Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/txc6szz7vV9U0N_z-hiP7z7iPKU.roa
File: txc6szz7vV9U0N_z-hiP7z7iPKU.roa (raw, json)
Hash identifier: /npwXzjIWAr2knRsMmaFV8KkcG38X4eDI11Ty6gzYc8=
Subject key identifier: B7:17:3A:B3:3C:FB:BD:5F:54:D0:DF:F3:FA:18:8F:EF:3E:E2:3C:A5
Certificate issuer: /CN=5ebba0735a07e40ca32026278b2678678f8bacd9
Certificate serial: 018D354B6CE0F7E850607E77455F2210C1A4
Authority key identifier: 5E:BB:A0:73:5A:07:E4:0C:A3:20:26:27:8B:26:78:67:8F:8B:AC:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xrugc1oH5AyjICYniyZ4Z4-LrNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/txc6szz7vV9U0N_z-hiP7z7iPKU.roa
Signing time: Tue 23 Jan 2024 07:49:11 +0000
ROA not before: Tue 23 Jan 2024 07:49:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48503
IP address blocks: 217.76.70.0/24 maxlen: 24
2a03:32c0::/48 maxlen: 48
2a03:32c0:1::/48 maxlen: 48
2a03:32c0:2::/48 maxlen: 48
2a03:32c0:3::/48 maxlen: 48
2a03:32c0:4::/48 maxlen: 48
2a03:32c0:5::/48 maxlen: 48
2a03:32c0:6::/48 maxlen: 48
2a03:32c0:7::/48 maxlen: 48
2a03:32c0:3000::/48 maxlen: 48
2a03:32c0:3001::/48 maxlen: 48
2a03:32c0:3002::/48 maxlen: 48
2a03:32c0:3003::/48 maxlen: 48
2a03:32c0:3004::/48 maxlen: 48
2a03:32c0:3005::/48 maxlen: 48
2a03:32c0:4000::/48 maxlen: 48
2a03:32c0:4001::/48 maxlen: 48
2a03:32c0:4002::/48 maxlen: 48
2a03:32c0:5000::/48 maxlen: 48
2a03:32c0:5001::/48 maxlen: 48
2a03:32c0:5002::/48 maxlen: 48
2a03:32c0:6000::/48 maxlen: 48
2a03:32c0:6001::/48 maxlen: 48
2a03:32c0:7000::/48 maxlen: 48
2a03:32c0:7001::/48 maxlen: 48
2a03:32c0:8000::/48 maxlen: 48
2a03:32c0:8001::/48 maxlen: 48
2a03:32c0:8002::/48 maxlen: 48
2a03:32c0:8003::/48 maxlen: 48
2a03:32c0:8004::/48 maxlen: 48
2a03:32c0:8005::/48 maxlen: 48
2a03:32c0:8006::/48 maxlen: 48
2a03:32c0:8007::/48 maxlen: 48
2a03:32c0:9000::/48 maxlen: 48
2a03:32c0:9001::/48 maxlen: 48
2a03:32c0:9002::/48 maxlen: 48
2a03:32c0:9003::/48 maxlen: 48
2a03:32c0:9004::/48 maxlen: 48
2a03:32c0:9005::/48 maxlen: 48
2a03:32c0:9006::/48 maxlen: 48
2a03:32c0:9007::/48 maxlen: 48
2a03:32c0:a000::/48 maxlen: 48
2a03:32c0:a001::/48 maxlen: 48
2a03:32c0:a002::/48 maxlen: 48
2a03:32c0:a003::/48 maxlen: 48
2a03:32c0:a004::/48 maxlen: 48
2a03:32c0:a005::/48 maxlen: 48
2a03:32c0:a006::/48 maxlen: 48
2a03:32c0:a007::/48 maxlen: 48
2a03:32c0:a008::/48 maxlen: 48
2a03:32c0:a009::/48 maxlen: 48
2a03:32c0:b000::/48 maxlen: 48
2a03:32c0:b001::/48 maxlen: 48
2a03:32c0:b002::/48 maxlen: 48
2a03:32c0:b003::/48 maxlen: 48
2a03:32c0:b004::/48 maxlen: 48
2a03:32c0:b005::/48 maxlen: 48
2a03:32c0:b006::/48 maxlen: 48
2a03:32c0:b007::/48 maxlen: 48
2a03:32c0:b008::/48 maxlen: 48
2a03:32c0:b009::/48 maxlen: 48
2a03:32c0:e000::/48 maxlen: 48
2a03:32c0:e001::/48 maxlen: 48
2a03:32c0:e002::/48 maxlen: 48
2a03:32c0:e003::/48 maxlen: 48
2a03:32c0:e004::/48 maxlen: 48
2a03:32c0:e005::/48 maxlen: 48
2a03:32c0:e006::/48 maxlen: 48
2a03:32c0:e007::/48 maxlen: 48
2a03:32c0:e008::/48 maxlen: 48
