Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7dae2f-d236-41f7-b1bc-8448dcfb27aa/1/aM-2y2BI6xYlGiIrsi0FtqgNXyY.roa
File: aM-2y2BI6xYlGiIrsi0FtqgNXyY.roa (raw, json)
Hash identifier: xCFm1jwJ2czAYEydI6Dzfui5g5epqJLdOVtQNba6zxk=
Subject key identifier: 68:CF:B6:CB:60:48:EB:16:25:1A:22:2B:B2:2D:05:B6:A8:0D:5F:26
Certificate issuer: /CN=391462364ed45f676ad50a9eae2d342d8cfd7441
Certificate serial: 01856F54B69E985C437A3B0C140D1BFB8D2A
Authority key identifier: 39:14:62:36:4E:D4:5F:67:6A:D5:0A:9E:AE:2D:34:2D:8C:FD:74:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ORRiNk7UX2dq1Qqeri00LYz9dEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7dae2f-d236-41f7-b1bc-8448dcfb27aa/1/aM-2y2BI6xYlGiIrsi0FtqgNXyY.roa
Signing time: Sun 01 Jan 2023 21:55:00 +0000
ROA not before: Sun 01 Jan 2023 21:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 680
IP address blocks: 141.83.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:b6:9e:98:5c:43:7a:3b:0c:14:0d:1b:fb:8d:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=391462364ed45f676ad50a9eae2d342d8cfd7441
Validity
Not Before: Jan 1 21:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68cfb6cb6048eb16251a222bb22d05b6a80d5f26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:57:60:33:57:9f:e2:00:87:ca:96:d3:af:41:
80:7a:40:23:dd:74:a8:d4:ac:65:30:22:2a:36:c3:
fd:0a:3e:4c:0f:31:ce:e0:db:ec:99:a3:18:f8:a4:
cb:ef:40:5e:16:7d:0a:a8:86:fa:7c:31:1d:5e:4f:
e6:8f:ee:7a:5a:cc:2f:90:5c:60:fa:73:32:bc:37:
86:12:e3:aa:36:ce:cd:65:6e:5a:fb:4d:db:98:66:
f6:29:fe:c7:29:ea:ef:d9:6d:f9:09:bc:e5:dc:4a:
94:75:a9:8e:e1:bc:aa:e9:8e:31:0a:5f:46:9a:0f:
af:9c:93:99:32:5f:11:79:c5:0d:7d:0c:8e:f9:a3:
12:b4:59:bf:8a:d3:5b:70:f9:6f:e5:e1:5b:07:e9:
c5:1b:79:3d:45:ae:4e:34:01:0e:92:20:2f:ff:74:
81:79:c6:8e:0c:1b:57:2e:16:53:96:3f:0f:4b:09:
85:23:6f:ec:59:7d:13:ea:67:61:b1:ec:4a:24:de:
3f:60:ae:04:eb:fe:dd:6d:25:fc:07:0f:c1:16:29:
ef:dd:41:10:a1:98:2b:73:ab:38:b6:ee:f1:36:06:
b8:9a:35:d2:aa:45:de:f1:35:c6:c5:99:2e:94:44:
85:b2:28:1a:8c:31:9e:ab:f8:30:ff:28:36:5b:92:
90:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:CF:B6:CB:60:48:EB:16:25:1A:22:2B:B2:2D:05:B6:A8:0D:5F:26
X509v3 Authority Key Identifier:
keyid:39:14:62:36:4E:D4:5F:67:6A:D5:0A:9E:AE:2D:34:2D:8C:FD:74:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ORRiNk7UX2dq1Qqeri00LYz9dEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7dae2f-d236-41f7-b1bc-8448dcfb27aa/1/aM-2y2BI6xYlGiIrsi0FtqgNXyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7dae2f-d236-41f7-b1bc-8448dcfb27aa/1/ORRiNk7UX2dq1Qqeri00LYz9dEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.83.0.0/16
