Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/901170-e606-4fd1-8504-7f0d07ba4af3/1/q3IdxGNphsxGhYyQ0_hSbn7jS1o.roa
File: q3IdxGNphsxGhYyQ0_hSbn7jS1o.roa (raw, json)
Hash identifier: 0fshjHjaIXI8nEK4HJYKjwZKsUFJ8ZOeO+N4w/oRtoE=
Subject key identifier: AB:72:1D:C4:63:69:86:CC:46:85:8C:90:D3:F8:52:6E:7E:E3:4B:5A
Certificate issuer: /CN=cd1f73345794ce4817ea99e8d8cfcea71bd78367
Certificate serial: 01909F3FC429A3CCB5681B1759DDE11E3F6D
Authority key identifier: CD:1F:73:34:57:94:CE:48:17:EA:99:E8:D8:CF:CE:A7:1B:D7:83:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zR9zNFeUzkgX6pno2M_OpxvXg2c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/901170-e606-4fd1-8504-7f0d07ba4af3/1/q3IdxGNphsxGhYyQ0_hSbn7jS1o.roa
Signing time: Thu 11 Jul 2024 00:44:34 +0000
ROA not before: Thu 11 Jul 2024 00:44:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8075
IP address blocks: 2a14:7640::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 13 Jul 2024 00:15:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:9f:3f:c4:29:a3:cc:b5:68:1b:17:59:dd:e1:1e:3f:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd1f73345794ce4817ea99e8d8cfcea71bd78367
Validity
Not Before: Jul 11 00:44:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab721dc4636986cc46858c90d3f8526e7ee34b5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:63:b2:aa:fc:13:f4:b1:f8:9a:d0:2c:f0:6f:
70:4d:de:1f:1b:fa:02:36:99:b6:e1:fa:91:c8:f5:
1a:d9:9d:a6:1c:ce:99:88:0f:a9:32:56:1d:ff:be:
e5:7b:2e:6c:4b:2c:ec:8d:4d:7c:a6:70:00:be:0f:
2e:ff:84:af:10:04:27:c5:cd:d1:28:99:bb:91:b1:
01:15:5b:e3:3e:9f:fc:6e:5e:a6:8f:56:5c:60:f2:
06:75:8b:43:e0:fe:12:ab:2e:8c:eb:88:60:bf:30:
a8:3c:a2:14:bf:5e:77:08:35:e4:d4:cb:68:01:b3:
23:69:3c:0e:49:25:2f:99:7e:b2:f9:94:fc:9b:1c:
37:96:53:14:9e:ec:06:78:a2:33:39:6c:f8:27:93:
81:db:c4:f5:7b:a6:0f:12:bb:7e:c2:10:51:93:1a:
08:f6:1a:44:dd:e2:80:1b:2f:71:47:d4:9c:3a:5f:
b8:32:77:83:16:83:47:24:f6:b3:43:78:7e:e1:8e:
5c:d4:26:65:d7:b5:c9:e9:82:0d:56:97:c8:68:7b:
27:39:ad:4b:d3:38:cf:4a:f1:58:af:24:31:ec:17:
6c:8d:fe:35:ea:10:32:e5:c7:1b:ed:e8:d4:39:b5:
a7:6d:eb:54:31:58:6a:2e:41:33:57:29:00:ea:32:
1f:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:72:1D:C4:63:69:86:CC:46:85:8C:90:D3:F8:52:6E:7E:E3:4B:5A
X509v3 Authority Key Identifier:
keyid:CD:1F:73:34:57:94:CE:48:17:EA:99:E8:D8:CF:CE:A7:1B:D7:83:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zR9zNFeUzkgX6pno2M_OpxvXg2c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/901170-e606-4fd1-8504-7f0d07ba4af3/1/q3IdxGNphsxGhYyQ0_hSbn7jS1o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/901170-e606-4fd1-8504-7f0d07ba4af3/1/zR9zNFeUzkgX6pno2M_OpxvXg2c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7640::/48