2a03:32c0:e009::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 24 Jan 2024 01:22:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:35:4b:6c:e0:f7:e8:50:60:7e:77:45:5f:22:10:c1:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ebba0735a07e40ca32026278b2678678f8bacd9
Validity
Not Before: Jan 23 07:49:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b7173ab33cfbbd5f54d0dff3fa188fef3ee23ca5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:bb:86:85:8d:d3:42:04:53:12:fb:e4:64:af:
6c:05:75:d7:fe:5a:1d:4a:e3:d5:45:64:f6:4c:0c:
06:97:e4:3b:b0:36:45:04:8c:4d:c4:f6:eb:3d:4d:
55:5b:43:9e:7a:e7:b5:f4:61:fe:92:dd:79:c2:84:
7f:ee:f2:db:06:ae:69:12:35:f2:ca:76:8c:61:cb:
77:93:0a:bb:0f:a8:4a:cc:64:ab:07:db:f0:51:61:
c6:d2:21:82:7c:c2:36:dc:2b:70:b6:c5:fc:f3:41:
64:cc:a5:27:27:28:49:a7:60:61:64:ca:21:d9:3d:
33:e0:3b:10:36:af:92:cc:45:33:a0:43:60:d8:99:
b3:a1:b9:3a:51:b5:24:b3:33:07:94:c1:34:c5:7c:
5e:0a:80:6d:62:bc:15:9e:33:d6:6f:ef:a0:44:0c:
e8:b2:79:43:96:f2:f2:0f:4e:f4:67:26:98:42:df:
51:91:67:e4:03:17:43:48:3e:1a:fb:23:19:7f:bf:
17:1c:f5:6a:2c:d5:74:07:41:b4:cd:42:ee:cf:43:
30:fd:54:46:88:33:c5:c1:e2:3a:f5:1d:dc:4a:b7:
89:96:18:29:8b:9c:31:4d:bd:f7:50:35:77:27:f0:
f1:de:7b:9f:ad:98:d1:2f:72:69:d0:2d:c0:e0:ca:
cb:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:17:3A:B3:3C:FB:BD:5F:54:D0:DF:F3:FA:18:8F:EF:3E:E2:3C:A5
X509v3 Authority Key Identifier:
keyid:5E:BB:A0:73:5A:07:E4:0C:A3:20:26:27:8B:26:78:67:8F:8B:AC:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xrugc1oH5AyjICYniyZ4Z4-LrNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/txc6szz7vV9U0N_z-hiP7z7iPKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/Xrugc1oH5AyjICYniyZ4Z4-LrNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.76.70.0/24
IPv6:
2a03:32c0::/45
2a03:32c0:3000::-2a03:32c0:3005:ffff:ffff:ffff:ffff:ffff
2a03:32c0:4000::-2a03:32c0:4002:ffff:ffff:ffff:ffff:ffff
2a03:32c0:5000::-2a03:32c0:5002:ffff:ffff:ffff:ffff:ffff
2a03:32c0:6000::/47
2a03:32c0:7000::/47
2a03:32c0:8000::/45
2a03:32c0:9000::/45
2a03:32c0:a000::-2a03:32c0:a009:ffff:ffff:ffff:ffff:ffff
2a03:32c0:b000::-2a03:32c0:b009:ffff:ffff:ffff:ffff:ffff
2a03:32c0:e000::-2a03:32c0:e009:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
d1:22:25:f2:8e:4c:5a:0b:9f:61:71:b6:df:52:de:c4:26:ae:
1d:db:bf:07:0a:f7:b1:7d:98:9f:bf:c2:16:47:1c:b7:ee:c6:
68:bc:2d:8f:22:72:4f:9f:42:bc:33:d3:e1:b3:36:7f:b1:62:
75:ac:41:06:36:86:e2:3f:19:74:ef:cf:1a:18:15:04:3b:26:
63:2e:48:a7:ae:c7:04:ac:e5:c1:24:56:80:04:12:a3:57:bb:
d1:75:e3:9c:a8:11:d8:16:b4:93:15:37:83:e4:db:9c:66:de:
8e:d1:34:2c:81:a9:75:90:d3:00:e7:a9:a5:96:cb:19:0e:2f:
9c:73:9d:ee:9d:23:10:fe:3e:22:4c:b9:0a:19:a5:19:26:ff:
5f:7a:04:1d:64:ca:13:7f:c8:0d:96:4b:39:61:3d:ba:54:d4:
a6:d3:cd:77:68:e8:9c:39:5f:97:1d:5c:28:41:af:5c:85:a0:
14:11:e4:b0:47:97:6b:3a:49:6f:0d:93:79:0c:e3:bc:4b:11:
87:32:da:7e:e5:b4:2d:14:99:81:0b:aa:cf:c0:c6:08:da:90:
63:a0:2d:7e:5d:66:86:47:ab:eb:fb:fd:85:ff:af:11:a6:ce:
fa:1f:2d:6b:c0:ea:61:35:61:fe:ad:9e:63:e8:f4:82:9e:97:
b9:51:bd:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:54 2024 by rpki-client on console-ams.rpki-client.org