Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/b30b57-e7e9-4b2f-99b6-90f97f746676/1/ecSmQR1y7EhMkIfw-VnkKS_dDiE.roa
File: ecSmQR1y7EhMkIfw-VnkKS_dDiE.roa (raw, json)
Hash identifier: z457YZTq7Gylt515xyyU7gYT27D5TJbF32hfDubALEU=
Subject key identifier: 79:C4:A6:41:1D:72:EC:48:4C:90:87:F0:F9:59:E4:29:2F:DD:0E:21
Certificate issuer: /CN=91c2c2912e10581587052a5ca770910b26174f14
Certificate serial: 01856E1419B88187152BDB1F03273A6CD5D1
Authority key identifier: 91:C2:C2:91:2E:10:58:15:87:05:2A:5C:A7:70:91:0B:26:17:4F:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcLCkS4QWBWHBSpcp3CRCyYXTxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/b30b57-e7e9-4b2f-99b6-90f97f746676/1/ecSmQR1y7EhMkIfw-VnkKS_dDiE.roa
Signing time: Sun 01 Jan 2023 16:04:49 +0000
ROA not before: Sun 01 Jan 2023 16:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44901
IP address blocks: 2a05:1700:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:19:b8:81:87:15:2b:db:1f:03:27:3a:6c:d5:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91c2c2912e10581587052a5ca770910b26174f14
Validity
Not Before: Jan 1 16:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=79c4a6411d72ec484c9087f0f959e4292fdd0e21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:a0:88:0f:4a:f6:41:c6:f4:e6:23:b5:43:3e:
e9:69:1e:f5:4e:4e:65:dd:e3:03:92:0c:e6:09:0f:
51:07:46:23:a5:c4:c9:70:ce:26:f9:16:50:8d:5d:
8b:61:3b:62:ca:b4:37:56:a0:e0:6a:cd:15:1e:34:
f5:84:1d:4c:a3:84:e3:e8:79:a9:ea:73:e9:6c:3e:
bf:58:b7:b1:79:39:cc:3a:b5:cc:d6:fd:ec:a6:fc:
fb:ba:70:7e:ec:d8:96:71:0d:e4:a5:1a:21:56:13:
fe:60:35:66:c8:3f:1a:24:34:40:27:2a:b2:49:59:
51:54:54:44:4a:84:42:12:5b:73:9f:25:24:e8:b9:
ce:82:02:8c:61:4c:7b:50:5a:14:e6:47:bc:d3:de:
25:3d:e5:b7:5d:98:b0:82:bf:b1:eb:f5:09:59:67:
0d:39:4a:57:9b:ba:ce:d5:23:eb:fb:cf:9c:a7:20:
33:5e:e8:58:08:f6:50:6b:a4:4f:e5:7a:86:90:3d:
75:f9:4c:94:05:68:77:49:27:c1:5f:a0:da:c5:5a:
ea:f1:ab:3b:36:02:6d:41:58:69:5e:d3:69:d5:d3:
76:e9:6e:26:1b:f5:29:c7:5c:a0:c5:ce:b6:91:58:
ec:0a:d2:d4:12:40:e4:b2:ad:45:28:93:51:4b:e4:
e6:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:C4:A6:41:1D:72:EC:48:4C:90:87:F0:F9:59:E4:29:2F:DD:0E:21
X509v3 Authority Key Identifier:
keyid:91:C2:C2:91:2E:10:58:15:87:05:2A:5C:A7:70:91:0B:26:17:4F:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcLCkS4QWBWHBSpcp3CRCyYXTxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/b30b57-e7e9-4b2f-99b6-90f97f746676/1/ecSmQR1y7EhMkIfw-VnkKS_dDiE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/b30b57-e7e9-4b2f-99b6-90f97f746676/1/kcLCkS4QWBWHBSpcp3CRCyYXTxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:1700:2::/48
