Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/29af59-0b7b-4d80-8f9f-14d02e30d227/1/1Jzy5k-Uonj4ZT6Z9zOuM-XzTx0.roa
File: 1Jzy5k-Uonj4ZT6Z9zOuM-XzTx0.roa (raw, json)
Hash identifier: kqhxwFBrKFnACK6jD7iWFU9u26fqfyWpjUg6X9Y6axY=
Subject key identifier: D4:9C:F2:E6:4F:94:A2:78:F8:65:3E:99:F7:33:AE:33:E5:F3:4F:1D
Certificate issuer: /CN=e87cc680c85983e7bf74498d0e6be800f86451c3
Certificate serial: 018E2FB9BC4A46B35111F799FA9F74F510B4
Authority key identifier: E8:7C:C6:80:C8:59:83:E7:BF:74:49:8D:0E:6B:E8:00:F8:64:51:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6HzGgMhZg-e_dEmNDmvoAPhkUcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/29af59-0b7b-4d80-8f9f-14d02e30d227/1/1Jzy5k-Uonj4ZT6Z9zOuM-XzTx0.roa
Signing time: Mon 11 Mar 2024 22:54:45 +0000
ROA not before: Mon 11 Mar 2024 22:54:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 19904
IP address blocks: 64.253.32.0/19 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Mar 2024 00:18:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:2f:b9:bc:4a:46:b3:51:11:f7:99:fa:9f:74:f5:10:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e87cc680c85983e7bf74498d0e6be800f86451c3
Validity
Not Before: Mar 11 22:54:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d49cf2e64f94a278f8653e99f733ae33e5f34f1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:12:05:e6:fc:43:bb:08:89:8d:db:68:1d:b4:
b9:6b:2e:db:b8:c2:76:bf:10:9e:d5:01:70:0f:d4:
a4:ef:b1:67:36:f2:e8:bc:2b:b2:ad:bc:54:0d:ed:
eb:05:c8:6e:d9:70:ab:c6:f6:04:80:31:fc:6f:27:
65:7e:db:9a:7c:7e:e1:8e:55:1a:8a:a3:55:54:4f:
98:f5:6a:35:d4:0b:b6:bd:00:6a:b0:c9:4b:c3:67:
83:06:89:d0:ff:a1:12:ce:37:9b:91:d0:c2:be:ab:
c7:c0:cf:d1:4d:60:7e:fa:ff:0f:e6:e7:86:b6:a8:
ce:15:97:39:92:98:0b:ae:1f:e0:f8:02:43:4e:b7:
82:14:4e:d6:fe:3a:8c:74:92:be:12:4f:b6:53:64:
d6:7b:26:4a:3d:bc:16:7f:03:ef:6d:25:49:6f:f1:
b3:53:a2:c6:0b:96:6a:98:4c:26:59:25:06:c5:e0:
2b:71:90:2d:04:1a:72:34:2d:f4:33:63:a6:46:63:
3c:64:c1:df:ae:30:94:78:5a:12:f6:65:44:c7:cf:
b9:b9:86:59:3e:91:fa:3e:7e:8d:7c:41:a4:db:12:
2c:1f:d4:82:f8:87:b9:69:76:fe:1f:52:7d:00:7a:
c4:17:52:a9:12:1b:6e:9a:fd:3b:fa:18:78:17:25:
57:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:9C:F2:E6:4F:94:A2:78:F8:65:3E:99:F7:33:AE:33:E5:F3:4F:1D
X509v3 Authority Key Identifier:
keyid:E8:7C:C6:80:C8:59:83:E7:BF:74:49:8D:0E:6B:E8:00:F8:64:51:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6HzGgMhZg-e_dEmNDmvoAPhkUcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/29af59-0b7b-4d80-8f9f-14d02e30d227/1/1Jzy5k-Uonj4ZT6Z9zOuM-XzTx0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/29af59-0b7b-4d80-8f9f-14d02e30d227/1/6HzGgMhZg-e_dEmNDmvoAPhkUcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
