Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/6PlMNO6NU8wTeurWkc-sqgHUcwg.roa
File: 6PlMNO6NU8wTeurWkc-sqgHUcwg.roa (raw, json)
Hash identifier: K/3tcDrP3CRKMWUlb9Fc7PAtVOSICP50x4dQolOEB7Y=
Subject key identifier: E8:F9:4C:34:EE:8D:53:CC:13:7A:EA:D6:91:CF:AC:AA:01:D4:73:08
Certificate issuer: /CN=30d58e40c6d91f3729e57e3344d308b5992fe46e
Certificate serial: 018570FBBDD42C43420032DD9051454767D7
Authority key identifier: 30:D5:8E:40:C6:D9:1F:37:29:E5:7E:33:44:D3:08:B5:99:2F:E4:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/6PlMNO6NU8wTeurWkc-sqgHUcwg.roa
Signing time: Mon 02 Jan 2023 05:37:04 +0000
ROA not before: Mon 02 Jan 2023 05:37:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2a13:141:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:bd:d4:2c:43:42:00:32:dd:90:51:45:47:67:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30d58e40c6d91f3729e57e3344d308b5992fe46e
Validity
Not Before: Jan 2 05:37:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e8f94c34ee8d53cc137aead691cfacaa01d47308
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b4:2e:59:33:42:6c:9b:91:75:7e:72:37:35:
c3:ae:cf:4a:30:e6:89:01:34:a1:6e:65:75:e8:3b:
0f:7b:13:f2:6a:aa:99:a5:8f:2b:be:ca:23:f9:a4:
d3:34:8f:71:42:23:75:28:b7:a4:fc:b4:f8:ad:b6:
bd:90:bb:93:eb:cb:ed:06:1c:24:51:60:c3:e3:44:
dd:4e:ca:cf:fe:e9:eb:5a:62:d6:d9:50:34:5a:a3:
20:99:3d:d8:e3:d9:c7:6a:54:5e:46:af:8c:75:79:
37:10:74:92:87:41:86:4d:82:b8:57:b7:f4:83:a5:
49:9d:49:63:81:31:a0:98:fb:5c:93:86:99:d8:4e:
20:21:ca:ee:45:dd:62:87:74:a2:29:a3:74:50:11:
4a:25:19:59:93:99:8b:4f:ad:80:4f:ce:35:da:94:
64:dd:41:61:1d:db:0b:33:ee:48:25:92:f8:48:b6:
5a:1f:95:d2:c8:5c:63:57:e4:5b:f1:ea:b0:ce:fc:
cf:5f:21:8c:0a:10:28:b6:b9:b2:95:b5:5b:db:9f:
2a:54:70:ff:da:24:5f:1f:80:7a:93:ba:cb:e9:2d:
37:bd:e9:36:7b:a9:fa:1e:89:66:7c:1c:6a:49:6f:
8f:89:c9:ce:e4:dd:55:02:1f:33:1e:57:79:b6:39:
ab:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:F9:4C:34:EE:8D:53:CC:13:7A:EA:D6:91:CF:AC:AA:01:D4:73:08
X509v3 Authority Key Identifier:
keyid:30:D5:8E:40:C6:D9:1F:37:29:E5:7E:33:44:D3:08:B5:99:2F:E4:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/6PlMNO6NU8wTeurWkc-sqgHUcwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:141:2::/48
Signature Algorithm: sha256WithRSAEncryption
7e:31:a3:59:11:21:6c:52:14:87:f5:b0:b7:9d:2f:2f:55:dd:
6b:5a:fe:84:2c:60:a8:75:b5:df:51:f3:4d:01:15:df:02:7d:
