Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/9cfe5d-5770-4b5d-8935-9f38c8b8a928/1/13wYX1u5X5wz-uGXTOx7P3SIcvM.roa
File: 13wYX1u5X5wz-uGXTOx7P3SIcvM.roa (raw, json)
Hash identifier: 7IHdalbKf3x9JM0+7S9Mi946HZmWLyeVlYJihm3M7kA=
Subject key identifier: D7:7C:18:5F:5B:B9:5F:9C:33:FA:E1:97:4C:EC:7B:3F:74:88:72:F3
Certificate issuer: /CN=d4f92129df7aaa7157e15973c24753e118c9057d
Certificate serial: 01856C0A3B9A5A6FF396BD5A9A514910C6B0
Authority key identifier: D4:F9:21:29:DF:7A:AA:71:57:E1:59:73:C2:47:53:E1:18:C9:05:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1PkhKd96qnFX4VlzwkdT4RjJBX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/9cfe5d-5770-4b5d-8935-9f38c8b8a928/1/13wYX1u5X5wz-uGXTOx7P3SIcvM.roa
Signing time: Sun 01 Jan 2023 06:34:48 +0000
ROA not before: Sun 01 Jan 2023 06:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31424
IP address blocks: 2001:67c:2c08::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:0a:3b:9a:5a:6f:f3:96:bd:5a:9a:51:49:10:c6:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4f92129df7aaa7157e15973c24753e118c9057d
Validity
Not Before: Jan 1 06:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d77c185f5bb95f9c33fae1974cec7b3f748872f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7a:da:7e:e9:c2:0d:92:f7:04:01:d7:4e:6a:
81:5a:26:02:d7:95:2c:4d:b9:47:43:28:68:f4:6f:
79:56:2e:72:d7:17:e7:52:59:09:51:6c:48:81:6b:
a0:28:6d:61:15:d0:b0:0a:fb:d2:d3:a8:ac:dc:db:
d3:c7:31:4f:ed:21:38:4d:c1:81:c3:bd:71:1d:ea:
84:22:7c:0d:91:23:e1:db:f1:60:52:f7:81:f7:dd:
78:73:9f:a7:e4:3e:f7:1f:f8:9f:f5:9e:69:4e:1f:
ac:25:e3:bb:ab:a3:a7:c1:f2:69:51:07:1d:1e:68:
ee:22:10:69:e4:4d:4c:16:f6:30:d3:f5:0c:c5:82:
b5:63:86:b8:a2:3a:e1:d7:c4:89:5f:9a:a8:0f:54:
e6:ca:b1:70:bf:94:59:0a:ed:2a:75:65:75:48:44:
fc:02:31:aa:f7:85:2b:26:e8:bb:61:f7:86:ca:86:
51:53:90:e3:1b:fa:94:fa:c5:89:cd:d3:a4:3e:2b:
2b:4f:eb:87:0c:31:1b:5a:14:a3:4b:44:89:71:bb:
6d:f1:9d:a8:88:28:e5:7f:76:fe:e9:24:b2:47:4d:
ca:97:4d:0a:a7:59:63:c5:eb:16:90:26:25:20:f0:
8c:f5:78:5b:b6:ac:9f:57:70:86:56:db:67:54:3c:
55:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:7C:18:5F:5B:B9:5F:9C:33:FA:E1:97:4C:EC:7B:3F:74:88:72:F3
X509v3 Authority Key Identifier:
keyid:D4:F9:21:29:DF:7A:AA:71:57:E1:59:73:C2:47:53:E1:18:C9:05:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1PkhKd96qnFX4VlzwkdT4RjJBX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/9cfe5d-5770-4b5d-8935-9f38c8b8a928/1/13wYX1u5X5wz-uGXTOx7P3SIcvM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/9cfe5d-5770-4b5d-8935-9f38c8b8a928/1/1PkhKd96qnFX4VlzwkdT4RjJBX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2c08::/48
