Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/rg7xjkYnoeRNu2cMcEFAfBY0ALU.roa
File: rg7xjkYnoeRNu2cMcEFAfBY0ALU.roa (raw, json)
Hash identifier: gAp9WjnhqfFDLGSGkLvqddrhtdaURmPu/Tm31t517LM=
Subject key identifier: AE:0E:F1:8E:46:27:A1:E4:4D:BB:67:0C:70:41:40:7C:16:34:00:B5
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 018CC94D006950CD82BA267868FCE4735961
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/rg7xjkYnoeRNu2cMcEFAfBY0ALU.roa
Signing time: Tue 02 Jan 2024 08:31:55 +0000
ROA not before: Tue 02 Jan 2024 08:31:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49195
IP address blocks: 2a0a:280:2d00::/40 maxlen: 48
Validation: Failed, certificate revoked on Wed 14 Feb 2024 20:02:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:00:69:50:cd:82:ba:26:78:68:fc:e4:73:59:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Jan 2 08:31:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ae0ef18e4627a1e44dbb670c7041407c163400b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:2c:87:ab:72:79:db:18:70:ae:a2:a0:75:fd:
db:fd:76:ba:dd:1b:f1:2c:98:6c:ea:44:f2:00:a0:
30:39:69:07:f4:a7:f4:81:03:22:a9:b7:48:9f:6a:
2d:f6:32:89:c0:aa:09:fc:8a:57:04:c9:26:c0:8c:
78:8e:a0:27:7d:ea:8c:c0:11:77:ff:94:d4:b5:7d:
c9:52:cd:86:d6:90:6c:51:97:c2:59:26:bc:c1:b0:
a4:fd:44:2d:60:0c:1e:b1:59:11:61:aa:ba:ab:33:
55:e0:4e:76:d1:85:93:9a:c7:96:af:0b:90:57:72:
0f:f8:e3:42:c5:7f:40:5f:2e:59:56:34:53:ae:1f:
d4:d1:1d:6a:26:20:fe:99:fb:60:16:eb:28:45:5a:
92:0c:20:c4:25:1c:dc:ba:8c:cf:6f:0d:10:ab:89:
07:7e:e0:a7:4b:c8:d7:db:77:62:4d:c9:df:e0:45:
17:07:89:3b:09:fe:89:c3:ba:29:2b:ce:6b:ae:59:
33:75:36:ed:bd:95:f0:a1:0a:bc:05:b5:e6:fa:e0:
bb:0e:7f:be:12:75:60:47:17:d2:b1:19:71:6f:c0:
2b:a4:5f:75:cf:8b:e0:58:c1:8f:53:49:58:81:45:
82:84:c3:83:ff:8e:36:3c:1a:00:14:64:af:7e:d9:
41:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:0E:F1:8E:46:27:A1:E4:4D:BB:67:0C:70:41:40:7C:16:34:00:B5
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/rg7xjkYnoeRNu2cMcEFAfBY0ALU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:280:2d00::/40
Signature Algorithm: sha256WithRSAEncryption
1e:1f:13:ff:8a:4c:9f:ff:2e:0c:a1:e1:72:05:15:9e:68:65:
3c:14:e9:91:aa:bc:e6:6c:23:00:f6:d0:55:ff:0f:9b:78:c2:
a4:c7:db:86:f0:25:eb:97:d4:1e:6e:b6:88:d1:a5:86:74:9a:
13:c9:36:f6:f1:50:c2:c9:71:cc:47:9a:4e:29:f5:cf:08:a5:
d3:72:3a:bf:86:f3:72:46:30:78:2a:c6:d9:52:63:64:b9:55:
e0:55:00:50:cc:ea:51:cd:a9:f3:94:03:60:4c:b2:00:84:5f:
82:58:91:4e:f5:a4:19:31:87:d1:a9:d6:be:c6:ee:76:44:34:
19:61:93:7f:a8:ae:9e:48:df:81:ea:7a:96:32:47:c9:b8:b8:
58:45:8f:9c:45:6f:bf:f1:98:9c:0d:7c:94:e8:24:9c:54:69:
4e:2f:43:d8:4b:79:71:62:6a:3c:a8:d9:5c:23:d7:ff:72:80:
15:c8:af:1e:63:c5:56:22:93:53:d6:31:d3:23:bb:3d:92:12:
91:dc:42:d6:52:ab:b6:9d:ba:ec:d7:d7:12:8d:ca:e3:0a:42:
86:21:3f:14:8a:bc:37:a1:62:22:e5:2d:81:30:2b:e7:5b:df:
36:74:fd:1b:b4:71:15:b4:64:ed:37:83:8b:9c:c3:ca:a1:8a:
94:af:61:fd
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYzJTQBpUM2CuiZ4aPzkc1lhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiOWYyMWJhMDRlNWUzMDc3YjM5MWUzZDQ4ZmY1YjBhNTBi
MzM2OWYwHhcNMjQwMTAyMDgzMTU1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZTBlZjE4ZTQ2MjdhMWU0NGRiYjY3MGM3MDQxNDA3YzE2MzQwMGI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjCyHq3J52xhwrqKgdf3b/Xa63Rvx
LJhs6kTyAKAwOWkH9Kf0gQMiqbdIn2ot9jKJwKoJ/IpXBMkmwIx4jqAnfeqMwBF3
/5TUtX3JUs2G1pBsUZfCWSa8wbCk/UQtYAwesVkRYaq6qzNV4E520YWTmseWrwuQ
V3IP+ONCxX9AXy5ZVjRTrh/U0R1qJiD+mftgFusoRVqSDCDEJRzcuozPbw0Qq4kH
fuCnS8jX23diTcnf4EUXB4k7Cf6Jw7opK85rrlkzdTbtvZXwoQq8BbXm+uC7Dn++
EnVgRxfSsRlxb8ArpF91z4vgWMGPU0lYgUWChMOD/442PBoAFGSvftlBTwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFK4O8Y5GJ6HkTbtnDHBBQHwWNAC1MB8GA1UdIwQY
MBaAFBufIboE5eMHezkePUj/WwpQszafMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRzU4aHVnVGw0d2Q3T1I0OVNQOWJDbEN6TnA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9mNjdhNzgtMTgzZC00OTRhLTk5NWUt
ZjUxYzVmYjNkZjlhLzEvcmc3eGprWW5vZVJOdTJjTWNFRkFmQlkwQUxVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi9mNjdhNzgtMTgzZC00OTRhLTk5NWUtZjUxYzVmYjNkZjlh
LzEvRzU4aHVnVGw0d2Q3T1I0OVNQOWJDbEN6TnA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgoCgC0w
DQYJKoZIhvcNAQELBQADggEBAB4fE/+KTJ//Lgyh4XIFFZ5oZTwU6ZGqvOZsIwD2
0FX/D5t4wqTH24bwJeuX1B5utojRpYZ0mhPJNvbxUMLJccxHmk4p9c8IpdNyOr+G
83JGMHgqxtlSY2S5VeBVAFDM6lHNqfOUA2BMsgCEX4JYkU71pBkxh9Gp1r7G7nZE
NBlhk3+orp5I34HqepYyR8m4uFhFj5xFb7/xmJwNfJToJJxUaU4vQ9hLeXFiajyo
2Vwj1/9ygBXIrx5jxVYik1PWMdMjuz2SEpHcQtZSq7aduuzX1xKNyuMKQoYhPxSK
vDehYiLlLYEwK+db3zZ0/Ru0cRW0ZO03g4ucw8qhipSvYf0=
-----END CERTIFICATE-----
Generated at Wed Feb 14 22:46:23 2024 by rpki-client on console-fra.rpki-client.org