Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/768fdb-d1b5-4bef-bcbd-4924fa000b7c/1/x1xy8kJbXlEr4xBOS8BbHCH1WlY.roa
File: x1xy8kJbXlEr4xBOS8BbHCH1WlY.roa (raw, json)
Hash identifier: kpXkmtwNN/+ei716vCXkkBKPpDFK0D/wA+DZfH55MuM=
Subject key identifier: C7:5C:72:F2:42:5B:5E:51:2B:E3:10:4E:4B:C0:5B:1C:21:F5:5A:56
Certificate issuer: /CN=a63bcc6d25f7476fbb3ec33f6dbc3e9eead92212
Certificate serial: 018BD74D1EC0EBB06AAAF335EDA9EDF348ED
Authority key identifier: A6:3B:CC:6D:25:F7:47:6F:BB:3E:C3:3F:6D:BC:3E:9E:EA:D9:22:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pjvMbSX3R2-7PsM_bbw-nurZIhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/768fdb-d1b5-4bef-bcbd-4924fa000b7c/1/x1xy8kJbXlEr4xBOS8BbHCH1WlY.roa
Signing time: Thu 16 Nov 2023 08:43:57 +0000
ROA not before: Thu 16 Nov 2023 08:43:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64105
IP address blocks: 2a02:9b0:22::/48 maxlen: 48
2a02:9b0:25::/48 maxlen: 48
2a02:9b0:5d::/48 maxlen: 48
2a02:9b0:20::/48 maxlen: 48
2a02:9b0:23::/48 maxlen: 48
2a02:9b0:1e::/48 maxlen: 48
2a02:9b0:26::/48 maxlen: 48
2a02:9b0:21::/48 maxlen: 48
2a02:9b0:5c::/48 maxlen: 48
2a02:9b0:24::/48 maxlen: 48
2a02:9b0:27::/48 maxlen: 48
2a02:9b0:1f::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 16 Nov 2023 08:53:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d7:4d:1e:c0:eb:b0:6a:aa:f3:35:ed:a9:ed:f3:48:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a63bcc6d25f7476fbb3ec33f6dbc3e9eead92212
Validity
Not Before: Nov 16 08:43:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c75c72f2425b5e512be3104e4bc05b1c21f55a56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:4e:48:b3:4a:fe:55:b6:da:80:49:86:63:32:
f9:8c:70:1b:54:78:71:13:10:d9:c4:73:9b:4a:30:
52:21:f5:db:14:bd:86:4e:51:d7:af:6c:76:e3:54:
0d:6f:13:23:3c:54:39:4c:89:69:32:48:fc:08:2a:
aa:5a:e5:ad:c7:3f:72:6d:0a:70:77:fb:65:6b:93:
57:a0:aa:32:ca:81:ed:e2:74:2e:f4:28:37:28:d2:
e5:99:8a:2b:d3:e3:2f:36:cc:77:11:b7:56:c0:fc:
73:57:8e:c3:29:69:88:99:d3:9d:9c:cc:16:5b:53:
60:4e:57:a7:38:09:01:91:4b:a2:44:68:eb:ef:5d:
a7:9b:77:30:42:8f:ac:b9:4a:b0:82:d6:89:da:4c:
45:71:58:cb:c8:d6:fc:a5:ba:d1:c4:87:7a:f0:12:
c0:ac:d4:35:dd:f9:aa:eb:03:ea:8b:67:93:b4:2e:
1d:6c:e9:3a:cc:b5:e4:54:2e:a8:c1:3b:be:11:ad:
93:29:4c:0e:b1:36:38:6d:a0:c8:e8:68:39:fc:37:
e4:60:a0:08:e5:91:41:e3:85:ce:59:59:fb:3d:bc:
e9:cb:bb:52:9b:05:4b:8f:4e:fd:2f:6e:80:3f:99:
08:ea:d0:23:74:d7:52:5b:e5:0d:6c:bf:ff:b3:26:
f7:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:5C:72:F2:42:5B:5E:51:2B:E3:10:4E:4B:C0:5B:1C:21:F5:5A:56
X509v3 Authority Key Identifier:
keyid:A6:3B:CC:6D:25:F7:47:6F:BB:3E:C3:3F:6D:BC:3E:9E:EA:D9:22:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pjvMbSX3R2-7PsM_bbw-nurZIhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/768fdb-d1b5-4bef-bcbd-4924fa000b7c/1/x1xy8kJbXlEr4xBOS8BbHCH1WlY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/768fdb-d1b5-4bef-bcbd-4924fa000b7c/1/pjvMbSX3R2-7PsM_bbw-nurZIhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:9b0:1e::-2a02:9b0:27:ffff:ffff:ffff:ffff:ffff