Signature Algorithm: sha256WithRSAEncryption
25:26:b0:c8:1a:ed:a9:6c:1d:f1:26:57:ba:10:a6:98:e4:05:
62:0b:4d:ac:d9:23:76:c1:e6:90:76:92:29:76:33:31:be:cd:
bf:1e:a2:16:07:92:54:2c:df:da:6f:97:08:c5:0f:ad:46:09:
49:05:fc:73:2f:6f:23:92:5a:bf:2b:b9:cc:e1:d3:26:b3:8b:
c6:bd:d2:96:91:b5:25:75:0a:d2:eb:0e:98:dc:33:d2:44:69:
4a:53:1d:a1:3b:88:d0:7b:e5:c2:80:b6:1e:ba:e1:9b:30:76:
ff:b9:f5:ab:55:e5:27:57:36:5a:48:5f:67:9e:82:fc:20:5e:
07:79:b8:60:67:06:4e:29:0c:7b:77:20:f3:03:02:aa:76:9f:
89:f2:a4:35:73:1f:1f:bf:1b:f0:94:51:a4:9d:08:94:33:7c:
a4:cf:3b:e0:28:8f:1c:f0:09:88:a0:87:8e:32:ce:17:b6:76:
57:87:0c:24:43:fb:d4:1b:b4:d5:ae:e3:42:5c:63:c7:a4:ad:
80:7d:83:82:c4:05:d0:e0:2a:a3:15:ea:e8:9c:1f:d9:31:52:
9d:d5:19:38:63:d4:44:f0:83:3f:00:46:33:6f:a3:42:f0:f0:
e1:a3:57:97:dc:6d:48:d8:92:fb:4c:5b:e1:b9:84:cf:33:15:
68:d3:c2:08
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVsCjuaWm/zlr1amlFJEMawMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0ZjkyMTI5ZGY3YWFhNzE1N2UxNTk3M2MyNDc1M2UxMThj
OTA1N2QwHhcNMjMwMTAxMDYzNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNzdjMTg1ZjViYjk1ZjljMzNmYWUxOTc0Y2VjN2IzZjc0ODg3MmYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqXrafunCDZL3BAHXTmqBWiYC15Us
TblHQyho9G95Vi5y1xfnUlkJUWxIgWugKG1hFdCwCvvS06is3NvTxzFP7SE4TcGB
w71xHeqEInwNkSPh2/FgUveB9914c5+n5D73H/if9Z5pTh+sJeO7q6OnwfJpUQcd
HmjuIhBp5E1MFvYw0/UMxYK1Y4a4ojrh18SJX5qoD1TmyrFwv5RZCu0qdWV1SET8
AjGq94UrJui7YfeGyoZRU5DjG/qU+sWJzdOkPisrT+uHDDEbWhSjS0SJcbtt8Z2o
iCjlf3b+6SSyR03Kl00Kp1ljxesWkCYlIPCM9XhbtqyfV3CGVttnVDxVPQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFNd8GF9buV+cM/rhl0zsez90iHLzMB8GA1UdIwQY
MBaAFNT5ISnfeqpxV+FZc8JHU+EYyQV9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVBraEtkOTZxbkZYNFZsendrZFQ0UmpKQlgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC85Y2ZlNWQtNTc3MC00YjVkLTg5MzUt
OWYzOGM4YjhhOTI4LzEvMTN3WVgxdTVYNXd6LXVHWFRPeDdQM1NJY3ZNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC85Y2ZlNWQtNTc3MC00YjVkLTg5MzUtOWYzOGM4YjhhOTI4
LzEvMVBraEtkOTZxbkZYNFZsendrZFQ0UmpKQlgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCwI
MA0GCSqGSIb3DQEBCwUAA4IBAQAlJrDIGu2pbB3xJle6EKaY5AViC02s2SN2weaQ
dpIpdjMxvs2/HqIWB5JULN/ab5cIxQ+tRglJBfxzL28jklq/K7nM4dMms4vGvdKW
kbUldQrS6w6Y3DPSRGlKUx2hO4jQe+XCgLYeuuGbMHb/ufWrVeUnVzZaSF9nnoL8
IF4HebhgZwZOKQx7dyDzAwKqdp+J8qQ1cx8fvxvwlFGknQiUM3ykzzvgKI8c8AmI
oIeOMs4XtnZXhwwkQ/vUG7TVruNCXGPHpK2AfYOCxAXQ4CqjFeronB/ZMVKd1Rk4
Y9RE8IM/AEYzb6NC8PDho1eX3G1I2JL7TFvhuYTPMxVo08II
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:40 2024 by rpki-client on console-fra.rpki-client.org