Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/_GhX7miolIh4sEUcOEp4M1KAnNk.roa
File: _GhX7miolIh4sEUcOEp4M1KAnNk.roa (raw, json)
Hash identifier: eqOA4KjTcLkNJe5T2F4Ajc39tWoho5qDlr8xyELCumw=
Subject key identifier: FC:68:57:EE:68:A8:94:88:78:B0:45:1C:38:4A:78:33:52:80:9C:D9
Certificate issuer: /CN=07f0ba59b1c76cf20dc4382e5a2854d7142c26ba
Certificate serial: 01923DBCAF152C187C990C3CCCF7A61F3E9C
Authority key identifier: 07:F0:BA:59:B1:C7:6C:F2:0D:C4:38:2E:5A:28:54:D7:14:2C:26:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_C6WbHHbPINxDguWihU1xQsJro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/_GhX7miolIh4sEUcOEp4M1KAnNk.roa
Signing time: Sun 29 Sep 2024 12:23:48 +0000
ROA not before: Sun 29 Sep 2024 12:23:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214160
IP address blocks: 2a14:6:10::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 06 Oct 2024 11:57:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:3d:bc:af:15:2c:18:7c:99:0c:3c:cc:f7:a6:1f:3e:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f0ba59b1c76cf20dc4382e5a2854d7142c26ba
Validity
Not Before: Sep 29 12:23:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fc6857ee68a8948878b0451c384a783352809cd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d6:50:72:4b:db:55:8f:a5:d9:9b:ca:fb:c4:
a6:59:60:de:55:e8:6e:2c:c5:8b:7a:5b:db:45:00:
8a:7a:c0:e0:38:ea:e8:e3:8b:a8:a8:71:1f:91:7e:
12:0e:8f:73:06:cc:4e:1f:59:95:cf:8c:52:02:d3:
c1:f0:84:3d:fe:5a:13:2b:3c:6f:44:8c:20:6f:7d:
d8:8b:38:5f:8b:0e:0e:05:94:0d:01:90:e4:e2:71:
29:d3:3f:ae:23:1d:7e:c9:c9:c4:63:f3:0e:85:38:
55:58:3b:95:0a:87:0d:53:24:7d:9c:b6:a8:bf:4c:
f3:c2:41:35:61:69:7b:92:09:45:2c:40:99:bb:2b:
19:3b:ab:f7:39:21:d6:74:65:73:ca:4a:3a:0d:f5:
e6:d1:12:f7:b8:6a:54:6f:d7:c6:32:c0:e2:17:9a:
49:65:34:b6:34:57:8a:d0:ab:77:93:54:7a:20:dc:
10:52:a4:64:ae:ed:c5:5b:4a:3b:79:e4:d6:ba:16:
42:fa:dc:37:3b:0f:af:c6:01:ae:96:ac:e2:14:8d:
7e:a3:94:4d:58:8f:ce:3d:67:ae:0e:61:5b:1f:1d:
99:9f:c7:70:6b:a4:c2:eb:d9:ed:3f:26:87:88:91:
9a:00:c0:9c:c3:10:6a:b5:e7:74:5c:25:28:74:d4:
7a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:68:57:EE:68:A8:94:88:78:B0:45:1C:38:4A:78:33:52:80:9C:D9
X509v3 Authority Key Identifier:
keyid:07:F0:BA:59:B1:C7:6C:F2:0D:C4:38:2E:5A:28:54:D7:14:2C:26:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_C6WbHHbPINxDguWihU1xQsJro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/_GhX7miolIh4sEUcOEp4M1KAnNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/296a78-01e2-496d-ba59-2200b3cc57e6/1/B_C6WbHHbPINxDguWihU1xQsJro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:6:10::/48
