Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/nvwykhN7iUnkGMX5MG907qAV-cI.roa
File: nvwykhN7iUnkGMX5MG907qAV-cI.roa (raw, json)
Hash identifier: rEyw2Wieay15VmdgfHis40bRw3aGGegwBzXQ2j4oZKw=
Subject key identifier: 9E:FC:32:92:13:7B:89:49:E4:18:C5:F9:30:6F:74:EE:A0:15:F9:C2
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018D1C8DCEBA47F3D99B8F021F25B2BC8CF2
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/nvwykhN7iUnkGMX5MG907qAV-cI.roa
Signing time: Thu 18 Jan 2024 12:31:11 +0000
ROA not before: Thu 18 Jan 2024 12:31:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 2a0c:9a40:83c0::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 18 Jan 2024 15:36:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:1c:8d:ce:ba:47:f3:d9:9b:8f:02:1f:25:b2:bc:8c:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 18 12:31:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9efc3292137b8949e418c5f9306f74eea015f9c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a0:a6:46:4f:81:e5:6c:3b:93:f2:6f:ba:7a:
7f:a2:85:ee:40:11:b0:80:fa:13:e2:0c:c9:c4:2b:
54:fe:56:58:fb:40:19:15:4e:d3:f9:49:ba:16:af:
63:70:cf:c6:ea:14:ac:33:8d:e1:c3:15:ac:b6:30:
42:19:d1:c3:f9:d8:02:db:51:ee:2c:59:f9:04:55:
c2:d5:fe:3f:69:ab:6b:2e:1f:21:51:0c:27:61:5d:
ab:cd:44:a9:b7:fa:b9:43:79:07:6c:24:37:fa:3e:
38:fc:53:de:0f:7c:fc:62:b2:08:74:ff:e7:6f:d9:
e1:eb:42:ee:ce:21:5e:09:45:10:1e:e3:62:29:f0:
2a:2d:89:3e:fb:ce:9b:69:1e:1b:1d:e4:f7:3a:f0:
6b:68:6c:47:cd:f4:bc:ca:bb:53:2d:d5:46:f5:be:
b8:5d:ad:4a:dc:73:c6:80:dd:63:f9:e5:b3:0f:af:
f6:b5:05:b9:47:e3:a2:56:cf:b9:fc:0d:1f:c7:c3:
f7:9b:3a:f5:5b:7e:71:ad:33:41:1c:ea:c8:e7:48:
ee:71:62:36:6f:c9:d3:57:34:f9:d6:a3:e6:b9:a7:
d3:4e:73:83:4c:c7:2b:c6:32:d4:8f:37:72:a4:8c:
8c:9e:bd:9c:7f:60:3a:f8:b7:8b:51:bb:10:49:5a:
2c:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:FC:32:92:13:7B:89:49:E4:18:C5:F9:30:6F:74:EE:A0:15:F9:C2
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/nvwykhN7iUnkGMX5MG907qAV-cI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:83c0::/48
Signature Algorithm: sha256WithRSAEncryption
81:36:c1:24:d3:82:34:66:cc:5d:1f:e6:5e:52:56:bf:e1:5b:
46:59:a9:da:8a:0c:a5:38:81:f2:fb:29:59:d1:06:28:39:1e:
d9:09:47:70:b7:a9:00:2c:c2:b5:94:42:77:2b:e7:e6:1d:b0:
41:a2:a6:62:15:17:8a:74:d1:da:b3:8a:ba:ae:77:03:4c:c8:
68:0f:65:3d:27:01:a8:0e:63:77:f9:58:45:4a:4c:a2:40:46:
f6:4c:03:29:c7:c7:b6:c5:b3:a7:61:60:50:88:9f:3c:27:d3:
81:00:68:ce:42:23:02:30:cc:9e:05:d2:92:64:8b:8b:1c:ed:
fb:1e:4d:07:8c:1f:79:e4:2f:5f:64:e1:0e:6e:3b:1c:c1:70:
50:e2:d8:6d:69:a4:c6:51:f5:2e:5c:cb:66:07:ac:85:a0:44:
cc:c0:ce:fa:0c:57:1c:28:55:5a:14:e0:81:95:6a:a5:f2:b5:
34:a6:ea:5f:e2:e7:e5:83:fd:3c:bc:21:5a:c6:b6:90:eb:15:
17:48:f3:47:93:a2:3b:93:00:34:8d:06:72:65:3f:73:ff:2f:
41:a8:ec:99:9e:5f:5b:b1:f3:c6:f7:e1:30:4e:99:94:1b:db:
32:63:4f:8f:1a:14:3d:f4:f9:00:56:95:55:29:46:76:79:d2:
34:90:dc:4b
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY0cjc66R/PZm48CHyWyvIzyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllOTVhMzYxZmUyYjJjNTI5MjYyNmJhNGM1NmE2NWE4MTRl
NDgwMDgwHhcNMjQwMTE4MTIzMTExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZWZjMzI5MjEzN2I4OTQ5ZTQxOGM1ZjkzMDZmNzRlZWEwMTVmOWMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqaCmRk+B5Ww7k/Jvunp/ooXuQBGw
gPoT4gzJxCtU/lZY+0AZFU7T+Um6Fq9jcM/G6hSsM43hwxWstjBCGdHD+dgC21Hu
LFn5BFXC1f4/aatrLh8hUQwnYV2rzUSpt/q5Q3kHbCQ3+j44/FPeD3z8YrIIdP/n
b9nh60LuziFeCUUQHuNiKfAqLYk++86baR4bHeT3OvBraGxHzfS8yrtTLdVG9b64
Xa1K3HPGgN1j+eWzD6/2tQW5R+OiVs+5/A0fx8P3mzr1W35xrTNBHOrI50jucWI2
b8nTVzT51qPmuafTTnODTMcrxjLUjzdypIyMnr2cf2A6+LeLUbsQSVoshwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFJ78MpITe4lJ5BjF+TBvdO6gFfnCMB8GA1UdIwQY
MBaAFJ6Vo2H+KyxSkmJrpMVqZagU5IAIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2Yt
YmY0ZTUyN2I5ZmE4LzEvbnZ3eWtoTjdpVW5rR01YNU1HOTA3cUFWLWNJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2YtYmY0ZTUyN2I5ZmE4
LzEvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgyaQIPA
MA0GCSqGSIb3DQEBCwUAA4IBAQCBNsEk04I0ZsxdH+ZeUla/4VtGWanaigylOIHy
+ylZ0QYoOR7ZCUdwt6kALMK1lEJ3K+fmHbBBoqZiFReKdNHas4q6rncDTMhoD2U9
JwGoDmN3+VhFSkyiQEb2TAMpx8e2xbOnYWBQiJ88J9OBAGjOQiMCMMyeBdKSZIuL
HO37Hk0HjB955C9fZOEObjscwXBQ4thtaaTGUfUuXMtmB6yFoETMwM76DFccKFVa
FOCBlWql8rU0pupf4uflg/08vCFaxraQ6xUXSPNHk6I7kwA0jQZyZT9z/y9BqOyZ
nl9bsfPG9+EwTpmUG9syY0+PGhQ99PkAVpVVKUZ2edI0kNxL
-----END CERTIFICATE-----
Generated at Thu Jan 18 20:55:02 2024 by rpki-client on console-ams.rpki-client.org