Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e66a57-65ef-4644-8f50-c14faf43be14/1/Tsgr3rzeIUreUrgb-Qafyn37p7I.roa
File: Tsgr3rzeIUreUrgb-Qafyn37p7I.roa (raw, json)
Hash identifier: pEG1Nt9CxWTSQ+c6HspyCWgP/+Bgk0FS/lC/aPUBtds=
Subject key identifier: 4E:C8:2B:DE:BC:DE:21:4A:DE:52:B8:1B:F9:06:9F:CA:7D:FB:A7:B2
Certificate issuer: /CN=64e7553292af595426ee1d7dc919a2104894752b
Certificate serial: 01864986FA270E53ABE079397A7C2F8DD308
Authority key identifier: 64:E7:55:32:92:AF:59:54:26:EE:1D:7D:C9:19:A2:10:48:94:75:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZOdVMpKvWVQm7h19yRmiEEiUdSs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e66a57-65ef-4644-8f50-c14faf43be14/1/Tsgr3rzeIUreUrgb-Qafyn37p7I.roa
Signing time: Mon 13 Feb 2023 06:47:07 +0000
ROA not before: Mon 13 Feb 2023 06:47:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25003
IP address blocks: 2a0d:2800::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:49:86:fa:27:0e:53:ab:e0:79:39:7a:7c:2f:8d:d3:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64e7553292af595426ee1d7dc919a2104894752b
Validity
Not Before: Feb 13 06:47:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ec82bdebcde214ade52b81bf9069fca7dfba7b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:82:13:32:fc:31:69:94:f5:4c:13:57:40:41:
dd:54:df:47:5a:e9:40:49:af:b3:19:82:3b:bb:50:
b1:7f:9e:c3:77:0b:9c:71:09:2a:7d:5d:f1:f8:26:
bd:dd:ec:94:55:ac:d7:ac:7d:c2:8f:7e:b8:14:87:
a8:f3:e8:08:88:f7:dd:c3:38:23:9e:05:e2:de:21:
89:fa:3e:ad:ea:3f:36:ab:a8:50:d9:e5:0f:5b:27:
1a:b2:ea:3b:03:58:d1:dd:11:d9:da:3f:db:89:f6:
68:85:af:a5:0f:e8:4b:83:5e:a8:b9:f2:bf:a1:d2:
82:4a:89:d3:a3:93:5b:12:32:9a:99:c9:f4:08:6c:
45:dd:8b:24:d1:98:b4:fb:6f:8f:ef:cf:c8:e9:90:
42:8e:26:71:8a:21:0e:9b:c5:30:96:ef:3a:54:ac:
c9:81:bd:83:d5:32:e2:1d:7e:c7:7d:b4:f4:0b:07:
c7:0e:7b:44:7a:5e:0d:91:9a:e8:1e:bb:4d:fd:e3:
4e:31:bb:09:65:a6:ef:1f:f0:30:38:52:58:0d:e5:
55:b1:44:cf:f9:c9:43:89:a6:c3:09:a1:b1:d3:11:
89:cf:40:94:97:f7:a8:b1:88:40:8f:2f:52:1f:db:
c1:4d:83:19:c6:e8:cf:7b:4b:af:7f:88:65:ee:e6:
95:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:C8:2B:DE:BC:DE:21:4A:DE:52:B8:1B:F9:06:9F:CA:7D:FB:A7:B2
X509v3 Authority Key Identifier:
keyid:64:E7:55:32:92:AF:59:54:26:EE:1D:7D:C9:19:A2:10:48:94:75:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZOdVMpKvWVQm7h19yRmiEEiUdSs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e66a57-65ef-4644-8f50-c14faf43be14/1/Tsgr3rzeIUreUrgb-Qafyn37p7I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e66a57-65ef-4644-8f50-c14faf43be14/1/ZOdVMpKvWVQm7h19yRmiEEiUdSs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2800::/29
