Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/a1c6ec-c260-4ca2-887b-4bb94cbc2e73/1/_07Mcq7vnmBvRAGF84Oypu2W6z0.roa
File: _07Mcq7vnmBvRAGF84Oypu2W6z0.roa (raw, json)
Hash identifier: hMJxv2HUfFYcKTiNnzZsmVIzz0qe3N8+ujobsabfqc8=
Subject key identifier: FF:4E:CC:72:AE:EF:9E:60:6F:44:01:85:F3:83:B2:A6:ED:96:EB:3D
Certificate issuer: /CN=5b6d178f13851306b5634df159716319f4d82478
Certificate serial: 0185715E7510EF416B34467532D7DD0A2785
Authority key identifier: 5B:6D:17:8F:13:85:13:06:B5:63:4D:F1:59:71:63:19:F4:D8:24:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W20XjxOFEwa1Y03xWXFjGfTYJHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/a1c6ec-c260-4ca2-887b-4bb94cbc2e73/1/_07Mcq7vnmBvRAGF84Oypu2W6z0.roa
Signing time: Mon 02 Jan 2023 07:24:53 +0000
ROA not before: Mon 02 Jan 2023 07:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207459
IP address blocks: 2a0e:36c2::/32 maxlen: 32
2a0e:36c0::/32 maxlen: 32
2a0e:36c6::/32 maxlen: 32
2a0e:36c3::/32 maxlen: 32
2a0e:36c1::/32 maxlen: 32
2a0e:36c5::/32 maxlen: 32
2a0e:36c0::/29 maxlen: 32
2a0e:36c7::/32 maxlen: 32
2a0e:36c4::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 20 Apr 2023 22:40:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:5e:75:10:ef:41:6b:34:46:75:32:d7:dd:0a:27:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b6d178f13851306b5634df159716319f4d82478
Validity
Not Before: Jan 2 07:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff4ecc72aeef9e606f440185f383b2a6ed96eb3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:28:74:14:38:08:bc:42:c3:1c:f4:48:b9:05:
a9:a7:81:51:25:e9:cf:da:39:18:2b:79:7b:ea:e5:
a5:68:8a:7f:66:88:82:f3:1b:5c:ef:b6:b6:bc:94:
87:e4:e5:e0:ab:28:b6:65:4b:a5:46:ab:6e:74:a1:
b0:11:d2:e0:90:6d:a0:9f:9e:6b:79:3b:1e:0c:f0:
69:71:b1:08:8a:a9:34:eb:1b:35:5f:9e:3e:e3:68:
cb:c2:92:a2:42:4e:16:92:14:e3:5e:13:d8:95:db:
5d:0e:9b:a1:68:39:c9:7a:23:61:8f:1f:4a:f0:10:
48:6f:78:d1:98:d1:30:f2:66:6d:81:e9:8f:88:bf:
1a:15:8b:01:4d:23:e6:9e:d7:2c:85:39:e0:b6:56:
66:95:6a:98:2f:7f:c0:06:5d:39:6f:14:da:8c:de:
6a:93:1b:4e:cd:ad:95:46:bf:87:fb:a1:a8:7c:cb:
6b:92:aa:83:9f:f5:c5:34:8e:76:9b:84:24:4b:90:
6b:71:6d:3c:71:ea:95:73:48:39:be:b9:57:30:ff:
66:2f:fc:7a:82:fd:c0:f2:62:09:50:c0:e1:5b:40:
bf:73:8c:9b:e9:38:0b:cd:06:bb:c2:58:cc:ab:86:
44:bd:35:4f:20:49:d2:a7:b5:74:d6:41:7f:29:66:
d7:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:4E:CC:72:AE:EF:9E:60:6F:44:01:85:F3:83:B2:A6:ED:96:EB:3D
X509v3 Authority Key Identifier:
keyid:5B:6D:17:8F:13:85:13:06:B5:63:4D:F1:59:71:63:19:F4:D8:24:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W20XjxOFEwa1Y03xWXFjGfTYJHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a1c6ec-c260-4ca2-887b-4bb94cbc2e73/1/_07Mcq7vnmBvRAGF84Oypu2W6z0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a1c6ec-c260-4ca2-887b-4bb94cbc2e73/1/W20XjxOFEwa1Y03xWXFjGfTYJHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:36c0::/29
