Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/gdQ8fIDhKW2Pd3_FDoDLd0HfKCw.roa
File: gdQ8fIDhKW2Pd3_FDoDLd0HfKCw.roa (raw, json)
Hash identifier: qpWTs1umjvX9pewKjGzRFkZOLy7aiU4o+bFgOGRxHow=
Subject key identifier: 81:D4:3C:7C:80:E1:29:6D:8F:77:7F:C5:0E:80:CB:77:41:DF:28:2C
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 018D0E8FC9E3F907CCE2D979DA78EF8B3FBF
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/gdQ8fIDhKW2Pd3_FDoDLd0HfKCw.roa
Signing time: Mon 15 Jan 2024 19:18:40 +0000
ROA not before: Mon 15 Jan 2024 19:18:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212728
IP address blocks: 2a09:ff00:8000::/37 maxlen: 37
Validation: Failed, certificate revoked on Tue 06 Feb 2024 20:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:0e:8f:c9:e3:f9:07:cc:e2:d9:79:da:78:ef:8b:3f:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 15 19:18:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=81d43c7c80e1296d8f777fc50e80cb7741df282c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:89:07:22:b6:0b:2e:a7:8a:14:df:16:49:86:
15:b0:dc:a9:d5:27:24:4e:2c:58:20:90:85:86:d6:
83:d6:1e:a7:5c:40:51:e0:d5:73:41:4f:4f:0e:d7:
d4:e5:54:c6:9a:51:48:e9:22:27:b5:40:08:4c:aa:
2c:46:2e:e3:45:cf:6b:ca:f1:79:95:73:4b:db:3d:
54:3e:28:69:dd:18:43:7d:32:8f:f7:4c:3d:07:8a:
d1:af:27:88:19:23:41:5e:0e:7b:3f:52:ad:a8:a5:
b0:a3:a9:ff:39:02:ef:84:86:39:00:d2:2f:03:14:
8a:15:57:42:de:e3:f3:34:5a:e9:da:a4:b5:ea:26:
48:21:6d:de:28:f6:53:16:6e:6e:ca:c9:78:0a:fd:
9e:84:74:b2:40:2b:0e:94:21:70:e1:e3:74:45:8e:
bd:d1:87:5a:c6:be:25:e1:3b:a1:4d:4d:b8:db:8f:
78:5c:2f:14:f9:60:b2:4d:0f:58:03:4b:41:9e:f3:
6b:c8:fe:3a:32:81:50:a7:fd:d8:9f:df:2c:21:e2:
a7:f6:12:dd:42:e7:7e:3b:67:a3:c3:a9:c5:ac:42:
64:34:0a:4a:ed:a3:41:2a:63:8c:da:58:9c:14:4c:
e9:e8:5a:93:68:94:0d:46:21:ca:cb:99:c1:37:2d:
5a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:D4:3C:7C:80:E1:29:6D:8F:77:7F:C5:0E:80:CB:77:41:DF:28:2C
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/gdQ8fIDhKW2Pd3_FDoDLd0HfKCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:ff00:8000::/37
Signature Algorithm: sha256WithRSAEncryption
28:fd:66:bc:98:71:44:eb:45:2a:a5:a6:57:77:ed:2a:f4:60:
af:f3:37:c1:e8:d4:4d:d1:fc:49:25:bd:60:6c:bc:2d:c2:5f:
50:3e:54:0d:3a:55:10:c8:80:b0:e5:76:d4:3e:f2:b6:79:0b:
f4:3d:3c:fc:66:da:a8:3c:4b:68:52:e7:e8:2f:66:21:8a:8a:
