Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/Plk75G68lIaSKyymqFzhO3kNiew.roa
File: Plk75G68lIaSKyymqFzhO3kNiew.roa (raw, json)
Hash identifier: mAZqzad7fnW3fKXI5//+xahhHWH/+oIprqT8NaNjikc=
Subject key identifier: 3E:59:3B:E4:6E:BC:94:86:92:2B:2C:A6:A8:5C:E1:3B:79:0D:89:EC
Certificate issuer: /CN=66e92c341e769443fde1d27566044b4b65159060
Certificate serial: 018D1186C25CC77CB838A6E5DE5D5BF9853C
Authority key identifier: 66:E9:2C:34:1E:76:94:43:FD:E1:D2:75:66:04:4B:4B:65:15:90:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZuksNB52lEP94dJ1ZgRLS2UVkGA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/Plk75G68lIaSKyymqFzhO3kNiew.roa
Signing time: Tue 16 Jan 2024 09:07:40 +0000
ROA not before: Tue 16 Jan 2024 09:07:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 136557
IP address blocks: 2a0d:da05::/46 maxlen: 48
Validation: Failed, certificate revoked on Wed 24 Jan 2024 08:39:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:11:86:c2:5c:c7:7c:b8:38:a6:e5:de:5d:5b:f9:85:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66e92c341e769443fde1d27566044b4b65159060
Validity
Not Before: Jan 16 09:07:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3e593be46ebc9486922b2ca6a85ce13b790d89ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:6e:67:af:31:7b:57:a4:8e:33:36:53:5b:e4:
71:d9:0d:e4:05:33:5a:28:c0:6f:db:89:f3:d1:75:
cc:40:b7:08:e9:06:63:89:63:8e:56:e2:de:3a:43:
ad:9b:4d:33:5e:19:7a:57:99:d3:7b:84:c8:68:c1:
e8:3b:31:b4:bf:f9:8c:a3:4f:04:5b:24:89:a2:28:
00:42:90:f3:55:71:2f:10:4c:dd:49:d5:cc:3d:f1:
e2:19:50:8d:33:ee:67:d4:e1:ea:6b:78:1e:19:af:
cf:cd:a7:f4:2e:db:e2:56:6b:cd:1d:08:2a:82:9b:
0e:5f:b1:94:2f:91:03:a6:48:30:aa:40:93:e3:ff:
01:01:64:3e:15:b1:d5:d5:2d:37:04:12:98:ed:47:
19:05:dd:25:c5:01:85:41:f0:18:e9:f5:ec:52:14:
90:20:57:52:51:c6:18:3e:5d:de:1f:40:87:40:b8:
37:7b:65:53:9a:cc:b3:7f:c5:b3:ab:5b:87:4d:fd:
6f:dc:0e:6f:8d:95:99:f2:dc:b0:ae:19:51:8e:cc:
9a:44:d8:81:2e:24:98:23:bb:73:7b:19:60:9f:bf:
1b:54:a9:57:96:18:10:9b:9a:9a:31:45:5b:ee:a7:
0c:a8:1d:bf:85:b8:05:6e:fe:09:28:41:ab:ea:88:
10:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:59:3B:E4:6E:BC:94:86:92:2B:2C:A6:A8:5C:E1:3B:79:0D:89:EC
X509v3 Authority Key Identifier:
keyid:66:E9:2C:34:1E:76:94:43:FD:E1:D2:75:66:04:4B:4B:65:15:90:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZuksNB52lEP94dJ1ZgRLS2UVkGA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/Plk75G68lIaSKyymqFzhO3kNiew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/ZuksNB52lEP94dJ1ZgRLS2UVkGA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:da05::/46
