Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/S5R540cC2OTljjE0G-jcKK4P4iQ.roa
File: S5R540cC2OTljjE0G-jcKK4P4iQ.roa (raw, json)
Hash identifier: 6Qpnh4gZr28B6mbspYdOYxlK11wqrEJxkBlGzo9/aE8=
Subject key identifier: 4B:94:79:E3:47:02:D8:E4:E5:8E:31:34:1B:E8:DC:28:AE:0F:E2:24
Certificate issuer: /CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Certificate serial: 018AFEC4B2921B3301B74D25EF489FF741D1
Authority key identifier: 4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/S5R540cC2OTljjE0G-jcKK4P4iQ.roa
Signing time: Thu 05 Oct 2023 07:36:58 +0000
ROA not before: Thu 05 Oct 2023 07:36:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198831
IP address blocks: 2a10:4646:2d0::/44 maxlen: 44
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fe:c4:b2:92:1b:33:01:b7:4d:25:ef:48:9f:f7:41:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a6d2817491dd2cd0678068e35a9efc68667df02
Validity
Not Before: Oct 5 07:36:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b9479e34702d8e4e58e31341be8dc28ae0fe224
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:3d:5b:0c:e1:bf:4b:24:19:1e:9e:e4:4c:30:
07:5d:4c:7e:7a:83:06:fb:f6:73:a9:e3:c9:5b:f7:
ff:28:67:e0:c4:f8:33:54:ec:b1:80:ba:9f:f0:a6:
2d:0c:a9:ec:5f:52:12:4d:d0:c2:f0:54:e9:36:a3:
a8:80:68:4a:ee:00:1d:b3:aa:80:9a:09:ae:2c:d3:
da:15:db:46:84:f1:bd:5e:56:fb:d7:16:14:2b:f6:
d6:5d:63:45:5e:5d:e5:bd:63:7e:7d:cb:3a:e5:10:
ab:af:62:8c:a2:97:50:40:d3:c7:59:af:c2:32:46:
89:83:2f:f0:4a:f3:a4:29:8c:84:f1:f2:64:71:21:
57:13:cd:36:83:53:18:da:a4:7c:57:e2:6f:4d:41:
32:99:bf:27:71:7c:f8:d0:f4:43:51:49:05:72:8d:
02:9a:00:df:e7:e6:44:1f:4a:37:20:15:73:16:b6:
99:50:f2:88:b0:3b:98:e1:9b:7d:98:06:45:4b:78:
46:76:73:4b:64:f6:ce:d6:56:c5:28:b0:19:63:f4:
71:f2:63:68:13:54:8b:1f:cd:27:d0:ae:bc:35:6e:
8c:a0:3a:46:2b:e5:79:42:d3:16:b9:2c:1a:f1:fb:
69:47:96:0e:66:c1:c5:31:4b:e6:ba:61:39:70:1a:
4c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:94:79:E3:47:02:D8:E4:E5:8E:31:34:1B:E8:DC:28:AE:0F:E2:24
X509v3 Authority Key Identifier:
keyid:4A:6D:28:17:49:1D:D2:CD:06:78:06:8E:35:A9:EF:C6:86:67:DF:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sm0oF0kd0s0GeAaONanvxoZn3wI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/S5R540cC2OTljjE0G-jcKK4P4iQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9488c7-849c-4ff1-ab4c-ae9283e7964e/1/Sm0oF0kd0s0GeAaONanvxoZn3wI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4646:2d0::/44
Signature Algorithm: sha256WithRSAEncryption
4d:d5:d5:0d:ba:02:3e:b6:a1:5a:be:cd:5d:69:97:4a:1c:2c:
