Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/mWpZ9UviuB4xHCf4QbhuLVUYYz4.roa
File: mWpZ9UviuB4xHCf4QbhuLVUYYz4.roa (raw, json)
Hash identifier: Yam1T/pcmKxdulfPjfFTsn6d1zRMncxz1lR44yh65As=
Subject key identifier: 99:6A:59:F5:4B:E2:B8:1E:31:1C:27:F8:41:B8:6E:2D:55:18:63:3E
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 0190BD0EAE97A12AE16B547D119F5B147DB1
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/mWpZ9UviuB4xHCf4QbhuLVUYYz4.roa
Signing time: Tue 16 Jul 2024 19:39:34 +0000
ROA not before: Tue 16 Jul 2024 19:39:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215434
IP address blocks: 2a05:9a40::/29 maxlen: 30
2a06:5fc0::/29 maxlen: 29
2a10:77c0::/29 maxlen: 29
2a13:afc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 01 Aug 2024 18:55:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:bd:0e:ae:97:a1:2a:e1:6b:54:7d:11:9f:5b:14:7d:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Jul 16 19:39:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=996a59f54be2b81e311c27f841b86e2d5518633e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:78:5c:50:0b:07:0b:18:4b:a1:83:42:d9:68:
d1:c4:bf:da:e1:e2:3c:61:19:97:13:07:c0:1c:8e:
0d:6b:4f:e1:0b:f4:81:4e:f1:31:64:41:8a:bd:58:
fa:d3:e5:33:d9:10:47:b1:be:45:89:f5:17:0c:44:
59:aa:36:51:f9:70:f4:d7:1d:7d:42:bf:64:1c:c1:
1e:4f:b1:5b:46:36:80:d0:f0:12:f1:19:09:4b:f2:
f0:0c:d5:58:d6:b0:42:ef:74:a3:bf:8e:5a:aa:b3:
11:fa:d6:91:7e:30:43:82:37:a0:99:40:55:cc:85:
e9:60:0f:4e:b0:a5:55:30:af:79:ef:17:aa:12:7c:
50:c0:92:f8:ba:5e:9e:6f:e2:df:48:86:d0:31:2c:
81:77:90:e2:73:37:08:41:a7:ce:6f:29:b8:cf:98:
b7:c4:3e:98:bb:88:7c:7b:ca:25:63:95:13:55:8b:
76:80:43:27:27:52:ae:54:a0:0c:ac:29:7a:00:18:
c8:c4:8d:ce:10:ee:b9:36:7b:31:0c:07:8d:44:72:
f4:66:bc:b7:74:95:d0:21:66:54:a9:87:37:e8:c2:
6e:d8:6c:83:70:80:3c:8e:38:db:a1:91:18:06:da:
ac:28:1a:25:f6:95:56:58:07:55:33:8c:00:17:e8:
90:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:6A:59:F5:4B:E2:B8:1E:31:1C:27:F8:41:B8:6E:2D:55:18:63:3E
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/mWpZ9UviuB4xHCf4QbhuLVUYYz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:9a40::/29
2a06:5fc0::/29
2a10:77c0::/29
2a13:afc0::/29
Signature Algorithm: sha256WithRSAEncryption
db:02:4f:95:b3:cf:a9:57:d2:ae:bc:5e:85:86:d5:71:c2:0c:
1b:6f:03:09:cb:d9:c4:4e:44:0d:11:f2:68:77:a5:d6:3f:01:
6f:98:63:df:39:82:3c:e1:cb:54:62:b8:ec:7d:37:61:80:8e:
