Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/h_Zf6pN8bvWchS7RzLQQBG_LrSw.roa
File: h_Zf6pN8bvWchS7RzLQQBG_LrSw.roa (raw, json)
Hash identifier: VhfrhM8kzwgxQHb0qGPEcRwvhedpfjdvsiHQv27rNbg=
Subject key identifier: 87:F6:5F:EA:93:7C:6E:F5:9C:85:2E:D1:CC:B4:10:04:6F:CB:AD:2C
Certificate issuer: /CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Certificate serial: 0192853B584D5D08D461824D18F745D17CA9
Authority key identifier: 18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/h_Zf6pN8bvWchS7RzLQQBG_LrSw.roa
Signing time: Sun 13 Oct 2024 09:35:11 +0000
ROA not before: Sun 13 Oct 2024 09:35:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 33042
IP address blocks: 2a12:1900::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 18 Nov 2024 11:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:85:3b:58:4d:5d:08:d4:61:82:4d:18:f7:45:d1:7c:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=189d6b55d6a688ee5e3381883bb5af68433276e3
Validity
Not Before: Oct 13 09:35:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=87f65fea937c6ef59c852ed1ccb410046fcbad2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:fd:00:15:df:9d:5c:d8:42:90:bd:08:50:88:
67:b4:48:2a:fd:6a:21:22:01:ea:f3:6c:4b:db:89:
e4:b9:d7:b6:8b:ce:6d:a7:ca:35:36:de:32:81:56:
c3:cd:24:b6:dd:e8:65:45:fe:35:56:5e:0a:d4:af:
a8:c6:96:f8:72:cb:da:50:14:64:50:ad:68:c7:78:
f4:2f:c1:3c:5e:b7:0e:59:2f:2e:1c:ba:0c:51:16:
61:20:3e:73:10:c2:6b:c3:8b:ff:0f:00:67:da:ad:
ea:e7:62:2b:68:4d:f7:99:b6:d6:93:40:1c:c6:cd:
8f:e0:4b:09:8a:67:aa:5d:b6:20:c9:32:7b:f0:e9:
2d:d8:ec:2d:92:af:28:77:a3:74:47:85:7c:ea:67:
8c:ec:41:d4:78:cc:70:c8:5b:cd:90:8f:4c:a3:39:
39:2e:b2:c7:30:c6:93:6a:2d:39:14:b5:93:4d:7a:
d7:ae:98:bb:ca:07:02:58:2b:e5:c4:24:33:53:27:
83:3d:da:e6:ac:c2:a8:80:15:4d:35:bc:08:f4:20:
dc:7f:34:c4:f1:c2:98:c6:d0:ed:e4:4d:51:f5:47:
ff:2a:cf:a7:cb:71:16:fc:9d:b2:2c:82:ab:af:2a:
e3:e3:66:42:03:fc:7d:4c:15:bf:a8:b7:10:99:09:
e4:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:F6:5F:EA:93:7C:6E:F5:9C:85:2E:D1:CC:B4:10:04:6F:CB:AD:2C
X509v3 Authority Key Identifier:
keyid:18:9D:6B:55:D6:A6:88:EE:5E:33:81:88:3B:B5:AF:68:43:32:76:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJ1rVdamiO5eM4GIO7WvaEMyduM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/h_Zf6pN8bvWchS7RzLQQBG_LrSw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/757b56-7b57-48a0-9a75-a2a4c6a621cd/1/GJ1rVdamiO5eM4GIO7WvaEMyduM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:1900::/29
