Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/c3f419-a596-46be-8aff-ceff546c933e/1/07zjn6b2qMLRyDeGbJr-uW56vXE.roa
File: 07zjn6b2qMLRyDeGbJr-uW56vXE.roa (raw, json)
Hash identifier: OyWxwe2Rx+n5HUJ8tLwSCxcNNkOybvrXDvkg5cx+mk8=
Subject key identifier: D3:BC:E3:9F:A6:F6:A8:C2:D1:C8:37:86:6C:9A:FE:B9:6E:7A:BD:71
Certificate issuer: /CN=dd010938d9ef72158fc98bd45de71b0b1a9ff729
Certificate serial: 01894A002A30FC0BF42021DAB2C1DA43AD82
Authority key identifier: DD:01:09:38:D9:EF:72:15:8F:C9:8B:D4:5D:E7:1B:0B:1A:9F:F7:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3QEJONnvchWPyYvUXecbCxqf9yk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/c3f419-a596-46be-8aff-ceff546c933e/1/07zjn6b2qMLRyDeGbJr-uW56vXE.roa
Signing time: Wed 12 Jul 2023 12:07:52 +0000
ROA not before: Wed 12 Jul 2023 12:07:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 2a13:7c40:1::/48 maxlen: 48
2a13:7c40:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4a:00:2a:30:fc:0b:f4:20:21:da:b2:c1:da:43:ad:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd010938d9ef72158fc98bd45de71b0b1a9ff729
Validity
Not Before: Jul 12 12:07:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d3bce39fa6f6a8c2d1c837866c9afeb96e7abd71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:3f:d2:2f:f4:4d:ea:ab:a0:95:ce:6f:e2:53:
6c:b7:fd:e4:61:4f:0d:89:71:4a:b8:06:22:07:0b:
3a:2a:c4:38:24:cf:87:7d:79:b8:53:35:d4:37:97:
37:cf:d3:50:41:cf:ea:c4:84:c0:bd:81:8c:8b:2a:
97:99:0c:0e:e5:22:62:a8:7d:63:58:ce:4c:9b:a0:
df:da:c1:bf:90:00:bd:76:d7:1a:9b:a1:0a:13:ff:
70:46:3d:2a:38:59:92:0b:67:67:06:dc:d8:d3:09:
b4:4d:67:c8:e5:b1:d2:64:98:0f:94:fa:d1:65:f7:
f1:34:c7:18:5f:83:0f:58:13:2d:a5:5d:1c:89:0a:
0d:cc:94:16:fc:14:e3:ba:e6:03:b3:61:d8:66:3b:
92:11:a7:4e:00:c6:dc:f7:75:1b:d2:a9:1e:e7:cc:
3c:30:09:bf:46:b9:0b:26:3b:41:d8:18:b5:8c:47:
59:82:62:c8:de:6b:c5:12:a1:0e:ef:a6:59:bf:92:
bc:d1:f9:b6:4b:ce:fd:f7:c0:5f:b0:c2:5d:84:af:
2e:b5:cf:8c:07:aa:7b:68:9f:ca:fd:1d:9e:6a:ce:
03:cc:ef:49:c0:77:1a:9a:96:fd:e1:ff:c7:45:12:
b3:ee:e4:42:aa:ac:3e:cf:3a:ce:d5:2e:f0:db:d0:
af:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:BC:E3:9F:A6:F6:A8:C2:D1:C8:37:86:6C:9A:FE:B9:6E:7A:BD:71
X509v3 Authority Key Identifier:
keyid:DD:01:09:38:D9:EF:72:15:8F:C9:8B:D4:5D:E7:1B:0B:1A:9F:F7:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3QEJONnvchWPyYvUXecbCxqf9yk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c3f419-a596-46be-8aff-ceff546c933e/1/07zjn6b2qMLRyDeGbJr-uW56vXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c3f419-a596-46be-8aff-ceff546c933e/1/3QEJONnvchWPyYvUXecbCxqf9yk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:7c40:1::-2a13:7c40:2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