Signature Algorithm: sha256WithRSAEncryption
93:c3:9f:6d:72:6c:87:3c:e2:13:6c:86:17:7d:16:13:4d:19:
0a:8a:da:d5:cf:ef:9a:76:8d:17:55:7e:cd:b9:5b:55:fa:55:
a8:17:03:31:72:ff:e7:11:e7:a0:30:ce:9e:d0:70:bf:e8:ae:
73:8d:44:8b:e9:3c:1b:03:24:59:17:9b:b5:10:db:e5:da:ac:
43:d0:a9:a4:16:2f:c4:f9:e4:8a:f5:00:e8:87:11:a6:8c:8c:
17:1a:8b:10:ae:0a:2b:cc:56:a9:06:23:9d:fa:48:58:23:27:
6c:66:14:42:3d:69:cd:46:b7:64:bb:70:8f:02:13:7e:fc:7c:
1e:90:96:93:be:80:e0:c7:03:e8:e4:03:43:17:f8:84:63:f7:
72:bc:5c:19:f4:80:55:bc:a8:58:09:fc:96:4a:36:d2:79:7b:
bc:4d:df:76:a3:de:a0:70:08:50:46:bc:0e:b2:5e:06:dd:66:
f9:6d:2a:d7:73:35:d2:d1:6a:1b:93:8d:bb:2e:a5:a5:33:40:
88:7f:e0:29:c2:f4:5b:b6:ad:34:2a:1b:80:61:ab:da:64:9b:
69:d8:d1:c5:4a:24:c3:78:94:c0:29:f4:8a:66:7c:75:ce:26:
06:df:70:e3:60:0a:43:18:94:f7:c1:6b:12:a2:ba:9f:2e:07:
26:68:da:17
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZI9vK8VLBh8mQw8zPemHz6cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA3ZjBiYTU5YjFjNzZjZjIwZGM0MzgyZTVhMjg1NGQ3MTQy
YzI2YmEwHhcNMjQwOTI5MTIyMzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYzY4NTdlZTY4YTg5NDg4NzhiMDQ1MWMzODRhNzgzMzUyODA5Y2Q5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxNZQckvbVY+l2ZvK+8SmWWDeVehu
LMWLelvbRQCKesDgOOro44uoqHEfkX4SDo9zBsxOH1mVz4xSAtPB8IQ9/loTKzxv
RIwgb33Yizhfiw4OBZQNAZDk4nEp0z+uIx1+ycnEY/MOhThVWDuVCocNUyR9nLao
v0zzwkE1YWl7kglFLECZuysZO6v3OSHWdGVzyko6DfXm0RL3uGpUb9fGMsDiF5pJ
ZTS2NFeK0Kt3k1R6INwQUqRkru3FW0o7eeTWuhZC+tw3Ow+vxgGulqziFI1+o5RN
WI/OPWeuDmFbHx2Zn8dwa6TC69ntPyaHiJGaAMCcwxBqted0XCUodNR6PwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFPxoV+5oqJSIeLBFHDhKeDNSgJzZMB8GA1UdIwQY
MBaAFAfwulmxx2zyDcQ4LlooVNcULCa6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQl9DNldiSEhiUElOeERndVdpaFUxeFFzSnJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC8yOTZhNzgtMDFlMi00OTZkLWJhNTkt
MjIwMGIzY2M1N2U2LzEvX0doWDdtaW9sSWg0c0VVY09FcDRNMUtBbk5rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC8yOTZhNzgtMDFlMi00OTZkLWJhNTktMjIwMGIzY2M1N2U2
LzEvQl9DNldiSEhiUElOeERndVdpaFUxeFFzSnJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhQABgAQ
MA0GCSqGSIb3DQEBCwUAA4IBAQCTw59tcmyHPOITbIYXfRYTTRkKitrVz++ado0X
VX7NuVtV+lWoFwMxcv/nEeegMM6e0HC/6K5zjUSL6TwbAyRZF5u1ENvl2qxD0Kmk
Fi/E+eSK9QDohxGmjIwXGosQrgorzFapBiOd+khYIydsZhRCPWnNRrdku3CPAhN+
/HwekJaTvoDgxwPo5ANDF/iEY/dyvFwZ9IBVvKhYCfyWSjbSeXu8Td92o96gcAhQ
RrwOsl4G3Wb5bSrXczXS0Wobk427LqWlM0CIf+ApwvRbtq00KhuAYavaZJtp2NHF
SiTDeJTAKfSKZnx1ziYG33DjYApDGJT3wWsSorqfLgcmaNoX
-----END CERTIFICATE-----
Generated at Sun Oct 6 18:41:57 2024 by rpki-client on console-ams.rpki-client.org