73:60:5c:cc:d1:81:2f:41:8f:0c:aa:92:3a:6c:b2:07:2d:83:
ff:f9:53:e0:44:79:28:80:62:b7:20:87:fc:2e:20:fa:e5:a1:
db:4d:90:5f:7b:f6:a3:4d:34:49:d4:12:7c:46:75:82:db:72:
a4:1c:a6:e4:1d:a9:5b:81:98:b9:6e:7f:ca:59:66:8b:55:62:
fd:08:00:f6:91:bc:3c:38:9a:e2:46:e1:95:23:d2:b0:63:ca:
17:e7:1e:94:9d:35:0e:5a:86:44:b6:b9:15:4e:7c:6e:d6:53:
27:21:7f:ce:51:33:8e:ff:30:5a:2c:dd:80:5d:71:f6:af:b8:
fa:f0:23:d1:b1:02:16:6d:72:dc:f6:68:98:7c:79:eb:59:d3:
2b:1f:22:d6:1e:6e:2f:bc:c6:d9:14:9c:d0:bb:05:0c:f2:a1:
04:3c:36:ab:16:83:20:63:7f:f0:c1:08:0a:22:f8:76:b2:fe:
51:b2:d1:ef:d7:6f:4d:d1:a5:03:dc:04:f7:e5:f7:12:2f:eb:
66:0e:dd:72
-----BEGIN CERTIFICATE-----
MIIFEzCCA/ugAwIBAgISAZC9Dq6XoSrha1R9EZ9bFH2xMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmMTQxMTJkMDVlOWQ4NzYxNDlkMjc3OGQ0OGVkYWFhMzI0
ZGIwYTUwHhcNMjQwNzE2MTkzOTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OTZhNTlmNTRiZTJiODFlMzExYzI3Zjg0MWI4NmUyZDU1MTg2MzNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAynhcUAsHCxhLoYNC2WjRxL/a4eI8
YRmXEwfAHI4Na0/hC/SBTvExZEGKvVj60+Uz2RBHsb5FifUXDERZqjZR+XD01x19
Qr9kHMEeT7FbRjaA0PAS8RkJS/LwDNVY1rBC73Sjv45aqrMR+taRfjBDgjegmUBV
zIXpYA9OsKVVMK957xeqEnxQwJL4ul6eb+LfSIbQMSyBd5DiczcIQafObym4z5i3
xD6Yu4h8e8olY5UTVYt2gEMnJ1KuVKAMrCl6ABjIxI3OEO65NnsxDAeNRHL0Zry3
dJXQIWZUqYc36MJu2GyDcIA8jjjboZEYBtqsKBol9pVWWAdVM4wAF+iQFwIDAQAB
o4ICHzCCAhswHQYDVR0OBBYEFJlqWfVL4rgeMRwn+EG4bi1VGGM+MB8GA1UdIwQY
MBaAFE8UES0F6dh2FJ0neNSO2qoyTbClMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHhRUkxRWHAySFlVblNkNDFJN2FxakpOc0tVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS8zY2FhNTEtN2EyMS00OTlkLWE1NDUt
YmFmYmRmYzgxMzJhLzEvbVdwWjlVdml1QjR4SENmNFFiaHVMVlVZWXo0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZS8zY2FhNTEtN2EyMS00OTlkLWE1NDUtYmFmYmRmYzgxMzJh
LzEvVHhRUkxRWHAySFlVblNkNDFJN2FxakpOc0tVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDUGCCsGAQUFBwEHAQH/BCYwJDAiBAIAAjAcAwUDKgWaQAMF
AyoGX8ADBQMqEHfAAwUDKhOvwDANBgkqhkiG9w0BAQsFAAOCAQEA2wJPlbPPqVfS
rrxehYbVccIMG28DCcvZxE5EDRHyaHel1j8Bb5hj3zmCPOHLVGK47H03YYCOc2Bc
zNGBL0GPDKqSOmyyBy2D//lT4ER5KIBityCH/C4g+uWh202QX3v2o000SdQSfEZ1
gttypBym5B2pW4GYuW5/yllmi1Vi/QgA9pG8PDia4kbhlSPSsGPKF+celJ01DlqG
RLa5FU58btZTJyF/zlEzjv8wWizdgF1x9q+4+vAj0bECFm1y3PZomHx561nTKx8i
1h5uL7zG2RSc0LsFDPKhBDw2qxaDIGN/8MEICiL4drL+UbLR79dvTdGlA9wE9+X3
Ei/rZg7dcg==
-----END CERTIFICATE-----
Generated at Thu Aug 1 21:00:55 2024 by rpki-client on console-fra.rpki-client.org