Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/0c9b54-130a-499a-bf9f-7610aabaa274/1/EYoNfnVsGkTEmWQ5gT0VP9tR3CE.roa
File: EYoNfnVsGkTEmWQ5gT0VP9tR3CE.roa (raw, json)
Hash identifier: 0NKA18uTTx45SAQCX7Ex8Hcbbe2xRszAlc5BoSuakCA=
Subject key identifier: 11:8A:0D:7E:75:6C:1A:44:C4:99:64:39:81:3D:15:3F:DB:51:DC:21
Certificate issuer: /CN=725c0c7111e2f57fcaf8113a42e556e882dd5c4b
Certificate serial: 018570CBD8F358E4E453FED975768B5BAC3B
Authority key identifier: 72:5C:0C:71:11:E2:F5:7F:CA:F8:11:3A:42:E5:56:E8:82:DD:5C:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/clwMcRHi9X_K-BE6QuVW6ILdXEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/0c9b54-130a-499a-bf9f-7610aabaa274/1/EYoNfnVsGkTEmWQ5gT0VP9tR3CE.roa
Signing time: Mon 02 Jan 2023 04:44:45 +0000
ROA not before: Mon 02 Jan 2023 04:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199606
IP address blocks: 151.248.8.0/21 maxlen: 24
2a01:a7c0::/32 maxlen: 37
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:d8:f3:58:e4:e4:53:fe:d9:75:76:8b:5b:ac:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=725c0c7111e2f57fcaf8113a42e556e882dd5c4b
Validity
Not Before: Jan 2 04:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=118a0d7e756c1a44c4996439813d153fdb51dc21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:d2:4d:3f:d7:62:eb:d2:a5:53:f1:0a:43:6c:
55:93:a6:c8:5e:41:b9:a2:a2:b7:96:00:21:4a:7c:
79:c8:8a:f7:80:10:0d:af:99:03:c0:b4:ae:46:95:
07:0d:08:d5:36:54:76:8c:2a:d0:91:63:9c:8b:30:
1d:b1:82:71:9f:46:c7:52:a6:b4:38:96:f5:b6:f8:
33:e4:bc:49:75:41:54:be:91:7b:30:fc:8c:8d:a5:
8a:8e:c6:2a:82:ac:09:1b:2d:e3:be:2d:15:f3:fe:
19:3a:b8:31:08:6b:5a:6e:6f:08:69:67:36:40:ad:
23:98:8e:68:b8:6b:52:6c:60:79:67:5f:f5:7c:f8:
31:77:2c:a3:25:b1:18:a5:81:4f:30:c6:50:d0:0f:
09:b6:f1:cd:af:f4:cc:15:79:0b:8f:ab:f2:cc:ad:
e7:f4:2b:e6:e9:c5:60:79:df:da:ba:25:32:59:c1:
4f:ac:a9:c3:48:01:3e:d4:c0:29:d4:bc:5c:93:b8:
ad:b3:ff:f1:d5:ee:2b:db:44:3a:38:ee:e7:ea:eb:
f2:01:e4:00:e7:8c:71:33:84:12:51:3e:79:ed:49:
40:7a:7e:8b:42:09:83:83:74:44:c9:d8:c4:82:87:
eb:b7:b4:2a:37:6b:2e:36:87:67:58:e6:50:b4:4b:
df:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:8A:0D:7E:75:6C:1A:44:C4:99:64:39:81:3D:15:3F:DB:51:DC:21
X509v3 Authority Key Identifier:
keyid:72:5C:0C:71:11:E2:F5:7F:CA:F8:11:3A:42:E5:56:E8:82:DD:5C:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/clwMcRHi9X_K-BE6QuVW6ILdXEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/0c9b54-130a-499a-bf9f-7610aabaa274/1/EYoNfnVsGkTEmWQ5gT0VP9tR3CE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/0c9b54-130a-499a-bf9f-7610aabaa274/1/clwMcRHi9X_K-BE6QuVW6ILdXEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.248.8.0/21
