Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/aa06b6-e766-4ad9-aa7a-a4bbb1bc98c6/1/LA0UIAKtojePDR3QetWeLPD3Clk.roa
File: LA0UIAKtojePDR3QetWeLPD3Clk.roa (raw, json)
Hash identifier: y7R2ievRkqf+yfxnH6fHkakXdmbiZDVxlaRzZsS0Lvs=
Subject key identifier: 2C:0D:14:20:02:AD:A2:37:8F:0D:1D:D0:7A:D5:9E:2C:F0:F7:0A:59
Certificate issuer: /CN=6ffe7b21b62183d5e3d4ae1b93ff00909282c912
Certificate serial: 018C16301FC11388F7F2C50DD3647C018550
Authority key identifier: 6F:FE:7B:21:B6:21:83:D5:E3:D4:AE:1B:93:FF:00:90:92:82:C9:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b_57IbYhg9Xj1K4bk_8AkJKCyRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/aa06b6-e766-4ad9-aa7a-a4bbb1bc98c6/1/LA0UIAKtojePDR3QetWeLPD3Clk.roa
Signing time: Tue 28 Nov 2023 13:48:21 +0000
ROA not before: Tue 28 Nov 2023 13:48:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197942
IP address blocks: 171.32.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Tue 28 Nov 2023 14:17:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:16:30:1f:c1:13:88:f7:f2:c5:0d:d3:64:7c:01:85:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ffe7b21b62183d5e3d4ae1b93ff00909282c912
Validity
Not Before: Nov 28 13:48:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2c0d142002ada2378f0d1dd07ad59e2cf0f70a59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:7b:52:bd:46:10:c7:8c:2a:7a:8f:71:b7:c2:
32:5c:1c:63:ad:ac:30:31:0c:26:6e:d2:a5:12:58:
04:a4:ba:9f:53:0a:b5:70:c9:85:aa:b2:ba:6a:2b:
71:3a:e2:24:62:b4:a1:01:c2:f7:5c:90:d1:92:05:
76:ce:d2:56:93:0f:a5:30:04:35:38:a8:e8:49:85:
1d:45:1f:da:3a:54:1a:e5:e5:8e:b1:bb:7c:17:aa:
05:25:63:69:48:20:af:97:cb:04:b3:58:56:eb:a3:
6a:db:61:96:37:0a:ff:0f:8b:b9:d0:be:bc:ae:10:
b7:92:f0:e6:2d:8c:41:c6:d8:c5:15:7c:ff:e6:59:
af:7f:7f:17:fd:0f:3a:63:86:6f:f4:4f:99:21:af:
3e:52:bb:e1:52:27:27:d2:25:97:02:7d:2b:c1:00:
e8:47:2f:c4:a9:16:3f:96:3f:dc:82:38:dc:b2:27:
ed:b3:9d:b2:8a:a1:f7:dd:44:f0:18:0a:54:f2:39:
6a:ab:fe:bd:4c:98:4d:b8:cf:67:5d:bd:53:bf:67:
1c:1d:8b:db:a9:db:35:97:38:f8:98:d7:2b:11:bd:
3c:41:65:b4:03:7c:be:9f:4e:cd:5f:31:dd:2b:57:
4e:2e:d3:45:0e:25:25:74:31:93:bc:d1:95:20:63:
aa:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:0D:14:20:02:AD:A2:37:8F:0D:1D:D0:7A:D5:9E:2C:F0:F7:0A:59
X509v3 Authority Key Identifier:
keyid:6F:FE:7B:21:B6:21:83:D5:E3:D4:AE:1B:93:FF:00:90:92:82:C9:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b_57IbYhg9Xj1K4bk_8AkJKCyRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/aa06b6-e766-4ad9-aa7a-a4bbb1bc98c6/1/LA0UIAKtojePDR3QetWeLPD3Clk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/aa06b6-e766-4ad9-aa7a-a4bbb1bc98c6/1/b_57IbYhg9Xj1K4bk_8AkJKCyRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.32.0.0/16
