Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/c58189-d57e-415d-b977-0067bcaf3770/1/Tno4ypGY3x6Agi149p7wIpa83VE.roa
File: Tno4ypGY3x6Agi149p7wIpa83VE.roa (raw, json)
Hash identifier: MaDe/oSQkQvTX3+LdsC+2JuiFIedIJOH1qcbzhxkxm8=
Subject key identifier: 4E:7A:38:CA:91:98:DF:1E:80:82:2D:78:F6:9E:F0:22:96:BC:DD:51
Certificate issuer: /CN=58a5ed8e3ecc92a2de8c80abe9a8195d5ff997e6
Certificate serial: 01856D0AE84A1175E8BC8C7C391A9BBC1297
Authority key identifier: 58:A5:ED:8E:3E:CC:92:A2:DE:8C:80:AB:E9:A8:19:5D:5F:F9:97:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKXtjj7MkqLejICr6agZXV_5l-Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/c58189-d57e-415d-b977-0067bcaf3770/1/Tno4ypGY3x6Agi149p7wIpa83VE.roa
Signing time: Sun 01 Jan 2023 11:15:09 +0000
ROA not before: Sun 01 Jan 2023 11:15:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49852
IP address blocks: 2001:678:6ac::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:e8:4a:11:75:e8:bc:8c:7c:39:1a:9b:bc:12:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58a5ed8e3ecc92a2de8c80abe9a8195d5ff997e6
Validity
Not Before: Jan 1 11:15:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e7a38ca9198df1e80822d78f69ef02296bcdd51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:09:a4:90:6b:88:56:e4:cf:b8:b0:63:97:7d:
2a:94:40:6c:31:af:d0:1d:8d:78:76:74:4c:e9:6e:
2f:05:4a:0e:07:f9:c0:31:03:84:aa:3a:cb:d8:08:
9c:32:19:c5:d1:00:99:12:79:a1:37:b5:56:a3:41:
8a:cc:28:17:7f:2c:e0:82:18:08:f5:a6:bf:8f:dd:
60:3b:43:50:99:df:09:3c:8a:b6:f0:9f:c5:aa:8c:
b2:c1:ff:12:4d:a4:94:ca:1a:ba:44:65:e9:40:27:
9d:2d:ef:b2:20:78:52:70:f6:10:d4:a9:fe:c6:3a:
66:7d:df:84:56:30:f2:22:72:56:1f:25:3f:80:c4:
1b:9f:dc:97:30:06:02:a9:96:33:d1:ec:1b:95:db:
54:bf:27:08:62:88:6c:db:93:89:c4:85:de:fe:e7:
29:1b:ca:e0:8f:24:ed:bc:a5:41:20:db:88:8b:86:
84:05:a3:9a:68:03:5f:c8:10:23:a6:3d:e7:34:1f:
49:0f:3f:13:6b:e6:fa:37:8e:c0:6a:3b:36:a8:cd:
1a:87:4b:7e:cf:a1:3e:2f:d1:8f:08:1e:30:29:38:
5b:37:a1:b7:2c:b6:a2:07:60:23:6e:01:23:fe:a6:
b2:c3:44:dc:d7:2f:b0:12:40:bc:5d:08:d3:98:82:
74:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:7A:38:CA:91:98:DF:1E:80:82:2D:78:F6:9E:F0:22:96:BC:DD:51
X509v3 Authority Key Identifier:
keyid:58:A5:ED:8E:3E:CC:92:A2:DE:8C:80:AB:E9:A8:19:5D:5F:F9:97:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKXtjj7MkqLejICr6agZXV_5l-Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c58189-d57e-415d-b977-0067bcaf3770/1/Tno4ypGY3x6Agi149p7wIpa83VE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c58189-d57e-415d-b977-0067bcaf3770/1/WKXtjj7MkqLejICr6agZXV_5l-Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:6ac::/48
