Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/dY0d-e_pto2zyiQ1fCNoQxI9Pjw.roa
File: dY0d-e_pto2zyiQ1fCNoQxI9Pjw.roa (raw, json)
Hash identifier: qtVeSYmkvcm2fEpT8S5vKtvmbdTlNIX4tGAD/8JEQKA=
Subject key identifier: 75:8D:1D:F9:EF:E9:B6:8D:B3:CA:24:35:7C:23:68:43:12:3D:3E:3C
Certificate issuer: /CN=b2e448b4a08f0e4c58a283d80735a8a803e10d4e
Certificate serial: 01856C9CAA64711526928A88FBF0376D3B50
Authority key identifier: B2:E4:48:B4:A0:8F:0E:4C:58:A2:83:D8:07:35:A8:A8:03:E1:0D:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/suRItKCPDkxYooPYBzWoqAPhDU4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/dY0d-e_pto2zyiQ1fCNoQxI9Pjw.roa
Signing time: Sun 01 Jan 2023 09:14:44 +0000
ROA not before: Sun 01 Jan 2023 09:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50475
IP address blocks: 2a00:1908:e965::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:9c:aa:64:71:15:26:92:8a:88:fb:f0:37:6d:3b:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2e448b4a08f0e4c58a283d80735a8a803e10d4e
Validity
Not Before: Jan 1 09:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=758d1df9efe9b68db3ca24357c236843123d3e3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:74:87:fd:51:f5:65:a3:3f:b1:c8:9e:06:2b:
eb:9c:f5:45:82:44:93:69:d0:cf:af:af:26:25:10:
35:0a:bf:9e:47:10:c1:32:9e:49:77:87:9a:53:7f:
04:e2:07:08:d5:ff:6f:95:2b:a0:12:7d:cc:85:a4:
f1:55:c5:b7:8a:08:81:66:58:5c:6d:18:24:d5:b5:
19:28:b2:fb:c2:a5:90:8e:62:5c:ec:95:23:68:9a:
d8:f4:a0:fa:b4:ae:a0:b5:0b:9e:e9:2a:82:67:93:
a1:e2:6e:a0:c4:fb:45:28:ca:3d:f6:22:ec:e4:bc:
ae:dc:81:1a:0a:fe:1e:f9:b4:54:02:96:2b:e2:53:
21:51:29:c8:6a:f7:38:42:9b:d4:ca:09:90:59:4c:
01:77:34:99:da:61:ec:0c:f0:bf:f3:f4:5a:a1:12:
c6:ee:36:19:6c:f3:06:2c:fe:2d:b7:08:4c:88:f0:
d6:1a:60:d6:cf:16:10:3e:1c:0a:a3:7a:1a:30:2c:
d1:22:dc:9f:a9:f5:7c:32:df:a5:a5:ae:c4:36:94:
56:7b:15:1c:74:bf:74:72:b0:ec:6f:0e:ca:f5:43:
e0:9d:d6:b7:cb:ca:5b:07:b1:81:78:26:d2:ce:aa:
95:38:2f:8a:d6:47:28:01:ec:ca:01:0f:e6:92:52:
a7:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:8D:1D:F9:EF:E9:B6:8D:B3:CA:24:35:7C:23:68:43:12:3D:3E:3C
X509v3 Authority Key Identifier:
keyid:B2:E4:48:B4:A0:8F:0E:4C:58:A2:83:D8:07:35:A8:A8:03:E1:0D:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/suRItKCPDkxYooPYBzWoqAPhDU4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/dY0d-e_pto2zyiQ1fCNoQxI9Pjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/a7068a-92ba-42ea-9966-2054d4e903bc/1/suRItKCPDkxYooPYBzWoqAPhDU4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1908:e965::/48
