Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/41nOcjSMx3xyOLJaIq-JtCtQ4vo.roa
File: 41nOcjSMx3xyOLJaIq-JtCtQ4vo.roa (raw, json)
Hash identifier: nzxikeZCYXmcWegctz2ZAeZEbqr2ymbst9SQAhRct+w=
Subject key identifier: E3:59:CE:72:34:8C:C7:7C:72:38:B2:5A:22:AF:89:B4:2B:50:E2:FA
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 018CC4936A5E83ABF15A8C0F610ABEE57E81
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/41nOcjSMx3xyOLJaIq-JtCtQ4vo.roa
Signing time: Mon 01 Jan 2024 10:30:44 +0000
ROA not before: Mon 01 Jan 2024 10:30:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198831
IP address blocks: 2a10:4646:2d0::/44 maxlen: 44
Validation: Failed, certificate revoked on Sun 14 Jan 2024 17:18:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:6a:5e:83:ab:f1:5a:8c:0f:61:0a:be:e5:7e:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Jan 1 10:30:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e359ce72348cc77c7238b25a22af89b42b50e2fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:4b:ae:4a:47:99:c2:09:5a:47:50:a1:06:67:
2a:dc:bf:de:2e:fc:fd:59:cd:75:e7:8c:d7:3d:39:
a2:b7:68:12:df:82:58:7a:92:9f:39:e3:eb:45:9e:
a7:f2:a4:21:6b:f7:d2:6b:86:76:19:7c:cf:a2:a2:
4c:92:40:a7:3a:31:54:e4:0d:52:f6:78:68:6e:71:
5e:d0:ad:df:93:30:ce:cf:c2:fc:12:84:61:be:e5:
f6:d2:ad:da:b4:92:6d:96:8c:36:4f:ba:e4:c4:7b:
bf:de:ff:87:d4:f5:5c:67:53:05:d4:15:55:11:c8:
b5:73:12:bd:55:02:05:3f:80:d3:f0:d5:e1:f0:2c:
ba:66:94:8e:ce:1c:3c:7a:af:06:13:55:a5:5b:00:
c8:e1:3a:aa:09:dc:7e:24:62:79:a0:17:63:f6:43:
9d:36:0d:04:ad:00:2d:57:e5:bc:33:eb:87:5f:d8:
03:02:84:af:5c:0f:93:eb:05:ec:69:ad:12:53:3a:
f6:3b:d7:e8:bb:ff:28:cb:89:58:eb:63:40:57:d8:
23:ce:b0:6d:cb:ef:09:f7:50:37:af:d0:fb:02:6d:
e7:dc:5e:92:f6:71:6b:d1:fa:db:0b:3d:7b:a4:0e:
37:f6:76:ec:e5:3f:62:5b:54:64:29:78:73:0c:d7:
63:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:59:CE:72:34:8C:C7:7C:72:38:B2:5A:22:AF:89:B4:2B:50:E2:FA
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/41nOcjSMx3xyOLJaIq-JtCtQ4vo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:2d0::/44
Signature Algorithm: sha256WithRSAEncryption
28:62:23:08:b2:20:f3:e1:7d:b2:60:c6:0c:b5:cd:ce:05:a1:
40:c1:cd:29:8d:52:f2:97:0c:06:c1:73:54:11:f1:27:28:dc:
e9:28:f8:61:94:34:78:b5:a6:ef:6f:65:c3:c8:89:c9:23:bc:
44:ec:6f:8b:eb:d8:9f:d6:25:94:b0:e3:f7:d4:ca:34:7d:bf:
bd:bd:33:ec:3a:ab:bb:82:b5:d6:8f:e9:c7:bf:05:27:0d:d3:
42:7d:c2:02:a5:98:bc:fb:95:48:85:d3:21:2f:18:31:b6:3a:
ec:33:f4:c1:be:08:7b:2e:23:01:d8:39:65:dc:96:1d:5e:87:
7d:20:5a:77:23:e1:96:31:40:d2:d2:a5:c8:d2:0e:f2:1d:cf:
c4:93:d4:8b:db:61:55:c6:0b:15:38:a3:ec:25:ca:2f:0f:e3:
58:d9:96:df:1d:08:f6:de:dd:a4:f1:3a:81:93:0a:24:34:8d:
c3:fb:05:5a:7c:0e:c7:9c:a1:fd:03:5e:2f:ce:e4:84:4f:d6:
63:b5:18:45:11:49:51:85:d1:c9:40:84:51:82:cf:21:56:c6:
79:8e:32:0c:85:d6:9f:ab:25:e4:a7:db:ec:ea:a9:b3:23:4a:
63:fe:4a:43:bf:2a:f4:6f:af:3a:5d:fd:90:d0:24:c6:4a:fe:
02:ad:0b:36
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYzEk2peg6vxWowPYQq+5X6BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhNmQyODE3NDkxZGQyY2QwNjc4MDY4ZTM1YTllZmM2ODY2
N2RmMDIwHhcNMjQwMTAxMTAzMDQ0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzU5Y2U3MjM0OGNjNzdjNzIzOGIyNWEyMmFmODliNDJiNTBlMmZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnUuuSkeZwglaR1ChBmcq3L/eLvz9
Wc1154zXPTmit2gS34JYepKfOePrRZ6n8qQha/fSa4Z2GXzPoqJMkkCnOjFU5A1S
9nhobnFe0K3fkzDOz8L8EoRhvuX20q3atJJtlow2T7rkxHu/3v+H1PVcZ1MF1BVV
Eci1cxK9VQIFP4DT8NXh8Cy6ZpSOzhw8eq8GE1WlWwDI4TqqCdx+JGJ5oBdj9kOd
Ng0ErQAtV+W8M+uHX9gDAoSvXA+T6wXsaa0SUzr2O9fou/8oy4lY62NAV9gjzrBt
y+8J91A3r9D7Am3n3F6S9nFr0frbCz17pA439nbs5T9iW1RkKXhzDNdjWQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFONZznI0jMd8cjiyWiKvibQrUOL6MB8GA1UdIwQY
MBaAFEptKBdJHdLNBngGjjWp78aGZ98CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU20wb0Ywa2QwczBHZUFhT05hbnZ4b1puM3dJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC85NDg4YzctODQ5Yy00ZmYxLWFiNGMt
YWU5MjgzZTc5NjRlLzEvNDFuT2NqU014M3h5T0xKYUlxLUp0Q3RRNHZvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC85NDg4YzctODQ5Yy00ZmYxLWFiNGMtYWU5MjgzZTc5NjRl
LzEvU20wb0Ywa2QwczBHZUFhT05hbnZ4b1puM3dJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhBGRgLQ
MA0GCSqGSIb3DQEBCwUAA4IBAQAoYiMIsiDz4X2yYMYMtc3OBaFAwc0pjVLylwwG
wXNUEfEnKNzpKPhhlDR4tabvb2XDyInJI7xE7G+L69if1iWUsOP31Mo0fb+9vTPs
Oqu7grXWj+nHvwUnDdNCfcICpZi8+5VIhdMhLxgxtjrsM/TBvgh7LiMB2Dll3JYd
Xod9IFp3I+GWMUDS0qXI0g7yHc/Ek9SL22FVxgsVOKPsJcovD+NY2ZbfHQj23t2k
8TqBkwokNI3D+wVafA7HnKH9A14vzuSET9ZjtRhFEUlRhdHJQIRRgs8hVsZ5jjIM
hdafqyXkp9vs6qmzI0pj/kpDvyr0b686Xf2Q0CTGSv4CrQs2
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:05 2024 by rpki-client on console-fra.rpki-client.org