Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/LRBJnzUq89O92fdX0m_PhTGKwec.roa
File: LRBJnzUq89O92fdX0m_PhTGKwec.roa (raw, json)
Hash identifier: jSl9YoBhdP11vsCclZb2eryGsvD4IfnKL6MoiEw1wh4=
Subject key identifier: 2D:10:49:9F:35:2A:F3:D3:BD:D9:F7:57:D2:6F:CF:85:31:8A:C1:E7
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 0192662F4C82B7B13A59B5DEA9CE5E70DE14
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/LRBJnzUq89O92fdX0m_PhTGKwec.roa
Signing time: Mon 07 Oct 2024 08:53:48 +0000
ROA not before: Mon 07 Oct 2024 08:53:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 36680
IP address blocks: 2a12:6640::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 13 Nov 2024 12:47:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:66:2f:4c:82:b7:b1:3a:59:b5:de:a9:ce:5e:70:de:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Oct 7 08:53:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2d10499f352af3d3bdd9f757d26fcf85318ac1e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:8d:cf:c6:63:1a:9d:d4:43:15:39:bb:57:52:
f1:f2:75:21:71:8d:5b:39:97:1c:24:8a:a9:c0:d6:
62:39:69:09:9e:81:03:a5:f9:cf:51:9a:8b:0d:85:
93:aa:e7:f4:42:eb:02:97:f6:9a:80:69:82:75:fb:
f0:de:9b:d0:6e:d2:09:2c:e4:ad:83:ad:c9:ec:6e:
58:34:49:08:62:31:2d:19:8f:2c:81:7e:32:02:03:
07:a0:b4:51:5b:0a:44:7b:5a:e3:15:90:95:05:35:
b2:2e:0d:e3:4c:44:cd:43:a5:af:13:d8:2c:32:f4:
78:34:d6:e7:70:46:3c:cb:dc:80:23:d8:9d:1c:66:
df:66:81:52:9c:0f:62:8d:8d:64:96:06:b4:5e:2e:
47:9b:ea:57:ce:1b:6a:b9:fb:57:ef:43:8b:90:72:
4a:7c:95:e0:df:65:8b:f3:9d:97:39:29:90:24:d6:
1a:68:dc:5a:1c:6a:b6:1e:a1:25:40:3d:87:20:90:
ba:4d:85:41:5d:ad:c9:89:8c:9b:46:d9:85:80:8e:
80:39:2f:a1:07:7c:b0:f6:9e:a4:8e:ac:17:18:81:
76:a3:6f:1e:e8:d8:db:a4:d5:07:88:ea:d9:93:e6:
6a:60:27:70:09:51:4a:5b:9d:55:39:ee:f3:be:a9:
5f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:10:49:9F:35:2A:F3:D3:BD:D9:F7:57:D2:6F:CF:85:31:8A:C1:E7
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/LRBJnzUq89O92fdX0m_PhTGKwec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:6640::/29
Signature Algorithm: sha256WithRSAEncryption
76:d9:c4:8e:66:e6:11:23:4c:69:a3:fb:ad:52:a5:58:5f:a2:
b5:a1:3d:0b:35:70:26:75:72:42:8f:e5:80:bf:b6:a0:fa:b6:
0b:a5:7b:a4:c3:fe:0c:13:a8:ca:0d:76:1f:bb:75:83:a5:a1:
a5:22:f0:1e:04:eb:ef:b9:ae:04:7d:32:f0:8c:1f:06:d2:e9:
e0:43:70:38:7c:cc:2b:dd:cd:30:48:e6:13:1c:ca:97:5a:b0:
6c:58:b6:77:6e:bf:27:c1:b2:3f:68:95:d6:81:6a:01:f7:42:
24:0a:78:5f:c2:9b:23:99:e2:be:cd:68:39:4f:0d:56:25:10:
de:b5:c4:01:c9:8c:88:9c:cd:d2:ab:3b:03:c3:ef:84:65:3f:
c8:41:91:01:43:5e:3a:b0:45:09:2e:45:06:4d:6c:b8:3b:9b:
9a:d8:45:74:46:5c:12:e2:30:be:e9:c5:47:6c:b6:14:7c:0c:
b1:c5:55:34:5a:43:f3:7f:50:42:bd:17:e6:56:89:60:7e:98:
6d:ba:65:db:a4:03:6f:54:5a:f4:90:5b:7f:b2:b6:b4:25:08:
d2:02:3e:8c:96:c2:07:01:43:ba:48:fa:cf:cf:22:17:89:8f:
60:9a:88:d3:db:4c:ba:af:c4:78:a9:7b:76:e1:8a:75:c3:9e:
2d:09:53:ae
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZJmL0yCt7E6WbXeqc5ecN4UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4OWQ2YjU1ZDZhNjg4ZWU1ZTMzODE4ODNiYjVhZjY4NDMz
Mjc2ZTMwHhcNMjQxMDA3MDg1MzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZDEwNDk5ZjM1MmFmM2QzYmRkOWY3NTdkMjZmY2Y4NTMxOGFjMWU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArY3PxmMandRDFTm7V1Lx8nUhcY1b
OZccJIqpwNZiOWkJnoEDpfnPUZqLDYWTquf0QusCl/aagGmCdfvw3pvQbtIJLOSt
g63J7G5YNEkIYjEtGY8sgX4yAgMHoLRRWwpEe1rjFZCVBTWyLg3jTETNQ6WvE9gs
MvR4NNbncEY8y9yAI9idHGbfZoFSnA9ijY1klga0Xi5Hm+pXzhtquftX70OLkHJK
fJXg32WL852XOSmQJNYaaNxaHGq2HqElQD2HIJC6TYVBXa3JiYybRtmFgI6AOS+h
B3yw9p6kjqwXGIF2o28e6NjbpNUHiOrZk+ZqYCdwCVFKW51VOe7zvqlf4QIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFC0QSZ81KvPTvdn3V9Jvz4UxisHnMB8GA1UdIwQY
MBaAFBida1XWpojuXjOBiDu1r2hDMnbjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUt
YTJhNGM2YTYyMWNkLzEvTFJCSm56VXE4OU85MmZkWDBtX1BoVEdLd2VjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUtYTJhNGM2YTYyMWNk
LzEvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhJmQDAN
BgkqhkiG9w0BAQsFAAOCAQEAdtnEjmbmESNMaaP7rVKlWF+itaE9CzVwJnVyQo/l
gL+2oPq2C6V7pMP+DBOoyg12H7t1g6WhpSLwHgTr77muBH0y8IwfBtLp4ENwOHzM
K93NMEjmExzKl1qwbFi2d26/J8GyP2iV1oFqAfdCJAp4X8KbI5nivs1oOU8NViUQ
3rXEAcmMiJzN0qs7A8PvhGU/yEGRAUNeOrBFCS5FBk1suDubmthFdEZcEuIwvunF
R2y2FHwMscVVNFpD839QQr0X5laJYH6Ybbpl26QDb1Ra9JBbf7K2tCUI0gI+jJbC
BwFDukj6z88iF4mPYJqI09tMuq/EeKl7duGKdcOeLQlTrg==
-----END CERTIFICATE-----
Generated at Wed Nov 13 14:36:38 2024 by rpki-client on console-fra.rpki-client.org