8d:86:fa:b6:68:51:49:6c:47:67:1a:cd:c7:ad:33:c5:11:45:
53:91:27:1a:22:24:ed:21:8d:56:aa:56:98:28:db:29:e9:a7:
0b:c5:3e:a3:da:27:1f:26:07:0c:db:bc:da:11:63:1d:48:c4:
19:68:c4:17:e7:1e:0d:9c:d3:5e:82:6c:86:f3:74:76:73:be:
77:0c:27:26:f3:93:bb:11:92:bb:5f:9c:22:86:d3:e8:61:0b:
ac:85:11:b1:99:a0:f0:70:07:d8:a3:14:3c:7c:c0:a7:61:4c:
5c:8c:cd:91:38:8a:dc:29:8f:c9:14:0a:c2:d4:38:f0:c5:7d:
2d:48:08:df:76:7f:e1:ac:16:4c:e5:7d:c8:31:6a:50:f4:c2:
c1:15:9c:e8:c2:61:9e:eb:4a:af:ec:7d:72:b4:c9:b0:26:77:
f5:23:20:31:f3:e1:a2:a0:04:c0:2f:1c:b9:58:c4:89:c8:ed:
71:2d:be:e1
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAY0Oj8nj+QfM4tl52njviz+/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmOGFlYTJmMDI1ZjQ5NWJlYWNlZTdjZTVhODgyMDUxOWRk
YTEzNzAwHhcNMjQwMTE1MTkxODQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MWQ0M2M3YzgwZTEyOTZkOGY3NzdmYzUwZTgwY2I3NzQxZGYyODJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlYkHIrYLLqeKFN8WSYYVsNyp1Sck
TixYIJCFhtaD1h6nXEBR4NVzQU9PDtfU5VTGmlFI6SIntUAITKosRi7jRc9ryvF5
lXNL2z1UPihp3RhDfTKP90w9B4rRryeIGSNBXg57P1KtqKWwo6n/OQLvhIY5ANIv
AxSKFVdC3uPzNFrp2qS16iZIIW3eKPZTFm5uysl4Cv2ehHSyQCsOlCFw4eN0RY69
0Ydaxr4l4TuhTU242494XC8U+WCyTQ9YA0tBnvNryP46MoFQp/3Yn98sIeKn9hLd
Qud+O2ejw6nFrEJkNApK7aNBKmOM2licFEzp6FqTaJQNRiHKy5nBNy1aMwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFIHUPHyA4Sltj3d/xQ6Ay3dB3ygsMB8GA1UdIwQY
MBaAFE+K6i8CX0lb6s7nzlqIIFGd2hNwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDRycUx3SmZTVnZxenVmT1dvZ2dVWjNhRTNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9lYjcwYTMtMTdlMS00ZDg2LThiOWUt
NjA4MDk1MmYwZTA0LzEvZ2RROGZJRGhLVzJQZDNfRkRvRExkMEhmS0N3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS9lYjcwYTMtMTdlMS00ZDg2LThiOWUtNjA4MDk1MmYwZTA0
LzEvVDRycUx3SmZTVnZxenVmT1dvZ2dVWjNhRTNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYDKgn/AIAw
DQYJKoZIhvcNAQELBQADggEBACj9ZryYcUTrRSqlpld37Sr0YK/zN8Ho1E3R/Ekl
vWBsvC3CX1A+VA06VRDIgLDldtQ+8rZ5C/Q9PPxm2qg8S2hS5+gvZiGKio2G+rZo
UUlsR2cazcetM8URRVORJxoiJO0hjVaqVpgo2ynppwvFPqPaJx8mBwzbvNoRYx1I
xBloxBfnHg2c016CbIbzdHZzvncMJybzk7sRkrtfnCKG0+hhC6yFEbGZoPBwB9ij
FDx8wKdhTFyMzZE4itwpj8kUCsLUOPDFfS1ICN92f+GsFkzlfcgxalD0wsEVnOjC
YZ7rSq/sfXK0ybAmd/UjIDHz4aKgBMAvHLlYxInI7XEtvuE=
-----END CERTIFICATE-----
Generated at Wed Feb 7 00:16:53 2024 by rpki-client on console-ams.rpki-client.org