Signature Algorithm: sha256WithRSAEncryption
79:74:35:cd:03:4b:8d:8c:c9:85:51:e9:ae:28:26:be:65:80:
52:10:9f:2e:c4:d3:8c:f7:6f:35:cc:6f:72:38:42:1f:3f:56:
79:13:ce:67:d3:65:3c:42:e3:49:03:c4:f7:9b:3f:00:db:a9:
e3:67:33:c2:77:ac:b0:3a:4c:be:b0:64:44:95:44:f5:8d:e3:
83:64:67:9f:f2:3d:d6:de:3f:ef:60:a8:e8:62:61:57:f8:ef:
5a:72:bf:6a:fd:ff:49:75:78:8a:28:f2:3a:63:45:88:5c:ed:
24:3f:d9:44:00:31:aa:3e:0d:ad:d5:49:e7:fa:23:8a:e9:36:
a2:cb:f2:89:ec:97:07:a4:84:9b:ed:7b:6d:88:e3:65:36:be:
ba:b3:b7:bf:f4:b3:38:97:25:40:09:45:52:1d:d5:45:a4:49:
33:64:a6:b0:78:cc:1c:44:44:e0:cd:10:e3:54:c4:e7:5d:1b:
89:84:5c:52:88:5e:34:b4:fb:05:af:da:46:15:d7:b3:59:78:
00:95:4a:80:62:fe:de:5e:9c:49:04:37:c9:d8:19:93:ff:73:
cd:8e:df:be:9d:7b:43:ed:f7:8d:a3:c1:cf:d4:5e:50:fa:4c:
b6:8d:04:d4:ea:6a:af:b2:8d:d6:1f:2c:ef:e3:a8:93:97:8b:
13:64:f5:da
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZCfP8Qpo8y1aBsXWd3hHj9tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkMWY3MzM0NTc5NGNlNDgxN2VhOTllOGQ4Y2ZjZWE3MWJk
NzgzNjcwHhcNMjQwNzExMDA0NDM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYjcyMWRjNDYzNjk4NmNjNDY4NThjOTBkM2Y4NTI2ZTdlZTM0YjVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmmOyqvwT9LH4mtAs8G9wTd4fG/oC
Npm24fqRyPUa2Z2mHM6ZiA+pMlYd/77ley5sSyzsjU18pnAAvg8u/4SvEAQnxc3R
KJm7kbEBFVvjPp/8bl6mj1ZcYPIGdYtD4P4Sqy6M64hgvzCoPKIUv153CDXk1Mto
AbMjaTwOSSUvmX6y+ZT8mxw3llMUnuwGeKIzOWz4J5OB28T1e6YPErt+whBRkxoI
9hpE3eKAGy9xR9ScOl+4MneDFoNHJPazQ3h+4Y5c1CZl17XJ6YINVpfIaHsnOa1L
0zjPSvFYryQx7Bdsjf416hAy5ccb7ejUObWnbetUMVhqLkEzVykA6jIfKwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFKtyHcRjaYbMRoWMkNP4Um5+40taMB8GA1UdIwQY
MBaAFM0fczRXlM5IF+qZ6NjPzqcb14NnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelI5ek5GZVV6a2dYNnBubzJNX09weHZYZzJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MDExNzAtZTYwNi00ZmQxLTg1MDQt
N2YwZDA3YmE0YWYzLzEvcTNJZHhHTnBoc3hHaFl5UTBfaFNibjdqUzFvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MDExNzAtZTYwNi00ZmQxLTg1MDQtN2YwZDA3YmE0YWYz
LzEvelI5ek5GZVV6a2dYNnBubzJNX09weHZYZzJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhR2QAAA
MA0GCSqGSIb3DQEBCwUAA4IBAQB5dDXNA0uNjMmFUemuKCa+ZYBSEJ8uxNOM9281
zG9yOEIfP1Z5E85n02U8QuNJA8T3mz8A26njZzPCd6ywOky+sGRElUT1jeODZGef
8j3W3j/vYKjoYmFX+O9acr9q/f9JdXiKKPI6Y0WIXO0kP9lEADGqPg2t1Unn+iOK
6Taiy/KJ7JcHpISb7XttiONlNr66s7e/9LM4lyVACUVSHdVFpEkzZKaweMwcRETg
zRDjVMTnXRuJhFxSiF40tPsFr9pGFdezWXgAlUqAYv7eXpxJBDfJ2BmT/3PNjt++
nXtD7feNo8HP1F5Q+ky2jQTU6mqvso3WHyzv46iTl4sTZPXa
-----END CERTIFICATE-----
Generated at Sat Jul 13 01:43:24 2024 by rpki-client on console-fra.rpki-client.org