Signature Algorithm: sha256WithRSAEncryption
54:85:f0:ef:fa:7e:a5:11:05:f5:3e:3f:8c:af:f4:91:2c:8d:
10:10:d4:53:3b:87:fd:7e:11:8e:c1:ad:b8:79:56:b6:fb:89:
e5:21:72:0e:88:f7:8d:d6:11:2f:3b:96:7b:c2:c7:bd:71:2a:
e0:85:3a:17:7c:3b:66:43:a7:cc:4c:fc:79:ac:49:13:b6:20:
ae:d4:fb:79:bb:89:c6:90:a0:56:af:91:fc:8d:47:49:b1:ed:
20:27:6e:7f:7d:e2:c0:b8:28:f6:e4:c4:33:8a:3c:ea:c0:d2:
bf:ba:1d:06:78:12:bf:dc:9b:02:8f:95:b4:9a:0b:a1:1a:9e:
f2:87:f9:65:71:14:c3:6d:84:92:69:24:13:b8:fc:be:bf:5a:
fb:93:80:a1:93:7c:f5:8f:8e:04:65:25:3e:d8:a0:79:43:3f:
cd:80:4d:fd:e4:f2:d9:19:f8:62:ea:39:e5:36:f5:66:e6:c7:
92:4f:4a:40:47:0d:f3:99:f9:6f:d3:71:49:62:c7:b6:a0:71:
c3:5d:80:2c:0f:94:82:7c:14:53:55:74:0f:e8:f5:77:c2:ee:
52:d2:91:d1:b9:03:30:8c:a6:78:ba:f1:dc:ba:c2:35:42:1d:
8f:b5:50:25:2f:95:29:c7:04:86:dd:4e:d2:3d:01:f0:3d:57:
6c:f8:b7:be
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVuFBm4gYcVK9sfAyc6bNXRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxYzJjMjkxMmUxMDU4MTU4NzA1MmE1Y2E3NzA5MTBiMjYx
NzRmMTQwHhcNMjMwMTAxMTYwNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OWM0YTY0MTFkNzJlYzQ4NGM5MDg3ZjBmOTU5ZTQyOTJmZGQwZTIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlqCID0r2Qcb05iO1Qz7paR71Tk5l
3eMDkgzmCQ9RB0YjpcTJcM4m+RZQjV2LYTtiyrQ3VqDgas0VHjT1hB1Mo4Tj6Hmp
6nPpbD6/WLexeTnMOrXM1v3spvz7unB+7NiWcQ3kpRohVhP+YDVmyD8aJDRAJyqy
SVlRVFRESoRCEltznyUk6LnOggKMYUx7UFoU5ke8094lPeW3XZiwgr+x6/UJWWcN
OUpXm7rO1SPr+8+cpyAzXuhYCPZQa6RP5XqGkD11+UyUBWh3SSfBX6DaxVrq8as7
NgJtQVhpXtNp1dN26W4mG/Upx1ygxc62kVjsCtLUEkDksq1FKJNRS+TmdQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFHnEpkEdcuxITJCH8PlZ5Ckv3Q4hMB8GA1UdIwQY
MBaAFJHCwpEuEFgVhwUqXKdwkQsmF08UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2NMQ2tTNFFXQldIQlNwY3AzQ1JDeVlYVHhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi9iMzBiNTctZTdlOS00YjJmLTk5YjYt
OTBmOTdmNzQ2Njc2LzEvZWNTbVFSMXk3RWhNa0lmdy1WbmtLU19kRGlFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi9iMzBiNTctZTdlOS00YjJmLTk5YjYtOTBmOTdmNzQ2Njc2
LzEva2NMQ2tTNFFXQldIQlNwY3AzQ1JDeVlYVHhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgUXAAAC
MA0GCSqGSIb3DQEBCwUAA4IBAQBUhfDv+n6lEQX1Pj+Mr/SRLI0QENRTO4f9fhGO
wa24eVa2+4nlIXIOiPeN1hEvO5Z7wse9cSrghToXfDtmQ6fMTPx5rEkTtiCu1Pt5
u4nGkKBWr5H8jUdJse0gJ25/feLAuCj25MQzijzqwNK/uh0GeBK/3JsCj5W0mguh
Gp7yh/llcRTDbYSSaSQTuPy+v1r7k4Chk3z1j44EZSU+2KB5Qz/NgE395PLZGfhi
6jnlNvVm5seST0pARw3zmflv03FJYse2oHHDXYAsD5SCfBRTVXQP6PV3wu5S0pHR
uQMwjKZ4uvHcusI1Qh2PtVAlL5UpxwSG3U7SPQHwPVds+Le+
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:26 2024 by rpki-client on console-fra.rpki-client.org