Signature Algorithm: sha256WithRSAEncryption
41:e7:2c:95:2f:e1:fe:c8:34:2f:99:5f:9b:d6:76:80:42:d8:
c7:55:54:ed:65:b9:35:2b:56:d6:7b:a5:1f:04:c1:f7:19:10:
dd:76:75:28:60:92:a2:1f:33:22:92:1f:95:64:03:fc:c5:d1:
7f:1f:9d:af:16:2d:6e:89:80:be:be:57:22:04:62:56:30:d8:
84:f7:81:11:97:c5:6c:c4:67:af:5e:b7:32:cf:bd:05:3c:72:
96:16:d8:bd:16:78:e5:d5:9b:1c:bf:34:16:12:00:dd:0b:e4:
73:bc:41:b0:b5:f0:0b:1c:b2:97:84:7d:45:47:98:09:d4:7a:
a7:34:4c:a6:72:9a:50:1b:44:8e:83:b2:4f:8f:cb:c5:a7:0b:
46:10:a5:16:cd:53:f2:61:fb:3a:74:52:2e:b7:64:c2:a8:eb:
b4:98:d1:15:ba:1d:cd:b8:73:48:d5:e6:28:59:6f:44:9a:02:
8d:c0:43:45:2e:2a:dd:79:4b:48:77:a5:da:3e:d2:a4:d2:cb:
46:31:ff:59:e8:09:82:d3:30:66:cc:bd:1d:a6:59:f3:93:e6:
f6:3f:05:50:8f:ad:1c:7c:97:d7:e5:67:cf:88:c3:d1:b6:61:
e1:58:58:4c:b6:6e:f6:35:f1:a6:ef:ed:c0:cf:1d:74:2e:90:
bb:5a:5d:7c
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgISAYVvVLaemFxDejsMFA0b+40qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM5MTQ2MjM2NGVkNDVmNjc2YWQ1MGE5ZWFlMmQzNDJkOGNm
ZDc0NDEwHhcNMjMwMTAxMjE1NTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2OGNmYjZjYjYwNDhlYjE2MjUxYTIyMmJiMjJkMDViNmE4MGQ1ZjI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk1dgM1ef4gCHypbTr0GAekAj3XSo
1KxlMCIqNsP9Cj5MDzHO4NvsmaMY+KTL70BeFn0KqIb6fDEdXk/mj+56WswvkFxg
+nMyvDeGEuOqNs7NZW5a+03bmGb2Kf7HKerv2W35Cbzl3EqUdamO4byq6Y4xCl9G
mg+vnJOZMl8RecUNfQyO+aMStFm/itNbcPlv5eFbB+nFG3k9Ra5ONAEOkiAv/3SB
ecaODBtXLhZTlj8PSwmFI2/sWX0T6mdhsexKJN4/YK4E6/7dbSX8Bw/BFinv3UEQ
oZgrc6s4tu7xNga4mjXSqkXe8TXGxZkulESFsigajDGeq/gw/yg2W5KQ9QIDAQAB
o4ICCDCCAgQwHQYDVR0OBBYEFGjPtstgSOsWJRoiK7ItBbaoDV8mMB8GA1UdIwQY
MBaAFDkUYjZO1F9natUKnq4tNC2M/XRBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT1JSaU5rN1VYMmRxMVFxZXJpMDBMWXo5ZEVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi83ZGFlMmYtZDIzNi00MWY3LWIxYmMt
ODQ0OGRjZmIyN2FhLzEvYU0tMnkyQkk2eFlsR2lJcnNpMEZ0cWdOWHlZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi83ZGFlMmYtZDIzNi00MWY3LWIxYmMtODQ0OGRjZmIyN2Fh
LzEvT1JSaU5rN1VYMmRxMVFxZXJpMDBMWXo5ZEVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjVMwDQYJ
KoZIhvcNAQELBQADggEBAEHnLJUv4f7INC+ZX5vWdoBC2MdVVO1luTUrVtZ7pR8E
wfcZEN12dShgkqIfMyKSH5VkA/zF0X8fna8WLW6JgL6+VyIEYlYw2IT3gRGXxWzE
Z69etzLPvQU8cpYW2L0WeOXVmxy/NBYSAN0L5HO8QbC18AscspeEfUVHmAnUeqc0
TKZymlAbRI6Dsk+Py8WnC0YQpRbNU/Jh+zp0Ui63ZMKo67SY0RW6Hc24c0jV5ihZ
b0SaAo3AQ0UuKt15S0h3pdo+0qTSy0Yx/1noCYLTMGbMvR2mWfOT5vY/BVCPrRx8
l9flZ8+Iw9G2YeFYWEy2bvY18abv7cDPHXQukLtaXXw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:18 2024 by rpki-client on console-fra.rpki-client.org