Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/732801-6294-412b-955e-fefd37666741/1/E6zuhrpCYKVYMWTteuxN9AJ1bZs.roa
File: E6zuhrpCYKVYMWTteuxN9AJ1bZs.roa (raw, json)
Hash identifier: TuyaMi0EOszTj4vpV3vN1tNVMYUmue/CJgf0Ir9GjsE=
Subject key identifier: 13:AC:EE:86:BA:42:60:A5:58:31:64:ED:7A:EC:4D:F4:02:75:6D:9B
Certificate issuer: /CN=c933481d3fa48710dcb973fdcd29340dedb6229a
Certificate serial: 018CC50141CECCF945F138B60505082009FD
Authority key identifier: C9:33:48:1D:3F:A4:87:10:DC:B9:73:FD:CD:29:34:0D:ED:B6:22:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yTNIHT-khxDcuXP9zSk0De22Ipo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/732801-6294-412b-955e-fefd37666741/1/E6zuhrpCYKVYMWTteuxN9AJ1bZs.roa
Signing time: Mon 01 Jan 2024 12:30:43 +0000
ROA not before: Mon 01 Jan 2024 12:30:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43578
IP address blocks: 5.226.168.0/24 maxlen: 24
5.226.172.0/24 maxlen: 24
2a04:b880:5::/48 maxlen: 48
2a04:b880::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:49:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:41:ce:cc:f9:45:f1:38:b6:05:05:08:20:09:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c933481d3fa48710dcb973fdcd29340dedb6229a
Validity
Not Before: Jan 1 12:30:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=13acee86ba4260a5583164ed7aec4df402756d9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:17:8a:82:92:a2:d9:4c:ce:18:87:99:5e:41:
a3:f2:a7:c7:9c:88:6a:f3:a2:cb:10:9a:dc:d3:aa:
10:e0:ff:28:fe:60:46:02:69:93:01:a5:89:99:b9:
57:8a:53:bf:a5:b3:13:17:34:7e:a1:13:85:e1:e5:
37:a6:e8:32:d5:3e:f5:78:7a:d8:40:f7:5e:a8:72:
70:12:a3:d0:d9:7b:35:73:fd:d8:bf:b0:a7:6d:08:
28:b1:56:74:75:74:e7:c3:ff:14:30:7f:a7:66:a9:
b1:7b:68:b0:55:53:a9:97:cd:5b:d6:4a:8a:48:47:
f0:6b:0e:7a:97:0f:d2:b7:9a:cf:5a:b0:e5:e4:03:
13:34:2c:60:3c:60:71:a2:6d:05:28:1c:e1:0c:a7:
26:72:2b:7d:55:78:61:9b:23:fa:a2:9c:3a:b8:5a:
14:24:55:f6:79:1d:7e:6e:a2:e2:bc:df:12:5f:44:
3d:88:13:bc:53:09:40:aa:94:fa:4e:96:55:1b:09:
49:3b:cf:38:dd:68:65:07:6c:1b:79:c9:7c:da:ca:
90:2c:e5:d7:c4:79:85:29:fe:cd:52:47:5a:16:c9:
f7:ad:94:78:63:be:88:81:16:e1:dd:b1:b6:ea:7a:
ed:18:3d:dc:a3:a5:d5:ee:18:9a:ec:dd:dc:27:3f:
bb:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:AC:EE:86:BA:42:60:A5:58:31:64:ED:7A:EC:4D:F4:02:75:6D:9B
X509v3 Authority Key Identifier:
keyid:C9:33:48:1D:3F:A4:87:10:DC:B9:73:FD:CD:29:34:0D:ED:B6:22:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yTNIHT-khxDcuXP9zSk0De22Ipo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/732801-6294-412b-955e-fefd37666741/1/E6zuhrpCYKVYMWTteuxN9AJ1bZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/732801-6294-412b-955e-fefd37666741/1/yTNIHT-khxDcuXP9zSk0De22Ipo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.168.0/24