49:67:15:81:c2:11:91:8d:3e:31:f5:f3:0a:8a:4d:5e:94:08:
27:a0:bc:2f:83:8c:e7:71:2a:f0:1a:c6:51:e6:34:69:7e:85:
8d:5a:c5:1e:f5:75:a9:eb:db:75:09:37:4d:b5:e2:bf:5b:b1:
21:68:69:71:64:8b:dd:04:75:2c:5d:67:69:c6:7a:ba:86:85:
85:d6:49:18:7b:0b:09:51:93:e9:26:25:c7:f5:2f:47:e5:44:
33:c3:40:e7:41:ec:63:a6:90:c1:fb:09:4a:91:96:4f:82:80:
a6:6a:8f:19:50:11:2e:e9:67:c3:9e:c8:3e:be:74:50:e1:79:
3f:2c:61:bb:64:43:3c:e0:e3:15:57:b8:92:fd:1e:c4:b9:ca:
2f:9b:98:02:83:e1:e3:82:fa:36:00:72:17:9b:ed:ab:a2:c9:
fc:ea:77:d8:ff:e6:08:ff:83:97:71:49:15:44:a0:86:ce:e0:
51:ec:61:6f:5a:fa:dc:f5:5b:d1:53:6c:f7:bf:11:bf:6f:db:
8d:00:b9:a8:c1:b1:30:a1:3f:77:16:3c:14:fc:0a:e9:62:01:
32:b6:a1:3c:b8:b6:92:e1:4a:9d:fc:db:df:ce:28:6d:55:69:
8d:3b:68:20
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYr+xLKSGzMBt00l70if90HRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhNmQyODE3NDkxZGQyY2QwNjc4MDY4ZTM1YTllZmM2ODY2
N2RmMDIwHhcNMjMxMDA1MDczNjU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0Yjk0NzllMzQ3MDJkOGU0ZTU4ZTMxMzQxYmU4ZGMyOGFlMGZlMjI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjz1bDOG/SyQZHp7kTDAHXUx+eoMG
+/ZzqePJW/f/KGfgxPgzVOyxgLqf8KYtDKnsX1ISTdDC8FTpNqOogGhK7gAds6qA
mgmuLNPaFdtGhPG9Xlb71xYUK/bWXWNFXl3lvWN+fcs65RCrr2KMopdQQNPHWa/C
MkaJgy/wSvOkKYyE8fJkcSFXE802g1MY2qR8V+JvTUEymb8ncXz40PRDUUkFco0C
mgDf5+ZEH0o3IBVzFraZUPKIsDuY4Zt9mAZFS3hGdnNLZPbO1lbFKLAZY/Rx8mNo
E1SLH80n0K68NW6MoDpGK+V5QtMWuSwa8ftpR5YOZsHFMUvmumE5cBpMkwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFEuUeeNHAtjk5Y4xNBvo3CiuD+IkMB8GA1UdIwQY
MBaAFEptKBdJHdLNBngGjjWp78aGZ98CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU20wb0Ywa2QwczBHZUFhT05hbnZ4b1puM3dJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC85NDg4YzctODQ5Yy00ZmYxLWFiNGMt
YWU5MjgzZTc5NjRlLzEvUzVSNTQwY0MyT1RsampFMEctamNLSzRQNGlRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC85NDg4YzctODQ5Yy00ZmYxLWFiNGMtYWU5MjgzZTc5NjRl
LzEvU20wb0Ywa2QwczBHZUFhT05hbnZ4b1puM3dJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhBGRgLQ
MA0GCSqGSIb3DQEBCwUAA4IBAQBN1dUNugI+tqFavs1daZdKHCxJZxWBwhGRjT4x
9fMKik1elAgnoLwvg4zncSrwGsZR5jRpfoWNWsUe9XWp69t1CTdNteK/W7EhaGlx
ZIvdBHUsXWdpxnq6hoWF1kkYewsJUZPpJiXH9S9H5UQzw0DnQexjppDB+wlKkZZP
goCmao8ZUBEu6WfDnsg+vnRQ4Xk/LGG7ZEM84OMVV7iS/R7Eucovm5gCg+Hjgvo2
AHIXm+2rosn86nfY/+YI/4OXcUkVRKCGzuBR7GFvWvrc9VvRU2z3vxG/b9uNALmo
wbEwoT93FjwU/ArpYgEytqE8uLaS4Uqd/NvfzihtVWmNO2gg
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:05 2024 by rpki-client on console-fra.rpki-client.org