Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/xWWBqFmqHImphve5sT0P0Z75ALk.roa
File: xWWBqFmqHImphve5sT0P0Z75ALk.roa (raw, json)
Hash identifier: 3Z/VKel4Ge3GA7ahcK9NiMHWvfmrcRW0bmIKi6/6vD8=
Subject key identifier: C5:65:81:A8:59:AA:1C:89:A9:86:F7:B9:B1:3D:0F:D1:9E:F9:00:B9
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 01868EEB0F3D5346D701D6974918C368E609
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/xWWBqFmqHImphve5sT0P0Z75ALk.roa
Signing time: Sun 26 Feb 2023 18:10:14 +0000
ROA not before: Sun 26 Feb 2023 18:10:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200105
IP address blocks: 2a0a:280:1300::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:8e:eb:0f:3d:53:46:d7:01:d6:97:49:18:c3:68:e6:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Feb 26 18:10:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c56581a859aa1c89a986f7b9b13d0fd19ef900b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:37:07:eb:90:6a:d9:54:fd:95:4a:c1:c8:63:
19:45:11:65:14:2b:0b:82:af:6f:86:c6:9c:4a:c0:
0c:a9:dc:be:7d:8d:dc:83:dd:ed:1e:bb:03:c1:b8:
ab:71:2c:30:9a:53:37:19:b1:7c:d1:ae:dc:82:01:
33:c5:05:88:94:a5:ce:2b:eb:4e:25:84:34:55:b0:
5d:f2:d3:54:71:cf:e7:19:22:d7:3d:d8:5d:7b:01:
c0:34:10:9d:a3:ea:27:b3:8a:77:6e:70:37:14:09:
00:fa:16:1b:f3:5c:12:ee:14:7d:08:1a:a7:51:06:
92:34:52:0a:53:8c:a2:60:82:33:56:8c:8c:ef:f4:
1e:af:db:37:a9:23:c1:8d:7d:a3:53:fb:86:b4:a6:
0a:b6:01:e6:87:63:e1:05:ee:c2:37:07:fd:12:a4:
2a:58:1c:08:3a:66:30:ac:27:fc:d6:fb:02:b6:b0:
0d:2d:b4:1d:3d:cd:fc:48:5b:5c:a3:fc:4f:0a:09:
04:78:89:13:03:2d:e9:03:05:92:9f:4f:e8:2f:0f:
be:b6:6e:5e:62:d3:e8:38:a2:70:98:0a:4d:d0:df:
70:70:12:23:36:76:20:56:89:6f:96:20:98:ae:1f:
5e:9e:12:41:f1:db:1e:48:e7:6c:5c:59:fb:5d:10:
4d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:65:81:A8:59:AA:1C:89:A9:86:F7:B9:B1:3D:0F:D1:9E:F9:00:B9
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/xWWBqFmqHImphve5sT0P0Z75ALk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:280:1300::/40
Signature Algorithm: sha256WithRSAEncryption
9c:be:b4:c3:7f:46:41:7f:e2:66:09:ef:21:bf:fe:d4:e1:7f:
56:7f:a1:b5:3c:11:b6:ca:0b:19:0d:ae:d9:f4:50:36:11:90:
d1:5f:73:fe:1a:11:b9:13:26:79:8a:be:94:76:07:d4:f8:f7:
81:19:b7:b1:e4:a7:88:d0:f2:d8:2e:30:48:07:7e:fe:04:ef:
75:be:96:df:b8:b8:95:1b:ef:37:c4:41:4e:69:84:82:2d:94:
64:02:6c:2c:19:ff:33:a5:ce:75:91:08:3d:d2:7f:e2:91:5b:
3c:f0:a8:86:4d:01:aa:c1:9c:ae:1a:18:a8:1b:05:50:81:d1:
26:b4:db:63:33:cc:86:87:74:3c:51:45:0c:53:d2:0b:e6:50:
90:cb:61:ff:6c:a8:ee:b9:1d:e5:8a:2a:3d:26:94:0b:04:9c:
59:e9:2c:39:6a:2a:7f:84:e0:92:d1:34:6e:35:8e:92:58:ef:
30:6f:77:12:53:dd:71:e2:5c:ce:11:89:b3:02:74:92:2c:22:
fa:d4:8a:7b:9e:3d:d2:58:72:9e:d8:6d:d8:63:f4:8e:4f:ff:
57:63:a9:7f:fc:f0:0f:d6:d9:d7:f0:38:2f:2f:72:aa:de:fe:
35:62:6d:ef:46:d4:e0:b5:d0:6b:f0:41:bb:c4:db:f9:d6:6b:
b1:07:3b:23
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYaO6w89U0bXAdaXSRjDaOYJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiOWYyMWJhMDRlNWUzMDc3YjM5MWUzZDQ4ZmY1YjBhNTBi
MzM2OWYwHhcNMjMwMjI2MTgxMDE0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNTY1ODFhODU5YWExYzg5YTk4NmY3YjliMTNkMGZkMTllZjkwMGI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtTcH65Bq2VT9lUrByGMZRRFlFCsL
gq9vhsacSsAMqdy+fY3cg93tHrsDwbircSwwmlM3GbF80a7cggEzxQWIlKXOK+tO
JYQ0VbBd8tNUcc/nGSLXPdhdewHANBCdo+ons4p3bnA3FAkA+hYb81wS7hR9CBqn
UQaSNFIKU4yiYIIzVoyM7/Qer9s3qSPBjX2jU/uGtKYKtgHmh2PhBe7CNwf9EqQq
WBwIOmYwrCf81vsCtrANLbQdPc38SFtco/xPCgkEeIkTAy3pAwWSn0/oLw++tm5e
YtPoOKJwmApN0N9wcBIjNnYgVolvliCYrh9enhJB8dseSOdsXFn7XRBNHQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFMVlgahZqhyJqYb3ubE9D9Ge+QC5MB8GA1UdIwQY
MBaAFBufIboE5eMHezkePUj/WwpQszafMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRzU4aHVnVGw0d2Q3T1I0OVNQOWJDbEN6TnA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9mNjdhNzgtMTgzZC00OTRhLTk5NWUt
ZjUxYzVmYjNkZjlhLzEveFdXQnFGbXFISW1waHZlNXNUMFAwWjc1QUxrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi9mNjdhNzgtMTgzZC00OTRhLTk5NWUtZjUxYzVmYjNkZjlh
LzEvRzU4aHVnVGw0d2Q3T1I0OVNQOWJDbEN6TnA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgoCgBMw
DQYJKoZIhvcNAQELBQADggEBAJy+tMN/RkF/4mYJ7yG//tThf1Z/obU8EbbKCxkN
rtn0UDYRkNFfc/4aEbkTJnmKvpR2B9T494EZt7Hkp4jQ8tguMEgHfv4E73W+lt+4
uJUb7zfEQU5phIItlGQCbCwZ/zOlznWRCD3Sf+KRWzzwqIZNAarBnK4aGKgbBVCB
0Sa022MzzIaHdDxRRQxT0gvmUJDLYf9sqO65HeWKKj0mlAsEnFnpLDlqKn+E4JLR
NG41jpJY7zBvdxJT3XHiXM4RibMCdJIsIvrUinuePdJYcp7Ybdhj9I5P/1djqX/8
8A/W2dfwOC8vcqre/jVibe9G1OC10GvwQbvE2/nWa7EHOyM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:22 2024 by rpki-client on console-fra.rpki-client.org