Signature Algorithm: sha256WithRSAEncryption
44:e2:6a:7f:7e:d0:e1:27:7d:da:76:dc:fe:7d:a0:df:1e:da:
93:fb:d5:6a:0e:75:35:d1:6c:da:9a:49:d7:c5:0a:52:c0:64:
57:03:df:de:c2:3b:3a:e8:95:01:12:9e:1d:10:6d:18:7c:ff:
05:db:e9:dc:4f:72:4a:0d:04:d7:ba:8e:ff:ba:84:77:c0:45:
01:0d:f0:d8:1b:66:32:16:d6:95:5a:29:50:db:e9:6e:d0:97:
62:0b:09:1c:d0:67:76:72:01:c2:b7:b6:b7:f7:db:bc:36:9b:
2a:0a:83:8b:15:00:8b:76:21:95:e5:54:01:fe:fd:91:ec:2e:
90:79:ac:92:e5:38:35:4d:02:45:47:66:7d:72:b1:ae:be:79:
4c:69:92:da:60:58:24:d3:27:a4:e2:c3:aa:6c:ba:7d:d2:62:
d0:b5:94:7b:73:74:55:ff:8a:fe:c4:65:13:57:42:ac:ad:66:
10:82:a2:32:ba:fd:50:60:7e:2d:1b:23:d0:a4:74:b8:f7:a9:
fc:4f:9f:62:1f:a3:6d:42:e3:79:5c:07:1f:9a:d8:e0:f9:bb:
23:b7:41:46:8b:c5:81:6b:f0:23:f8:f8:3a:16:4e:66:d5:af:
67:8a:b7:5e:87:f7:8b:bc:d6:9e:0d:2c:30:18:d0:06:f2:30:
ae:8c:6b:18
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY0RhsJcx3y4OKbl3l1b+YU8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2ZTkyYzM0MWU3Njk0NDNmZGUxZDI3NTY2MDQ0YjRiNjUx
NTkwNjAwHhcNMjQwMTE2MDkwNzQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZTU5M2JlNDZlYmM5NDg2OTIyYjJjYTZhODVjZTEzYjc5MGQ4OWVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsm5nrzF7V6SOMzZTW+Rx2Q3kBTNa
KMBv24nz0XXMQLcI6QZjiWOOVuLeOkOtm00zXhl6V5nTe4TIaMHoOzG0v/mMo08E
WySJoigAQpDzVXEvEEzdSdXMPfHiGVCNM+5n1OHqa3geGa/Pzaf0LtviVmvNHQgq
gpsOX7GUL5EDpkgwqkCT4/8BAWQ+FbHV1S03BBKY7UcZBd0lxQGFQfAY6fXsUhSQ
IFdSUcYYPl3eH0CHQLg3e2VTmsyzf8Wzq1uHTf1v3A5vjZWZ8tywrhlRjsyaRNiB
LiSYI7tzexlgn78bVKlXlhgQm5qaMUVb7qcMqB2/hbgFbv4JKEGr6ogQHQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFD5ZO+RuvJSGkisspqhc4Tt5DYnsMB8GA1UdIwQY
MBaAFGbpLDQedpRD/eHSdWYES0tlFZBgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWnVrc05CNTJsRVA5NGRKMVpnUkxTMlVWa0dBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS84ZjE5NjgtYTc5YS00YTA3LWFjZTYt
YzFkMjk2ZjhmZDA3LzEvUGxrNzVHNjhsSWFTS3l5bXFGemhPM2tOaWV3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS84ZjE5NjgtYTc5YS00YTA3LWFjZTYtYzFkMjk2ZjhmZDA3
LzEvWnVrc05CNTJsRVA5NGRKMVpnUkxTMlVWa0dBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcCKg3aBQAA
MA0GCSqGSIb3DQEBCwUAA4IBAQBE4mp/ftDhJ33adtz+faDfHtqT+9VqDnU10Wza
mknXxQpSwGRXA9/ewjs66JUBEp4dEG0YfP8F2+ncT3JKDQTXuo7/uoR3wEUBDfDY
G2YyFtaVWilQ2+lu0JdiCwkc0Gd2cgHCt7a399u8NpsqCoOLFQCLdiGV5VQB/v2R
7C6QeayS5Tg1TQJFR2Z9crGuvnlMaZLaYFgk0yek4sOqbLp90mLQtZR7c3RV/4r+
xGUTV0KsrWYQgqIyuv1QYH4tGyPQpHS496n8T59iH6NtQuN5XAcfmtjg+bsjt0FG
i8WBa/Aj+Pg6Fk5m1a9nirdeh/eLvNaeDSwwGNAG8jCujGsY
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:17 2024 by rpki-client on console-ams.rpki-client.org