IPv6:
2a01:a7c0::/32
Signature Algorithm: sha256WithRSAEncryption
80:ba:b2:a8:50:56:66:6e:48:35:19:11:86:7f:e2:97:c9:86:
99:99:36:ba:28:e4:97:28:3f:45:36:3e:8f:fb:4b:26:e0:a5:
aa:72:4e:a9:17:d8:cc:ac:e2:31:40:6a:73:d2:fb:ef:7a:88:
a1:79:c3:6c:65:13:f4:80:32:b6:ca:c2:71:c7:82:c2:b4:4b:
e7:53:bd:4f:dc:aa:68:94:45:0a:47:99:4f:af:69:91:da:d6:
de:de:0a:a4:71:88:bf:4f:99:c3:b6:0b:a6:e8:ce:5e:a9:89:
4b:3a:83:4c:1c:6d:a7:bd:71:1c:4e:5a:0f:d4:db:94:95:aa:
44:ca:f3:cd:05:d8:4c:4d:25:6e:bd:17:52:23:d7:52:5b:b3:
1a:ec:02:50:e4:38:d8:af:da:ea:ee:0c:57:e7:07:f7:ca:ce:
6f:f4:32:d8:3e:57:8f:24:3b:0b:bd:c2:5a:82:6a:fd:e7:15:
3c:5f:af:95:b8:1f:60:40:43:06:a3:25:d0:ce:98:6f:ae:23:
94:96:48:c1:47:96:30:da:4c:b1:14:eb:70:4a:39:62:32:90:
f0:f9:67:4a:4a:cd:7d:a3:b2:b8:b4:13:cf:86:20:a7:fe:6d:
fb:f1:13:48:32:31:7f:09:05:39:13:d4:68:97:ef:cd:1f:b4:
9a:7f:05:34
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVwy9jzWOTkU/7ZdXaLW6w7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyNWMwYzcxMTFlMmY1N2ZjYWY4MTEzYTQyZTU1NmU4ODJk
ZDVjNGIwHhcNMjMwMTAyMDQ0NDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMThhMGQ3ZTc1NmMxYTQ0YzQ5OTY0Mzk4MTNkMTUzZmRiNTFkYzIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhtJNP9di69KlU/EKQ2xVk6bIXkG5
oqK3lgAhSnx5yIr3gBANr5kDwLSuRpUHDQjVNlR2jCrQkWOcizAdsYJxn0bHUqa0
OJb1tvgz5LxJdUFUvpF7MPyMjaWKjsYqgqwJGy3jvi0V8/4ZOrgxCGtabm8IaWc2
QK0jmI5ouGtSbGB5Z1/1fPgxdyyjJbEYpYFPMMZQ0A8JtvHNr/TMFXkLj6vyzK3n
9Cvm6cVged/auiUyWcFPrKnDSAE+1MAp1Lxck7its//x1e4r20Q6OO7n6uvyAeQA
54xxM4QSUT557UlAen6LQgmDg3REydjEgofrt7QqN2suNodnWOZQtEvfLwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFBGKDX51bBpExJlkOYE9FT/bUdwhMB8GA1UdIwQY
MBaAFHJcDHER4vV/yvgROkLlVuiC3VxLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2x3TWNSSGk5WF9LLUJFNlF1Vlc2SUxkWEVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS8wYzliNTQtMTMwYS00OTlhLWJmOWYt
NzYxMGFhYmFhMjc0LzEvRVlvTmZuVnNHa1RFbVdRNWdUMFZQOXRSM0NFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS8wYzliNTQtMTMwYS00OTlhLWJmOWYtNzYxMGFhYmFhMjc0
LzEvY2x3TWNSSGk5WF9LLUJFNlF1Vlc2SUxkWEVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQDl/gIMA0E
AgACMAcDBQAqAafAMA0GCSqGSIb3DQEBCwUAA4IBAQCAurKoUFZmbkg1GRGGf+KX
yYaZmTa6KOSXKD9FNj6P+0sm4KWqck6pF9jMrOIxQGpz0vvveoihecNsZRP0gDK2
ysJxx4LCtEvnU71P3KpolEUKR5lPr2mR2tbe3gqkcYi/T5nDtgum6M5eqYlLOoNM
HG2nvXEcTloP1NuUlapEyvPNBdhMTSVuvRdSI9dSW7Ma7AJQ5DjYr9rq7gxX5wf3
ys5v9DLYPlePJDsLvcJagmr95xU8X6+VuB9gQEMGoyXQzphvriOUlkjBR5Yw2kyx
FOtwSjliMpDw+WdKSs19o7K4tBPPhiCn/m378RNIMjF/CQU5E9Rol+/NH7SafwU0
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:52 2024 by rpki-client on console-fra.rpki-client.org