91:c8:0e:88:55:53:51:04:fb:9a:ee:04:ce:ec:9a:a5:d3:48:
ce:f8:38:2d:68:90:15:44:ab:ca:fe:73:d7:6a:0d:50:e8:ce:
51:09:27:16:ad:c9:23:34:2d:47:8c:00:f7:1b:93:8c:58:4e:
e5:f4:7b:7a:67:40:bc:e0:ac:11:a1:22:23:18:50:86:f0:4a:
3d:01:d2:02:eb:0d:fb:3b:f5:e6:23:60:a6:ef:7b:59:cb:48:
3e:d0:fc:d2:a8:4c:21:ea:26:45:7f:79:43:f7:74:6d:8b:cd:
8c:2f:02:9a:52:5a:5a:37:bd:4e:92:25:62:0d:f1:9c:b5:af:
17:1e:38:d5:76:1e:24:e4:d6:47:fa:93:ed:ae:8e:6f:85:ab:
c9:7b:85:85:da:3b:b7:a2:4e:fc:19:26:54:b5:2a:93:98:85:
26:37:4e:33:dd:0e:df:2f:cb:eb:de:d1:ab:f6:35:fe:e6:c7:
56:fe:3f:5a:21:3e:1a:a5:8d:6e:af:5c:c2:ee:0b:3f:84:e2:
4b:55:11:b4:fb:3f:0c:9f:f1:77:70:75:95:ae:19:36:9e:55:
a3:b8:73:eb
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVw+73ULENCADLdkFFFR2fXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwZDU4ZTQwYzZkOTFmMzcyOWU1N2UzMzQ0ZDMwOGI1OTky
ZmU0NmUwHhcNMjMwMTAyMDUzNzA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOGY5NGMzNGVlOGQ1M2NjMTM3YWVhZDY5MWNmYWNhYTAxZDQ3MzA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz7QuWTNCbJuRdX5yNzXDrs9KMOaJ
ATShbmV16DsPexPyaqqZpY8rvsoj+aTTNI9xQiN1KLek/LT4rba9kLuT68vtBhwk
UWDD40TdTsrP/unrWmLW2VA0WqMgmT3Y49nHalReRq+MdXk3EHSSh0GGTYK4V7f0
g6VJnUljgTGgmPtck4aZ2E4gIcruRd1ih3SiKaN0UBFKJRlZk5mLT62AT8412pRk
3UFhHdsLM+5IJZL4SLZaH5XSyFxjV+Rb8eqwzvzPXyGMChAotrmylbVb258qVHD/
2iRfH4B6k7rL6S03vek2e6n6HolmfBxqSW+PicnO5N1VAh8zHld5tjmrxwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFOj5TDTujVPME3rq1pHPrKoB1HMIMB8GA1UdIwQY
MBaAFDDVjkDG2R83KeV+M0TTCLWZL+RuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTU5XT1FNYlpIemNwNVg0elJOTUl0Wmt2NUc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy82MjVhMzAtM2E2Yi00NjYxLTg0MGEt
ZjgyYjcwZDhhMGE3LzEvNlBsTU5PNk5VOHdUZXVyV2tjLXNxZ0hVY3dnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy82MjVhMzAtM2E2Yi00NjYxLTg0MGEtZjgyYjcwZDhhMGE3
LzEvTU5XT1FNYlpIemNwNVg0elJOTUl0Wmt2NUc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhMBQQAC
MA0GCSqGSIb3DQEBCwUAA4IBAQB+MaNZESFsUhSH9bC3nS8vVd1rWv6ELGCodbXf
UfNNARXfAn2RyA6IVVNRBPua7gTO7Jql00jO+DgtaJAVRKvK/nPXag1Q6M5RCScW
rckjNC1HjAD3G5OMWE7l9Ht6Z0C84KwRoSIjGFCG8Eo9AdIC6w37O/XmI2Cm73tZ
y0g+0PzSqEwh6iZFf3lD93Rti82MLwKaUlpaN71OkiViDfGcta8XHjjVdh4k5NZH
+pPtro5vhavJe4WF2ju3ok78GSZUtSqTmIUmN04z3Q7fL8vr3tGr9jX+5sdW/j9a
IT4apY1ur1zC7gs/hOJLVRG0+z8Mn/F3cHWVrhk2nlWjuHPr
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:57 2024 by rpki-client on console-fra.rpki-client.org