82:09:1f:61:df:84:f1:cb:32:01:55:b3:78:d7:ca:e0:49:fe:
a3:da:d7:e8:c2:46:50:72:de:1a:6d:48:14:15:40:ce:28:18:
1d:cf:56:e2:4a:0f:7c:3c:0a:d2:79:80:ce:46:30:ab:91:30:
85:d3:41:7c:e3:33:3f:4f:61:d3:12:91:b1:62:26:ef:fb:39:
bb:b5:76:02:d8:3b:53:0a:2a:e0:62:27:dc:ea:bc:1e:f5:aa:
fc:66:30:a2:4d:6f:58:76:06:22:59:7d:82:e2:52:04:73:97:
da:16:11:cc:56:ca:d9:6c:ef:29:1c:0e:26:0b:41:58:6e:25:
ef:49:ed:c7:39:6c:3b:9d:c9:14:2f:bf:71:fa:98:81:28:d2:
36:13:ae:2b:5e:2a:92:3b:9e:65:66:28:63:86:75:20:5c:31:
bb:00:bd:61:88:99:51:38:a6:d3:91:e1:6e:15:07:a3:38:22:
0d:e5:97:3b:42:bc:7b:2c:9f:67:0d:ff:fd:45:10:46:cd:fa:
c5:ce:d7:ed:d2:94:29:6b:02:71:d3:37:ad:13:a0:cb:37:c7:
82:75:64:2f:37:f8:d9:c7:b3:37:1d:f4:48:5f:b7:9b:7d:a3:
c7:b9:80:19:af:6f:f1:ac:4c:8f:b7:b1:b1:b9:c8:e5:3e:48:
b9:42:37:3d
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAYlKACow/Av0ICHassHaQ62CMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkMDEwOTM4ZDllZjcyMTU4ZmM5OGJkNDVkZTcxYjBiMWE5
ZmY3MjkwHhcNMjMwNzEyMTIwNzUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkM2JjZTM5ZmE2ZjZhOGMyZDFjODM3ODY2YzlhZmViOTZlN2FiZDcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnT/SL/RN6quglc5v4lNst/3kYU8N
iXFKuAYiBws6KsQ4JM+HfXm4UzXUN5c3z9NQQc/qxITAvYGMiyqXmQwO5SJiqH1j
WM5Mm6Df2sG/kAC9dtcam6EKE/9wRj0qOFmSC2dnBtzY0wm0TWfI5bHSZJgPlPrR
ZffxNMcYX4MPWBMtpV0ciQoNzJQW/BTjuuYDs2HYZjuSEadOAMbc93Ub0qke58w8
MAm/RrkLJjtB2Bi1jEdZgmLI3mvFEqEO76ZZv5K80fm2S87998BfsMJdhK8utc+M
B6p7aJ/K/R2eas4DzO9JwHcampb94f/HRRKz7uRCqqw+zzrO1S7w29CvSQIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFNO845+m9qjC0cg3hmya/rluer1xMB8GA1UdIwQY
MBaAFN0BCTjZ73IVj8mL1F3nGwsan/cpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1FFSk9ObnZjaFdQeVl2VVhlY2JDeHFmOXlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9jM2Y0MTktYTU5Ni00NmJlLThhZmYt
Y2VmZjU0NmM5MzNlLzEvMDd6am42YjJxTUxSeURlR2JKci11VzU2dlhFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9jM2Y0MTktYTU5Ni00NmJlLThhZmYtY2VmZjU0NmM5MzNl
LzEvM1FFSk9ObnZjaFdQeVl2VVhlY2JDeHFmOXlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwAqE3xA
AAEDBwAqE3xAAAIwDQYJKoZIhvcNAQELBQADggEBAIIJH2HfhPHLMgFVs3jXyuBJ
/qPa1+jCRlBy3hptSBQVQM4oGB3PVuJKD3w8CtJ5gM5GMKuRMIXTQXzjMz9PYdMS
kbFiJu/7Obu1dgLYO1MKKuBiJ9zqvB71qvxmMKJNb1h2BiJZfYLiUgRzl9oWEcxW
ytls7ykcDiYLQVhuJe9J7cc5bDudyRQvv3H6mIEo0jYTriteKpI7nmVmKGOGdSBc
MbsAvWGImVE4ptOR4W4VB6M4Ig3llztCvHssn2cN//1FEEbN+sXO1+3SlClrAnHT
N60ToMs3x4J1ZC83+NnHszcd9Ehft5t9o8e5gBmvb/GsTI+3sbG5yOU+SLlCNz0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:10 2024 by rpki-client on console-fra.rpki-client.org