Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/39b08d-eb01-43b0-b56c-273884b53c6e/1/5Qlb28X6O8dmOTSHhlgyKCLWU-0.roa
File: 5Qlb28X6O8dmOTSHhlgyKCLWU-0.roa (raw, json)
Hash identifier: OnracrEdnuDiLC0Cl5nUDtWlEYocA3/AJiN4UpEGZys=
Subject key identifier: E5:09:5B:DB:C5:FA:3B:C7:66:39:34:87:86:58:32:28:22:D6:53:ED
Certificate issuer: /CN=c334a35abfa82d549e490704d68bbe658005d63c
Certificate serial: 018570C2DBEA06616EFB4D3C72F54B89033D
Authority key identifier: C3:34:A3:5A:BF:A8:2D:54:9E:49:07:04:D6:8B:BE:65:80:05:D6:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wzSjWr-oLVSeSQcE1ou-ZYAF1jw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/39b08d-eb01-43b0-b56c-273884b53c6e/1/5Qlb28X6O8dmOTSHhlgyKCLWU-0.roa
Signing time: Mon 02 Jan 2023 04:34:56 +0000
ROA not before: Mon 02 Jan 2023 04:34:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44980
IP address blocks: 2001:1a08:666::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:db:ea:06:61:6e:fb:4d:3c:72:f5:4b:89:03:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c334a35abfa82d549e490704d68bbe658005d63c
Validity
Not Before: Jan 2 04:34:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e5095bdbc5fa3bc7663934878658322822d653ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:38:27:33:ed:29:c5:3c:b1:1a:ec:16:67:7f:
01:bd:9f:52:a8:64:5c:d4:33:f9:cb:22:78:90:a8:
40:54:68:cb:3f:df:d0:fe:ef:ec:33:b7:dd:9b:32:
7c:80:f3:cd:e8:d4:76:30:42:7b:c0:23:c9:c4:52:
83:63:9d:30:4e:3b:95:1f:26:09:e1:f0:e0:b9:09:
d8:e3:50:7e:0e:25:c9:d3:38:2a:77:79:ec:3b:3d:
cd:ae:6b:95:53:c4:9d:74:fd:eb:1b:f1:e8:9b:f0:
a8:81:eb:8b:27:c2:cf:2c:b4:bf:3b:79:ac:19:8e:
d8:3a:7a:ee:7c:e1:65:b4:ed:8d:0e:8c:ff:0d:51:
49:53:7e:f9:7f:b7:aa:b9:7a:1e:0f:95:55:63:13:
77:79:f1:34:14:92:53:dc:b7:d6:bf:a6:34:56:9a:
4d:0a:18:01:94:e2:8c:f0:e5:1f:8e:39:a9:5f:cf:
da:3c:d2:9c:b9:9b:86:04:19:09:ec:20:df:1c:66:
b9:5f:6f:8f:6e:d3:47:fe:ac:1a:ab:08:a5:ce:a8:
d5:4c:80:f5:2a:79:b1:68:8b:95:94:c6:6e:70:b6:
e4:de:b8:8b:a9:4a:8c:84:c1:33:d0:52:70:db:2d:
e5:29:ba:b4:5c:87:ff:cc:18:7a:83:6c:f8:9e:4c:
e3:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:09:5B:DB:C5:FA:3B:C7:66:39:34:87:86:58:32:28:22:D6:53:ED
X509v3 Authority Key Identifier:
keyid:C3:34:A3:5A:BF:A8:2D:54:9E:49:07:04:D6:8B:BE:65:80:05:D6:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wzSjWr-oLVSeSQcE1ou-ZYAF1jw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/39b08d-eb01-43b0-b56c-273884b53c6e/1/5Qlb28X6O8dmOTSHhlgyKCLWU-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/39b08d-eb01-43b0-b56c-273884b53c6e/1/wzSjWr-oLVSeSQcE1ou-ZYAF1jw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:1a08:666::/48
