Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/p4LuoWNWNQNILKEknmaazxoPtlQ.roa
File: p4LuoWNWNQNILKEknmaazxoPtlQ.roa (raw, json)
Hash identifier: 1MRCPaJMvqFHv1jeXfH2/IAe3/x8pnUEwBpNO3h+L2s=
Subject key identifier: A7:82:EE:A1:63:56:35:03:48:2C:A1:24:9E:66:9A:CF:1A:0F:B6:54
Certificate issuer: /CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Certificate serial: 018CC492292BBB6C4442FE2036AB8D18284B
Authority key identifier: 97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/p4LuoWNWNQNILKEknmaazxoPtlQ.roa
Signing time: Mon 01 Jan 2024 10:29:22 +0000
ROA not before: Mon 01 Jan 2024 10:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61290
IP address blocks: 2a0f:8900::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 10 Aug 2024 11:02:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:29:2b:bb:6c:44:42:fe:20:36:ab:8d:18:28:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Validity
Not Before: Jan 1 10:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a782eea163563503482ca1249e669acf1a0fb654
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:40:b5:9d:14:73:5e:c1:4c:95:89:38:1a:16:
94:7c:76:42:43:f4:ed:18:80:18:b1:c7:7b:5f:39:
81:5c:77:c6:ea:8a:b8:a9:6d:93:58:c0:67:3a:ba:
dc:dc:5c:86:61:0c:f7:5b:05:a5:ce:14:55:c7:4e:
aa:91:22:1a:aa:e6:86:ca:73:69:31:32:bf:d2:ab:
75:df:08:f7:88:09:3f:c4:6b:bb:37:f9:15:6c:05:
0a:40:b3:bb:33:b9:00:2f:78:73:0e:32:43:71:11:
06:d7:6e:7f:99:72:be:9a:65:b6:17:7e:7b:f4:ac:
1a:58:43:10:10:ff:db:a1:25:a5:1b:3e:6b:18:fb:
c9:cb:f3:3e:1c:e6:cf:a5:c6:95:0d:1c:35:b9:5c:
5e:7c:3e:8f:19:15:d9:c5:f3:9b:24:2c:db:15:b8:
01:ce:fd:80:d6:1e:18:a7:2b:39:c9:0a:c4:0e:96:
69:fb:e1:ca:e7:ac:33:d1:da:bd:bc:d7:33:b7:84:
10:05:f4:7c:aa:6d:0b:ca:81:da:41:31:11:f0:cb:
84:1a:5c:37:f0:8d:25:17:a6:f0:37:7b:54:d6:4a:
08:dc:55:6a:1f:8c:3e:e3:a8:59:4b:2f:cf:6c:1d:
93:dd:fa:b0:45:4d:cb:14:de:e9:c0:a4:29:69:97:
39:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:82:EE:A1:63:56:35:03:48:2C:A1:24:9E:66:9A:CF:1A:0F:B6:54
X509v3 Authority Key Identifier:
keyid:97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/p4LuoWNWNQNILKEknmaazxoPtlQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/l59cqMM_E0w8FX1IucKuTpG2ML8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:8900::/29
Signature Algorithm: sha256WithRSAEncryption
04:64:10:c7:6b:bf:9e:1b:82:af:2f:18:4b:f6:03:d1:7f:59:
b4:6a:e7:5f:be:d5:7e:d1:a7:13:22:3b:9f:c1:b2:de:92:c2:
a7:3e:b1:2e:d1:f3:6a:2e:5e:9c:24:d6:b2:8b:4f:86:a0:fc:
33:5f:fd:d1:8f:b8:24:b5:9b:05:6e:5c:38:0a:9b:f3:06:13:
d0:f4:78:17:dd:ba:08:3c:33:08:c7:5b:7f:34:d2:c2:37:d8:
3d:f3:86:ba:45:2e:60:35:99:2a:8c:2c:1c:c4:83:da:7a:83:
51:a2:4d:f1:67:d1:1a:7f:7a:60:07:99:69:da:8a:46:75:01:
36:bf:57:11:e4:7c:71:11:03:23:4f:c2:06:e9:3b:ca:7d:76:
2d:14:d6:0f:ef:52:b6:2f:b9:2c:fe:d6:c3:db:a2:9d:4a:17:
25:d5:ff:f9:19:3d:e5:c9:50:35:cc:f1:20:32:35:7c:b8:0f:
e8:ec:71:51:f3:c7:7c:59:a6:b0:3d:11:cf:e3:07:53:75:f9:
7a:02:29:e1:a9:ab:c4:f4:53:29:40:04:27:d4:f4:6a:24:8e:
9e:3b:ed:df:3e:38:8c:e6:bf:53:b3:61:cf:81:9c:04:5a:63:
3d:8c:bf:42:97:90:47:83:31:e9:30:b8:85:e8:21:dd:71:3d:
7a:10:e3:f8
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYzEkikru2xEQv4gNquNGChLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3OWY1Y2E4YzMzZjEzNGMzYzE1N2Q0OGI5YzJhZTRlOTFi
NjMwYmYwHhcNMjQwMTAxMTAyOTIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNzgyZWVhMTYzNTYzNTAzNDgyY2ExMjQ5ZTY2OWFjZjFhMGZiNjU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8UC1nRRzXsFMlYk4GhaUfHZCQ/Tt
GIAYscd7XzmBXHfG6oq4qW2TWMBnOrrc3FyGYQz3WwWlzhRVx06qkSIaquaGynNp
MTK/0qt13wj3iAk/xGu7N/kVbAUKQLO7M7kAL3hzDjJDcREG125/mXK+mmW2F357
9KwaWEMQEP/boSWlGz5rGPvJy/M+HObPpcaVDRw1uVxefD6PGRXZxfObJCzbFbgB
zv2A1h4Ypys5yQrEDpZp++HK56wz0dq9vNczt4QQBfR8qm0LyoHaQTER8MuEGlw3
8I0lF6bwN3tU1koI3FVqH4w+46hZSy/PbB2T3fqwRU3LFN7pwKQpaZc5swIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFKeC7qFjVjUDSCyhJJ5mms8aD7ZUMB8GA1UdIwQY
MBaAFJefXKjDPxNMPBV9SLnCrk6RtjC/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbDU5Y3FNTV9FMHc4RlgxSXVjS3VUcEcyTUw4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy9mNjU2MTAtNTlmNi00YWQ2LWE5ZDgt
MTQ3MGFjMzY0ZGQyLzEvcDRMdW9XTldOUU5JTEtFa25tYWF6eG9QdGxRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy9mNjU2MTAtNTlmNi00YWQ2LWE5ZDgtMTQ3MGFjMzY0ZGQy
LzEvbDU5Y3FNTV9FMHc4RlgxSXVjS3VUcEcyTUw4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKg+JADAN
BgkqhkiG9w0BAQsFAAOCAQEABGQQx2u/nhuCry8YS/YD0X9ZtGrnX77VftGnEyI7
n8Gy3pLCpz6xLtHzai5enCTWsotPhqD8M1/90Y+4JLWbBW5cOAqb8wYT0PR4F926
CDwzCMdbfzTSwjfYPfOGukUuYDWZKowsHMSD2nqDUaJN8WfRGn96YAeZadqKRnUB
Nr9XEeR8cREDI0/CBuk7yn12LRTWD+9Sti+5LP7Ww9uinUoXJdX/+Rk95clQNczx
IDI1fLgP6OxxUfPHfFmmsD0Rz+MHU3X5egIp4amrxPRTKUAEJ9T0aiSOnjvt3z44
jOa/U7Nhz4GcBFpjPYy/QpeQR4Mx6TC4hegh3XE9ehDj+A==
-----END CERTIFICATE-----
Generated at Sat Aug 10 12:53:46 2024 by rpki-client on console-fra.rpki-client.org