Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/b50c28-a4a5-4c94-afba-3757d10d889e/1/F0KK-Q1bKZIVCF4tjsbTjTIn4Pg.roa
File: F0KK-Q1bKZIVCF4tjsbTjTIn4Pg.roa (raw, json)
Hash identifier: +rF8ST7xjAOE89OagGPfS2+juyZODYpZZ1TNsnqiQNE=
Subject key identifier: 17:42:8A:F9:0D:5B:29:92:15:08:5E:2D:8E:C6:D3:8D:32:27:E0:F8
Certificate issuer: /CN=d99d86a35238d4f2eb60cbd21495f81a3577c1a7
Certificate serial: 018E3DA321CC84910201E80133BA8B773611
Authority key identifier: D9:9D:86:A3:52:38:D4:F2:EB:60:CB:D2:14:95:F8:1A:35:77:C1:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Z2Go1I41PLrYMvSFJX4GjV3wac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/b50c28-a4a5-4c94-afba-3757d10d889e/1/F0KK-Q1bKZIVCF4tjsbTjTIn4Pg.roa
Signing time: Thu 14 Mar 2024 15:44:44 +0000
ROA not before: Thu 14 Mar 2024 15:44:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210789
IP address blocks: 212.6.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 19:49:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:3d:a3:21:cc:84:91:02:01:e8:01:33:ba:8b:77:36:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d99d86a35238d4f2eb60cbd21495f81a3577c1a7
Validity
Not Before: Mar 14 15:44:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=17428af90d5b299215085e2d8ec6d38d3227e0f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:08:c4:cf:82:39:bb:dc:90:54:2c:ff:df:bf:
40:7f:5e:3e:90:79:b5:5f:d9:7b:3a:b4:1d:d2:61:
a7:ec:1e:cf:ee:90:db:87:a6:45:8e:ea:27:43:6c:
e0:96:16:48:c8:5e:2a:a4:25:b4:b0:7d:cc:03:4d:
20:08:5d:41:78:8a:00:25:31:d9:e2:77:7a:7f:44:
eb:e2:c7:21:86:29:48:ba:96:ac:98:1e:c5:3b:b1:
bf:1a:22:8c:cd:f0:30:18:20:37:2c:85:e5:f6:df:
1b:3b:55:c8:62:c0:05:06:1f:da:82:0f:9b:24:13:
a5:66:fb:ea:c6:52:2a:de:0e:14:fa:b8:98:0d:0d:
96:16:4b:af:1d:1e:ec:6b:59:a4:99:b0:24:3c:28:
c0:52:0a:99:25:28:ca:33:37:61:93:25:24:38:7c:
f0:f8:06:45:88:e0:f7:d7:ce:1d:57:f0:61:3a:c0:
00:2a:25:c3:68:c6:b1:5f:d6:16:06:3f:30:19:04:
29:31:59:0b:e0:6a:b9:92:89:d8:16:b6:00:e8:f2:
22:60:49:71:f5:62:6e:60:28:e0:42:09:2a:df:f8:
e0:03:d4:86:39:d5:a1:6b:5e:ca:0f:3a:bb:09:b7:
06:77:b6:57:65:53:00:a6:6e:74:b4:47:51:ca:0b:
92:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:42:8A:F9:0D:5B:29:92:15:08:5E:2D:8E:C6:D3:8D:32:27:E0:F8
X509v3 Authority Key Identifier:
keyid:D9:9D:86:A3:52:38:D4:F2:EB:60:CB:D2:14:95:F8:1A:35:77:C1:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Z2Go1I41PLrYMvSFJX4GjV3wac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/b50c28-a4a5-4c94-afba-3757d10d889e/1/F0KK-Q1bKZIVCF4tjsbTjTIn4Pg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/b50c28-a4a5-4c94-afba-3757d10d889e/1/2Z2Go1I41PLrYMvSFJX4GjV3wac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.6.58.0/24
