Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/e5cf00-55b8-4359-ac1e-aa0c4dc03222/1/ZDmcfq23xNREHy-mga45QcS1iTs.roa
File: ZDmcfq23xNREHy-mga45QcS1iTs.roa (raw, json)
Hash identifier: mNS8QfAhvX4KjikJ8ZxjggYCyosRmM+PpSuTvWrQSEg=
Subject key identifier: 64:39:9C:7E:AD:B7:C4:D4:44:1F:2F:A6:81:AE:39:41:C4:B5:89:3B
Certificate issuer: /CN=e2d73ffc3f37c4fec4bd35ad1c595cd056baecfd
Certificate serial: 018A28F54EAC23AEA910B3B65A31CBA8B960
Authority key identifier: E2:D7:3F:FC:3F:37:C4:FE:C4:BD:35:AD:1C:59:5C:D0:56:BA:EC:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tc__D83xP7EvTWtHFlc0Fa67P0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/e5cf00-55b8-4359-ac1e-aa0c4dc03222/1/ZDmcfq23xNREHy-mga45QcS1iTs.roa
Signing time: Thu 24 Aug 2023 19:11:19 +0000
ROA not before: Thu 24 Aug 2023 19:11:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52209
IP address blocks: 2a13:9dc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:28:f5:4e:ac:23:ae:a9:10:b3:b6:5a:31:cb:a8:b9:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d73ffc3f37c4fec4bd35ad1c595cd056baecfd
Validity
Not Before: Aug 24 19:11:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=64399c7eadb7c4d4441f2fa681ae3941c4b5893b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:3e:17:06:b5:24:f5:c1:61:e8:e6:73:3d:00:
45:7d:97:90:18:04:05:07:07:0f:50:6e:43:61:e6:
02:36:41:b9:90:e9:88:b3:f3:c4:a0:80:f8:e3:2e:
ab:8f:d0:3a:8a:35:37:1b:6c:6c:c7:a4:22:f8:9b:
86:fe:30:67:0a:16:f5:c5:29:c9:7f:ab:ff:80:a3:
74:a8:b0:80:52:7c:56:04:8c:f9:87:c5:3d:0c:03:
c1:11:01:04:4f:bc:00:6b:08:4a:5f:c0:d7:cc:93:
82:39:f7:56:f1:d8:e2:63:12:33:44:2f:30:c8:63:
41:3f:29:d4:9a:b3:5c:56:34:50:fc:b9:31:c6:a7:
86:9d:cf:e5:d5:ce:25:6a:3c:74:92:79:29:c1:21:
d9:b5:6e:af:bc:65:69:09:15:29:64:c7:28:bd:ac:
24:43:2a:2c:de:de:46:81:7d:77:c0:ca:40:3c:17:
b5:21:78:bf:af:6e:b4:d5:c7:90:73:6d:b7:ca:51:
89:06:8d:f8:01:a8:a1:b6:68:34:41:1f:e6:ad:46:
36:77:f2:b7:6a:d2:dc:cc:e4:b9:dc:b4:66:0b:ec:
90:ce:6d:48:2f:fa:85:e7:33:73:5a:ea:bc:d8:9c:
a7:51:2c:3f:87:b4:0e:18:30:80:8f:53:27:7c:1d:
c1:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:39:9C:7E:AD:B7:C4:D4:44:1F:2F:A6:81:AE:39:41:C4:B5:89:3B
X509v3 Authority Key Identifier:
keyid:E2:D7:3F:FC:3F:37:C4:FE:C4:BD:35:AD:1C:59:5C:D0:56:BA:EC:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tc__D83xP7EvTWtHFlc0Fa67P0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/e5cf00-55b8-4359-ac1e-aa0c4dc03222/1/ZDmcfq23xNREHy-mga45QcS1iTs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/e5cf00-55b8-4359-ac1e-aa0c4dc03222/1/4tc__D83xP7EvTWtHFlc0Fa67P0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9dc0::/29
