Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/gUenaXmZ5NZYmEPZq77ZnayQ7qM.roa
File: gUenaXmZ5NZYmEPZq77ZnayQ7qM.roa (raw, json)
Hash identifier: 3gfw1444jgXu3WKDNYeIR0Yz00c0zsBATm1fncr6BPs=
Subject key identifier: 81:47:A7:69:79:99:E4:D6:58:98:43:D9:AB:BE:D9:9D:AC:90:EE:A3
Certificate issuer: /CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Certificate serial: 01865587906383FF5F38B52498467FA470E3
Authority key identifier: 97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/gUenaXmZ5NZYmEPZq77ZnayQ7qM.roa
Signing time: Wed 15 Feb 2023 14:43:13 +0000
ROA not before: Wed 15 Feb 2023 14:43:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 141193
IP address blocks: 2a0d:82c7:3000::/36 maxlen: 36
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:55:87:90:63:83:ff:5f:38:b5:24:98:46:7f:a4:70:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Validity
Not Before: Feb 15 14:43:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8147a7697999e4d6589843d9abbed99dac90eea3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:26:2e:4b:87:d3:cd:bb:5b:7a:ce:f8:e3:3f:
96:98:4b:0b:df:fe:58:23:e9:c3:cf:fd:4f:ec:c5:
a3:a5:ce:08:89:fe:12:a5:fa:49:b9:f8:fb:26:8c:
2d:59:67:65:58:60:3b:0a:ce:f3:70:d2:79:60:37:
65:0d:70:a0:b3:48:ed:82:56:79:2d:8e:7b:e7:b8:
65:63:09:a8:2e:2c:d6:3e:97:f0:72:eb:ca:8b:06:
b0:f5:ac:0b:0c:cd:b6:01:f7:b6:5c:93:14:58:92:
bf:9c:c6:35:a2:81:f7:e2:5f:00:2f:fd:e7:67:a0:
56:15:18:66:29:49:34:30:7a:b6:7f:33:0f:7f:ef:
e9:77:4f:d7:a6:8a:6b:1a:b3:b2:dc:a0:63:4f:14:
01:02:b6:55:4f:72:c6:0e:2a:7d:de:46:48:25:b8:
e3:1c:39:d4:ac:07:5f:33:33:3a:25:f7:41:fd:1f:
57:7d:62:97:8c:be:68:23:b8:1e:b2:7a:8f:fe:ca:
50:77:ec:bf:e1:b3:36:ee:15:01:72:89:ea:88:27:
bc:b2:6c:28:08:cc:ca:26:6a:7f:3b:b1:da:31:e6:
d2:01:08:d3:bc:63:44:da:69:2b:04:de:10:f5:b7:
47:d6:55:72:90:0c:6f:d0:5a:7f:17:d0:e3:c7:15:
ba:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:47:A7:69:79:99:E4:D6:58:98:43:D9:AB:BE:D9:9D:AC:90:EE:A3
X509v3 Authority Key Identifier:
keyid:97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/gUenaXmZ5NZYmEPZq77ZnayQ7qM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/l59cqMM_E0w8FX1IucKuTpG2ML8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:82c7:3000::/36
Signature Algorithm: sha256WithRSAEncryption
58:b0:24:44:b2:92:16:aa:b6:b0:10:25:8c:60:97:5a:06:95:
14:fe:3d:5e:70:ab:e9:d6:97:fd:f8:e3:51:a3:9a:f8:97:81:
76:05:b4:e2:33:15:07:85:53:24:7c:aa:df:9a:59:ab:08:c2:
4f:f8:f2:aa:ea:87:db:d9:1e:80:74:f0:14:be:84:21:5c:b7:
fc:93:46:0f:11:5f:72:de:b6:16:84:f8:95:2e:3b:38:95:8f:
74:d9:9d:ee:71:6a:2e:d5:e5:1b:32:0e:d8:bd:94:db:52:2a:
84:b6:3f:72:a5:f4:86:41:7a:a0:43:e8:21:e2:75:32:97:c3:
a0:9a:9e:e3:f4:26:62:f4:97:bd:fc:21:df:cd:91:c5:0b:d6:
ae:f0:ec:a6:e1:f0:32:ee:9b:fb:41:39:aa:0e:77:18:a1:68:
24:12:13:10:61:e0:aa:25:6d:4b:b9:5e:af:2e:d5:7b:7a:fe:
a4:d7:c1:dc:45:96:e3:e1:cb:83:de:53:bf:27:b0:08:4b:77:
50:5a:88:de:c0:11:71:38:78:65:6b:c7:7d:c9:77:0d:6a:c4:
d6:44:64:1f:c4:00:f6:58:9b:9c:b9:1e:1d:84:8d:5e:13:e0:
cd:0b:ba:39:f6:4f:9f:24:fb:2a:16:58:6a:3c:d8:97:a7:a8:
c5:9d:f0:75
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYZVh5Bjg/9fOLUkmEZ/pHDjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3OWY1Y2E4YzMzZjEzNGMzYzE1N2Q0OGI5YzJhZTRlOTFi
NjMwYmYwHhcNMjMwMjE1MTQ0MzEzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MTQ3YTc2OTc5OTllNGQ2NTg5ODQzZDlhYmJlZDk5ZGFjOTBlZWEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzyYuS4fTzbtbes744z+WmEsL3/5Y
I+nDz/1P7MWjpc4Iif4SpfpJufj7JowtWWdlWGA7Cs7zcNJ5YDdlDXCgs0jtglZ5
LY5757hlYwmoLizWPpfwcuvKiwaw9awLDM22Afe2XJMUWJK/nMY1ooH34l8AL/3n
Z6BWFRhmKUk0MHq2fzMPf+/pd0/XpoprGrOy3KBjTxQBArZVT3LGDip93kZIJbjj
HDnUrAdfMzM6JfdB/R9XfWKXjL5oI7gesnqP/spQd+y/4bM27hUBconqiCe8smwo
CMzKJmp/O7HaMebSAQjTvGNE2mkrBN4Q9bdH1lVykAxv0Fp/F9DjxxW6qwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFIFHp2l5meTWWJhD2au+2Z2skO6jMB8GA1UdIwQY
MBaAFJefXKjDPxNMPBV9SLnCrk6RtjC/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbDU5Y3FNTV9FMHc4RlgxSXVjS3VUcEcyTUw4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy9mNjU2MTAtNTlmNi00YWQ2LWE5ZDgt
MTQ3MGFjMzY0ZGQyLzEvZ1VlbmFYbVo1TlpZbUVQWnE3N1puYXlRN3FNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy9mNjU2MTAtNTlmNi00YWQ2LWE5ZDgtMTQ3MGFjMzY0ZGQy
LzEvbDU5Y3FNTV9FMHc4RlgxSXVjS3VUcEcyTUw4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKg2CxzAw
DQYJKoZIhvcNAQELBQADggEBAFiwJESykhaqtrAQJYxgl1oGlRT+PV5wq+nWl/34
41GjmviXgXYFtOIzFQeFUyR8qt+aWasIwk/48qrqh9vZHoB08BS+hCFct/yTRg8R
X3LethaE+JUuOziVj3TZne5xai7V5RsyDti9lNtSKoS2P3Kl9IZBeqBD6CHidTKX
w6CanuP0JmL0l738Id/NkcUL1q7w7Kbh8DLum/tBOaoOdxihaCQSExBh4KolbUu5
Xq8u1Xt6/qTXwdxFluPhy4PeU78nsAhLd1BaiN7AEXE4eGVrx33Jdw1qxNZEZB/E
APZYm5y5Hh2EjV4T4M0Lujn2T58k+yoWWGo82JenqMWd8HU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:29 2024 by rpki-client on console-fra.rpki-client.org