Signature Algorithm: sha256WithRSAEncryption
50:1f:16:ab:24:72:70:b4:a4:82:94:de:8d:ae:68:2d:f1:88:
a1:50:13:69:9e:ba:07:8d:bb:5e:0a:3e:12:6f:9f:dd:a7:a5:
1c:4e:c1:05:6b:67:5c:e2:6c:67:4a:1d:a8:f0:74:83:f0:03:
ea:dc:f4:5e:5c:88:9c:af:72:9c:b4:be:cf:a6:77:95:14:e1:
86:71:52:22:09:cd:a4:ea:ad:44:df:bb:51:a3:9b:43:94:a9:
e9:3e:b8:8c:7d:23:ed:aa:1f:1b:b9:24:13:2f:72:48:a6:7d:
32:11:db:0d:49:64:68:c6:b3:39:03:be:18:93:c1:7e:6d:9b:
df:5a:5c:9e:0b:d3:ad:b6:fe:b8:3f:00:8d:c3:f1:4a:7a:2c:
5e:29:a4:75:20:fb:9d:eb:24:22:e4:03:71:b5:63:d2:36:f8:
5d:56:96:e8:df:40:76:6e:39:78:44:6d:e8:ee:5a:1f:99:59:
f0:a9:c4:27:e5:c5:d7:cb:ab:9c:f8:8b:d6:7b:21:68:b8:2e:
ea:e8:ff:0f:c2:62:c3:fc:a9:4d:c3:3c:bb:90:3c:9c:e4:bc:
71:71:6a:95:73:2d:bd:1a:6b:a5:4b:fc:da:0b:55:58:0e:33:
77:2e:17:a9:f7:50:a9:13:ba:a0:a5:9d:fa:3f:4d:de:91:ed:
3f:69:4f:17
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY49oyHMhJECAegBM7qLdzYRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5OWQ4NmEzNTIzOGQ0ZjJlYjYwY2JkMjE0OTVmODFhMzU3
N2MxYTcwHhcNMjQwMzE0MTU0NDQ0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNzQyOGFmOTBkNWIyOTkyMTUwODVlMmQ4ZWM2ZDM4ZDMyMjdlMGY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjwjEz4I5u9yQVCz/379Af14+kHm1
X9l7OrQd0mGn7B7P7pDbh6ZFjuonQ2zglhZIyF4qpCW0sH3MA00gCF1BeIoAJTHZ
4nd6f0Tr4schhilIupasmB7FO7G/GiKMzfAwGCA3LIXl9t8bO1XIYsAFBh/agg+b
JBOlZvvqxlIq3g4U+riYDQ2WFkuvHR7sa1mkmbAkPCjAUgqZJSjKMzdhkyUkOHzw
+AZFiOD3184dV/BhOsAAKiXDaMaxX9YWBj8wGQQpMVkL4Gq5konYFrYA6PIiYElx
9WJuYCjgQgkq3/jgA9SGOdWha17KDzq7CbcGd7ZXZVMApm50tEdRyguSvQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBdCivkNWymSFQheLY7G040yJ+D4MB8GA1UdIwQY
MBaAFNmdhqNSONTy62DL0hSV+Bo1d8GnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMloyR28xSTQxUExyWU12U0ZKWDRHalYzd2FjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy9iNTBjMjgtYTRhNS00Yzk0LWFmYmEt
Mzc1N2QxMGQ4ODllLzEvRjBLSy1RMWJLWklWQ0Y0dGpzYlRqVEluNFBnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy9iNTBjMjgtYTRhNS00Yzk0LWFmYmEtMzc1N2QxMGQ4ODll
LzEvMloyR28xSTQxUExyWU12U0ZKWDRHalYzd2FjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1AY6MA0G
CSqGSIb3DQEBCwUAA4IBAQBQHxarJHJwtKSClN6Nrmgt8YihUBNpnroHjbteCj4S
b5/dp6UcTsEFa2dc4mxnSh2o8HSD8APq3PReXIicr3KctL7PpneVFOGGcVIiCc2k
6q1E37tRo5tDlKnpPriMfSPtqh8buSQTL3JIpn0yEdsNSWRoxrM5A74Yk8F+bZvf
WlyeC9Ottv64PwCNw/FKeixeKaR1IPud6yQi5ANxtWPSNvhdVpbo30B2bjl4RG3o
7lofmVnwqcQn5cXXy6uc+IvWeyFouC7q6P8PwmLD/KlNwzy7kDyc5LxxcWqVcy29
GmulS/zaC1VYDjN3Lhep91CpE7qgpZ36P03eke0/aU8X
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:15:00 2025 by rpki-client