Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/CzWkcbwzpOmaRjbMZt2vLY-qDSA.roa
File: CzWkcbwzpOmaRjbMZt2vLY-qDSA.roa (raw, json)
Hash identifier: t3jizFJU3MWabQUHFl4pYHnml+Zmusp1f/q8kOVCxWo=
Subject key identifier: 0B:35:A4:71:BC:33:A4:E9:9A:46:36:CC:66:DD:AF:2D:8F:AA:0D:20
Certificate issuer: /CN=e15808f3f921bc8c3eea87c7584c584c1000b051
Certificate serial: 01856D0ADBC5BB94CDF02737DDAE929D7A41
Authority key identifier: E1:58:08:F3:F9:21:BC:8C:3E:EA:87:C7:58:4C:58:4C:10:00:B0:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/CzWkcbwzpOmaRjbMZt2vLY-qDSA.roa
Signing time: Sun 01 Jan 2023 11:15:06 +0000
ROA not before: Sun 01 Jan 2023 11:15:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213395
IP address blocks: 2a10:2e41::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:db:c5:bb:94:cd:f0:27:37:dd:ae:92:9d:7a:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e15808f3f921bc8c3eea87c7584c584c1000b051
Validity
Not Before: Jan 1 11:15:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b35a471bc33a4e99a4636cc66ddaf2d8faa0d20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:24:f5:5b:0f:55:a3:03:15:0e:e6:4f:d9:94:
38:34:32:06:c3:de:1d:1e:4e:2f:2a:b7:69:9b:0a:
04:b2:02:a0:0a:c3:ee:5e:b6:30:04:28:ea:8d:ce:
0d:31:2b:7e:6c:7c:51:f2:d3:81:0c:9b:66:4c:2d:
01:92:22:42:50:6e:82:86:1b:9a:3d:bd:4d:8e:fd:
a3:b3:47:4c:38:7f:17:8e:86:39:0e:0d:1d:1d:76:
43:e3:44:f6:d0:d4:c7:8f:9e:1b:1e:ca:1a:66:04:
52:be:df:d6:72:48:01:ac:46:3c:9d:b8:33:2e:5c:
f4:6a:23:3c:60:3a:51:e2:03:8e:9d:77:b8:7e:b5:
b2:ac:63:2b:70:b5:e8:9d:98:44:bf:6c:40:82:43:
a3:5d:bd:0c:2e:f4:45:10:d7:4f:50:bf:73:48:5f:
51:cd:f6:99:70:05:e5:7b:31:aa:57:28:4e:b2:3e:
d9:a2:33:59:29:e2:d7:66:a0:29:ff:da:b6:01:1a:
15:25:d2:2b:eb:f0:16:6b:df:e3:fc:5a:c3:55:4a:
7e:de:02:a2:ec:37:6d:cd:31:89:ab:14:ea:46:3d:
df:69:0d:ce:d9:c0:82:d5:5a:18:f7:67:c3:e0:d3:
19:f7:1f:cc:43:2c:dc:f3:ae:93:9c:38:79:f4:cf:
0a:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:35:A4:71:BC:33:A4:E9:9A:46:36:CC:66:DD:AF:2D:8F:AA:0D:20
X509v3 Authority Key Identifier:
keyid:E1:58:08:F3:F9:21:BC:8C:3E:EA:87:C7:58:4C:58:4C:10:00:B0:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/CzWkcbwzpOmaRjbMZt2vLY-qDSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/4VgI8_khvIw-6ofHWExYTBAAsFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2e41::/32
Signature Algorithm: sha256WithRSAEncryption
69:3f:a7:8f:2c:77:a8:4f:5c:bc:fe:75:b5:f9:5b:ee:3e:e8:
