Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/7VltSOAuxT2UkctGY99yNAUPHrE.roa
File: 7VltSOAuxT2UkctGY99yNAUPHrE.roa (raw, json)
Hash identifier: vfb/gJynktyhbWYNVV8lPHIN026ypv2aaOoF+CrPxts=
Subject key identifier: ED:59:6D:48:E0:2E:C5:3D:94:91:CB:46:63:DF:72:34:05:0F:1E:B1
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 01901D2E0883B7A3754A05D2276ADD2FA029
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/7VltSOAuxT2UkctGY99yNAUPHrE.roa
Signing time: Sat 15 Jun 2024 18:34:34 +0000
ROA not before: Sat 15 Jun 2024 18:34:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2a06:b3c0::/29 maxlen: 32
Validation: Failed, certificate revoked on Tue 18 Jun 2024 17:16:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:1d:2e:08:83:b7:a3:75:4a:05:d2:27:6a:dd:2f:a0:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jun 15 18:34:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ed596d48e02ec53d9491cb4663df7234050f1eb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:db:da:5f:08:0c:27:52:a5:d6:20:ae:f2:a9:
0b:3b:5f:de:d5:08:c1:07:df:36:9b:fc:79:12:72:
f7:d4:fa:d6:62:f7:58:5c:81:91:f0:18:61:d3:e6:
81:22:21:82:eb:1a:c0:c8:09:26:66:2b:fe:be:f3:
32:76:9e:77:93:41:68:1e:4c:30:ea:6a:14:44:65:
72:cb:7f:d3:9a:ed:56:b7:88:d4:7f:c7:42:61:93:
d1:f6:1a:08:43:88:6b:a3:6f:96:37:e9:bf:3e:c3:
21:2f:9d:3a:d2:15:c0:95:83:df:04:9d:c9:fd:2d:
4a:30:e2:a1:c5:02:f3:9e:5d:be:5a:b1:c9:41:69:
85:23:14:57:24:2c:df:df:ee:1f:53:96:22:13:60:
a8:01:ed:fc:3c:cd:71:0c:bf:4c:0a:2a:ad:fc:fc:
70:1d:16:76:6c:8b:3e:53:0d:c7:9d:a0:d2:c0:9d:
82:d6:79:0c:aa:bb:10:d9:14:73:03:1e:23:be:de:
63:c8:f8:08:c4:a8:82:63:9f:e3:cc:6d:d4:1e:bb:
c5:9f:73:33:9e:fa:e8:81:10:f1:b5:d9:c7:a2:ec:
57:10:d5:0b:ee:52:0e:ba:a8:8e:6f:06:5d:03:3f:
f2:78:9a:ff:ce:12:7e:4a:7f:39:62:63:c8:49:47:
02:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:59:6D:48:E0:2E:C5:3D:94:91:CB:46:63:DF:72:34:05:0F:1E:B1
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/7VltSOAuxT2UkctGY99yNAUPHrE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:b3c0::/29
Signature Algorithm: sha256WithRSAEncryption
05:29:fa:58:6c:0f:76:0c:cb:5f:e6:f8:6e:3d:4c:5c:ee:13:
00:fd:02:f3:a7:cc:3c:11:07:4d:c8:44:ff:05:b1:4d:d8:6e:
2d:3e:b4:89:b9:d4:8f:b6:7d:6c:14:a1:24:59:60:6d:79:03:
3b:76:26:3f:e3:c1:fd:97:70:71:1a:13:61:db:75:41:b5:f7:
44:6f:ff:d7:0a:d8:55:a6:d7:1f:8c:52:7f:d7:90:33:ab:51:
cb:f2:01:19:e4:0a:c6:a2:93:d3:3c:c7:50:ab:f1:15:1c:1c:
aa:d8:67:8d:a1:4a:e8:52:22:80:bd:8d:3f:01:c5:d1:5f:87:
b1:30:82:70:51:36:12:00:b3:d4:45:41:00:a8:49:37:8d:c1:
76:89:89:8b:74:7f:c4:db:9d:a0:ed:f7:09:b1:8f:fc:e2:59:
3d:cb:c3:e0:ee:e8:7c:45:19:a8:ce:38:a7:7b:a1:ab:3a:77:
ba:47:61:3a:6d:63:6a:7a:f1:71:f1:9e:d1:e9:a5:b5:79:50:
91:29:39:b3:2e:23:fc:4d:95:4f:1c:6a:50:6c:48:ce:95:d6:
f6:59:c7:ec:38:6c:11:6c:ab:15:7e:04:6e:72:14:93:90:c5:
91:a8:05:38:52:1f:9c:6f:5a:50:9d:b1:2e:9b:ce:cd:e1:d8:
d1:9b:5c:92
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZAdLgiDt6N1SgXSJ2rdL6ApMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4OWQ2YjU1ZDZhNjg4ZWU1ZTMzODE4ODNiYjVhZjY4NDMz
Mjc2ZTMwHhcNMjQwNjE1MTgzNDM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZDU5NmQ0OGUwMmVjNTNkOTQ5MWNiNDY2M2RmNzIzNDA1MGYxZWIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAutvaXwgMJ1Kl1iCu8qkLO1/e1QjB
B982m/x5EnL31PrWYvdYXIGR8Bhh0+aBIiGC6xrAyAkmZiv+vvMydp53k0FoHkww
6moURGVyy3/Tmu1Wt4jUf8dCYZPR9hoIQ4hro2+WN+m/PsMhL5060hXAlYPfBJ3J
/S1KMOKhxQLznl2+WrHJQWmFIxRXJCzf3+4fU5YiE2CoAe38PM1xDL9MCiqt/Pxw
HRZ2bIs+Uw3HnaDSwJ2C1nkMqrsQ2RRzAx4jvt5jyPgIxKiCY5/jzG3UHrvFn3Mz
nvrogRDxtdnHouxXENUL7lIOuqiObwZdAz/yeJr/zhJ+Sn85YmPISUcCHQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFO1ZbUjgLsU9lJHLRmPfcjQFDx6xMB8GA1UdIwQY
MBaAFBida1XWpojuXjOBiDu1r2hDMnbjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUt
YTJhNGM2YTYyMWNkLzEvN1ZsdFNPQXV4VDJVa2N0R1k5OXlOQVVQSHJFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUtYTJhNGM2YTYyMWNk
LzEvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgazwDAN
BgkqhkiG9w0BAQsFAAOCAQEABSn6WGwPdgzLX+b4bj1MXO4TAP0C86fMPBEHTchE
/wWxTdhuLT60ibnUj7Z9bBShJFlgbXkDO3YmP+PB/ZdwcRoTYdt1QbX3RG//1wrY
VabXH4xSf9eQM6tRy/IBGeQKxqKT0zzHUKvxFRwcqthnjaFK6FIigL2NPwHF0V+H
sTCCcFE2EgCz1EVBAKhJN43BdomJi3R/xNudoO33CbGP/OJZPcvD4O7ofEUZqM44
p3uhqzp3ukdhOm1janrxcfGe0emltXlQkSk5sy4j/E2VTxxqUGxIzpXW9lnH7Dhs
EWyrFX4EbnIUk5DFkagFOFIfnG9aUJ2xLpvOzeHY0Ztckg==
-----END CERTIFICATE-----
Generated at Tue Jun 18 20:03:10 2024 by rpki-client on console-fra.rpki-client.org