5.226.172.0/24
IPv6:
2a04:b880::/48
2a04:b880:5::/48
Signature Algorithm: sha256WithRSAEncryption
80:3f:d2:8a:82:0b:2f:b5:a4:24:d6:0c:00:96:05:0b:d7:20:
4c:4f:84:bf:17:32:d4:54:06:b5:77:d3:47:7c:d7:e0:51:83:
dc:b7:a5:0a:7d:a0:c8:42:71:54:4f:30:b8:83:31:04:ba:0b:
9d:17:ac:35:36:fb:34:2d:c7:0f:ee:bf:1c:76:42:ab:16:a4:
2f:98:96:81:c1:b6:df:d6:0b:85:18:42:43:c0:3c:a9:6e:45:
b3:fe:5c:10:4b:ce:11:93:e0:ed:52:84:bf:cc:fa:2f:22:6d:
c1:c9:52:9d:14:84:e4:75:ca:04:9a:5d:02:9e:07:19:70:df:
47:47:47:c7:02:ef:c6:c9:94:9f:61:e8:00:f3:eb:cd:be:9e:
85:bb:8a:58:d9:38:52:d5:e2:96:4d:cb:b9:a0:94:78:19:15:
66:89:94:88:5f:8b:2e:ff:20:b0:a7:b6:7e:19:13:d2:cf:f3:
17:0a:44:43:06:3d:15:e3:58:c5:67:73:31:d1:35:13:b1:e0:
1f:f8:db:8c:16:c5:89:8a:f3:8c:36:d9:6e:a0:61:6d:e2:2a:
10:18:ae:c9:3b:2c:92:b8:b0:c8:21:a3:cf:32:a2:cd:1f:8f:
27:bd:3d:85:a2:51:17:30:dd:0e:73:65:9d:6a:1e:ed:01:20:
8f:90:c5:b2
-----BEGIN CERTIFICATE-----
MIIFHTCCBAWgAwIBAgISAYzFAUHOzPlF8Ti2BQUIIAn9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5MzM0ODFkM2ZhNDg3MTBkY2I5NzNmZGNkMjkzNDBkZWRi
NjIyOWEwHhcNMjQwMTAxMTIzMDQzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxM2FjZWU4NmJhNDI2MGE1NTgzMTY0ZWQ3YWVjNGRmNDAyNzU2ZDliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9ReKgpKi2UzOGIeZXkGj8qfHnIhq
86LLEJrc06oQ4P8o/mBGAmmTAaWJmblXilO/pbMTFzR+oROF4eU3pugy1T71eHrY
QPdeqHJwEqPQ2Xs1c/3Yv7CnbQgosVZ0dXTnw/8UMH+nZqmxe2iwVVOpl81b1kqK
SEfwaw56lw/St5rPWrDl5AMTNCxgPGBxom0FKBzhDKcmcit9VXhhmyP6opw6uFoU
JFX2eR1+bqLivN8SX0Q9iBO8UwlAqpT6TpZVGwlJO8843WhlB2wbecl82sqQLOXX
xHmFKf7NUkdaFsn3rZR4Y76IgRbh3bG26nrtGD3co6XV7hia7N3cJz+7zwIDAQAB
o4ICKTCCAiUwHQYDVR0OBBYEFBOs7oa6QmClWDFk7XrsTfQCdW2bMB8GA1UdIwQY
MBaAFMkzSB0/pIcQ3Llz/c0pNA3ttiKaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveVROSUhULWtoeERjdVhQOXpTazBEZTIySXBvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS83MzI4MDEtNjI5NC00MTJiLTk1NWUt
ZmVmZDM3NjY2NzQxLzEvRTZ6dWhycENZS1ZZTVdUdGV1eE45QUoxYlpzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS83MzI4MDEtNjI5NC00MTJiLTk1NWUtZmVmZDM3NjY2NzQx
LzEveVROSUhULWtoeERjdVhQOXpTazBEZTIySXBvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjASBAIAATAMAwQABeKoAwQA
BeKsMBgEAgACMBIDBwAqBLiAAAADBwAqBLiAAAUwDQYJKoZIhvcNAQELBQADggEB
AIA/0oqCCy+1pCTWDACWBQvXIExPhL8XMtRUBrV300d81+BRg9y3pQp9oMhCcVRP
MLiDMQS6C50XrDU2+zQtxw/uvxx2QqsWpC+YloHBtt/WC4UYQkPAPKluRbP+XBBL
zhGT4O1ShL/M+i8ibcHJUp0UhOR1ygSaXQKeBxlw30dHR8cC78bJlJ9h6ADz682+
noW7iljZOFLV4pZNy7mglHgZFWaJlIhfiy7/ILCntn4ZE9LP8xcKREMGPRXjWMVn
czHRNROx4B/424wWxYmK84w22W6gYW3iKhAYrsk7LJK4sMgho88yos0fjye9PYWi
URcw3Q5zZZ1qHu0BII+QxbI=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:31:50 2025 by rpki-client