Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/dc5243-bba4-4acf-a218-2f30252eb442/1/_4ADqNDGe0e9lbphTf1TYi_RYPY.roa
File: _4ADqNDGe0e9lbphTf1TYi_RYPY.roa (raw, json)
Hash identifier: 0qRmsil6kXTCY1pnkcc+xFvfngf+kEXS7gg4Y71w8t4=
Subject key identifier: FF:80:03:A8:D0:C6:7B:47:BD:95:BA:61:4D:FD:53:62:2F:D1:60:F6
Certificate issuer: /CN=46ccab7479a4e0d8a4177350a00a69bd883b048d
Certificate serial: 018630B03FBE45CCC50F53A787D8368901D9
Authority key identifier: 46:CC:AB:74:79:A4:E0:D8:A4:17:73:50:A0:0A:69:BD:88:3B:04:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RsyrdHmk4NikF3NQoAppvYg7BI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/dc5243-bba4-4acf-a218-2f30252eb442/1/_4ADqNDGe0e9lbphTf1TYi_RYPY.roa
Signing time: Wed 08 Feb 2023 11:01:42 +0000
ROA not before: Wed 08 Feb 2023 11:01:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41960
IP address blocks: 2a00:d220::/36 maxlen: 36
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:30:b0:3f:be:45:cc:c5:0f:53:a7:87:d8:36:89:01:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46ccab7479a4e0d8a4177350a00a69bd883b048d
Validity
Not Before: Feb 8 11:01:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ff8003a8d0c67b47bd95ba614dfd53622fd160f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d9:66:8a:39:23:9d:2b:c4:c2:04:8e:24:7e:
57:f3:62:8a:43:16:63:9f:64:06:30:01:8b:df:5b:
26:13:e1:c1:b1:9f:1d:a5:d6:0e:2d:8d:f3:9d:33:
a8:1b:44:9e:cf:1b:77:7e:c4:c8:0e:05:08:be:3b:
22:0a:fa:96:db:bb:58:0d:38:d9:56:a5:05:73:63:
b2:54:57:d1:d8:bf:d2:e1:b8:f4:35:63:e7:57:9f:
a0:eb:c6:fb:00:41:11:0f:c8:02:11:77:21:1e:19:
70:2d:f3:e2:c9:27:8e:43:c0:35:15:59:98:8e:88:
9c:0f:dd:12:7e:45:74:28:99:85:d8:ce:4a:9d:41:
04:17:14:ec:2b:5f:48:ff:c1:8d:44:a8:33:47:92:
af:ce:0d:63:c5:b3:12:5c:13:48:5e:12:34:5f:bd:
2f:35:ea:2e:5b:6a:db:04:15:95:d7:54:a0:a2:d2:
f2:3e:7a:2c:3e:b4:ee:21:72:bf:75:fc:5f:c4:ce:
3c:24:65:ad:3b:07:61:f1:e2:7a:22:69:a9:79:95:
e6:59:81:e6:6a:b7:86:ca:50:41:bd:33:cd:71:4e:
68:bc:c4:2d:70:7d:22:a2:b5:28:08:6a:78:e4:cd:
5e:54:f8:47:d3:a5:ab:56:9f:ce:20:fb:01:c5:9e:
e1:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:80:03:A8:D0:C6:7B:47:BD:95:BA:61:4D:FD:53:62:2F:D1:60:F6
X509v3 Authority Key Identifier:
keyid:46:CC:AB:74:79:A4:E0:D8:A4:17:73:50:A0:0A:69:BD:88:3B:04:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RsyrdHmk4NikF3NQoAppvYg7BI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/dc5243-bba4-4acf-a218-2f30252eb442/1/_4ADqNDGe0e9lbphTf1TYi_RYPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/dc5243-bba4-4acf-a218-2f30252eb442/1/RsyrdHmk4NikF3NQoAppvYg7BI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:d220::/36
