Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6401f3-6df0-4038-b0bc-574713845dbc/1/n5vqQVn2NBGO-Wxket-70HatA2Q.roa
File: n5vqQVn2NBGO-Wxket-70HatA2Q.roa (raw, json)
Hash identifier: UE9G5uz6J8WobTowupJoHX6UfJrXFO/alOfhAedNbtA=
Subject key identifier: 9F:9B:EA:41:59:F6:34:11:8E:F9:6C:64:7A:DF:BB:D0:76:AD:03:64
Certificate issuer: /CN=53f47a725c768d4de78fb31bb40fe16eba19f20d
Certificate serial: 018CC9BBF6649DCBC7B0E84D33B7C82DFE73
Authority key identifier: 53:F4:7A:72:5C:76:8D:4D:E7:8F:B3:1B:B4:0F:E1:6E:BA:19:F2:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U_R6clx2jU3nj7MbtA_hbroZ8g0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6401f3-6df0-4038-b0bc-574713845dbc/1/n5vqQVn2NBGO-Wxket-70HatA2Q.roa
Signing time: Tue 02 Jan 2024 10:33:07 +0000
ROA not before: Tue 02 Jan 2024 10:33:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211810
IP address blocks: 2a06:8184:ff04::/48 maxlen: 48
2a06:8184:ff14::/48 maxlen: 48
2a06:8184:ff07::/48 maxlen: 48
2a06:8184:ff02::/48 maxlen: 48
2a06:8184:ff05::/48 maxlen: 48
2a06:8184:ff00::/40 maxlen: 40
2a06:8184:ff08::/48 maxlen: 48
2a06:8184:ff00::/48 maxlen: 48
2a06:8184:ff03::/48 maxlen: 48
2a06:8184:ff06::/48 maxlen: 48
2a06:8184:ff01::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 21 Mar 2024 16:07:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:f6:64:9d:cb:c7:b0:e8:4d:33:b7:c8:2d:fe:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53f47a725c768d4de78fb31bb40fe16eba19f20d
Validity
Not Before: Jan 2 10:33:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9f9bea4159f634118ef96c647adfbbd076ad0364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a5:37:9f:ce:b0:cd:58:9e:28:20:83:67:25:
07:07:55:d4:b7:ce:78:ee:7e:88:17:34:f9:47:7f:
36:b6:da:32:62:af:1c:1d:57:57:b9:27:5c:69:9d:
32:98:20:47:ac:7d:e5:5d:27:52:09:5f:1a:a0:be:
18:62:29:60:7a:68:31:ff:76:f7:3c:89:d9:4c:3d:
b5:cd:ed:78:0f:5b:ba:6c:6f:88:f2:69:ab:8a:d3:
a4:94:fb:9b:df:a8:5f:ed:74:22:1c:f5:d1:3a:22:
14:9e:84:f5:53:ee:c4:74:6b:e5:39:1d:f8:39:50:
75:f8:fd:52:e2:61:fc:ee:da:66:69:60:db:f1:d6:
f4:3e:89:b0:fe:fc:9f:29:b7:f1:18:ba:46:77:fd:
17:93:43:35:d0:25:53:63:82:04:d1:1f:d1:8c:41:
5c:94:0a:dd:6a:57:d9:72:43:42:67:5b:2a:cf:e1:
d6:94:92:3d:c6:b4:87:d5:40:7d:c2:d0:2d:41:67:
42:22:20:7d:7f:7f:9a:8c:d4:b1:59:47:f9:c7:fb:
a1:ed:c9:23:91:9f:49:de:71:78:5e:96:e4:dd:15:
71:93:15:88:a2:38:36:0f:6e:dd:e7:20:0d:91:ad:
09:83:9c:e6:f8:21:74:6f:d2:fe:ee:0b:55:d1:67:
ca:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:9B:EA:41:59:F6:34:11:8E:F9:6C:64:7A:DF:BB:D0:76:AD:03:64
X509v3 Authority Key Identifier:
