Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/5OA_4UhgQ-0yErVl91EvEly1zoM.roa
File: 5OA_4UhgQ-0yErVl91EvEly1zoM.roa (raw, json)
Hash identifier: qbHfVe80rsWVSb5OPnM7UJXrD0JfCkCkDKiIUukwCaU=
Subject key identifier: E4:E0:3F:E1:48:60:43:ED:32:12:B5:65:F7:51:2F:12:5C:B5:CE:83
Certificate issuer: /CN=76670236cd0e038684a33194bde7d4b95adc66f7
Certificate serial: 0189F51DF36689A221013D2B6CF57BE51C21
Authority key identifier: 76:67:02:36:CD:0E:03:86:84:A3:31:94:BD:E7:D4:B9:5A:DC:66:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/5OA_4UhgQ-0yErVl91EvEly1zoM.roa
Signing time: Mon 14 Aug 2023 17:35:28 +0000
ROA not before: Mon 14 Aug 2023 17:35:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 2a05:541:127::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f5:1d:f3:66:89:a2:21:01:3d:2b:6c:f5:7b:e5:1c:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76670236cd0e038684a33194bde7d4b95adc66f7
Validity
Not Before: Aug 14 17:35:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4e03fe1486043ed3212b565f7512f125cb5ce83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:4f:63:c2:fd:22:b5:94:a5:4c:ef:5b:1e:ef:
1b:da:8d:a2:79:c9:4d:26:20:6a:89:79:4a:b1:5a:
10:5d:fc:bf:22:9c:a1:fe:26:6f:a5:cb:8a:ca:99:
82:f3:8b:26:15:46:75:15:bf:2d:7a:6c:93:86:21:
01:d9:d0:f6:29:65:95:15:02:b1:38:ee:02:db:d7:
0a:d6:20:af:f6:41:99:9e:fe:45:18:5a:b0:db:e4:
24:eb:3a:44:a8:95:8b:7b:de:13:2a:dc:2b:ee:c0:
1d:6a:d4:45:62:f7:e2:e0:60:6d:bc:02:0c:3c:f8:
8f:0f:3b:f2:db:5b:8d:55:ab:35:44:a6:5e:d2:19:
b0:ec:6a:68:a0:05:1a:ca:6c:29:54:ed:6d:64:61:
b1:97:da:2f:09:ec:43:93:e7:ad:31:3e:e1:f4:71:
f2:d1:20:a0:ba:f3:5e:6b:48:3d:79:c1:f4:a5:d8:
f6:75:c3:9b:35:aa:31:56:13:c8:46:ab:9f:07:3c:
1d:bc:41:8a:1b:83:04:5a:70:e2:51:5e:21:a4:c5:
55:fb:f6:4f:84:0a:76:a3:6c:96:f9:58:32:eb:83:
30:c2:fb:25:5e:89:a2:ec:ff:6e:94:cd:8c:25:1e:
c6:b1:ed:97:f8:43:2f:f9:84:34:78:78:3d:52:1e:
8e:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:E0:3F:E1:48:60:43:ED:32:12:B5:65:F7:51:2F:12:5C:B5:CE:83
X509v3 Authority Key Identifier:
keyid:76:67:02:36:CD:0E:03:86:84:A3:31:94:BD:E7:D4:B9:5A:DC:66:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dmcCNs0OA4aEozGUvefUuVrcZvc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/5OA_4UhgQ-0yErVl91EvEly1zoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1809da-1c6f-44db-aa28-ba4fc234683e/1/dmcCNs0OA4aEozGUvefUuVrcZvc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:541:127::/48
Signature Algorithm: sha256WithRSAEncryption