Signature Algorithm: sha256WithRSAEncryption
45:3d:53:85:40:03:39:dc:65:c0:39:b1:7a:d9:02:ac:d0:00:
21:ac:cf:a9:37:50:c7:55:70:a3:c8:2b:d1:9a:87:c9:15:e6:
ac:ed:98:63:ae:12:d9:cd:3f:a8:f8:c5:49:4c:8a:64:b5:4f:
e5:64:f8:b9:f5:e4:5c:13:77:e5:26:74:97:16:47:08:55:dc:
d3:52:48:16:2b:49:d9:14:2b:aa:6b:bf:77:66:33:9b:fc:53:
7d:07:6a:cc:1b:04:28:c6:31:e0:49:97:ac:e9:bd:5d:e8:89:
48:09:4d:cd:14:87:f1:04:46:18:d5:10:34:f5:51:9a:de:61:
87:52:84:b4:ea:5b:0e:d4:67:81:51:11:ef:52:a9:96:7f:46:
4d:6b:41:c7:98:8b:13:af:eb:4f:32:e2:ed:58:ea:ae:01:1e:
61:c2:3d:37:49:c0:e1:0a:11:d9:ec:d3:da:76:bc:b4:4e:62:
0d:73:32:91:ed:ec:92:d2:25:ba:69:43:b5:fe:8b:c9:1b:f4:
10:33:25:57:ec:7a:1b:09:40:86:00:65:eb:20:65:d8:26:e9:
3e:49:71:b0:79:7e:10:15:00:5c:43:b5:94:91:4f:b3:a6:83:
84:b6:51:be:66:78:a5:63:16:9e:1b:b9:fc:fa:cf:4b:c4:48:
ed:79:85:dc
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVxXnUQ70FrNEZ1MtfdCieFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViNmQxNzhmMTM4NTEzMDZiNTYzNGRmMTU5NzE2MzE5ZjRk
ODI0NzgwHhcNMjMwMTAyMDcyNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZjRlY2M3MmFlZWY5ZTYwNmY0NDAxODVmMzgzYjJhNmVkOTZlYjNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmCh0FDgIvELDHPRIuQWpp4FRJenP
2jkYK3l76uWlaIp/ZoiC8xtc77a2vJSH5OXgqyi2ZUulRqtudKGwEdLgkG2gn55r
eTseDPBpcbEIiqk06xs1X54+42jLwpKiQk4WkhTjXhPYldtdDpuhaDnJeiNhjx9K
8BBIb3jRmNEw8mZtgemPiL8aFYsBTSPmntcshTngtlZmlWqYL3/ABl05bxTajN5q
kxtOza2VRr+H+6GofMtrkqqDn/XFNI52m4QkS5BrcW08ceqVc0g5vrlXMP9mL/x6
gv3A8mIJUMDhW0C/c4yb6TgLzQa7wljMq4ZEvTVPIEnSp7V01kF/KWbX5QIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFP9OzHKu755gb0QBhfODsqbtlus9MB8GA1UdIwQY
MBaAFFttF48ThRMGtWNN8VlxYxn02CR4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVzIwWGp4T0ZFd2ExWTAzeFdYRmpHZlRZSkhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy9hMWM2ZWMtYzI2MC00Y2EyLTg4N2It
NGJiOTRjYmMyZTczLzEvXzA3TWNxN3ZubUJ2UkFHRjg0T3lwdTJXNnowLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYy9hMWM2ZWMtYzI2MC00Y2EyLTg4N2ItNGJiOTRjYmMyZTcz
LzEvVzIwWGp4T0ZFd2ExWTAzeFdYRmpHZlRZSkhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKg42wDAN
BgkqhkiG9w0BAQsFAAOCAQEART1ThUADOdxlwDmxetkCrNAAIazPqTdQx1Vwo8gr
0ZqHyRXmrO2YY64S2c0/qPjFSUyKZLVP5WT4ufXkXBN35SZ0lxZHCFXc01JIFitJ
2RQrqmu/d2Yzm/xTfQdqzBsEKMYx4EmXrOm9XeiJSAlNzRSH8QRGGNUQNPVRmt5h
h1KEtOpbDtRngVER71Kpln9GTWtBx5iLE6/rTzLi7VjqrgEeYcI9N0nA4QoR2ezT
2na8tE5iDXMyke3sktIlumlDtf6LyRv0EDMlV+x6GwlAhgBl6yBl2CbpPklxsHl+
EBUAXEO1lJFPs6aDhLZRvmZ4pWMWnhu5/PrPS8RI7XmF3A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:13 2024 by rpki-client on console-ams.rpki-client.org