Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/bc15ec-6b0d-4734-a088-d00526b91605/1/A3ku9VtIzUm86P91dMVePBHhvp0.roa
File: A3ku9VtIzUm86P91dMVePBHhvp0.roa (raw, json)
Hash identifier: 63BUAysCKITgCHboMio6USoXNqSr+08vkc9csZfbnUQ=
Subject key identifier: 03:79:2E:F5:5B:48:CD:49:BC:E8:FF:75:74:C5:5E:3C:11:E1:BE:9D
Certificate issuer: /CN=25a89539520004270d34253bdc16d87784156e1a
Certificate serial: 01856F700AE9E1B9014AE6BA4783DAFFDCF9
Authority key identifier: 25:A8:95:39:52:00:04:27:0D:34:25:3B:DC:16:D8:77:84:15:6E:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JaiVOVIABCcNNCU73BbYd4QVbho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/bc15ec-6b0d-4734-a088-d00526b91605/1/A3ku9VtIzUm86P91dMVePBHhvp0.roa
Signing time: Sun 01 Jan 2023 22:24:51 +0000
ROA not before: Sun 01 Jan 2023 22:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39227
IP address blocks: 2a00:1f78:fffe::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:70:0a:e9:e1:b9:01:4a:e6:ba:47:83:da:ff:dc:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25a89539520004270d34253bdc16d87784156e1a
Validity
Not Before: Jan 1 22:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03792ef55b48cd49bce8ff7574c55e3c11e1be9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:af:1e:4a:73:6e:74:53:c4:09:2c:89:0b:c5:
0e:49:5c:3a:b8:b5:85:2a:0b:68:2e:d0:d8:d4:fd:
ec:0d:b1:f9:a0:79:8e:03:f6:f5:9d:08:89:9d:d1:
ae:77:50:8e:e2:16:ea:93:4d:ec:9a:f6:cc:06:74:
6a:46:bc:37:03:2e:e7:63:32:4f:a7:41:44:81:61:
8b:ba:62:88:95:a0:b3:54:7d:49:bf:04:1e:8a:e5:
ed:42:71:6e:d2:11:62:ca:1d:ba:62:a0:86:8d:2f:
9b:c9:a8:a3:be:2f:e1:b5:59:b1:51:38:35:78:b2:
7a:e2:e0:42:52:64:91:af:bd:1d:36:e3:9c:5b:97:
5d:f9:c9:3b:09:cb:a9:3e:a5:45:0f:d0:6a:47:10:
2d:eb:b2:88:4a:a3:fe:c3:32:ca:c2:eb:4a:e4:c2:
84:c6:bd:6c:49:a5:56:b4:3b:eb:c3:20:60:95:68:
3c:69:ee:cc:bd:9e:ef:35:da:35:21:df:3c:f1:4c:
7d:bc:d4:bb:b1:55:90:a0:02:73:f9:8c:0d:9c:45:
cc:6b:c3:b1:bc:e3:bd:23:cf:3b:c9:3e:76:47:62:
b5:07:db:fe:64:82:18:03:f0:5b:56:51:89:12:80:
1f:2d:eb:97:c5:0b:a4:f4:ad:84:51:98:03:22:fd:
af:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:79:2E:F5:5B:48:CD:49:BC:E8:FF:75:74:C5:5E:3C:11:E1:BE:9D
X509v3 Authority Key Identifier:
keyid:25:A8:95:39:52:00:04:27:0D:34:25:3B:DC:16:D8:77:84:15:6E:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JaiVOVIABCcNNCU73BbYd4QVbho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/bc15ec-6b0d-4734-a088-d00526b91605/1/A3ku9VtIzUm86P91dMVePBHhvp0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/bc15ec-6b0d-4734-a088-d00526b91605/1/JaiVOVIABCcNNCU73BbYd4QVbho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1f78:fffe::/48