Signature Algorithm: sha256WithRSAEncryption
60:46:d5:89:79:c0:81:57:1d:a4:2b:4c:e1:ce:a1:09:86:13:
13:60:3a:14:9f:15:87:19:93:5d:79:df:53:03:45:53:db:6e:
a4:c1:7f:e2:91:c1:96:65:67:19:37:5d:97:a7:a6:a1:d3:5d:
64:e8:30:93:a5:b4:02:0a:b2:59:b2:9f:9d:13:80:0d:02:a3:
0e:45:b3:2c:2b:d9:88:08:9e:3f:9d:68:6d:96:ee:69:87:1f:
66:cc:5c:9f:bc:46:94:a1:52:b1:c8:e6:f2:a5:71:6d:a0:6a:
28:b5:c2:3b:99:ea:1e:c7:de:11:90:23:e3:97:5d:fd:70:3e:
87:ce:39:43:f5:cf:d5:7c:ea:00:b2:45:45:ec:e2:51:99:89:
91:3a:f3:d7:ff:fa:b3:f3:32:f4:34:3a:ad:e4:a9:ed:1a:c2:
66:c5:15:f2:2c:e6:c0:2b:6f:75:65:7a:c5:29:c1:d6:01:92:
79:07:9b:c8:32:0f:ef:74:e6:56:dd:cc:10:bc:ed:94:00:1b:
2c:bb:18:77:9c:05:6e:2a:2b:ca:ac:d6:de:73:20:ab:41:46:
5f:21:f3:73:47:5b:26:48:09:22:29:c1:21:d5:ed:bf:1e:8b:
18:86:d5:60:20:94:f4:c7:b4:62:72:b1:0e:e6:c4:98:4c:49:
93:09:59:bf
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVsnKpkcRUmkoqI+/A3bTtQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyZTQ0OGI0YTA4ZjBlNGM1OGEyODNkODA3MzVhOGE4MDNl
MTBkNGUwHhcNMjMwMTAxMDkxNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NThkMWRmOWVmZTliNjhkYjNjYTI0MzU3YzIzNjg0MzEyM2QzZTNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuHSH/VH1ZaM/scieBivrnPVFgkST
adDPr68mJRA1Cr+eRxDBMp5Jd4eaU38E4gcI1f9vlSugEn3MhaTxVcW3igiBZlhc
bRgk1bUZKLL7wqWQjmJc7JUjaJrY9KD6tK6gtQue6SqCZ5Oh4m6gxPtFKMo99iLs
5Lyu3IEaCv4e+bRUApYr4lMhUSnIavc4QpvUygmQWUwBdzSZ2mHsDPC/8/RaoRLG
7jYZbPMGLP4ttwhMiPDWGmDWzxYQPhwKo3oaMCzRItyfqfV8Mt+lpa7ENpRWexUc
dL90crDsbw7K9UPgnda3y8pbB7GBeCbSzqqVOC+K1kcoAezKAQ/mklKn4QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFHWNHfnv6baNs8okNXwjaEMSPT48MB8GA1UdIwQY
MBaAFLLkSLSgjw5MWKKD2Ac1qKgD4Q1OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3VSSXRLQ1BEa3hZb29QWUJ6V29xQVBoRFU0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9hNzA2OGEtOTJiYS00MmVhLTk5NjYt
MjA1NGQ0ZTkwM2JjLzEvZFkwZC1lX3B0bzJ6eWlRMWZDTm9ReEk5UGp3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9hNzA2OGEtOTJiYS00MmVhLTk5NjYtMjA1NGQ0ZTkwM2Jj
LzEvc3VSSXRLQ1BEa3hZb29QWUJ6V29xQVBoRFU0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgAZCOll
MA0GCSqGSIb3DQEBCwUAA4IBAQBgRtWJecCBVx2kK0zhzqEJhhMTYDoUnxWHGZNd
ed9TA0VT226kwX/ikcGWZWcZN12Xp6ah011k6DCTpbQCCrJZsp+dE4ANAqMORbMs
K9mICJ4/nWhtlu5phx9mzFyfvEaUoVKxyObypXFtoGootcI7meoex94RkCPjl139
cD6HzjlD9c/VfOoAskVF7OJRmYmROvPX//qz8zL0NDqt5KntGsJmxRXyLObAK291
ZXrFKcHWAZJ5B5vIMg/vdOZW3cwQvO2UABssuxh3nAVuKivKrNbecyCrQUZfIfNz
R1smSAkiKcEh1e2/HosYhtVgIJT0x7RicrEO5sSYTEmTCVm/
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:13 2024 by rpki-client on console-ams.rpki-client.org