Signature Algorithm: sha256WithRSAEncryption
4e:ff:4a:66:db:fc:2b:b6:91:e3:0a:f3:8f:90:2b:bd:a6:fe:
f5:cb:9a:0d:76:4e:c7:2b:ce:77:5c:dc:39:d2:e4:19:24:4f:
12:ff:0e:a1:dc:e0:4e:2f:cc:0e:39:91:2c:33:da:b9:d8:a8:
cf:4d:8a:4a:cc:1c:a4:7c:c8:22:84:f6:b2:c1:c2:a8:9a:ed:
a7:71:8b:a4:4e:16:7c:58:ba:d0:ae:76:49:a2:3a:65:7e:4b:
31:aa:89:b4:b5:24:3d:ab:67:7c:80:5e:c0:4f:d0:e3:f1:4c:
c4:3e:bc:92:19:67:26:a7:e3:5e:a5:20:a8:f1:82:6c:36:f5:
f3:d6:24:6b:ab:a4:82:ff:eb:7c:d4:92:ac:56:d7:9d:b4:b0:
d7:ad:f9:aa:5b:e5:bb:2a:72:77:24:6d:df:8d:ba:3d:25:28:
25:59:e7:da:05:83:67:c6:fe:f0:77:55:f0:9f:d8:87:68:8b:
8a:dd:d2:93:d0:f6:f7:66:16:e0:94:a3:12:fa:13:f7:af:3e:
25:ab:77:2e:cf:f4:8e:9c:c8:92:a2:c1:5d:3e:d6:b8:b1:62:
8c:c6:03:88:80:86:94:d1:82:d2:60:84:16:44:ad:a9:58:d8:
5b:b4:d2:be:56:a3:f0:9b:ec:b1:1d:7c:00:09:38:90:73:50:
53:fb:83:cd
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVtCuhKEXXovIx8ORqbvBKXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4YTVlZDhlM2VjYzkyYTJkZThjODBhYmU5YTgxOTVkNWZm
OTk3ZTYwHhcNMjMwMTAxMTExNTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZTdhMzhjYTkxOThkZjFlODA4MjJkNzhmNjllZjAyMjk2YmNkZDUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApQmkkGuIVuTPuLBjl30qlEBsMa/Q
HY14dnRM6W4vBUoOB/nAMQOEqjrL2AicMhnF0QCZEnmhN7VWo0GKzCgXfyzgghgI
9aa/j91gO0NQmd8JPIq28J/Fqoyywf8STaSUyhq6RGXpQCedLe+yIHhScPYQ1Kn+
xjpmfd+EVjDyInJWHyU/gMQbn9yXMAYCqZYz0ewbldtUvycIYohs25OJxIXe/ucp
G8rgjyTtvKVBINuIi4aEBaOaaANfyBAjpj3nNB9JDz8Ta+b6N47Aajs2qM0ah0t+
z6E+L9GPCB4wKThbN6G3LLaiB2AjbgEj/qayw0Tc1y+wEkC8XQjTmIJ0FwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFE56OMqRmN8egIItePae8CKWvN1RMB8GA1UdIwQY
MBaAFFil7Y4+zJKi3oyAq+moGV1f+ZfmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0tYdGpqN01rcUxlaklDcjZhZ1pYVl81bC1ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS9jNTgxODktZDU3ZS00MTVkLWI5Nzct
MDA2N2JjYWYzNzcwLzEvVG5vNHlwR1kzeDZBZ2kxNDlwN3dJcGE4M1ZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OS9jNTgxODktZDU3ZS00MTVkLWI5NzctMDA2N2JjYWYzNzcw
LzEvV0tYdGpqN01rcUxlaklDcjZhZ1pYVl81bC1ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAas
MA0GCSqGSIb3DQEBCwUAA4IBAQBO/0pm2/wrtpHjCvOPkCu9pv71y5oNdk7HK853
XNw50uQZJE8S/w6h3OBOL8wOOZEsM9q52KjPTYpKzBykfMgihPaywcKomu2ncYuk
ThZ8WLrQrnZJojplfksxqom0tSQ9q2d8gF7AT9Dj8UzEPrySGWcmp+NepSCo8YJs
NvXz1iRrq6SC/+t81JKsVtedtLDXrfmqW+W7KnJ3JG3fjbo9JSglWefaBYNnxv7w
d1Xwn9iHaIuK3dKT0Pb3ZhbglKMS+hP3rz4lq3cuz/SOnMiSosFdPta4sWKMxgOI
gIaU0YLSYIQWRK2pWNhbtNK+VqPwm+yxHXwACTiQc1BT+4PN
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:02 2024 by rpki-client on console-ams.rpki-client.org