Signature Algorithm: sha256WithRSAEncryption
25:e7:c8:ae:9d:92:3d:09:a8:e4:89:69:f1:00:f8:fd:36:e7:
3a:9f:a0:f3:15:39:97:ce:81:bb:65:58:8a:31:d7:c6:9a:51:
f2:6a:f4:d4:32:79:11:d8:1a:c5:1e:38:f0:ff:ca:83:ab:79:
71:f4:bd:e0:ca:45:22:b4:8b:1e:30:c9:78:42:94:9d:ad:eb:
e2:f4:f9:58:f5:3d:f5:43:d5:10:1c:6e:e0:64:5b:e3:e0:b4:
c9:57:d0:92:57:39:58:f2:2f:ab:17:7a:b6:0f:26:3a:f1:42:
ac:94:f4:d1:4a:ce:99:c8:c7:10:3a:c2:f9:23:a2:09:00:a7:
de:7d:ff:c6:2d:89:f6:36:f4:c1:ed:54:b3:4a:4c:17:4f:2f:
69:de:0a:c5:75:0b:cf:9e:37:c8:88:c0:4d:4e:11:22:72:7f:
a8:f9:88:8c:22:61:c8:2d:82:54:9a:32:ae:00:09:b6:1b:cc:
21:12:7a:91:e4:86:e1:5f:08:25:ff:03:1d:a8:14:f5:e1:db:
df:d0:72:bc:d3:fa:c7:ff:61:f5:67:90:ea:a6:eb:57:0c:6c:
55:ec:e8:3a:b8:d2:78:49:b5:d4:34:e6:ec:53:f5:56:8f:b4:
28:00:7a:fd:cc:53:25:ff:17:d4:5f:48:96:e0:81:8b:ac:f7:
6e:8f:2b:d4
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYoo9U6sI66pELO2WjHLqLlgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyZDczZmZjM2YzN2M0ZmVjNGJkMzVhZDFjNTk1Y2QwNTZi
YWVjZmQwHhcNMjMwODI0MTkxMTE5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NDM5OWM3ZWFkYjdjNGQ0NDQxZjJmYTY4MWFlMzk0MWM0YjU4OTNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuD4XBrUk9cFh6OZzPQBFfZeQGAQF
BwcPUG5DYeYCNkG5kOmIs/PEoID44y6rj9A6ijU3G2xsx6Qi+JuG/jBnChb1xSnJ
f6v/gKN0qLCAUnxWBIz5h8U9DAPBEQEET7wAawhKX8DXzJOCOfdW8djiYxIzRC8w
yGNBPynUmrNcVjRQ/LkxxqeGnc/l1c4lajx0knkpwSHZtW6vvGVpCRUpZMcovawk
Qyos3t5GgX13wMpAPBe1IXi/r2601ceQc223ylGJBo34Aaihtmg0QR/mrUY2d/K3
atLczOS53LRmC+yQzm1IL/qF5zNzWuq82JynUSw/h7QOGDCAj1MnfB3B3wIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFGQ5nH6tt8TURB8vpoGuOUHEtYk7MB8GA1UdIwQY
MBaAFOLXP/w/N8T+xL01rRxZXNBWuuz9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHRjX19EODN4UDdFdlRXdEhGbGMwRmE2N1AwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS9lNWNmMDAtNTViOC00MzU5LWFjMWUt
YWEwYzRkYzAzMjIyLzEvWkRtY2ZxMjN4TlJFSHktbWdhNDVRY1MxaVRzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS9lNWNmMDAtNTViOC00MzU5LWFjMWUtYWEwYzRkYzAzMjIy
LzEvNHRjX19EODN4UDdFdlRXdEhGbGMwRmE2N1AwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhOdwDAN
BgkqhkiG9w0BAQsFAAOCAQEAJefIrp2SPQmo5Ilp8QD4/TbnOp+g8xU5l86Bu2VY
ijHXxppR8mr01DJ5EdgaxR448P/Kg6t5cfS94MpFIrSLHjDJeEKUna3r4vT5WPU9
9UPVEBxu4GRb4+C0yVfQklc5WPIvqxd6tg8mOvFCrJT00UrOmcjHEDrC+SOiCQCn
3n3/xi2J9jb0we1Us0pMF08vad4KxXULz543yIjATU4RInJ/qPmIjCJhyC2CVJoy
rgAJthvMIRJ6keSG4V8IJf8DHagU9eHb39ByvNP6x/9h9WeQ6qbrVwxsVezoOrjS
eEm11DTm7FP1Vo+0KAB6/cxTJf8X1F9IluCBi6z3bo8r1A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:26 2024 by rpki-client on console-fra.rpki-client.org