Signature Algorithm: sha256WithRSAEncryption
46:f4:f8:34:25:96:fe:1c:16:da:8c:ca:94:8d:d8:51:5c:53:
6b:92:e4:f2:91:d7:d9:18:f3:a3:b9:3c:c0:c5:7d:b5:be:ed:
c2:e8:40:c3:52:0a:d7:95:af:51:9f:0d:28:a0:6f:bf:52:cb:
e7:ec:bc:46:80:20:b6:cb:62:c2:b6:3d:80:58:37:d4:8b:9f:
2d:65:64:8b:f9:cf:5b:22:3b:ce:e9:2e:3c:45:e7:00:50:bd:
e4:e4:35:70:0e:91:0e:98:13:e0:d0:9a:a9:34:4d:e2:66:6c:
51:0c:46:6a:64:82:89:3a:41:ff:43:20:ec:7a:7d:c7:fe:a6:
eb:a0:69:5e:ec:da:cf:59:52:71:c8:dc:2e:2a:a1:a8:b0:f6:
f7:33:cd:75:25:97:17:fe:f5:ec:85:1d:7c:c4:e7:0c:f5:94:
3e:73:9b:1a:c4:28:c8:c1:05:cc:18:81:46:90:80:25:41:13:
99:6a:6d:25:c8:b4:ef:4c:e5:da:ef:3e:03:2f:28:9b:b6:93:
31:10:9a:c8:0b:e4:dd:45:3e:ca:4b:ab:e5:e0:af:6a:e8:a1:
4a:28:75:4a:06:a1:0a:39:5a:8e:87:05:22:d0:e9:86:45:89:
10:dc:0c:61:a2:87:82:db:bf:51:94:39:c5:2f:bf:d9:56:69:
25:ae:c4:96
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVvcArp4bkBSua6R4Pa/9z5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1YTg5NTM5NTIwMDA0MjcwZDM0MjUzYmRjMTZkODc3ODQx
NTZlMWEwHhcNMjMwMTAxMjIyNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMzc5MmVmNTViNDhjZDQ5YmNlOGZmNzU3NGM1NWUzYzExZTFiZTlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk68eSnNudFPECSyJC8UOSVw6uLWF
KgtoLtDY1P3sDbH5oHmOA/b1nQiJndGud1CO4hbqk03smvbMBnRqRrw3Ay7nYzJP
p0FEgWGLumKIlaCzVH1JvwQeiuXtQnFu0hFiyh26YqCGjS+byaijvi/htVmxUTg1
eLJ64uBCUmSRr70dNuOcW5dd+ck7CcupPqVFD9BqRxAt67KISqP+wzLKwutK5MKE
xr1sSaVWtDvrwyBglWg8ae7MvZ7vNdo1Id888Ux9vNS7sVWQoAJz+YwNnEXMa8Ox
vOO9I887yT52R2K1B9v+ZIIYA/BbVlGJEoAfLeuXxQuk9K2EUZgDIv2vpwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFAN5LvVbSM1JvOj/dXTFXjwR4b6dMB8GA1UdIwQY
MBaAFCWolTlSAAQnDTQlO9wW2HeEFW4aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSmFpVk9WSUFCQ2NOTkNVNzNCYllkNFFWYmhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS9iYzE1ZWMtNmIwZC00NzM0LWEwODgt
ZDAwNTI2YjkxNjA1LzEvQTNrdTlWdEl6VW04NlA5MWRNVmVQQkhodnAwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS9iYzE1ZWMtNmIwZC00NzM0LWEwODgtZDAwNTI2YjkxNjA1
LzEvSmFpVk9WSUFCQ2NOTkNVNzNCYllkNFFWYmhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgAfeP/+
MA0GCSqGSIb3DQEBCwUAA4IBAQBG9Pg0JZb+HBbajMqUjdhRXFNrkuTykdfZGPOj
uTzAxX21vu3C6EDDUgrXla9Rnw0ooG+/Usvn7LxGgCC2y2LCtj2AWDfUi58tZWSL
+c9bIjvO6S48RecAUL3k5DVwDpEOmBPg0JqpNE3iZmxRDEZqZIKJOkH/QyDsen3H
/qbroGle7NrPWVJxyNwuKqGosPb3M811JZcX/vXshR18xOcM9ZQ+c5saxCjIwQXM
GIFGkIAlQROZam0lyLTvTOXa7z4DLyibtpMxEJrIC+TdRT7KS6vl4K9q6KFKKHVK
BqEKOVqOhwUi0OmGRYkQ3AxhooeC279RlDnFL7/ZVmklrsSW
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:10 2024 by rpki-client on console-fra.rpki-client.org