Signature Algorithm: sha256WithRSAEncryption
66:f6:cf:e5:d4:68:33:41:58:0e:55:aa:f3:7c:4b:e1:b5:bd:
4c:f0:7b:e7:2d:3d:1f:a9:90:c6:c7:81:63:d6:69:c6:da:f2:
cb:a5:aa:ef:5b:ba:28:ba:62:f8:72:00:a5:cd:1e:e7:36:4e:
bf:9f:ac:89:f6:1d:6f:39:52:32:9f:08:99:fb:62:2b:06:90:
79:43:37:4f:a7:e1:0d:81:7e:60:91:b2:53:ff:78:0e:3c:5f:
2d:20:a8:03:f5:f8:61:61:fc:a3:52:cd:ed:a1:7e:a5:65:34:
0f:11:a5:9e:bf:7f:c9:96:55:29:3b:ec:00:80:b1:b5:e5:d7:
92:6c:99:42:43:2f:cb:42:18:de:eb:27:5b:21:f7:a2:13:c4:
8c:0d:e0:d8:e3:0c:4d:a8:b7:3e:0b:06:da:e2:1a:78:25:28:
c6:28:43:5b:f7:b1:c3:30:d4:b9:26:8a:5f:87:26:7f:71:20:
72:23:45:c2:60:22:a1:e3:cf:31:46:5d:04:0e:ff:29:50:f6:
9e:8e:79:8b:f1:b7:f7:c9:7c:d6:c5:57:e4:ec:ba:89:f1:cd:
5e:03:c0:51:aa:8a:ea:98:c3:27:d2:a8:e8:b9:da:a2:b0:3b:
97:1f:dc:62:64:fb:9d:8b:d6:df:68:8f:c1:a2:14:e2:fa:15:
f4:3c:e4:1b
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYZJhvonDlOr4Hk5enwvjdMIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0ZTc1NTMyOTJhZjU5NTQyNmVlMWQ3ZGM5MTlhMjEwNDg5
NDc1MmIwHhcNMjMwMjEzMDY0NzA3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZWM4MmJkZWJjZGUyMTRhZGU1MmI4MWJmOTA2OWZjYTdkZmJhN2IyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoIITMvwxaZT1TBNXQEHdVN9HWulA
Sa+zGYI7u1Cxf57DdwuccQkqfV3x+Ca93eyUVazXrH3Cj364FIeo8+gIiPfdwzgj
ngXi3iGJ+j6t6j82q6hQ2eUPWycasuo7A1jR3RHZ2j/bifZoha+lD+hLg16oufK/
odKCSonTo5NbEjKamcn0CGxF3Ysk0Zi0+2+P78/I6ZBCjiZxiiEOm8Uwlu86VKzJ
gb2D1TLiHX7HfbT0CwfHDntEel4NkZroHrtN/eNOMbsJZabvH/AwOFJYDeVVsUTP
+clDiabDCaGx0xGJz0CUl/eosYhAjy9SH9vBTYMZxujPe0uvf4hl7uaVhQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFE7IK9683iFK3lK4G/kGn8p9+6eyMB8GA1UdIwQY
MBaAFGTnVTKSr1lUJu4dfckZohBIlHUrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWk9kVk1wS3ZXVlFtN2gxOXlSbWlFRWlVZFNzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9lNjZhNTctNjVlZi00NjQ0LThmNTAt
YzE0ZmFmNDNiZTE0LzEvVHNncjNyemVJVXJlVXJnYi1RYWZ5bjM3cDdJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC9lNjZhNTctNjVlZi00NjQ0LThmNTAtYzE0ZmFmNDNiZTE0
LzEvWk9kVk1wS3ZXVlFtN2gxOXlSbWlFRWlVZFNzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKg0oADAN
BgkqhkiG9w0BAQsFAAOCAQEAZvbP5dRoM0FYDlWq83xL4bW9TPB75y09H6mQxseB
Y9Zpxtryy6Wq71u6KLpi+HIApc0e5zZOv5+sifYdbzlSMp8ImftiKwaQeUM3T6fh
DYF+YJGyU/94DjxfLSCoA/X4YWH8o1LN7aF+pWU0DxGlnr9/yZZVKTvsAICxteXX
kmyZQkMvy0IY3usnWyH3ohPEjA3g2OMMTai3PgsG2uIaeCUoxihDW/exwzDUuSaK
X4cmf3EgciNFwmAioePPMUZdBA7/KVD2no55i/G398l81sVX5Oy6ifHNXgPAUaqK
6pjDJ9Ko6LnaorA7lx/cYmT7nYvW32iPwaIU4voV9DzkGw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:43 2023 by rpki-client on console-fra.rpki-client.org