Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/3c0269-c194-4e6d-abce-72735e118d51/1/RXZGHGpZzfTZ-nLek1khUGIETrQ.roa
File: RXZGHGpZzfTZ-nLek1khUGIETrQ.roa (raw, json)
Hash identifier: JUMTOLYZ7lCLwiYzQ7jgVb1Un5oubf1vtC+pIb3xyn8=
Subject key identifier: 45:76:46:1C:6A:59:CD:F4:D9:FA:72:DE:93:59:21:50:62:04:4E:B4
Certificate issuer: /CN=88b213bf1627548efdfb1b2e2645baaf1d983aa0
Certificate serial: 018A07E46C86D545DCD7B6BA4D2CDEB15A37
Authority key identifier: 88:B2:13:BF:16:27:54:8E:FD:FB:1B:2E:26:45:BA:AF:1D:98:3A:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iLITvxYnVI79-xsuJkW6rx2YOqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/3c0269-c194-4e6d-abce-72735e118d51/1/RXZGHGpZzfTZ-nLek1khUGIETrQ.roa
Signing time: Fri 18 Aug 2023 09:05:25 +0000
ROA not before: Fri 18 Aug 2023 09:05:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197598
IP address blocks: 2a13:c800::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 18 Aug 2023 09:07:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:07:e4:6c:86:d5:45:dc:d7:b6:ba:4d:2c:de:b1:5a:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88b213bf1627548efdfb1b2e2645baaf1d983aa0
Validity
Not Before: Aug 18 09:05:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4576461c6a59cdf4d9fa72de9359215062044eb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:7b:fd:4f:2a:1c:d9:ee:a6:63:59:82:00:75:
bb:11:52:4d:8c:3c:38:a7:aa:82:f0:d5:ed:1a:55:
bc:4f:28:e3:90:10:ff:a3:19:24:6e:9d:dc:87:3f:
a5:d3:69:ac:5c:e4:0c:93:1b:64:5e:69:c2:6f:9a:
2c:e4:ac:95:16:88:84:cb:7e:07:da:74:74:fa:4d:
a3:69:50:d3:75:fc:97:3c:dc:af:10:60:2c:88:00:
a0:c9:60:0e:76:e5:d6:9c:4a:ce:26:c3:a1:ff:e3:
9c:02:c5:18:37:e5:b5:48:4d:c3:37:77:f9:01:17:
5d:47:4f:62:69:74:75:13:35:4d:4f:a2:0e:36:54:
f0:5a:f7:aa:f8:c9:ee:b0:27:c8:b2:14:ff:8d:3f:
a8:32:5e:e8:8a:3a:0a:7f:3a:01:b6:3e:c5:3b:14:
3f:90:31:d7:16:cf:a9:e5:7a:f6:2f:85:ca:2d:f2:
4d:b8:a5:ab:c8:4c:39:67:2f:ba:61:f7:85:78:52:
63:d6:5f:79:b1:7e:1c:ef:29:29:5b:68:18:6b:8e:
9f:0a:7f:37:13:fa:d5:13:7a:38:92:19:39:a0:e7:
23:4e:2e:c3:20:4f:22:0d:6e:f8:e4:62:17:db:c7:
8b:da:fc:f5:e8:14:20:19:d5:ec:01:07:7e:e0:99:
dc:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:76:46:1C:6A:59:CD:F4:D9:FA:72:DE:93:59:21:50:62:04:4E:B4
X509v3 Authority Key Identifier:
keyid:88:B2:13:BF:16:27:54:8E:FD:FB:1B:2E:26:45:BA:AF:1D:98:3A:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iLITvxYnVI79-xsuJkW6rx2YOqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/3c0269-c194-4e6d-abce-72735e118d51/1/RXZGHGpZzfTZ-nLek1khUGIETrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/3c0269-c194-4e6d-abce-72735e118d51/1/iLITvxYnVI79-xsuJkW6rx2YOqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:c800::/29
