Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/088a21-6214-49fa-a8f7-912e78c2f2eb/1/EWFY0JqYYxPk8k-dcUOjvglFXB4.roa
File: EWFY0JqYYxPk8k-dcUOjvglFXB4.roa (raw, json)
Hash identifier: lxCaVTkN//h91+BYsNner08Q4WoskTIXqM7RyUyp12Q=
Subject key identifier: 11:61:58:D0:9A:98:63:13:E4:F2:4F:9D:71:43:A3:BE:09:45:5C:1E
Certificate issuer: /CN=0f784ebe35e41b610be154473bc219d0ad25278f
Certificate serial: 018E7641C347F703FF10258A71071C8191B4
Authority key identifier: 0F:78:4E:BE:35:E4:1B:61:0B:E1:54:47:3B:C2:19:D0:AD:25:27:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D3hOvjXkG2EL4VRHO8IZ0K0lJ48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/088a21-6214-49fa-a8f7-912e78c2f2eb/1/EWFY0JqYYxPk8k-dcUOjvglFXB4.roa
Signing time: Mon 25 Mar 2024 15:36:45 +0000
ROA not before: Mon 25 Mar 2024 15:36:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215252
IP address blocks: 2001:67c:13a8::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 08 May 2024 09:13:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:76:41:c3:47:f7:03:ff:10:25:8a:71:07:1c:81:91:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f784ebe35e41b610be154473bc219d0ad25278f
Validity
Not Before: Mar 25 15:36:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=116158d09a986313e4f24f9d7143a3be09455c1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:49:58:e5:1b:9e:56:13:44:2b:eb:1a:a1:d9:
6a:1f:f4:da:00:d5:3b:7e:ed:12:0f:e6:40:1e:8e:
52:17:66:cc:7d:cd:71:1d:73:37:3b:09:8b:79:10:
c7:dc:9a:16:62:4c:4f:01:f7:29:27:30:cb:7c:df:
77:2a:af:de:34:a0:4e:1d:c2:21:a5:e9:11:f2:11:
9a:e3:2f:c3:78:23:ca:8a:47:77:c0:8d:3b:97:9d:
d0:e4:d0:5e:d0:9a:f2:25:68:13:90:ed:93:ff:b2:
03:12:e7:40:ef:c7:2a:47:38:47:31:41:ac:73:51:
69:8d:0c:ed:9f:af:a9:a6:da:14:03:06:72:6f:0b:
57:5b:fe:9d:0e:03:5d:23:11:fd:ca:b7:7a:07:39:
ac:04:24:be:70:48:85:e6:38:de:0e:06:88:d9:60:
8d:0e:42:b6:00:85:ec:62:86:26:d3:f3:dc:53:d1:
07:0b:5b:d3:45:7c:ad:d6:b9:fb:c8:24:1a:37:a0:
1a:b8:7b:17:62:c3:35:6d:c5:9c:60:7c:b9:f1:1c:
92:43:bf:75:ee:5a:6c:b9:bd:0d:11:55:a9:f1:bf:
bf:69:98:a0:c1:97:75:53:66:25:f6:89:51:a3:c8:
4d:1d:4b:b7:c8:a9:2e:ad:6d:5a:ff:79:54:5d:97:
61:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:61:58:D0:9A:98:63:13:E4:F2:4F:9D:71:43:A3:BE:09:45:5C:1E
X509v3 Authority Key Identifier:
keyid:0F:78:4E:BE:35:E4:1B:61:0B:E1:54:47:3B:C2:19:D0:AD:25:27:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3hOvjXkG2EL4VRHO8IZ0K0lJ48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/088a21-6214-49fa-a8f7-912e78c2f2eb/1/EWFY0JqYYxPk8k-dcUOjvglFXB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/088a21-6214-49fa-a8f7-912e78c2f2eb/1/D3hOvjXkG2EL4VRHO8IZ0K0lJ48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:13a8::/48
