12:2580::/29 maxlen: 29
2a12:2900::/29 maxlen: 29
2a12:5000::/29 maxlen: 29
2a12:b880::/29 maxlen: 29
2a12:d300::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 12 Sep 2024 10:30:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:48:76:dd:66:a5:05:91:f1:c3:c8:32:0b:6f:f3:ae:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17b5042fc20d9bab1676e09af7ff1ba5bfadae75
Validity
Not Before: Jun 24 04:17:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=22837393da6367c7b4d5917500ec988ade0dcb67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3a:35:f9:6f:29:14:a5:07:47:a8:07:d4:88:
fc:ec:4b:13:37:df:2c:cf:a5:a2:19:ad:87:79:8e:
c6:05:ff:e6:3b:ed:90:d4:2b:82:c2:28:c9:b4:89:
06:27:d9:7d:f2:08:91:a2:c8:7a:7e:61:84:5e:74:
3c:d6:9b:be:71:57:e4:5f:26:25:0e:91:1d:85:78:
b6:b8:40:dd:f2:60:a8:d6:6a:a7:8a:bb:59:f8:18:
eb:70:55:c0:e2:54:17:61:4e:1b:e8:15:6c:38:f8:
10:a4:c5:5c:bd:42:f0:2e:30:74:42:22:51:53:da:
f2:fc:d2:c2:91:25:6f:62:05:7d:c8:ff:77:c6:48:
95:5a:4d:4b:5d:19:50:ed:16:1f:93:56:2b:0d:bb:
c2:a3:c7:02:f9:f9:0c:34:2e:2c:a4:93:ca:7c:e6:
ef:02:1e:b1:18:09:7a:c8:19:f6:83:91:d8:26:58:
a0:fc:44:c7:13:fb:a0:f4:c3:5c:dd:09:bf:94:95:
57:37:04:6f:0c:fb:87:07:20:7c:89:f0:1f:88:da:
5e:e3:77:e9:aa:06:a8:f5:c8:4b:01:b4:a8:e0:53:
bd:e4:e9:c9:7d:cd:15:17:c6:92:4e:ff:f8:61:bc:
e0:7b:1d:43:21:d2:82:63:50:fb:cd:bc:89:48:2c:
cd:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:83:73:93:DA:63:67:C7:B4:D5:91:75:00:EC:98:8A:DE:0D:CB:67
X509v3 Authority Key Identifier:
keyid:17:B5:04:2F:C2:0D:9B:AB:16:76:E0:9A:F7:FF:1B:A5:BF:AD:AE:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/IoNzk9pjZ8e01ZF1AOyYit4Ny2c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/F7UEL8INm6sWduCa9_8bpb-trnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:cc40::/29
2a0c:e500::/29
2a10:1d80::/29
2a11:1300::/29
2a11:1ac0::/29
2a11:3140::/29
2a11:3c80::/29
2a11:5340::/29
2a11:53c0::/29
2a11:5500::/29
2a11:7a00::/29
2a11:7dc0::/29
2a11:8380::/29
2a11:ac00::/29
2a11:b040::/29
2a11:b300::/29
2a11:c000::/29
2a11:ec80::/29
2a12:600::/29
2a12:2580::/29
2a12:2900::/29
2a12:5000::/29
2a12:b880::/29
2a12:d300::/29
Signature Algorithm: sha256WithRSAEncryption
79:be:80:81:4f:22:88:74:02:88:14:63:53:63:85:be:02:65:
32:c0:31:67:fe:bb:6f:04:8e:e5:9f:f3:a7:5f:ca:f0:3c:8e:
d1:11:89:83:c5:52:75:0c:7a:c0:7b:f6:0f:a9:1c:4a:d2:4b:
46:7f:7e:ef:12:27:56:55:fb:99:80:ae:85:67:3d:04:81:92:
1d:5b:4a:71:b9:d9:e1:cf:67:d9:54:dc:b9:d6:b3:83:b8:d5:
88:b6:80:94:42:b1:a6:bd:e4:69:9f:fa:27:f1:eb:e1:1a:c6:
99:02:91:1e:21:c4:1e:ee:25:2e:70:6f:2f:7f:32:f1:6d:0d:
3a:75:ee:f5:df:ec:54:f6:f4:ed:1f:93:6d:9d:df:3a:36:3f:
db:52:33:4a:de:3b:ec:f3:53:a9:89:a8:38:56:71:df:b2:bd:
f3:76:9f:c0:36:ea:15:cc:a1:56:5b:9a:f1:be:62:58:a5:26:
8f:04:84:55:d5:17:cb:7e:57:bd:b6:f8:10:bf:64:7d:b1:bb:
f7:5d:ba:30:96:c5:20:94:37:88:2c:c4:75:c0:b4:8d:a0:4c:
68:34:cd:f6:1d:4b:4b:99:1c:7b:d4:e1:dd:84:72:8a:fa:02:
36:b0:00:6b:93:00:dc:61:3f:0f:75:9c:9a:44:cd:0c:50:cf:
85:81:82:7f
-----BEGIN CERTIFICATE-----
MIIFpDCCBIygAwIBAgISAZBIdt1mpQWR8cPIMgtv865xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3YjUwNDJmYzIwZDliYWIxNjc2ZTA5YWY3ZmYxYmE1YmZh
ZGFlNzUwHhcNMjQwNjI0MDQxNzQ3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMjgzNzM5M2RhNjM2N2M3YjRkNTkxNzUwMGVjOTg4YWRlMGRjYjY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApjo1+W8pFKUHR6gH1Ij87EsTN98s
z6WiGa2HeY7GBf/mO+2Q1CuCwijJtIkGJ9l98giRosh6fmGEXnQ81pu+cVfkXyYl
DpEdhXi2uEDd8mCo1mqnirtZ+BjrcFXA4lQXYU4b6BVsOPgQpMVcvULwLjB0QiJR
U9ry/NLCkSVvYgV9yP93xkiVWk1LXRlQ7RYfk1YrDbvCo8cC+fkMNC4spJPKfObv
Ah6xGAl6yBn2g5HYJlig/ETHE/ug9MNc3Qm/lJVXNwRvDPuHByB8ifAfiNpe43fp
qgao9chLAbSo4FO95OnJfc0VF8aSTv/4Ybzgex1DIdKCY1D7zbyJSCzNjQIDAQAB
o4ICsDCCAqwwHQYDVR0OBBYEFCKDc5PaY2fHtNWRdQDsmIreDctnMB8GA1UdIwQY
MBaAFBe1BC/CDZurFnbgmvf/G6W/ra51MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjdVRUw4SU5tNnNXZHVDYTlfOGJwYi10cm5VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS82NWU1NDMtN2U3YS00YWFiLWFjNzQt
YmM2Nzk0ZTk1ZTVhLzEvSW9Oems5cGpaOGUwMVpGMUFPeVlpdDROeTJjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS82NWU1NDMtN2U3YS00YWFiLWFjNzQtYmM2Nzk0ZTk1ZTVh
LzEvRjdVRUw4SU5tNnNXZHVDYTlfOGJwYi10cm5VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHFBggrBgEFBQcBBwEB/wSBtTCBsjCBrwQCAAIwgagDBQMq
A8xAAwUDKgzlAAMFAyoQHYADBQMqERMAAwUDKhEawAMFAyoRMUADBQMqETyAAwUD
KhFTQAMFAyoRU8ADBQMqEVUAAwUDKhF6AAMFAyoRfcADBQMqEYOAAwUDKhGsAAMF
AyoRsEADBQMqEbMAAwUDKhHAAAMFAyoR7IADBQMqEgYAAwUDKhIlgAMFAyoSKQAD
BQMqElAAAwUDKhK4gAMFAyoS0wAwDQYJKoZIhvcNAQELBQADggEBAHm+gIFPIoh0
AogUY1Njhb4CZTLAMWf+u28EjuWf86dfyvA8jtERiYPFUnUMesB79g+pHErSS0Z/
fu8SJ1ZV+5mAroVnPQSBkh1bSnG52eHPZ9lU3LnWs4O41Yi2gJRCsaa95Gmf+ifx
6+EaxpkCkR4hxB7uJS5wby9/MvFtDTp17vXf7FT29O0fk22d3zo2P9tSM0reO+zz
U6mJqDhWcd+yvfN2n8A26hXMoVZbmvG+YlilJo8EhFXVF8t+V722+BC/ZH2xu/dd
ujCWxSCUN4gsxHXAtI2gTGg0zfYdS0uZHHvU4d2Ecor6AjawAGuTANxhPw91nJpE
zQxQz4WBgn8=
-----END CERTIFICATE-----
Generated at Thu Sep 12 12:52:46 2024 by rpki-client on console-fra.rpki-client.org