Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/AGSesa7KHPdou8jZxW7GzmS42LI.roa
File: AGSesa7KHPdou8jZxW7GzmS42LI.roa (raw, json)
Hash identifier: cQH6nU2nQSxfiQ5qxeaLa5b6piudFga6QTPGTm0tGJE=
Subject key identifier: 00:64:9E:B1:AE:CA:1C:F7:68:BB:C8:D9:C5:6E:C6:CE:64:B8:D8:B2
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 01905848B6262225A08329EF7EC3C463A0CA
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/AGSesa7KHPdou8jZxW7GzmS42LI.roa
Signing time: Thu 27 Jun 2024 06:01:18 +0000
ROA not before: Thu 27 Jun 2024 06:01:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51082
IP address blocks: 2a06:b3c0::/29 maxlen: 29
2a12:7740::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 26 Jul 2024 12:13:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:58:48:b6:26:22:25:a0:83:29:ef:7e:c3:c4:63:a0:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Jun 27 06:01:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=00649eb1aeca1cf768bbc8d9c56ec6ce64b8d8b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:0b:43:36:2a:c0:1f:c9:9c:4a:d7:17:df:d4:
3e:0f:fb:6c:05:3d:bb:9f:de:be:4b:9b:9a:6a:fa:
e5:e7:05:a0:3b:93:27:53:fc:be:ca:10:03:ad:ad:
2a:44:2e:53:50:7e:41:b1:8a:40:17:c0:d4:bc:2c:
fa:5c:a5:7b:e0:04:97:73:db:7b:ae:4d:27:c1:63:
f0:0b:49:34:f4:01:84:ae:2b:2f:80:a4:b5:5e:45:
ef:5e:3c:60:91:dc:b1:7f:92:38:ff:b1:b5:94:9f:
6e:3c:90:4f:5e:4f:d4:60:82:ba:bb:c2:75:aa:e5:
a0:2a:24:64:b3:b2:22:52:ca:86:44:b8:83:ce:b6:
f2:8d:aa:ac:92:d8:a4:06:b3:8f:57:1f:53:59:cd:
91:ae:ff:be:ce:0c:8c:7b:74:8e:bb:ea:56:c6:1a:
dd:bb:c5:9a:51:9b:7a:11:ab:c7:37:95:d3:e2:df:
0b:04:9d:52:7d:87:05:d4:d1:a8:76:77:e3:2c:4a:
66:58:bd:56:28:4a:c1:eb:5d:f3:68:27:f0:c3:53:
db:f0:d5:35:a4:b5:e0:32:76:c0:c0:36:2d:1e:29:
49:89:7d:14:8a:31:8d:23:91:a3:7f:19:b2:24:fb:
31:04:43:35:92:6b:67:7e:aa:3a:3c:9d:66:2b:5a:
28:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:64:9E:B1:AE:CA:1C:F7:68:BB:C8:D9:C5:6E:C6:CE:64:B8:D8:B2
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/AGSesa7KHPdou8jZxW7GzmS42LI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:b3c0::/29
2a12:7740::/29
Signature Algorithm: sha256WithRSAEncryption
7c:21:26:6d:52:f0:6c:d0:a5:8a:47:14:75:8e:ed:7c:da:19:
83:31:f6:7a:3d:9b:af:23:3e:46:0c:74:5e:70:a7:4c:2a:0b:
78:58:47:45:61:ef:3a:c8:fe:b6:42:77:45:bd:20:fd:07:aa:
1b:13:b2:12:38:8e:4a:c8:8c:df:da:c1:ba:e2:10:d1:68:99:
b1:7e:9b:39:8e:71:02:ef:15:5f:94:64:e4:3d:5b:0d:f7:01:
0b:71:62:b3:9a:32:d8:1c:cb:6e:8c:f7:63:82:3e:16:8c:91:
fd:95:28:72:85:c2:5a:70:07:3b:1d:75:3f:aa:51:dc:99:4a:
2b:5c:5d:f6:ed:82:dd:d4:c5:35:cc:5a:9a:b6:4b:7b:d5:74:
88:1b:17:01:44:e7:d0:76:b2:38:8a:0b:99:0c:fb:95:ac:97:
e8:b1:96:9a:3c:73:ae:1e:4a:ef:54:e9:5f:72:31:70:36:7c:
20:c7:89:89:57:41:8b:de:b5:46:8f:b1:eb:e9:ce:ab:69:c4:
4a:8a:e4:d2:e0:4b:a0:8f:7d:32:cd:5f:e3:ef:5a:cd:5c:20:
cc:cf:20:77:37:70:45:7c:db:85:e2:82:35:ee:4b:2b:1c:8c:
3c:0f:50:4e:39:e9:b8:92:92:0e:2e:6e:ac:7b:38:11:e4:94:
24:cf:93:96
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAZBYSLYmIiWggynvfsPEY6DKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4OWQ2YjU1ZDZhNjg4ZWU1ZTMzODE4ODNiYjVhZjY4NDMz
Mjc2ZTMwHhcNMjQwNjI3MDYwMTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMDY0OWViMWFlY2ExY2Y3NjhiYmM4ZDljNTZlYzZjZTY0YjhkOGIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtAtDNirAH8mcStcX39Q+D/tsBT27
n96+S5uaavrl5wWgO5MnU/y+yhADra0qRC5TUH5BsYpAF8DUvCz6XKV74ASXc9t7
rk0nwWPwC0k09AGErisvgKS1XkXvXjxgkdyxf5I4/7G1lJ9uPJBPXk/UYIK6u8J1
quWgKiRks7IiUsqGRLiDzrbyjaqsktikBrOPVx9TWc2Rrv++zgyMe3SOu+pWxhrd
u8WaUZt6EavHN5XT4t8LBJ1SfYcF1NGodnfjLEpmWL1WKErB613zaCfww1Pb8NU1
pLXgMnbAwDYtHilJiX0UijGNI5GjfxmyJPsxBEM1kmtnfqo6PJ1mK1ooMwIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFABknrGuyhz3aLvI2cVuxs5kuNiyMB8GA1UdIwQY
MBaAFBida1XWpojuXjOBiDu1r2hDMnbjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUt
YTJhNGM2YTYyMWNkLzEvQUdTZXNhN0tIUGRvdThqWnhXN0d6bVM0MkxJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUtYTJhNGM2YTYyMWNk
LzEvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUDKgazwAMF
AyoSd0AwDQYJKoZIhvcNAQELBQADggEBAHwhJm1S8GzQpYpHFHWO7XzaGYMx9no9
m68jPkYMdF5wp0wqC3hYR0Vh7zrI/rZCd0W9IP0HqhsTshI4jkrIjN/awbriENFo
mbF+mzmOcQLvFV+UZOQ9Ww33AQtxYrOaMtgcy26M92OCPhaMkf2VKHKFwlpwBzsd
dT+qUdyZSitcXfbtgt3UxTXMWpq2S3vVdIgbFwFE59B2sjiKC5kM+5Wsl+ixlpo8
c64eSu9U6V9yMXA2fCDHiYlXQYvetUaPsevpzqtpxEqK5NLgS6CPfTLNX+PvWs1c
IMzPIHc3cEV824XigjXuSyscjDwPUE456biSkg4ubqx7OBHklCTPk5Y=
-----END CERTIFICATE-----
Generated at Fri Jul 26 14:45:33 2024 by rpki-client on console-ams.rpki-client.org