64.253.32.0/19
Signature Algorithm: sha256WithRSAEncryption
93:dc:ec:65:fc:3c:d9:99:1a:f8:1a:b7:ae:2a:3a:e4:2a:9d:
dc:d7:88:6b:a1:2b:e6:5d:a2:eb:d1:60:0d:6f:e3:0b:6a:8e:
8f:2d:2b:70:62:62:a0:24:5c:2d:51:d7:d5:29:f0:51:bf:39:
63:fd:62:c7:b6:a8:95:77:d5:5c:50:0a:82:d6:2d:fc:00:d8:
e1:7d:64:00:b1:09:94:29:1c:d6:96:04:aa:84:23:a4:e4:f3:
aa:57:56:57:49:52:b1:a1:d0:2a:f0:6f:f9:0b:7a:b6:7d:69:
bf:cf:13:6f:37:71:df:95:0b:99:bf:a4:73:03:17:19:c4:a6:
ea:f6:c4:a2:e1:38:18:d2:e1:ea:d1:21:b5:4c:45:d7:60:95:
b4:e8:67:d6:eb:95:db:ae:39:3a:62:55:98:cb:25:6d:79:c8:
84:10:cf:e3:0a:64:8c:3d:4e:0d:91:4c:e8:a6:3e:8e:00:41:
14:cf:ab:e4:42:34:0f:3a:44:08:35:88:39:26:1a:5b:bd:38:
57:48:a7:26:ce:7a:ce:6d:48:77:e9:d6:cb:e4:a3:9a:d7:24:
92:86:02:f3:c6:25:85:3c:93:90:db:c6:54:4a:0f:2f:4b:32:
a4:64:e5:06:4d:36:eb:a2:2a:47:55:e2:8e:7b:be:7f:7f:e0:
d3:52:8c:fa
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY4vubxKRrNREfeZ+p909RC0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU4N2NjNjgwYzg1OTgzZTdiZjc0NDk4ZDBlNmJlODAwZjg2
NDUxYzMwHhcNMjQwMzExMjI1NDQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNDljZjJlNjRmOTRhMjc4Zjg2NTNlOTlmNzMzYWUzM2U1ZjM0ZjFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAohIF5vxDuwiJjdtoHbS5ay7buMJ2
vxCe1QFwD9Sk77FnNvLovCuyrbxUDe3rBchu2XCrxvYEgDH8bydlftuafH7hjlUa
iqNVVE+Y9Wo11Au2vQBqsMlLw2eDBonQ/6ESzjebkdDCvqvHwM/RTWB++v8P5ueG
tqjOFZc5kpgLrh/g+AJDTreCFE7W/jqMdJK+Ek+2U2TWeyZKPbwWfwPvbSVJb/Gz
U6LGC5ZqmEwmWSUGxeArcZAtBBpyNC30M2OmRmM8ZMHfrjCUeFoS9mVEx8+5uYZZ
PpH6Pn6NfEGk2xIsH9SC+Ie5aXb+H1J9AHrEF1KpEhtumv07+hh4FyVXTQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNSc8uZPlKJ4+GU+mfczrjPl808dMB8GA1UdIwQY
MBaAFOh8xoDIWYPnv3RJjQ5r6AD4ZFHDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNkh6R2dNaFpnLWVfZEVtTkRtdm9BUGhrVWNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8yOWFmNTktMGI3Yi00ZDgwLThmOWYt
MTRkMDJlMzBkMjI3LzEvMUp6eTVrLVVvbmo0WlQ2Wjl6T3VNLVh6VHgwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi8yOWFmNTktMGI3Yi00ZDgwLThmOWYtMTRkMDJlMzBkMjI3
LzEvNkh6R2dNaFpnLWVfZEVtTkRtdm9BUGhrVWNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFQP0gMA0G
CSqGSIb3DQEBCwUAA4IBAQCT3Oxl/DzZmRr4GreuKjrkKp3c14hroSvmXaLr0WAN
b+MLao6PLStwYmKgJFwtUdfVKfBRvzlj/WLHtqiVd9VcUAqC1i38ANjhfWQAsQmU
KRzWlgSqhCOk5POqV1ZXSVKxodAq8G/5C3q2fWm/zxNvN3HflQuZv6RzAxcZxKbq
9sSi4TgY0uHq0SG1TEXXYJW06GfW65Xbrjk6YlWYyyVteciEEM/jCmSMPU4NkUzo
pj6OAEEUz6vkQjQPOkQINYg5JhpbvThXSKcmznrObUh36dbL5KOa1ySShgLzxiWF
PJOQ28ZUSg8vSzKkZOUGTTbroipHVeKOe75/f+DTUoz6
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:12 2024 by rpki-client on console-ams.rpki-client.org