keyid:53:F4:7A:72:5C:76:8D:4D:E7:8F:B3:1B:B4:0F:E1:6E:BA:19:F2:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U_R6clx2jU3nj7MbtA_hbroZ8g0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6401f3-6df0-4038-b0bc-574713845dbc/1/n5vqQVn2NBGO-Wxket-70HatA2Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6401f3-6df0-4038-b0bc-574713845dbc/1/U_R6clx2jU3nj7MbtA_hbroZ8g0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:8184:ff00::/40
Signature Algorithm: sha256WithRSAEncryption
00:2d:2c:8f:3b:41:d6:a0:69:96:f4:db:43:a9:28:73:2b:91:
08:85:60:22:c2:c6:f2:d1:b7:1b:17:a5:f6:02:2b:db:57:2e:
62:e9:72:50:7c:aa:2b:88:fa:4f:00:d2:19:8e:b4:f7:cf:1e:
17:b9:9c:74:44:e7:4c:3e:d9:b6:6c:eb:fc:46:e8:5b:e5:8c:
6f:03:c0:bb:6f:4d:84:b5:6a:15:f2:85:07:1c:b6:99:ff:6b:
8c:fe:9a:0d:4c:87:5e:31:1f:f4:3a:bf:d2:be:d7:5d:5a:20:
2a:1e:a4:ba:13:7d:1a:fc:df:fb:a7:69:0c:23:97:a7:85:07:
d5:41:6a:ca:1f:8d:11:a7:cc:2c:8e:72:09:67:37:28:80:00:
30:5c:56:89:98:17:91:98:74:bd:1b:11:27:7a:cd:46:ce:b1:
48:1e:4b:11:82:63:18:11:c8:5c:a7:26:e5:02:21:a7:69:c1:
23:ef:41:2b:74:e1:b8:57:e0:7a:92:bf:ef:47:d0:6f:a4:81:
44:93:ff:9f:a6:f6:65:36:a3:92:8e:09:67:0a:2a:a2:0f:3d:
be:cf:10:4e:f5:23:cd:08:73:56:9a:78:67:89:82:e1:62:92:
81:c0:be:14:3b:f5:4d:72:8d:15:7e:77:ee:03:25:89:53:c1:
4e:ad:4a:09
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYzJu/ZkncvHsOhNM7fILf5zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUzZjQ3YTcyNWM3NjhkNGRlNzhmYjMxYmI0MGZlMTZlYmEx
OWYyMGQwHhcNMjQwMTAyMTAzMzA3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZjliZWE0MTU5ZjYzNDExOGVmOTZjNjQ3YWRmYmJkMDc2YWQwMzY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkqU3n86wzVieKCCDZyUHB1XUt854
7n6IFzT5R382ttoyYq8cHVdXuSdcaZ0ymCBHrH3lXSdSCV8aoL4YYilgemgx/3b3
PInZTD21ze14D1u6bG+I8mmritOklPub36hf7XQiHPXROiIUnoT1U+7EdGvlOR34
OVB1+P1S4mH87tpmaWDb8db0Pomw/vyfKbfxGLpGd/0Xk0M10CVTY4IE0R/RjEFc
lArdalfZckNCZ1sqz+HWlJI9xrSH1UB9wtAtQWdCIiB9f3+ajNSxWUf5x/uh7ckj
kZ9J3nF4Xpbk3RVxkxWIojg2D27d5yANka0Jg5zm+CF0b9L+7gtV0WfKcwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFJ+b6kFZ9jQRjvlsZHrfu9B2rQNkMB8GA1UdIwQY
MBaAFFP0enJcdo1N54+zG7QP4W66GfINMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVV9SNmNseDJqVTNuajdNYnRBX2hicm9aOGcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi82NDAxZjMtNmRmMC00MDM4LWIwYmMt
NTc0NzEzODQ1ZGJjLzEvbjV2cVFWbjJOQkdPLVd4a2V0LTcwSGF0QTJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi82NDAxZjMtNmRmMC00MDM4LWIwYmMtNTc0NzEzODQ1ZGJj
LzEvVV9SNmNseDJqVTNuajdNYnRBX2hicm9aOGcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgaBhP8w
DQYJKoZIhvcNAQELBQADggEBAAAtLI87QdagaZb020OpKHMrkQiFYCLCxvLRtxsX
pfYCK9tXLmLpclB8qiuI+k8A0hmOtPfPHhe5nHRE50w+2bZs6/xG6FvljG8DwLtv
TYS1ahXyhQcctpn/a4z+mg1Mh14xH/Q6v9K+111aICoepLoTfRr83/unaQwjl6eF
B9VBasofjRGnzCyOcglnNyiAADBcVomYF5GYdL0bESd6zUbOsUgeSxGCYxgRyFyn
JuUCIadpwSPvQSt04bhX4HqSv+9H0G+kgUST/5+m9mU2o5KOCWcKKqIPPb7PEE71
I80Ic1aaeGeJguFikoHAvhQ79U1yjRV+d+4DJYlTwU6tSgk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:11 2024 by rpki-client on console-fra.rpki-client.org