8e:8c:ba:a9:49:78:52:95:f7:bc:12:a7:38:b9:8b:a9:3f:d1:
21:7d:a1:fa:b6:37:46:59:77:21:04:f2:8f:7f:2b:38:14:53:
47:bf:01:94:99:30:db:8f:a6:22:bc:c2:cc:96:51:2a:31:2d:
db:3b:36:54:39:57:63:b1:8a:b6:d9:35:76:9b:46:78:21:fc:
a9:5b:79:26:2e:59:f2:c1:4b:52:a5:ac:38:b2:35:c6:43:8d:
5b:6c:30:52:af:cd:c0:5e:ac:d0:59:67:eb:fc:4d:a8:95:5c:
1d:64:76:7b:4e:03:67:7a:b0:87:68:7d:18:9b:8d:07:69:d1:
8b:41:fc:44:c5:36:53:83:92:b1:ec:bb:64:66:9c:b2:ed:ed:
5f:ab:b9:06:f0:82:66:39:69:13:53:4e:1d:09:af:08:98:41:
d1:4c:1f:f6:87:85:7b:85:d1:eb:de:12:21:95:f7:07:6f:a0:
13:e0:3d:e4:10:71:08:2d:90:37:ee:e0:68:12:6a:4c:22:2f:
e4:a9:22:cf:f8:c1:0c:2f:d9:95:f4:54:d8:ac:20:ef:16:41:
ca:57:3e:f5:e0:cd:2a:ae:d3:68:2a:ee:e8:46:47:83:33:ac:
82:68:1e:1a
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVtCtvFu5TN8Cc33a6SnXpBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUxNTgwOGYzZjkyMWJjOGMzZWVhODdjNzU4NGM1ODRjMTAw
MGIwNTEwHhcNMjMwMTAxMTExNTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYjM1YTQ3MWJjMzNhNGU5OWE0NjM2Y2M2NmRkYWYyZDhmYWEwZDIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiiT1Ww9VowMVDuZP2ZQ4NDIGw94d
Hk4vKrdpmwoEsgKgCsPuXrYwBCjqjc4NMSt+bHxR8tOBDJtmTC0BkiJCUG6Chhua
Pb1Njv2js0dMOH8XjoY5Dg0dHXZD40T20NTHj54bHsoaZgRSvt/WckgBrEY8nbgz
Llz0aiM8YDpR4gOOnXe4frWyrGMrcLXonZhEv2xAgkOjXb0MLvRFENdPUL9zSF9R
zfaZcAXlezGqVyhOsj7ZojNZKeLXZqAp/9q2ARoVJdIr6/AWa9/j/FrDVUp+3gKi
7DdtzTGJqxTqRj3faQ3O2cCC1VoY92fD4NMZ9x/MQyzc866TnDh59M8KDQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFAs1pHG8M6TpmkY2zGbdry2Pqg0gMB8GA1UdIwQY
MBaAFOFYCPP5IbyMPuqHx1hMWEwQALBRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNFZnSThfa2h2SXctNm9mSFdFeFlUQkFBc0ZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC84ZThlODItNTI3NC00ZDJmLThjYTAt
YWIxOWZjYjBjZTY0LzEvQ3pXa2Nid3pwT21hUmpiTVp0MnZMWS1xRFNBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC84ZThlODItNTI3NC00ZDJmLThjYTAtYWIxOWZjYjBjZTY0
LzEvNFZnSThfa2h2SXctNm9mSFdFeFlUQkFBc0ZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhAuQTAN
BgkqhkiG9w0BAQsFAAOCAQEAaT+njyx3qE9cvP51tflb7j7ojoy6qUl4UpX3vBKn
OLmLqT/RIX2h+rY3Rll3IQTyj38rOBRTR78BlJkw24+mIrzCzJZRKjEt2zs2VDlX
Y7GKttk1dptGeCH8qVt5Ji5Z8sFLUqWsOLI1xkONW2wwUq/NwF6s0Fln6/xNqJVc
HWR2e04DZ3qwh2h9GJuNB2nRi0H8RMU2U4OSsey7ZGacsu3tX6u5BvCCZjlpE1NO
HQmvCJhB0Uwf9oeFe4XR694SIZX3B2+gE+A95BBxCC2QN+7gaBJqTCIv5Kkiz/jB
DC/ZlfRU2Kwg7xZBylc+9eDNKq7TaCru6EZHgzOsgmgeGg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:46 2024 by rpki-client on console-fra.rpki-client.org