Signature Algorithm: sha256WithRSAEncryption
c4:67:bc:46:8e:cb:5f:5f:11:dc:62:1e:56:21:c2:7f:a2:52:
8c:b2:07:fe:cc:a3:69:22:f1:d4:bf:3e:3a:cc:c1:e5:12:86:
39:e3:ef:84:18:57:2a:f3:63:ae:2f:14:1a:7e:9e:8f:4b:b8:
b9:7b:37:a2:70:ea:33:f4:e8:98:b5:d1:32:d5:7f:38:42:e2:
55:1a:5e:4b:8c:31:72:5d:69:61:c0:d7:c4:5d:a3:8c:d4:20:
99:7c:9a:af:c9:6f:15:f1:89:68:02:7b:ba:fd:99:f2:f8:f7:
f7:ac:96:5f:db:95:00:83:fb:c2:7f:2f:1f:af:a9:5b:24:fe:
c4:bd:8e:4f:c9:ae:14:f8:70:d7:f0:c0:10:91:df:a2:c8:ba:
26:38:3a:50:fd:d0:09:83:6a:95:2d:34:8f:46:83:74:b8:05:
5c:65:93:46:23:1a:b9:bf:f2:0f:f3:a2:e2:e6:50:67:4e:2d:
bc:59:c2:1e:fa:cf:df:eb:be:ee:fa:58:9c:04:78:88:25:81:
41:c2:2b:f0:6c:b3:fb:b8:c1:de:c1:35:2a:aa:66:5e:63:f0:
19:48:a4:43:2f:66:a6:c3:07:cc:54:39:31:14:ba:45:9b:e1:
5b:9b:5b:b8:8e:13:95:fa:e1:c9:e4:e0:66:e0:9b:e8:e9:3b:
8f:3b:8b:cb
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY52QcNH9wP/ECWKcQccgZG0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmNzg0ZWJlMzVlNDFiNjEwYmUxNTQ0NzNiYzIxOWQwYWQy
NTI3OGYwHhcNMjQwMzI1MTUzNjQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMTYxNThkMDlhOTg2MzEzZTRmMjRmOWQ3MTQzYTNiZTA5NDU1YzFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoklY5RueVhNEK+saodlqH/TaANU7
fu0SD+ZAHo5SF2bMfc1xHXM3OwmLeRDH3JoWYkxPAfcpJzDLfN93Kq/eNKBOHcIh
pekR8hGa4y/DeCPKikd3wI07l53Q5NBe0JryJWgTkO2T/7IDEudA78cqRzhHMUGs
c1FpjQztn6+pptoUAwZybwtXW/6dDgNdIxH9yrd6BzmsBCS+cEiF5jjeDgaI2WCN
DkK2AIXsYoYm0/PcU9EHC1vTRXyt1rn7yCQaN6AauHsXYsM1bcWcYHy58RySQ791
7lpsub0NEVWp8b+/aZigwZd1U2Yl9olRo8hNHUu3yKkurW1a/3lUXZdh0wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFBFhWNCamGMT5PJPnXFDo74JRVweMB8GA1UdIwQY
MBaAFA94Tr415BthC+FURzvCGdCtJSePMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRDNoT3ZqWGtHMkVMNFZSSE84SVowSzBsSjQ4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi8wODhhMjEtNjIxNC00OWZhLWE4Zjct
OTEyZTc4YzJmMmViLzEvRVdGWTBKcVlZeFBrOGstZGNVT2p2Z2xGWEI0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi8wODhhMjEtNjIxNC00OWZhLWE4ZjctOTEyZTc4YzJmMmVi
LzEvRDNoT3ZqWGtHMkVMNFZSSE84SVowSzBsSjQ4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfBOo
MA0GCSqGSIb3DQEBCwUAA4IBAQDEZ7xGjstfXxHcYh5WIcJ/olKMsgf+zKNpIvHU
vz46zMHlEoY54++EGFcq82OuLxQafp6PS7i5ezeicOoz9OiYtdEy1X84QuJVGl5L
jDFyXWlhwNfEXaOM1CCZfJqvyW8V8YloAnu6/Zny+Pf3rJZf25UAg/vCfy8fr6lb
JP7EvY5Pya4U+HDX8MAQkd+iyLomODpQ/dAJg2qVLTSPRoN0uAVcZZNGIxq5v/IP
86Li5lBnTi28WcIe+s/f677u+licBHiIJYFBwivwbLP7uMHewTUqqmZeY/AZSKRD
L2amwwfMVDkxFLpFm+Fbm1u4jhOV+uHJ5OBm4Jvo6TuPO4vL
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:45 2024 by rpki-client on console-ams.rpki-client.org