Signature Algorithm: sha256WithRSAEncryption
7b:6c:1c:4b:52:10:23:bb:bf:b8:9d:ba:75:61:a6:4f:2a:d4:
3e:72:93:f4:e6:52:61:74:0b:b3:87:ce:0c:f5:8f:1f:4e:57:
58:7f:a9:8a:ba:9f:1d:5c:cb:35:90:61:1a:f9:7e:92:99:58:
a9:1c:1c:11:55:d2:c9:50:a8:a7:ed:c4:7d:55:fb:67:c5:f0:
2d:ff:50:a0:a0:ba:e8:6e:de:c4:0d:70:fb:9b:41:fe:29:a5:
12:7e:af:88:7a:21:77:a9:f1:74:60:b9:b0:dc:d1:c6:40:d3:
ce:9d:fd:42:9c:72:5d:33:5c:b1:9a:1b:ea:c3:d2:d5:f1:df:
74:9d:9d:dd:cd:70:5a:89:ec:c8:31:4c:94:3f:c0:d3:be:f6:
cd:04:af:96:69:f1:af:d2:fc:c6:c3:d4:40:8c:67:d8:e5:d2:
2a:90:d0:49:48:d7:0b:ff:7a:6b:6b:93:96:f1:e7:39:eb:50:
3f:bb:bb:dc:4d:7b:f6:7c:8f:1e:45:a5:50:f3:4e:49:21:f5:
de:f7:0c:c5:d6:ef:f6:86:3a:d4:e0:2c:aa:91:2f:bf:28:98:
25:c7:05:16:b0:24:95:a2:53:40:31:23:27:49:69:15:e8:ca:
08:35:86:1d:f4:89:f6:9a:c6:1e:ed:39:90:c4:3e:27:95:3e:
5d:be:3c:66
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYYwsD++RczFD1Onh9g2iQHZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2Y2NhYjc0NzlhNGUwZDhhNDE3NzM1MGEwMGE2OWJkODgz
YjA0OGQwHhcNMjMwMjA4MTEwMTQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZjgwMDNhOGQwYzY3YjQ3YmQ5NWJhNjE0ZGZkNTM2MjJmZDE2MGY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxNlmijkjnSvEwgSOJH5X82KKQxZj
n2QGMAGL31smE+HBsZ8dpdYOLY3znTOoG0Sezxt3fsTIDgUIvjsiCvqW27tYDTjZ
VqUFc2OyVFfR2L/S4bj0NWPnV5+g68b7AEERD8gCEXchHhlwLfPiySeOQ8A1FVmY
joicD90SfkV0KJmF2M5KnUEEFxTsK19I/8GNRKgzR5Kvzg1jxbMSXBNIXhI0X70v
NeouW2rbBBWV11SgotLyPnosPrTuIXK/dfxfxM48JGWtOwdh8eJ6ImmpeZXmWYHm
areGylBBvTPNcU5ovMQtcH0iorUoCGp45M1eVPhH06WrVp/OIPsBxZ7hMwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFP+AA6jQxntHvZW6YU39U2Iv0WD2MB8GA1UdIwQY
MBaAFEbMq3R5pODYpBdzUKAKab2IOwSNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUnN5cmRIbWs0TmlrRjNOUW9BcHB2WWc3QkkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS9kYzUyNDMtYmJhNC00YWNmLWEyMTgt
MmYzMDI1MmViNDQyLzEvXzRBRHFOREdlMGU5bGJwaFRmMVRZaV9SWVBZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS9kYzUyNDMtYmJhNC00YWNmLWEyMTgtMmYzMDI1MmViNDQy
LzEvUnN5cmRIbWs0TmlrRjNOUW9BcHB2WWc3QkkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKgDSIAAw
DQYJKoZIhvcNAQELBQADggEBAHtsHEtSECO7v7idunVhpk8q1D5yk/TmUmF0C7OH
zgz1jx9OV1h/qYq6nx1cyzWQYRr5fpKZWKkcHBFV0slQqKftxH1V+2fF8C3/UKCg
uuhu3sQNcPubQf4ppRJ+r4h6IXep8XRgubDc0cZA086d/UKccl0zXLGaG+rD0tXx
33Sdnd3NcFqJ7MgxTJQ/wNO+9s0Er5Zp8a/S/MbD1ECMZ9jl0iqQ0ElI1wv/emtr
k5bx5znrUD+7u9xNe/Z8jx5FpVDzTkkh9d73DMXW7/aGOtTgLKqRL78omCXHBRaw
JJWiU0AxIydJaRXoygg1hh30ifaaxh7tOZDEPieVPl2+PGY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:41 2024 by rpki-client on console-ams.rpki-client.org