Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/1YfHRawh-1wUHK-Qz7IHSfvbGR4.roa
File: 1YfHRawh-1wUHK-Qz7IHSfvbGR4.roa (raw, json)
Hash identifier: XaRf1CDERv2H9WmZutnejSkag4zjB3dqtPiuk3/PPXM=
Subject key identifier: D5:87:C7:45:AC:21:FB:5C:14:1C:AF:90:CF:B2:07:49:FB:DB:19:1E
Certificate issuer: /CN=6aa8fa75c5020cd6218cf7f109de420265204bac
Certificate serial: 018EA4F0241FE00E712314B3F537096BCBCD
Authority key identifier: 6A:A8:FA:75:C5:02:0C:D6:21:8C:F7:F1:09:DE:42:02:65:20:4B:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aqj6dcUCDNYhjPfxCd5CAmUgS6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/1YfHRawh-1wUHK-Qz7IHSfvbGR4.roa
Signing time: Wed 03 Apr 2024 17:09:45 +0000
ROA not before: Wed 03 Apr 2024 17:09:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215913
IP address blocks: 2a13:d040:3::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 28 Apr 2024 15:37:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a4:f0:24:1f:e0:0e:71:23:14:b3:f5:37:09:6b:cb:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6aa8fa75c5020cd6218cf7f109de420265204bac
Validity
Not Before: Apr 3 17:09:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d587c745ac21fb5c141caf90cfb20749fbdb191e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:7f:10:19:6c:f3:06:c3:4c:d8:af:79:a7:9b:
81:cc:da:f7:33:34:3a:8d:f0:50:f7:37:1d:35:1d:
74:08:9c:4d:89:c1:64:3e:0d:69:9e:40:40:64:ab:
82:57:25:87:4b:ed:2e:c8:c3:c7:f4:52:cb:1b:bc:
ee:0f:cf:09:fb:bc:af:0d:75:0f:39:82:de:48:d2:
be:8b:51:2b:9f:b2:02:13:51:bb:d9:90:1e:9c:9d:
40:ba:f0:b3:73:42:18:3f:7d:ef:4e:cf:41:8a:2a:
35:90:18:f8:6a:e6:de:22:bc:fc:52:11:07:eb:d0:
bf:3e:e3:f9:5e:9c:ce:7a:10:f4:97:3d:ba:ae:dd:
ad:79:d8:42:f2:59:9e:40:3c:f8:47:c5:cc:f4:00:
2d:a4:c3:a7:f4:b1:9c:b2:89:01:5b:48:36:e7:40:
f5:70:76:28:e7:47:c8:31:53:e3:86:03:5b:6d:e8:
49:bc:c7:86:62:4f:ce:a0:d3:86:32:19:82:43:59:
7b:fb:6f:02:50:cd:31:33:61:87:d2:dd:1e:e9:b7:
e7:76:5f:3b:da:50:66:2d:4d:a9:fe:bb:3a:36:7b:
a0:30:e7:51:ec:d8:6a:58:72:0c:01:39:2f:af:15:
4e:d2:55:c0:03:0d:0b:e9:d2:33:f4:63:7a:f0:07:
21:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:87:C7:45:AC:21:FB:5C:14:1C:AF:90:CF:B2:07:49:FB:DB:19:1E
X509v3 Authority Key Identifier:
keyid:6A:A8:FA:75:C5:02:0C:D6:21:8C:F7:F1:09:DE:42:02:65:20:4B:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aqj6dcUCDNYhjPfxCd5CAmUgS6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/1YfHRawh-1wUHK-Qz7IHSfvbGR4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/7012d8-afa1-419b-8b60-35c63fa765a2/1/aqj6dcUCDNYhjPfxCd5CAmUgS6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:d040:3::/48
