Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/iEv-ojZnOWZsURmprI8rVs457E4.roa
File: iEv-ojZnOWZsURmprI8rVs457E4.roa (raw, json)
Hash identifier: gEowRwS73jdUizrm/TR+sOc4tgJmyZ9ePcVstofX0Io=
Subject key identifier: 88:4B:FE:A2:36:67:39:66:6C:51:19:A9:AC:8F:2B:56:CE:39:EC:4E
Certificate issuer: /CN=351a14ce9d25239b92fe5abce532515044c1aba4
Certificate serial: 0185C235708B7BDD4ADDF42C57A80129F71D
Authority key identifier: 35:1A:14:CE:9D:25:23:9B:92:FE:5A:BC:E5:32:51:50:44:C1:AB:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRoUzp0lI5uS_lq85TJRUETBq6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/iEv-ojZnOWZsURmprI8rVs457E4.roa
Signing time: Wed 18 Jan 2023 00:09:20 +0000
ROA not before: Wed 18 Jan 2023 00:09:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57640
IP address blocks: 2a05:91c2::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c2:35:70:8b:7b:dd:4a:dd:f4:2c:57:a8:01:29:f7:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=351a14ce9d25239b92fe5abce532515044c1aba4
Validity
Not Before: Jan 18 00:09:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=884bfea2366739666c5119a9ac8f2b56ce39ec4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:24:ac:cd:a7:26:b8:94:1e:86:d5:a7:b9:c8:
06:b0:8b:dc:db:dd:ae:bb:0f:f1:95:dc:3f:7b:92:
5e:8d:cb:ce:a1:b2:cd:2f:91:61:09:f8:5f:b3:10:
d5:e8:77:92:8c:11:17:9f:7e:49:b8:5f:ce:33:f4:
3a:28:56:2f:ac:ef:a1:21:69:2d:82:95:ca:fc:fb:
69:60:52:54:a2:d0:d9:ef:ac:77:c2:98:fb:49:68:
ad:7f:57:c9:10:08:dd:e3:d2:ce:db:2b:01:a2:ab:
b8:cf:3e:b7:ee:8b:b1:8d:57:45:7a:4f:4e:6c:87:
ec:42:bd:2b:ff:4b:8e:19:91:9a:24:4b:35:de:c1:
c9:ff:5c:07:d9:43:41:7d:1b:37:c5:e2:cc:f9:d9:
0d:90:20:b4:3f:bf:73:b1:b0:6f:dd:82:c4:cb:b1:
fc:9f:64:72:71:46:e4:05:e3:b2:7c:15:94:26:82:
58:b0:4d:82:90:76:9a:34:9d:e6:2a:7f:76:9b:52:
05:34:b8:03:d0:9c:3d:83:9d:0d:6c:bb:04:46:0c:
97:66:0e:58:5d:ad:52:ff:e6:8c:6a:e4:f6:28:03:
a8:63:36:13:18:50:b6:d1:37:8d:29:fa:0b:f2:fc:
4c:f5:14:b8:ec:6e:de:75:1b:4f:7f:40:16:83:9d:
76:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:4B:FE:A2:36:67:39:66:6C:51:19:A9:AC:8F:2B:56:CE:39:EC:4E
X509v3 Authority Key Identifier:
keyid:35:1A:14:CE:9D:25:23:9B:92:FE:5A:BC:E5:32:51:50:44:C1:AB:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRoUzp0lI5uS_lq85TJRUETBq6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/iEv-ojZnOWZsURmprI8rVs457E4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/3e2165-3bb5-45c3-989a-2953894b1f6d/1/NRoUzp0lI5uS_lq85TJRUETBq6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:91c2::/48
Signature Algorithm: sha256WithRSAEncryption