2a02:9b0:5c::/47
Signature Algorithm: sha256WithRSAEncryption
57:83:f1:96:a6:1b:3a:da:a9:c6:84:8e:01:d6:30:d5:17:a9:
41:59:22:ac:b3:5d:5e:03:55:91:64:5e:2f:41:ac:f1:f0:d3:
3c:40:74:aa:65:ad:80:e7:6b:96:0e:2e:60:58:f8:d4:f2:51:
53:0b:75:3c:3a:4e:bc:81:25:54:85:7a:10:75:b1:82:ff:bc:
10:5c:cf:93:f4:ed:e6:03:b6:70:e9:30:24:cf:56:e8:a3:36:
0e:dd:3e:9d:fe:82:4a:2b:1d:0e:55:cc:2b:68:ad:8e:f3:48:
5c:98:c5:67:f8:31:b8:8e:4d:00:9e:d3:5e:f4:8d:37:6e:a1:
e8:11:a7:42:a4:6d:10:ea:40:5a:5d:6c:b6:75:5b:9a:a6:c0:
89:fa:ab:bb:51:a5:4c:cd:21:04:8c:ff:52:2c:56:db:e7:8f:
bc:18:a0:cc:63:b0:77:e0:e9:ba:37:16:5c:cb:12:f2:5f:88:
e6:e3:8f:c0:90:47:b3:89:b0:82:b4:f4:eb:ba:a5:21:f4:c7:
75:22:cf:7c:39:60:78:e0:e4:c2:c0:90:a5:6d:61:b4:9a:29:
ed:c3:c2:05:94:cc:87:c6:da:22:fb:e6:6f:c8:6e:ef:79:24:
58:23:29:41:0d:50:7c:3c:3d:05:b1:9f:5f:10:5a:1c:ff:f5:
fc:32:e3:54
-----BEGIN CERTIFICATE-----
MIIFFDCCA/ygAwIBAgISAYvXTR7A67BqqvM17ant80jtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2M2JjYzZkMjVmNzQ3NmZiYjNlYzMzZjZkYmMzZTllZWFk
OTIyMTIwHhcNMjMxMTE2MDg0MzU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNzVjNzJmMjQyNWI1ZTUxMmJlMzEwNGU0YmMwNWIxYzIxZjU1YTU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlE5Is0r+VbbagEmGYzL5jHAbVHhx
ExDZxHObSjBSIfXbFL2GTlHXr2x241QNbxMjPFQ5TIlpMkj8CCqqWuWtxz9ybQpw
d/tla5NXoKoyyoHt4nQu9Cg3KNLlmYor0+MvNsx3EbdWwPxzV47DKWmImdOdnMwW
W1NgTlenOAkBkUuiRGjr712nm3cwQo+suUqwgtaJ2kxFcVjLyNb8pbrRxId68BLA
rNQ13fmq6wPqi2eTtC4dbOk6zLXkVC6owTu+Ea2TKUwOsTY4baDI6Gg5/DfkYKAI
5ZFB44XOWVn7Pbzpy7tSmwVLj079L26AP5kI6tAjdNdSW+UNbL//syb3oQIDAQAB
o4ICIDCCAhwwHQYDVR0OBBYEFMdccvJCW15RK+MQTkvAWxwh9VpWMB8GA1UdIwQY
MBaAFKY7zG0l90dvuz7DP228Pp7q2SISMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcGp2TWJTWDNSMi03UHNNX2Jidy1udXJaSWhJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS83NjhmZGItZDFiNS00YmVmLWJjYmQt
NDkyNGZhMDAwYjdjLzEveDF4eThrSmJYbEVyNHhCT1M4QmJIQ0gxV2xZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS83NjhmZGItZDFiNS00YmVmLWJjYmQtNDkyNGZhMDAwYjdj
LzEvcGp2TWJTWDNSMi03UHNNX2Jidy1udXJaSWhJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDYGCCsGAQUFBwEHAQH/BCcwJTAjBAIAAjAdMBIDBwEqAgmw
AB4DBwMqAgmwACADBwEqAgmwAFwwDQYJKoZIhvcNAQELBQADggEBAFeD8ZamGzra
qcaEjgHWMNUXqUFZIqyzXV4DVZFkXi9BrPHw0zxAdKplrYDna5YOLmBY+NTyUVML
dTw6TryBJVSFehB1sYL/vBBcz5P07eYDtnDpMCTPVuijNg7dPp3+gkorHQ5VzCto
rY7zSFyYxWf4MbiOTQCe0170jTduoegRp0KkbRDqQFpdbLZ1W5qmwIn6q7tRpUzN
IQSM/1IsVtvnj7wYoMxjsHfg6bo3FlzLEvJfiObjj8CQR7OJsIK09Ou6pSH0x3Ui
z3w5YHjg5MLAkKVtYbSaKe3DwgWUzIfG2iL75m/Ibu95JFgjKUENUHw8PQWxn18Q
Whz/9fwy41Q=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:14 2024 by rpki-client on console-fra.rpki-client.org