Signature Algorithm: sha256WithRSAEncryption
13:3a:a5:82:8b:f3:a6:79:b2:c6:50:c4:98:12:d3:1a:d6:29:
96:68:f0:7a:c0:5e:81:cc:1c:16:65:0b:8f:a9:df:b9:f9:15:
27:f9:20:a6:29:b3:0f:17:5e:b3:15:26:5b:4e:38:e9:35:9d:
e5:ca:d8:d6:e2:c8:da:02:76:24:11:fb:e5:1d:5e:ef:cb:fb:
81:26:fc:dd:47:11:3a:79:07:28:83:40:c4:02:e1:59:e7:f4:
77:0b:c7:d8:c2:c0:88:f7:d4:15:9c:e7:31:97:28:22:c0:ab:
e4:74:89:2a:aa:52:49:1f:fd:f0:20:8f:c3:df:b8:44:58:0c:
40:9c:7d:7d:a1:05:47:6a:60:e7:a4:91:16:7a:7e:d2:c1:29:
29:de:b2:0b:ea:46:d5:30:11:30:ed:08:f1:81:a9:94:6b:9f:
73:d3:b4:b6:93:7d:d4:b2:13:b2:42:ed:56:35:e9:bf:4f:5e:
21:13:b5:66:c5:4c:b3:4d:1c:72:a8:9b:56:9a:0e:0e:36:ad:
de:bf:40:33:1d:d2:cc:c7:5b:1c:f8:d6:7d:b5:64:57:66:5f:
05:a7:e3:d4:49:31:b9:a2:98:7e:20:d2:38:cb:d1:59:75:1e:
db:a7:cd:4b:d9:0d:3a:ef:8c:6f:44:a0:1d:3a:0a:40:ba:5a:
62:8d:52:68
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY6k8CQf4A5xIxSz9TcJa8vNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZhYThmYTc1YzUwMjBjZDYyMThjZjdmMTA5ZGU0MjAyNjUy
MDRiYWMwHhcNMjQwNDAzMTcwOTQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNTg3Yzc0NWFjMjFmYjVjMTQxY2FmOTBjZmIyMDc0OWZiZGIxOTFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkH8QGWzzBsNM2K95p5uBzNr3MzQ6
jfBQ9zcdNR10CJxNicFkPg1pnkBAZKuCVyWHS+0uyMPH9FLLG7zuD88J+7yvDXUP
OYLeSNK+i1Ern7ICE1G72ZAenJ1AuvCzc0IYP33vTs9Biio1kBj4aubeIrz8UhEH
69C/PuP5XpzOehD0lz26rt2tedhC8lmeQDz4R8XM9AAtpMOn9LGcsokBW0g250D1
cHYo50fIMVPjhgNbbehJvMeGYk/OoNOGMhmCQ1l7+28CUM0xM2GH0t0e6bfndl87
2lBmLU2p/rs6NnugMOdR7NhqWHIMATkvrxVO0lXAAw0L6dIz9GN68Ach5wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFNWHx0WsIftcFByvkM+yB0n72xkeMB8GA1UdIwQY
MBaAFGqo+nXFAgzWIYz38QneQgJlIEusMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYXFqNmRjVUNETlloalBmeENkNUNBbVVnUzZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy83MDEyZDgtYWZhMS00MTliLThiNjAt
MzVjNjNmYTc2NWEyLzEvMVlmSFJhd2gtMXdVSEstUXo3SUhTZnZiR1I0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy83MDEyZDgtYWZhMS00MTliLThiNjAtMzVjNjNmYTc2NWEy
LzEvYXFqNmRjVUNETlloalBmeENkNUNBbVVnUzZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhPQQAAD
MA0GCSqGSIb3DQEBCwUAA4IBAQATOqWCi/OmebLGUMSYEtMa1imWaPB6wF6BzBwW
ZQuPqd+5+RUn+SCmKbMPF16zFSZbTjjpNZ3lytjW4sjaAnYkEfvlHV7vy/uBJvzd
RxE6eQcog0DEAuFZ5/R3C8fYwsCI99QVnOcxlygiwKvkdIkqqlJJH/3wII/D37hE
WAxAnH19oQVHamDnpJEWen7SwSkp3rIL6kbVMBEw7QjxgamUa59z07S2k33UshOy
Qu1WNem/T14hE7VmxUyzTRxyqJtWmg4ONq3ev0AzHdLMx1sc+NZ9tWRXZl8Fp+PU
STG5oph+INI4y9FZdR7bp81L2Q0674xvRKAdOgpAulpijVJo
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:37 2024 by rpki-client on console-fra.rpki-client.org