Signature Algorithm: sha256WithRSAEncryption
11:b9:d2:ce:ff:02:01:c1:61:b9:9c:0c:c9:9c:43:01:2c:0f:
a3:d8:04:d6:6a:6c:96:83:d5:20:ee:9e:dd:32:be:8e:57:b2:
10:d3:72:4b:52:37:cf:89:69:a2:0b:e9:b2:22:f2:cb:33:24:
76:1a:ab:a2:7c:2f:99:3f:6b:7c:6f:eb:ab:36:6b:68:69:dc:
5e:7d:47:83:05:bf:6a:6a:87:fe:69:01:84:48:70:59:d4:60:
4f:3e:15:81:db:f3:c0:f1:37:f1:10:1d:6b:6a:47:b6:f9:fa:
02:89:64:c9:06:f0:c2:6b:85:b7:03:3d:25:92:45:fa:09:9e:
3e:1d:e1:83:4a:0d:16:c0:48:e8:2f:22:1e:c4:e8:71:b1:ac:
9e:00:36:7a:7d:37:17:bb:a7:51:63:03:8c:8a:cf:c8:e9:99:
7e:b3:c3:a6:11:93:af:f0:24:d9:99:74:e4:e5:c5:87:52:5a:
c2:a1:35:37:d6:66:43:f1:cc:f4:a2:63:77:fe:b0:f1:b3:dd:
6f:6b:d7:51:e1:65:13:f3:dc:14:f9:ea:00:65:8a:64:9a:5e:
50:be:04:0f:96:00:ad:01:10:29:15:14:cf:0f:22:79:3b:8c:
2d:45:50:fe:1f:f5:06:aa:42:ba:dc:bc:c8:b8:c5:bf:31:5c:
99:0c:44:bb
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgISAYwWMB/BE4j38sUN02R8AYVQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmZmU3YjIxYjYyMTgzZDVlM2Q0YWUxYjkzZmYwMDkwOTI4
MmM5MTIwHhcNMjMxMTI4MTM0ODIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYzBkMTQyMDAyYWRhMjM3OGYwZDFkZDA3YWQ1OWUyY2YwZjcwYTU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmXtSvUYQx4wqeo9xt8IyXBxjraww
MQwmbtKlElgEpLqfUwq1cMmFqrK6aitxOuIkYrShAcL3XJDRkgV2ztJWkw+lMAQ1
OKjoSYUdRR/aOlQa5eWOsbt8F6oFJWNpSCCvl8sEs1hW66Nq22GWNwr/D4u50L68
rhC3kvDmLYxBxtjFFXz/5lmvf38X/Q86Y4Zv9E+ZIa8+UrvhUicn0iWXAn0rwQDo
Ry/EqRY/lj/cgjjcsifts52yiqH33UTwGApU8jlqq/69TJhNuM9nXb1Tv2ccHYvb
qds1lzj4mNcrEb08QWW0A3y+n07NXzHdK1dOLtNFDiUldDGTvNGVIGOqDQIDAQAB
o4ICCDCCAgQwHQYDVR0OBBYEFCwNFCACraI3jw0d0HrVnizw9wpZMB8GA1UdIwQY
MBaAFG/+eyG2IYPV49SuG5P/AJCSgskSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYl81N0liWWhnOVhqMUs0YmtfOEFrSktDeVJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9hYTA2YjYtZTc2Ni00YWQ5LWFhN2Et
YTRiYmIxYmM5OGM2LzEvTEEwVUlBS3RvamVQRFIzUWV0V2VMUEQzQ2xrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNi9hYTA2YjYtZTc2Ni00YWQ5LWFhN2EtYTRiYmIxYmM5OGM2
LzEvYl81N0liWWhnOVhqMUs0YmtfOEFrSktDeVJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAqyAwDQYJ
KoZIhvcNAQELBQADggEBABG50s7/AgHBYbmcDMmcQwEsD6PYBNZqbJaD1SDunt0y
vo5XshDTcktSN8+JaaIL6bIi8sszJHYaq6J8L5k/a3xv66s2a2hp3F59R4MFv2pq
h/5pAYRIcFnUYE8+FYHb88DxN/EQHWtqR7b5+gKJZMkG8MJrhbcDPSWSRfoJnj4d
4YNKDRbASOgvIh7E6HGxrJ4ANnp9Nxe7p1FjA4yKz8jpmX6zw6YRk6/wJNmZdOTl
xYdSWsKhNTfWZkPxzPSiY3f+sPGz3W9r11HhZRPz3BT56gBlimSaXlC+BA+WAK0B
ECkVFM8PInk7jC1FUP4f9QaqQrrcvMi4xb8xXJkMRLs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:34 2024 by rpki-client on console-fra.rpki-client.org