59:1c:3d:0f:d1:c5:af:ed:86:c7:75:4d:03:c4:a6:69:b0:66:
69:e0:35:f8:3b:35:c4:f9:67:df:d2:83:f6:6d:ad:cc:41:b1:
89:33:58:2b:c8:b4:ee:32:ba:a4:57:68:75:c4:d6:1e:fa:62:
f1:7c:02:c9:a6:19:b5:12:8b:91:40:33:a1:a4:81:ef:e3:26:
b0:13:a6:79:a0:cd:c0:3f:10:c4:c7:65:a4:be:dc:b9:3e:db:
4c:a6:65:b3:e6:48:b8:b5:af:27:90:aa:3a:78:9c:1e:30:4b:
09:45:9d:db:91:cf:a4:ee:d1:20:bc:4f:cd:59:8d:d6:a2:3d:
86:03:aa:7a:29:a7:50:8e:39:f9:68:4c:9c:54:5e:0d:59:63:
fa:03:47:f6:ea:10:f5:2c:46:ac:32:f3:43:ad:05:55:c5:23:
87:d4:6d:61:af:fe:6c:31:f2:18:df:61:20:8f:f5:4b:8a:90:
b6:de:a8:12:1a:09:e3:d0:de:9b:9e:0e:b1:31:fb:24:31:9d:
7a:3a:d2:9a:31:31:dc:1a:1e:c1:18:02:72:b9:b2:9d:d7:f1:
20:ac:85:d5:97:d3:b8:eb:bf:ed:63:a1:94:15:c2:7d:98:75:
84:c2:b6:f5:c2:30:27:dd:ee:bc:c0:0c:1c:8d:28:d4:5b:c7:
d4:aa:c1:9d
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYn1HfNmiaIhAT0rbPV75RwhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2NjcwMjM2Y2QwZTAzODY4NGEzMzE5NGJkZTdkNGI5NWFk
YzY2ZjcwHhcNMjMwODE0MTczNTI4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNGUwM2ZlMTQ4NjA0M2VkMzIxMmI1NjVmNzUxMmYxMjVjYjVjZTgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1E9jwv0itZSlTO9bHu8b2o2ieclN
JiBqiXlKsVoQXfy/Ipyh/iZvpcuKypmC84smFUZ1Fb8temyThiEB2dD2KWWVFQKx
OO4C29cK1iCv9kGZnv5FGFqw2+Qk6zpEqJWLe94TKtwr7sAdatRFYvfi4GBtvAIM
PPiPDzvy21uNVas1RKZe0hmw7GpooAUaymwpVO1tZGGxl9ovCexDk+etMT7h9HHy
0SCguvNea0g9ecH0pdj2dcObNaoxVhPIRqufBzwdvEGKG4MEWnDiUV4hpMVV+/ZP
hAp2o2yW+Vgy64MwwvslXomi7P9ulM2MJR7Gse2X+EMv+YQ0eHg9Uh6OgQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFOTgP+FIYEPtMhK1ZfdRLxJctc6DMB8GA1UdIwQY
MBaAFHZnAjbNDgOGhKMxlL3n1Lla3Gb3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZG1jQ05zME9BNGFFb3pHVXZlZlV1VnJjWnZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi8xODA5ZGEtMWM2Zi00NGRiLWFhMjgt
YmE0ZmMyMzQ2ODNlLzEvNU9BXzRVaGdRLTB5RXJWbDkxRXZFbHkxem9NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi8xODA5ZGEtMWM2Zi00NGRiLWFhMjgtYmE0ZmMyMzQ2ODNl
LzEvZG1jQ05zME9BNGFFb3pHVXZlZlV1VnJjWnZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgUFQQEn
MA0GCSqGSIb3DQEBCwUAA4IBAQBZHD0P0cWv7YbHdU0DxKZpsGZp4DX4OzXE+Wff
0oP2ba3MQbGJM1gryLTuMrqkV2h1xNYe+mLxfALJphm1EouRQDOhpIHv4yawE6Z5
oM3APxDEx2Wkvty5PttMpmWz5ki4ta8nkKo6eJweMEsJRZ3bkc+k7tEgvE/NWY3W
oj2GA6p6KadQjjn5aEycVF4NWWP6A0f26hD1LEasMvNDrQVVxSOH1G1hr/5sMfIY
32Egj/VLipC23qgSGgnj0N6bng6xMfskMZ16OtKaMTHcGh7BGAJyubKd1/EgrIXV
l9O467/tY6GUFcJ9mHWEwrb1wjAn3e68wAwcjSjUW8fUqsGd
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:42 2024 by rpki-client on console-ams.rpki-client.org