Signature Algorithm: sha256WithRSAEncryption
23:05:7d:73:fb:2d:ae:9d:5a:36:58:8d:3f:b4:d1:bf:36:76:
ef:0a:d1:62:95:b9:4a:0c:9d:1d:43:26:8b:5e:18:57:ff:45:
bb:07:47:6b:86:1a:4a:3a:9e:96:e1:c3:8e:53:12:a0:97:dc:
6c:f7:d0:40:c9:5e:07:1f:71:4a:59:4e:d3:a3:b8:db:ca:9e:
a4:a6:0e:b5:c0:70:fd:c7:a1:36:5e:ff:b0:25:8e:88:43:43:
23:b1:f6:c0:4a:3f:1a:ef:d0:a0:40:af:1d:c8:ea:b4:d3:32:
76:92:a4:b9:c0:1d:e5:c7:0f:20:42:20:e6:f6:11:d1:d2:5e:
5c:8e:c9:a4:b4:ef:c7:65:69:f8:25:82:95:45:7a:4c:73:68:
e9:e3:16:99:2a:3f:8e:2c:98:64:5e:ae:0c:ef:eb:28:95:fd:
6f:4f:58:2c:67:e9:fe:be:5a:a3:ff:28:32:e7:62:67:2c:ef:
6d:4c:2b:dc:e6:af:98:44:e5:10:dc:74:ac:94:3a:ae:be:2a:
ce:ac:12:4b:04:30:ad:c1:dc:f6:ce:f8:62:89:3b:e2:88:66:
94:0a:31:d7:d5:93:82:77:4c:78:47:05:87:b6:8c:92:4b:cf:
d3:b1:18:1b:ce:23:50:0d:51:61:49:39:aa:f1:51:7d:a0:9b:
e7:5c:a3:94
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZKFO1hNXQjUYYJNGPdF0XypMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4OWQ2YjU1ZDZhNjg4ZWU1ZTMzODE4ODNiYjVhZjY4NDMz
Mjc2ZTMwHhcNMjQxMDEzMDkzNTExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4N2Y2NWZlYTkzN2M2ZWY1OWM4NTJlZDFjY2I0MTAwNDZmY2JhZDJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsf0AFd+dXNhCkL0IUIhntEgq/Woh
IgHq82xL24nkude2i85tp8o1Nt4ygVbDzSS23ehlRf41Vl4K1K+oxpb4csvaUBRk
UK1ox3j0L8E8XrcOWS8uHLoMURZhID5zEMJrw4v/DwBn2q3q52IraE33mbbWk0Ac
xs2P4EsJimeqXbYgyTJ78Okt2Owtkq8od6N0R4V86meM7EHUeMxwyFvNkI9Mozk5
LrLHMMaTai05FLWTTXrXrpi7ygcCWCvlxCQzUyeDPdrmrMKogBVNNbwI9CDcfzTE
8cKYxtDt5E1R9Uf/Ks+ny3EW/J2yLIKrryrj42ZCA/x9TBW/qLcQmQnkKQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFIf2X+qTfG71nIUu0cy0EARvy60sMB8GA1UdIwQY
MBaAFBida1XWpojuXjOBiDu1r2hDMnbjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUt
YTJhNGM2YTYyMWNkLzEvaF9aZjZwTjhidldjaFM3UnpMUVFCR19MclN3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS83NTdiNTYtN2I1Ny00OGEwLTlhNzUtYTJhNGM2YTYyMWNk
LzEvR0oxclZkYW1pTzVlTTRHSU83V3ZhRU15ZHVNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhIZADAN
BgkqhkiG9w0BAQsFAAOCAQEAIwV9c/strp1aNliNP7TRvzZ27wrRYpW5SgydHUMm
i14YV/9FuwdHa4YaSjqeluHDjlMSoJfcbPfQQMleBx9xSllO06O428qepKYOtcBw
/cehNl7/sCWOiENDI7H2wEo/Gu/QoECvHcjqtNMydpKkucAd5ccPIEIg5vYR0dJe
XI7JpLTvx2Vp+CWClUV6THNo6eMWmSo/jiyYZF6uDO/rKJX9b09YLGfp/r5ao/8o
MudiZyzvbUwr3OavmETlENx0rJQ6rr4qzqwSSwQwrcHc9s74Yok74ohmlAox19WT
gndMeEcFh7aMkkvP07EYG84jUA1RYUk5qvFRfaCb51yjlA==
-----END CERTIFICATE-----
Generated at Mon Nov 18 13:32:29 2024 by rpki-client on console-ams.rpki-client.org