Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/9BcF1Scv0aWRXDsETm2P4egNptQ.roa
File: 9BcF1Scv0aWRXDsETm2P4egNptQ.roa (raw, json)
Hash identifier: zOGRfnR75mOZSZDRtAaQHDFxewcsR5O8SShrZv8yK/U=
Subject key identifier: F4:17:05:D5:27:2F:D1:A5:91:5C:3B:04:4E:6D:8F:E1:E8:0D:A6:D4
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 018D8A5EF5A70F9495DA4707005374B0B540
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/9BcF1Scv0aWRXDsETm2P4egNptQ.roa
Signing time: Thu 08 Feb 2024 20:18:15 +0000
ROA not before: Thu 08 Feb 2024 20:18:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216435
IP address blocks: 2a12:28c0::/29 maxlen: 48
Validation: Failed, certificate revoked on Sun 18 Feb 2024 14:17:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:8a:5e:f5:a7:0f:94:95:da:47:07:00:53:74:b0:b5:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Feb 8 20:18:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f41705d5272fd1a5915c3b044e6d8fe1e80da6d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:1e:6c:ec:4f:08:10:78:6a:b7:b6:a9:3b:f3:
89:11:e7:40:93:de:f8:84:a1:b9:df:8a:0e:fc:aa:
b2:c2:40:5f:68:bc:70:46:91:43:16:34:8e:e2:80:
74:be:51:06:64:d7:a1:3a:da:6f:3d:1c:d5:07:44:
e8:d9:f9:11:03:75:44:50:63:55:78:a7:5f:e2:6b:
de:f0:af:66:a2:cd:d2:f6:70:44:3e:f4:d9:bf:46:
a7:c6:61:1d:81:b5:da:6c:b9:92:80:6f:ce:bf:5f:
d9:7e:14:65:55:63:39:52:3e:c6:23:32:52:fc:13:
02:0f:0a:7c:52:52:a9:26:0a:aa:85:17:c3:89:64:
a9:34:1f:3a:27:cd:1b:e3:b8:0e:24:4d:b4:1e:98:
27:81:53:9c:8f:dc:ea:7d:3f:b9:e6:84:1b:73:a3:
98:e6:0e:31:ab:be:86:32:cc:89:2d:35:78:28:19:
7a:f5:3b:6b:7f:24:d8:03:a2:b5:33:c9:d0:d4:09:
f9:95:f6:5c:97:66:0e:34:87:54:69:8b:d8:e5:64:
64:55:45:c4:67:38:4d:de:3b:15:d9:0b:b1:26:73:
ad:c7:67:b9:5e:ff:44:d1:de:9e:30:f6:e8:56:d2:
57:c5:f2:6b:80:7e:4f:90:0f:f4:a3:e3:6b:e6:06:
d3:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:17:05:D5:27:2F:D1:A5:91:5C:3B:04:4E:6D:8F:E1:E8:0D:A6:D4
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/9BcF1Scv0aWRXDsETm2P4egNptQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:28c0::/29
Signature Algorithm: sha256WithRSAEncryption
9d:b8:22:30:ce:1c:3b:59:f2:76:47:a2:6f:3b:b6:ec:19:04:
21:48:e9:45:c0:64:61:e9:b5:52:04:2a:5f:da:5a:b7:52:73:
91:9c:6b:48:07:2a:76:da:d2:97:23:88:23:c6:4a:90:e6:c6:
3d:43:81:18:a0:fd:31:29:0e:bc:49:3d:ff:7c:96:9f:fb:04:
db:c2:ac:89:1b:be:57:24:a5:45:4b:f6:de:04:5f:68:6c:17:
0a:25:bf:28:e1:ce:e8:36:13:5c:5c:67:a6:5a:da:06:35:12:
70:6e:06:cb:6f:71:c2:90:45:49:c9:e2:c7:8f:df:57:f2:b6:
3b:16:28:67:55:74:0f:90:70:ff:24:47:db:bf:29:35:15:70:
f7:11:73:28:b6:ba:e2:c5:ab:b0:9b:cf:12:e0:3f:a4:3c:4b:
4c:ad:ea:5d:d3:a0:51:04:26:cf:de:2b:7e:8a:e9:cf:c5:ab:
2e:2b:70:c3:94:c5:e9:71:83:e7:61:be:a7:0c:69:2c:a3:da:
fe:34:ab:3c:6e:e0:17:83:cd:df:2f:22:cd:db:54:af:6c:f2:
e5:ea:fc:f0:c7:55:7a:74:ed:b3:9d:68:40:a1:b2:17:f6:9e:
91:7f:51:77:51:ba:bb:8e:f2:cd:52:5b:3d:56:a5:12:2d:ad:
bd:80:d0:33
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAY2KXvWnD5SV2kcHAFN0sLVAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4OWQ2YjU1ZDZhNjg4ZWU1ZTMzODE4ODNiYjVhZjY4NDMz
Mjc2ZTMwHhcNMjQwMjA4MjAxODE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNDE3MDVkNTI3MmZkMWE1OTE1YzNiMDQ0ZTZkOGZlMWU4MGRhNmQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAix5s7E8IEHhqt7apO/OJEedAk974
hKG534oO/KqywkBfaLxwRpFDFjSO4oB0vlEGZNehOtpvPRzVB0To2fkRA3VEUGNV
eKdf4mve8K9mos3S9nBEPvTZv0anxmEdgbXabLmSgG/Ov1/ZfhRlVWM5Uj7GIzJS
/BMCDwp8UlKpJgqqhRfDiWSpNB86J80b47gOJE20HpgngVOcj9zqfT+55oQbc6OY
5g4xq76GMsyJLTV4KBl69TtrfyTYA6K1M8nQ1An5lfZcl2YONIdUaYvY5WRkVUXE
ZzhN3jsV2QuxJnOtx2e5Xv9E0d6eMPboVtJXxfJrgH5PkA/0o+Nr5gbThwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPQXBdUnL9GlkVw7BE5tj+HoDabUMB8GA1UdIwQY
MBaAFBida1XWpojuXjOBiDu1r2hDMnbjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUt
YTJhNGM2YTYyMWNkLzEvOUJjRjFTY3YwYVdSWERzRVRtMlA0ZWdOcHRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUtYTJhNGM2YTYyMWNk
LzEvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhIowDAN
BgkqhkiG9w0BAQsFAAOCAQEAnbgiMM4cO1nydkeibzu27BkEIUjpRcBkYem1UgQq
X9pat1JzkZxrSAcqdtrSlyOII8ZKkObGPUOBGKD9MSkOvEk9/3yWn/sE28KsiRu+
VySlRUv23gRfaGwXCiW/KOHO6DYTXFxnplraBjUScG4Gy29xwpBFScnix4/fV/K2
OxYoZ1V0D5Bw/yRH278pNRVw9xFzKLa64sWrsJvPEuA/pDxLTK3qXdOgUQQmz94r
forpz8WrLitww5TF6XGD52G+pwxpLKPa/jSrPG7gF4PN3y8izdtUr2zy5er88MdV
enTts51oQKGyF/aekX9Rd1G6u47yzVJbPValEi2tvYDQMw==
-----END CERTIFICATE-----
Generated at Sun Feb 18 15:46:01 2024 by rpki-client on console-fra.rpki-client.org