Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/iHSQsX4v9SAEuRfIk47I5BHQ3Sw.roa
File: iHSQsX4v9SAEuRfIk47I5BHQ3Sw.roa (raw, json)
Hash identifier: bjohfYLHZFIjULPMXvGoT2yJhLKve+SLyM0QHWzxHq4=
Subject key identifier: 88:74:90:B1:7E:2F:F5:20:04:B9:17:C8:93:8E:C8:E4:11:D0:DD:2C
Certificate issuer: /CN=30d58e40c6d91f3729e57e3344d308b5992fe46e
Certificate serial: 018570FBBD6752C56A9BCFD5AD812C99CD6F
Authority key identifier: 30:D5:8E:40:C6:D9:1F:37:29:E5:7E:33:44:D3:08:B5:99:2F:E4:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/iHSQsX4v9SAEuRfIk47I5BHQ3Sw.roa
Signing time: Mon 02 Jan 2023 05:37:04 +0000
ROA not before: Mon 02 Jan 2023 05:37:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 2a13:141:3::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:bd:67:52:c5:6a:9b:cf:d5:ad:81:2c:99:cd:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30d58e40c6d91f3729e57e3344d308b5992fe46e
Validity
Not Before: Jan 2 05:37:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=887490b17e2ff52004b917c8938ec8e411d0dd2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:12:4f:18:1d:d9:85:16:de:fe:ca:c4:c6:cf:
a4:ff:bf:ec:b6:85:4f:8b:2b:56:4b:80:d8:1b:a9:
06:44:ba:5e:3b:7e:c2:44:17:f3:30:00:92:20:05:
eb:53:af:08:f3:57:e0:0e:a7:bd:fa:e8:e2:d0:4b:
82:a4:ef:ae:7b:6c:e1:bd:4e:64:82:a4:e1:6c:88:
4b:3e:7d:77:6d:19:02:55:ac:0d:80:c7:72:80:8a:
40:9c:77:3c:60:a6:0b:88:4b:66:b0:14:90:bc:a7:
07:17:ab:ed:62:8c:31:11:85:fd:77:02:25:40:b3:
a6:26:c9:c2:8c:1c:74:4d:f8:f6:88:16:c9:8a:10:
e9:63:f2:db:59:e9:b1:39:fa:d0:76:76:2a:fd:68:
a8:93:06:db:e6:c8:33:ef:cc:26:2c:16:16:89:9f:
82:9c:60:72:ff:71:dd:d8:cc:8f:49:dc:e9:42:b3:
bb:06:87:50:98:9a:14:a9:ed:f2:9f:aa:57:24:ec:
e0:5e:f7:b1:8a:f0:a1:0e:ea:7a:89:a6:1d:49:e1:
f7:b8:8c:04:c3:39:be:71:8b:ed:bd:4e:bd:ef:ad:
ff:ba:ea:94:65:e5:9c:de:2c:e2:a6:27:ef:9a:a0:
37:9a:e4:89:92:4a:e9:e2:91:45:2c:10:c5:5c:44:
e7:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:74:90:B1:7E:2F:F5:20:04:B9:17:C8:93:8E:C8:E4:11:D0:DD:2C
X509v3 Authority Key Identifier:
keyid:30:D5:8E:40:C6:D9:1F:37:29:E5:7E:33:44:D3:08:B5:99:2F:E4:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MNWOQMbZHzcp5X4zRNMItZkv5G4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/iHSQsX4v9SAEuRfIk47I5BHQ3Sw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/625a30-3a6b-4661-840a-f82b70d8a0a7/1/MNWOQMbZHzcp5X4zRNMItZkv5G4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:141:3::/48
Signature Algorithm: sha256WithRSAEncryption
a5:74:93:a8:fe:c9:88:da:b9:49:f2:37:95:23:e8:c5:fa:cc:
d8:96:a4:90:47:f5:84:2e:1e:f2:a1:55:10:c0:d7:18:d9:d9:
9a:f9:47:45:40:2f:f2:00:1a:90:32:46:a2:df:26:c9:c3:00:
5e:00:45:5f:6c:81:ae:94:52:fc:1b:b4:3f:7c:c6:b9:56:44:
29:04:37:7d:84:e4:21:a7:ef:47:11:f6:19:cb:7f:4c:61:f3:
a2:a8:77:86:39:59:37:25:ab:a7:26:45:af:58:e0:fa:8b:00:
b3:e0:93:4c:a2:c5:73:50:76:57:b4:6c:0f:75:e3:99:4b:3a:
3e:07:7e:27:fd:e5:28:0f:7d:c5:aa:55:96:3d:2d:8a:6f:1d:
60:05:8e:51:5b:ea:57:9f:59:69:4d:4d:b3:9c:2b:f0:4f:70:
be:1b:6a:4d:81:35:20:ab:88:f1:49:4d:bb:f7:fa:3b:ab:6b:
e0:48:19:1d:0b:da:b8:5c:0e:78:ee:80:5e:db:b1:74:55:1f:
8f:b5:91:e0:b0:0c:5d:f0:04:d8:7c:1e:cf:2e:ff:db:08:29:
4f:db:8b:30:f5:45:fc:d1:6a:40:4c:36:31:22:3d:fd:07:2f:
53:cf:17:29:44:2c:77:b1:6e:41:f2:ff:76:eb:61:8d:ef:5a:
a9:3b:00:1e
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVw+71nUsVqm8/VrYEsmc1vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwZDU4ZTQwYzZkOTFmMzcyOWU1N2UzMzQ0ZDMwOGI1OTky
ZmU0NmUwHhcNMjMwMTAyMDUzNzA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ODc0OTBiMTdlMmZmNTIwMDRiOTE3Yzg5MzhlYzhlNDExZDBkZDJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqRJPGB3ZhRbe/srExs+k/7/stoVP
iytWS4DYG6kGRLpeO37CRBfzMACSIAXrU68I81fgDqe9+uji0EuCpO+ue2zhvU5k
gqThbIhLPn13bRkCVawNgMdygIpAnHc8YKYLiEtmsBSQvKcHF6vtYowxEYX9dwIl
QLOmJsnCjBx0Tfj2iBbJihDpY/LbWemxOfrQdnYq/Wiokwbb5sgz78wmLBYWiZ+C
nGBy/3Hd2MyPSdzpQrO7BodQmJoUqe3yn6pXJOzgXvexivChDup6iaYdSeH3uIwE
wzm+cYvtvU69763/uuqUZeWc3izipifvmqA3muSJkkrp4pFFLBDFXETnUQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFIh0kLF+L/UgBLkXyJOOyOQR0N0sMB8GA1UdIwQY
MBaAFDDVjkDG2R83KeV+M0TTCLWZL+RuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTU5XT1FNYlpIemNwNVg0elJOTUl0Wmt2NUc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy82MjVhMzAtM2E2Yi00NjYxLTg0MGEt
ZjgyYjcwZDhhMGE3LzEvaUhTUXNYNHY5U0FFdVJmSWs0N0k1QkhRM1N3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy82MjVhMzAtM2E2Yi00NjYxLTg0MGEtZjgyYjcwZDhhMGE3
LzEvTU5XT1FNYlpIemNwNVg0elJOTUl0Wmt2NUc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhMBQQAD
MA0GCSqGSIb3DQEBCwUAA4IBAQCldJOo/smI2rlJ8jeVI+jF+szYlqSQR/WELh7y
oVUQwNcY2dma+UdFQC/yABqQMkai3ybJwwBeAEVfbIGulFL8G7Q/fMa5VkQpBDd9
hOQhp+9HEfYZy39MYfOiqHeGOVk3JaunJkWvWOD6iwCz4JNMosVzUHZXtGwPdeOZ
Szo+B34n/eUoD33FqlWWPS2Kbx1gBY5RW+pXn1lpTU2znCvwT3C+G2pNgTUgq4jx
SU279/o7q2vgSBkdC9q4XA547oBe27F0VR+PtZHgsAxd8ATYfB7PLv/bCClP24sw
9UX80WpATDYxIj39By9TzxcpRCx3sW5B8v9262GN71qpOwAe
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:31:50 2024 by rpki-client on console-ams.rpki-client.org