Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/4p_fZl86cXKCPTV-GXKMuDkW7J8.roa
File: 4p_fZl86cXKCPTV-GXKMuDkW7J8.roa (raw, json)
Hash identifier: cxumB0bTgs0M6pwaHPNQpgwXhmsITDI0IMMl3/NA/58=
Subject key identifier: E2:9F:DF:66:5F:3A:71:72:82:3D:35:7E:19:72:8C:B8:39:16:EC:9F
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 01868EEBFA868F459A7771087BA21F8A1E32
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/4p_fZl86cXKCPTV-GXKMuDkW7J8.roa
Signing time: Sun 26 Feb 2023 18:11:14 +0000
ROA not before: Sun 26 Feb 2023 18:11:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206271
IP address blocks: 2a0a:280::/32 maxlen: 48
Validation: Failed, certificate revoked on Wed 06 Dec 2023 07:50:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:8e:eb:fa:86:8f:45:9a:77:71:08:7b:a2:1f:8a:1e:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Feb 26 18:11:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e29fdf665f3a7172823d357e19728cb83916ec9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:eb:71:40:64:34:89:55:0e:86:af:8c:f4:97:
07:84:ae:bf:1c:09:74:ce:11:f3:da:30:89:a1:fb:
11:cf:c6:0f:73:c0:87:74:fc:dc:9e:c1:61:5c:ce:
e3:19:bc:a4:11:9a:a8:45:6e:b4:fe:90:ca:24:cc:
0e:2b:0b:5b:a0:2f:3f:4c:d6:91:32:02:c4:b1:6f:
51:c6:56:84:cf:da:59:04:03:2b:b1:ed:3e:41:2d:
25:bc:76:c0:d2:5a:59:dc:22:e2:78:d8:77:70:ef:
fc:4c:85:cc:54:13:4b:e5:ef:ff:d7:14:b7:8a:6d:
ea:1b:76:8a:5a:47:6d:80:0d:c9:14:d6:3b:d6:2b:
fb:8d:b8:ee:db:e6:e7:b7:ae:36:63:d0:b5:39:3c:
20:c4:14:cc:55:93:a4:b4:fd:3f:7f:fe:21:97:13:
6e:32:f5:e1:5a:04:e1:10:3b:b7:ed:98:5b:f7:58:
cf:1f:67:2f:54:40:63:60:5a:55:17:d9:b8:4c:ef:
95:d3:1d:68:67:b7:8b:9d:de:b3:77:74:0b:1f:a8:
35:ab:0e:f8:31:45:2b:8c:88:82:2f:f1:5e:14:b9:
9b:70:7a:0b:c1:a5:bb:d5:e5:a1:86:c5:4a:48:fb:
30:0e:83:7f:b8:fd:8d:cb:85:83:eb:35:62:c7:3f:
2c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:9F:DF:66:5F:3A:71:72:82:3D:35:7E:19:72:8C:B8:39:16:EC:9F
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/4p_fZl86cXKCPTV-GXKMuDkW7J8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:280::/32
Signature Algorithm: sha256WithRSAEncryption
95:e9:71:5c:a9:c6:9a:61:49:c9:ad:7b:73:f7:e2:d8:d1:92:
98:da:df:fd:9e:ea:c6:9e:3f:05:54:6a:f1:af:ce:7e:a0:42:
4b:00:02:92:66:87:85:6a:23:9f:f3:0c:9b:0e:9f:1a:ed:c7:
43:86:b1:91:2b:04:d9:ff:b7:d5:89:07:50:cb:95:c4:32:ce:
58:89:d5:81:d2:23:83:ac:17:96:88:14:a1:ca:a3:b7:95:71:
df:3b:b9:89:56:28:1c:69:85:e1:5a:47:ae:b9:14:91:68:49:
36:40:43:61:72:05:da:c7:cb:6a:ad:e3:a6:cf:2f:50:18:e9:
4c:cf:81:03:01:3a:92:e7:91:ea:da:1c:aa:3c:6d:33:64:d8:
51:c7:c7:69:09:f1:8e:5e:ac:b4:07:aa:a1:a4:f3:4b:11:8f:
3e:f5:6a:31:2c:21:6b:99:23:ad:c5:36:af:00:13:99:56:34:
5a:8b:df:a0:1a:a4:ea:26:6b:fd:07:0c:1e:54:ad:1a:b7:b3:
6f:01:57:e9:72:56:bc:0b:ba:5c:ac:82:a2:e7:a3:7a:11:68:
9d:c3:36:88:44:0d:f4:15:53:4a:b6:ff:28:9e:ac:92:77:7c:
d7:99:ef:b9:04:a1:79:40:48:a3:de:81:d3:6c:04:c2:e2:30:
da:01:dd:82
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYaO6/qGj0Wad3EIe6Ifih4yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiOWYyMWJhMDRlNWUzMDc3YjM5MWUzZDQ4ZmY1YjBhNTBi
MzM2OWYwHhcNMjMwMjI2MTgxMTE0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMjlmZGY2NjVmM2E3MTcyODIzZDM1N2UxOTcyOGNiODM5MTZlYzlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk+txQGQ0iVUOhq+M9JcHhK6/HAl0
zhHz2jCJofsRz8YPc8CHdPzcnsFhXM7jGbykEZqoRW60/pDKJMwOKwtboC8/TNaR
MgLEsW9RxlaEz9pZBAMrse0+QS0lvHbA0lpZ3CLieNh3cO/8TIXMVBNL5e//1xS3
im3qG3aKWkdtgA3JFNY71iv7jbju2+bnt642Y9C1OTwgxBTMVZOktP0/f/4hlxNu
MvXhWgThEDu37Zhb91jPH2cvVEBjYFpVF9m4TO+V0x1oZ7eLnd6zd3QLH6g1qw74
MUUrjIiCL/FeFLmbcHoLwaW71eWhhsVKSPswDoN/uP2Ny4WD6zVixz8sAwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFOKf32ZfOnFygj01fhlyjLg5FuyfMB8GA1UdIwQY
MBaAFBufIboE5eMHezkePUj/WwpQszafMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRzU4aHVnVGw0d2Q3T1I0OVNQOWJDbEN6TnA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9mNjdhNzgtMTgzZC00OTRhLTk5NWUt
ZjUxYzVmYjNkZjlhLzEvNHBfZlpsODZjWEtDUFRWLUdYS011RGtXN0o4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi9mNjdhNzgtMTgzZC00OTRhLTk5NWUtZjUxYzVmYjNkZjlh
LzEvRzU4aHVnVGw0d2Q3T1I0OVNQOWJDbEN6TnA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgoCgDAN
BgkqhkiG9w0BAQsFAAOCAQEAlelxXKnGmmFJya17c/fi2NGSmNrf/Z7qxp4/BVRq
8a/OfqBCSwACkmaHhWojn/MMmw6fGu3HQ4axkSsE2f+31YkHUMuVxDLOWInVgdIj
g6wXlogUocqjt5Vx3zu5iVYoHGmF4VpHrrkUkWhJNkBDYXIF2sfLaq3jps8vUBjp
TM+BAwE6kueR6tocqjxtM2TYUcfHaQnxjl6stAeqoaTzSxGPPvVqMSwha5kjrcU2
rwATmVY0WovfoBqk6iZr/QcMHlStGrezbwFX6XJWvAu6XKyCouejehFoncM2iEQN
9BVTSrb/KJ6sknd815nvuQSheUBIo96B02wEwuIw2gHdgg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:06 2024 by rpki-client on console-ams.rpki-client.org