Signature Algorithm: sha256WithRSAEncryption
79:33:e8:c2:a5:70:d4:34:bb:9d:51:20:6c:a9:c5:a5:4c:26:
17:2d:ba:02:89:ed:fb:5c:ba:c8:fc:90:70:38:e8:03:6e:20:
02:d0:1b:75:43:ca:b3:ac:55:ae:31:83:21:f0:3e:01:ec:6d:
3a:1f:f3:50:19:28:c7:53:89:8f:f7:3c:b2:64:24:04:93:d7:
bb:83:1b:da:13:53:e3:7e:de:25:fe:c6:a9:db:13:89:bf:3a:
3f:b6:b9:e8:8d:e2:bc:87:a5:1a:26:39:6d:f7:79:a2:0f:78:
9f:0f:62:98:57:20:b1:3b:c4:78:06:83:70:2f:f6:33:d3:60:
fb:0d:ed:02:4f:6f:73:a2:72:83:de:16:d5:d9:85:b1:bb:bb:
4b:f7:d8:21:6e:c3:c3:18:10:3c:0e:e7:25:ee:04:b6:9a:40:
39:7d:d5:6a:a1:02:5b:cf:4c:2c:99:1f:3e:2e:d9:df:5f:c0:
c6:ef:80:7a:fa:85:ba:74:4d:6f:b3:e3:b2:dc:dd:eb:48:51:
ea:11:1b:9a:fc:9d:1a:96:52:c8:77:26:ad:e9:0b:7c:fb:72:
86:ae:46:ae:23:aa:c4:a2:7d:e9:86:d7:8c:93:79:14:10:c8:
be:21:f4:84:93:8c:9f:b5:7b:ed:d1:05:4c:f0:7f:d0:34:27:
f5:77:08:51
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVwwtvqBmFu+008cvVLiQM9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzMzRhMzVhYmZhODJkNTQ5ZTQ5MDcwNGQ2OGJiZTY1ODAw
NWQ2M2MwHhcNMjMwMTAyMDQzNDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNTA5NWJkYmM1ZmEzYmM3NjYzOTM0ODc4NjU4MzIyODIyZDY1M2VkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkzgnM+0pxTyxGuwWZ38BvZ9SqGRc
1DP5yyJ4kKhAVGjLP9/Q/u/sM7fdmzJ8gPPN6NR2MEJ7wCPJxFKDY50wTjuVHyYJ
4fDguQnY41B+DiXJ0zgqd3nsOz3NrmuVU8SddP3rG/Hom/CogeuLJ8LPLLS/O3ms
GY7YOnrufOFltO2NDoz/DVFJU375f7equXoeD5VVYxN3efE0FJJT3LfWv6Y0VppN
ChgBlOKM8OUfjjmpX8/aPNKcuZuGBBkJ7CDfHGa5X2+PbtNH/qwaqwilzqjVTID1
KnmxaIuVlMZucLbk3riLqUqMhMEz0FJw2y3lKbq0XIf/zBh6g2z4nkzj3QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFOUJW9vF+jvHZjk0h4ZYMigi1lPtMB8GA1UdIwQY
MBaAFMM0o1q/qC1UnkkHBNaLvmWABdY8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd3pTaldyLW9MVlNlU1FjRTFvdS1aWUFGMWp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC8zOWIwOGQtZWIwMS00M2IwLWI1NmMt
MjczODg0YjUzYzZlLzEvNVFsYjI4WDZPOGRtT1RTSGhsZ3lLQ0xXVS0wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC8zOWIwOGQtZWIwMS00M2IwLWI1NmMtMjczODg0YjUzYzZl
LzEvd3pTaldyLW9MVlNlU1FjRTFvdS1aWUFGMWp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEaCAZm
MA0GCSqGSIb3DQEBCwUAA4IBAQB5M+jCpXDUNLudUSBsqcWlTCYXLboCie37XLrI
/JBwOOgDbiAC0Bt1Q8qzrFWuMYMh8D4B7G06H/NQGSjHU4mP9zyyZCQEk9e7gxva
E1Pjft4l/sap2xOJvzo/trnojeK8h6UaJjlt93miD3ifD2KYVyCxO8R4BoNwL/Yz
02D7De0CT29zonKD3hbV2YWxu7tL99ghbsPDGBA8Ducl7gS2mkA5fdVqoQJbz0ws
mR8+LtnfX8DG74B6+oW6dE1vs+Oy3N3rSFHqERua/J0allLIdyat6Qt8+3KGrkau
I6rEon3phteMk3kUEMi+IfSEk4yftXvt0QVM8H/QNCf1dwhR
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:40 2024 by rpki-client on console-fra.rpki-client.org