Signature Algorithm: sha256WithRSAEncryption
ad:36:a5:03:3d:99:5c:7b:0e:98:b7:af:63:ed:ba:17:e3:1e:
75:1c:1d:dc:b9:93:6b:f7:79:24:ac:c4:60:0b:2a:7b:7c:6c:
4d:a6:e2:1f:df:d5:f9:83:3f:74:7b:ac:7f:62:ec:97:df:28:
6e:d2:d1:6d:1f:d8:64:a4:05:a6:fe:ac:ba:3d:a1:7b:17:79:
26:0a:10:4d:7d:13:8c:50:c2:00:b9:78:3d:93:10:c8:6f:f0:
29:d1:53:97:7e:12:39:f3:69:6e:a0:87:29:3f:20:17:63:77:
33:fb:23:9e:61:e0:05:84:1d:ba:bf:ec:9a:b0:8a:a7:8e:65:
18:d8:2e:74:7d:ff:12:7c:4d:f5:79:18:4d:7f:da:52:d3:76:
f9:dc:28:89:e6:8a:c6:16:30:17:ed:b2:63:f4:bb:0e:10:64:
ad:89:ab:05:e4:63:ca:36:66:19:11:dd:0e:13:7d:50:14:21:
4e:64:18:80:f9:2c:c6:65:00:62:9f:e5:bc:eb:d6:38:c8:a6:
b3:a1:9b:3f:27:5c:bc:8d:38:8d:8b:e5:e7:8f:5a:51:31:31:
f7:15:ae:3f:78:61:db:b8:4f:19:e2:7b:3a:5c:5b:b5:1d:59:
b9:36:80:23:6a:24:6b:9a:97:1f:d0:28:e2:e6:a5:68:fb:8d:
eb:f6:b8:a3
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYoH5GyG1UXc17a6TSzesVo3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4YjIxM2JmMTYyNzU0OGVmZGZiMWIyZTI2NDViYWFmMWQ5
ODNhYTAwHhcNMjMwODE4MDkwNTI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NTc2NDYxYzZhNTljZGY0ZDlmYTcyZGU5MzU5MjE1MDYyMDQ0ZWI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4nv9Tyoc2e6mY1mCAHW7EVJNjDw4
p6qC8NXtGlW8TyjjkBD/oxkkbp3chz+l02msXOQMkxtkXmnCb5os5KyVFoiEy34H
2nR0+k2jaVDTdfyXPNyvEGAsiACgyWAOduXWnErOJsOh/+OcAsUYN+W1SE3DN3f5
ARddR09iaXR1EzVNT6IONlTwWveq+MnusCfIshT/jT+oMl7oijoKfzoBtj7FOxQ/
kDHXFs+p5Xr2L4XKLfJNuKWryEw5Zy+6YfeFeFJj1l95sX4c7ykpW2gYa46fCn83
E/rVE3o4khk5oOcjTi7DIE8iDW745GIX28eL2vz16BQgGdXsAQd+4JncbwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFEV2RhxqWc302fpy3pNZIVBiBE60MB8GA1UdIwQY
MBaAFIiyE78WJ1SO/fsbLiZFuq8dmDqgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUxJVHZ4WW5WSTc5LXhzdUprVzZyeDJZT3FBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8zYzAyNjktYzE5NC00ZTZkLWFiY2Ut
NzI3MzVlMTE4ZDUxLzEvUlhaR0hHcFp6ZlRaLW5MZWsxa2hVR0lFVHJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS8zYzAyNjktYzE5NC00ZTZkLWFiY2UtNzI3MzVlMTE4ZDUx
LzEvaUxJVHZ4WW5WSTc5LXhzdUprVzZyeDJZT3FBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhPIADAN
BgkqhkiG9w0BAQsFAAOCAQEArTalAz2ZXHsOmLevY+26F+MedRwd3LmTa/d5JKzE
YAsqe3xsTabiH9/V+YM/dHusf2Lsl98obtLRbR/YZKQFpv6suj2hexd5JgoQTX0T
jFDCALl4PZMQyG/wKdFTl34SOfNpbqCHKT8gF2N3M/sjnmHgBYQdur/smrCKp45l
GNgudH3/EnxN9XkYTX/aUtN2+dwoieaKxhYwF+2yY/S7DhBkrYmrBeRjyjZmGRHd
DhN9UBQhTmQYgPksxmUAYp/lvOvWOMims6GbPydcvI04jYvl549aUTEx9xWuP3hh
27hPGeJ7OlxbtR1ZuTaAI2oka5qXH9Ao4ualaPuN6/a4ow==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:01 2024 by rpki-client on console-fra.rpki-client.org