Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/9OuGiLA3jPGRBENlOWTUHYHmHDs.roa
File: 9OuGiLA3jPGRBENlOWTUHYHmHDs.roa (raw, json)
Hash identifier: ECEnU3Mh9fFTUDa1klAuCTtFT6ecdISjOC5ax24t8Tg=
Subject key identifier: F4:EB:86:88:B0:37:8C:F1:91:04:43:65:39:64:D4:1D:81:E6:1C:3B
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 018CC72759CD4830BFF836352711590660D7
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/9OuGiLA3jPGRBENlOWTUHYHmHDs.roa
Signing time: Mon 01 Jan 2024 22:31:34 +0000
ROA not before: Mon 01 Jan 2024 22:31:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206005
IP address blocks: 2a14:1100::/29 maxlen: 29
2a13:c440::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 09 Jan 2024 20:22:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:59:cd:48:30:bf:f8:36:35:27:11:59:06:60:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Jan 1 22:31:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f4eb8688b0378cf1910443653964d41d81e61c3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:a7:31:1d:c4:23:8e:d9:5b:3d:bb:ef:b2:42:
df:ea:c3:0f:27:09:cc:e9:45:58:98:89:70:a0:81:
93:6f:6f:a8:24:44:41:10:f1:f5:a7:b0:ba:0a:64:
17:21:50:cf:0f:1a:39:fa:40:bf:58:11:6a:12:2e:
54:54:2b:ea:2b:47:a5:b0:68:90:f2:d6:46:90:a0:
3f:8a:04:30:be:35:96:4b:99:85:e2:e0:8c:ab:91:
eb:04:47:d9:f2:2d:18:e9:fc:9c:af:70:ad:42:59:
3a:34:56:03:b7:f4:cb:fe:0d:fa:31:84:ed:19:7b:
f5:9a:fd:ac:5a:00:83:0a:d5:62:40:01:35:81:ff:
20:15:e8:6c:f5:bb:e1:39:70:94:36:34:2a:e8:54:
99:ce:5d:b5:4c:f5:17:ec:d1:ff:fe:8e:39:a2:39:
57:6c:3e:f2:fb:59:6e:37:c6:23:d7:fc:92:ac:bf:
26:27:40:14:74:94:da:08:3e:09:54:28:b5:c5:86:
03:ff:57:22:a6:25:b6:2b:f8:cd:5e:d1:23:68:84:
ad:a2:ac:3f:bf:fa:96:01:79:7e:e0:73:aa:27:88:
71:01:65:37:2e:58:27:10:c0:df:64:37:4f:b0:cc:
4e:08:72:85:91:f8:0c:0d:25:f7:5d:ac:5c:5d:a6:
57:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:EB:86:88:B0:37:8C:F1:91:04:43:65:39:64:D4:1D:81:E6:1C:3B
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/9OuGiLA3jPGRBENlOWTUHYHmHDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:c440::/29
2a14:1100::/29
Signature Algorithm: sha256WithRSAEncryption
6b:20:30:f0:2c:47:ab:a7:1b:5c:b1:4e:41:67:a5:70:20:27:
fe:ca:d3:d2:b6:65:db:f6:00:1a:18:06:d6:8b:6a:f6:14:5c:
51:c0:42:3c:61:56:35:b3:fb:b7:37:6a:29:66:56:e8:33:ab:
ce:e4:a0:e5:37:5e:bf:96:8c:3a:82:87:f3:5f:37:3f:c2:5a:
32:bc:f2:32:cf:af:59:98:63:6e:b0:2a:93:15:0c:d8:ef:b3:
80:62:51:ec:34:71:49:08:05:10:8f:9f:e2:5c:15:e9:57:a0:
99:51:45:e2:49:b0:b3:13:fc:e0:ee:e0:ab:e6:51:17:de:84:
65:e4:08:75:3f:61:ee:66:8e:dd:77:b2:0f:07:7e:c7:98:d3:
1a:ef:31:d2:14:03:ba:87:0a:6f:d9:79:87:16:71:f4:37:c6:
4e:15:73:c2:d1:91:26:5b:dc:85:1e:86:7d:c3:66:4c:d2:a0:
16:dc:2c:50:dd:e4:c6:a3:dc:df:36:b2:9f:11:d4:46:02:46:
e8:e0:be:40:19:f5:93:5e:64:f6:54:70:90:6c:65:21:22:97:
24:2c:be:f6:65:52:b0:15:1f:7a:4f:d9:03:32:14:f1:4f:6f:
d0:6f:0c:39:fd:53:70:85:39:a4:4f:0d:ef:3c:f9:c5:00:d5:
fc:a7:dc:a7
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYzHJ1nNSDC/+DY1JxFZBmDXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMTQxMTJkMDVlOWQ4NzYxNDlkMjc3OGQ0OGVkYWFhMzI0
ZGIwYTUwHhcNMjQwMTAxMjIzMTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNGViODY4OGIwMzc4Y2YxOTEwNDQzNjUzOTY0ZDQxZDgxZTYxYzNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlKcxHcQjjtlbPbvvskLf6sMPJwnM
6UVYmIlwoIGTb2+oJERBEPH1p7C6CmQXIVDPDxo5+kC/WBFqEi5UVCvqK0elsGiQ
8tZGkKA/igQwvjWWS5mF4uCMq5HrBEfZ8i0Y6fycr3CtQlk6NFYDt/TL/g36MYTt
GXv1mv2sWgCDCtViQAE1gf8gFehs9bvhOXCUNjQq6FSZzl21TPUX7NH//o45ojlX
bD7y+1luN8Yj1/ySrL8mJ0AUdJTaCD4JVCi1xYYD/1cipiW2K/jNXtEjaIStoqw/
v/qWAXl+4HOqJ4hxAWU3LlgnEMDfZDdPsMxOCHKFkfgMDSX3XaxcXaZXfQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFPTrhoiwN4zxkQRDZTlk1B2B5hw7MB8GA1UdIwQY
MBaAFE8UES0F6dh2FJ0neNSO2qoyTbClMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhRUkxRWHAySFlVblNkNDFJN2FxakpOc0tVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS8zY2FhNTEtN2EyMS00OTlkLWE1NDUt
YmFmYmRmYzgxMzJhLzEvOU91R2lMQTNqUEdSQkVObE9XVFVIWUhtSERzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZS8zY2FhNTEtN2EyMS00OTlkLWE1NDUtYmFmYmRmYzgxMzJh
LzEvVHhRUkxRWHAySFlVblNkNDFJN2FxakpOc0tVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUDKhPEQAMF
AyoUEQAwDQYJKoZIhvcNAQELBQADggEBAGsgMPAsR6unG1yxTkFnpXAgJ/7K09K2
Zdv2ABoYBtaLavYUXFHAQjxhVjWz+7c3ailmVugzq87koOU3Xr+WjDqCh/NfNz/C
WjK88jLPr1mYY26wKpMVDNjvs4BiUew0cUkIBRCPn+JcFelXoJlRReJJsLMT/ODu
4KvmURfehGXkCHU/Ye5mjt13sg8HfseY0xrvMdIUA7qHCm/ZeYcWcfQ3xk4Vc8LR
kSZb3IUehn3DZkzSoBbcLFDd5Maj3N82sp8R1EYCRujgvkAZ9ZNeZPZUcJBsZSEi
lyQsvvZlUrAVH3pP2QMyFPFPb9BvDDn9U3CFOaRPDe88+cUA1fyn3Kc=
-----END CERTIFICATE-----
Generated at Wed Jan 10 00:17:48 2024 by rpki-client on console-fra.rpki-client.org