b3:15:d1:60:fe:16:78:f5:ff:90:5d:00:44:94:c3:ab:e5:61:
d4:76:8b:c6:b6:62:f7:92:ff:e0:14:95:fe:f8:14:12:37:be:
b1:91:ee:84:70:6d:57:b2:65:b1:9f:94:23:35:cb:11:be:7b:
ed:30:4b:d8:64:fc:42:97:45:a4:d6:95:16:97:46:ab:97:a0:
55:64:0d:fb:8b:d8:de:54:39:14:3e:93:ad:51:d5:1d:9a:74:
3f:6a:18:25:c2:4a:98:e0:52:fb:30:a6:c4:61:a0:ba:ad:d1:
f6:ce:77:89:cc:1b:50:c0:c1:99:23:13:e1:92:40:6a:29:fd:
01:88:42:e2:fe:b2:50:41:1c:cb:49:af:53:ed:8f:b1:58:e1:
9b:66:e1:bc:1d:15:8f:8d:46:55:89:38:bf:c4:63:da:21:b0:
05:64:77:cd:dd:91:6d:6a:62:12:a5:c3:2b:4b:c8:6d:34:68:
33:c7:e0:31:37:4f:d9:ff:fc:73:6a:bf:a5:3b:30:72:0f:47:
eb:e8:ca:65:85:0b:50:77:2c:36:16:ef:0d:9c:5f:08:88:3d:
fc:51:21:a4:4e:f5:54:b5:3d:e2:72:fc:a3:e5:84:c3:24:95:
42:3c:c5:6d:69:cc:e2:af:1d:80:94:75:3c:48:06:b9:87:f7:
80:03:03:a3
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYXCNXCLe91K3fQsV6gBKfcdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1MWExNGNlOWQyNTIzOWI5MmZlNWFiY2U1MzI1MTUwNDRj
MWFiYTQwHhcNMjMwMTE4MDAwOTIwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ODRiZmVhMjM2NjczOTY2NmM1MTE5YTlhYzhmMmI1NmNlMzllYzRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgiSszacmuJQehtWnucgGsIvc292u
uw/xldw/e5JejcvOobLNL5FhCfhfsxDV6HeSjBEXn35JuF/OM/Q6KFYvrO+hIWkt
gpXK/PtpYFJUotDZ76x3wpj7SWitf1fJEAjd49LO2ysBoqu4zz637ouxjVdFek9O
bIfsQr0r/0uOGZGaJEs13sHJ/1wH2UNBfRs3xeLM+dkNkCC0P79zsbBv3YLEy7H8
n2RycUbkBeOyfBWUJoJYsE2CkHaaNJ3mKn92m1IFNLgD0Jw9g50NbLsERgyXZg5Y
Xa1S/+aMauT2KAOoYzYTGFC20TeNKfoL8vxM9RS47G7edRtPf0AWg5124wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFIhL/qI2ZzlmbFEZqayPK1bOOexOMB8GA1UdIwQY
MBaAFDUaFM6dJSObkv5avOUyUVBEwaukMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlJvVXpwMGxJNXVTX2xxODVUSlJVRVRCcTZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy8zZTIxNjUtM2JiNS00NWMzLTk4OWEt
Mjk1Mzg5NGIxZjZkLzEvaUV2LW9qWm5PV1pzVVJtcHJJOHJWczQ1N0U0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYy8zZTIxNjUtM2JiNS00NWMzLTk4OWEtMjk1Mzg5NGIxZjZk
LzEvTlJvVXpwMGxJNXVTX2xxODVUSlJVRVRCcTZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgWRwgAA
MA0GCSqGSIb3DQEBCwUAA4IBAQCzFdFg/hZ49f+QXQBElMOr5WHUdovGtmL3kv/g
FJX++BQSN76xke6EcG1XsmWxn5QjNcsRvnvtMEvYZPxCl0Wk1pUWl0arl6BVZA37
i9jeVDkUPpOtUdUdmnQ/ahglwkqY4FL7MKbEYaC6rdH2zneJzBtQwMGZIxPhkkBq
Kf0BiELi/rJQQRzLSa9T7Y+xWOGbZuG8HRWPjUZViTi/xGPaIbAFZHfN3ZFtamIS
pcMrS8htNGgzx+AxN0/Z//xzar+lOzByD0fr6MplhQtQdyw2Fu8NnF8IiD38USGk
TvVUtT3icvyj5YTDJJVCPMVtaczirx2AlHU8SAa5h/eAAwOj
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:01 2024 by rpki-client on console-ams.rpki-client.org