Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/4yZMFIGjIw9X1oJdeXoKdoM7r4Q.roa
File: 4yZMFIGjIw9X1oJdeXoKdoM7r4Q.roa (raw, json)
Hash identifier: YjlRo1oYIRwzyFvQH+69GdOCjBjgVd4OsdPksokFffI=
Subject key identifier: E3:26:4C:14:81:A3:23:0F:57:D6:82:5D:79:7A:0A:76:83:3B:AF:84
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 018C8C20F0F0AD861B6F14D1C7E5AF5140DD
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/4yZMFIGjIw9X1oJdeXoKdoM7r4Q.roa
Signing time: Thu 21 Dec 2023 11:26:58 +0000
ROA not before: Thu 21 Dec 2023 11:26:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215829
IP address blocks: 2a0e:8f02:f062::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:8c:20:f0:f0:ad:86:1b:6f:14:d1:c7:e5:af:51:40:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Dec 21 11:26:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3264c1481a3230f57d6825d797a0a76833baf84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:14:77:3b:ff:c7:f5:06:72:1a:b4:11:64:c7:
09:95:ff:af:41:27:72:2c:99:4a:ad:71:86:fe:74:
63:7a:5a:d2:0a:d7:4a:25:59:91:e5:ac:f2:43:cf:
6e:93:6a:79:74:b7:7b:d7:dd:2e:54:bb:7a:6c:92:
db:00:38:d9:03:66:10:67:b9:12:53:71:1b:f3:42:
2d:ed:2d:fe:46:5f:4b:c3:ae:c4:9c:61:35:4b:c8:
64:86:df:35:16:22:3e:4c:84:37:da:c1:44:c0:f2:
d8:1d:48:4f:50:aa:4d:d1:bb:b3:24:ef:47:37:b9:
84:da:09:74:f2:28:b5:01:cd:96:47:05:a9:ec:b3:
4f:3b:03:9c:65:44:af:03:f0:ff:05:11:37:14:3e:
60:26:b6:63:80:66:00:f3:fd:be:72:d9:f2:8f:04:
82:6d:41:64:f8:bd:3c:7e:f8:d4:4a:4e:5c:dd:23:
06:d3:e0:40:a2:75:b8:b9:de:18:ba:0c:2c:f9:3f:
a2:4e:73:b6:1d:83:c3:1d:0d:79:99:4d:07:64:38:
46:12:c2:a4:b9:3d:83:81:b0:1a:aa:50:74:ee:ac:
e0:1b:bd:4a:5b:03:f2:5c:b3:c0:83:e5:b5:16:17:
8c:cf:dd:61:62:c0:81:46:c0:4f:4a:2b:03:84:69:
12:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:26:4C:14:81:A3:23:0F:57:D6:82:5D:79:7A:0A:76:83:3B:AF:84
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/4yZMFIGjIw9X1oJdeXoKdoM7r4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f062::/48
Signature Algorithm: sha256WithRSAEncryption
0e:22:25:cd:04:77:00:4a:36:6a:78:b7:2c:a6:51:0e:bd:e7:
42:90:36:6c:78:19:1a:2c:6c:0d:6a:15:d8:00:7b:73:2a:b4:
2e:59:a3:24:6d:85:d6:59:15:da:94:75:7b:1c:fc:3d:84:b9:
8a:d4:92:5a:7a:2b:f8:ec:31:af:e7:aa:51:79:d4:a2:09:e1:
b5:bf:3f:40:38:cf:b1:2a:75:ac:05:e0:93:a5:b1:d1:54:61:
fc:7f:14:3c:85:e2:d0:ae:0c:cc:11:a7:90:9d:e7:9f:a1:f5:
1e:64:29:bb:f1:a2:66:37:ad:4d:a0:06:1f:68:f9:1d:18:e4:
1a:bf:b8:05:7e:4a:f8:15:79:b3:fc:a5:bb:0e:f2:4d:0e:b2:
74:71:95:0d:02:0b:59:2f:f4:d9:0a:c5:c3:73:da:6d:6d:98:
2d:44:72:ad:22:7d:86:1a:22:ad:d3:7b:fa:95:f9:2a:13:95:
43:3c:26:2e:05:30:e5:dc:1a:c7:2c:4f:32:c1:7e:7f:3b:39:
88:84:23:a7:5f:74:8b:57:bc:cd:2e:78:24:3b:af:20:9f:1d:
2d:8b:cf:a7:86:03:de:f2:7a:77:15:08:dc:b1:ee:70:fa:2d:
7f:2a:83:46:8f:af:bc:60:42:06:03:d7:0a:f9:01:15:6f:c6:
6e:81:7a:7f
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYyMIPDwrYYbbxTRx+WvUUDdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1NmVmNDhlZDYxNTVkZDc4NDNlZWQzNjMyNDY5YWJhYTMx
MDBiZjMwHhcNMjMxMjIxMTEyNjU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzI2NGMxNDgxYTMyMzBmNTdkNjgyNWQ3OTdhMGE3NjgzM2JhZjg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwxR3O//H9QZyGrQRZMcJlf+vQSdy
LJlKrXGG/nRjelrSCtdKJVmR5azyQ89uk2p5dLd7190uVLt6bJLbADjZA2YQZ7kS
U3Eb80It7S3+Rl9Lw67EnGE1S8hkht81FiI+TIQ32sFEwPLYHUhPUKpN0buzJO9H
N7mE2gl08ii1Ac2WRwWp7LNPOwOcZUSvA/D/BRE3FD5gJrZjgGYA8/2+ctnyjwSC
bUFk+L08fvjUSk5c3SMG0+BAonW4ud4Yugws+T+iTnO2HYPDHQ15mU0HZDhGEsKk
uT2DgbAaqlB07qzgG71KWwPyXLPAg+W1FheMz91hYsCBRsBPSisDhGkS7QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFOMmTBSBoyMPV9aCXXl6CnaDO6+EMB8GA1UdIwQY
MBaAFNVu9I7WFV3XhD7tNjJGmrqjEAvzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVc3MGp0WVZYZGVFUHUwMk1rYWF1cU1RQ19NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS81OGZmNTQtMzQxMC00ZTQyLWFhYjgt
ZDJkN2YyYmI2NGRmLzEvNHlaTUZJR2pJdzlYMW9KZGVYb0tkb003cjRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS81OGZmNTQtMzQxMC00ZTQyLWFhYjgtZDJkN2YyYmI2NGRm
LzEvMVc3MGp0WVZYZGVFUHUwMk1rYWF1cU1RQ19NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg6PAvBi
MA0GCSqGSIb3DQEBCwUAA4IBAQAOIiXNBHcASjZqeLcsplEOvedCkDZseBkaLGwN
ahXYAHtzKrQuWaMkbYXWWRXalHV7HPw9hLmK1JJaeiv47DGv56pRedSiCeG1vz9A
OM+xKnWsBeCTpbHRVGH8fxQ8heLQrgzMEaeQneefofUeZCm78aJmN61NoAYfaPkd
GOQav7gFfkr4FXmz/KW7DvJNDrJ0cZUNAgtZL/TZCsXDc9ptbZgtRHKtIn2GGiKt
03v6lfkqE5VDPCYuBTDl3BrHLE8ywX5/OzmIhCOnX3SLV7zNLngkO68gnx0ti8+n
hgPe8np3FQjcse5w+i1/KoNGj6+8YEIGA9cK+QEVb8ZugXp/
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:00 2024 by rpki-client on console-ams.rpki-client.org