Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/s4Et7wh2TbiFg-p4vG8spdPt9xM.roa
File: s4Et7wh2TbiFg-p4vG8spdPt9xM.roa (raw, json)
Hash identifier: OPvoq+P1CPIG/O5+OMy/pb/wgQBib2l344p58szlBrw=
Subject key identifier: B3:81:2D:EF:08:76:4D:B8:85:83:EA:78:BC:6F:2C:A5:D3:ED:F7:13
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 018B065A74408F575FF99B551000C2FCD35B
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/s4Et7wh2TbiFg-p4vG8spdPt9xM.roa
Signing time: Fri 06 Oct 2023 18:57:53 +0000
ROA not before: Fri 06 Oct 2023 18:57:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199750
IP address blocks: 2a0e:8f02:2210::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:06:5a:74:40:8f:57:5f:f9:9b:55:10:00:c2:fc:d3:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Oct 6 18:57:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b3812def08764db88583ea78bc6f2ca5d3edf713
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:03:94:9a:4a:e5:b5:f5:23:ef:2b:44:3c:fd:
bd:d7:7e:96:45:ce:e2:a4:89:71:ab:4e:f0:46:6a:
9d:69:d3:b6:31:00:77:49:a7:7e:9e:2e:3e:a1:fe:
64:8a:89:7c:52:ec:82:4e:eb:17:73:94:ea:f9:fd:
58:a1:f5:34:d8:55:cd:b3:2f:ca:a4:49:16:f4:90:
19:00:78:3b:8d:2a:d8:c4:87:04:34:fb:54:0d:fd:
97:22:01:0e:0f:85:2f:1c:e1:64:f9:ba:a5:83:91:
a0:d4:59:3a:22:f1:d4:a8:5e:d5:db:d7:c4:d6:61:
be:a3:d4:f4:ef:eb:17:9d:cc:11:8f:d0:3d:75:36:
3f:dc:6c:a2:5c:2b:92:1b:eb:c5:95:ed:79:b2:c5:
3b:e1:dc:31:6c:65:c5:56:ce:4f:ee:eb:83:b6:48:
1f:17:99:46:28:68:13:5c:38:cc:ac:6b:25:16:56:
20:d5:59:c8:b4:22:49:1c:e8:6d:98:49:72:14:21:
ec:ca:a2:ab:04:08:7e:e1:41:1a:7b:94:e5:67:69:
6e:f8:60:8e:8d:03:bc:c4:2b:41:60:66:12:d2:03:
bd:38:ed:7a:af:67:33:89:0e:1e:f1:bf:f8:ea:a7:
6d:1d:b8:61:70:43:a0:50:00:d2:71:39:51:7c:d2:
23:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:81:2D:EF:08:76:4D:B8:85:83:EA:78:BC:6F:2C:A5:D3:ED:F7:13
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/s4Et7wh2TbiFg-p4vG8spdPt9xM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:2210::/44
Signature Algorithm: sha256WithRSAEncryption
85:99:8c:85:cf:ff:0a:89:a9:4f:48:a1:23:0b:e7:2c:56:75:
26:da:b8:b7:6f:b5:07:45:ff:09:9d:83:07:63:ac:d1:ed:e4:
76:2d:e0:88:cc:c9:69:85:a2:21:68:43:7e:c4:1b:c9:c3:b0:
9f:30:9f:ee:56:fa:58:9d:66:ce:24:ad:4e:33:3f:28:bc:99:
5b:73:4e:28:a7:63:4c:f1:78:47:4c:29:44:75:8d:31:f2:9f:
b0:31:e8:2a:d1:14:89:a4:34:60:ca:2e:e2:aa:a2:5c:de:ee:
40:14:c6:39:f5:31:03:46:09:cd:d2:b5:56:30:ec:1f:2d:fc:
5a:04:7a:f3:c0:6f:f2:81:16:47:3f:b8:e1:00:3e:7f:7c:11:
aa:9b:db:c6:27:9b:72:b8:70:96:4e:aa:54:70:2e:7b:b1:a4:
e6:8d:2c:23:3d:aa:cf:79:e9:db:d3:3f:22:61:cc:a0:37:38:
92:c4:1a:df:27:4b:25:1e:6e:2f:50:80:3e:a9:e3:82:fe:69:
20:11:00:21:92:39:75:c3:cf:8d:e0:af:16:33:80:c4:8f:89:
fa:ca:d5:80:56:b2:5f:ca:4c:14:ae:f3:22:bb:23:c1:e7:64:
ef:c3:49:68:e0:46:55:f1:eb:c9:46:2f:c4:54:b8:cb:6c:11:
a2:86:2e:36
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYsGWnRAj1df+ZtVEADC/NNbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1NmVmNDhlZDYxNTVkZDc4NDNlZWQzNjMyNDY5YWJhYTMx
MDBiZjMwHhcNMjMxMDA2MTg1NzUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMzgxMmRlZjA4NzY0ZGI4ODU4M2VhNzhiYzZmMmNhNWQzZWRmNzEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyAOUmkrltfUj7ytEPP29136WRc7i
pIlxq07wRmqdadO2MQB3Sad+ni4+of5kiol8UuyCTusXc5Tq+f1YofU02FXNsy/K
pEkW9JAZAHg7jSrYxIcENPtUDf2XIgEOD4UvHOFk+bqlg5Gg1Fk6IvHUqF7V29fE
1mG+o9T07+sXncwRj9A9dTY/3GyiXCuSG+vFle15ssU74dwxbGXFVs5P7uuDtkgf
F5lGKGgTXDjMrGslFlYg1VnItCJJHOhtmElyFCHsyqKrBAh+4UEae5TlZ2lu+GCO
jQO8xCtBYGYS0gO9OO16r2cziQ4e8b/46qdtHbhhcEOgUADScTlRfNIjgQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFLOBLe8Idk24hYPqeLxvLKXT7fcTMB8GA1UdIwQY
MBaAFNVu9I7WFV3XhD7tNjJGmrqjEAvzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVc3MGp0WVZYZGVFUHUwMk1rYWF1cU1RQ19NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS81OGZmNTQtMzQxMC00ZTQyLWFhYjgt
ZDJkN2YyYmI2NGRmLzEvczRFdDd3aDJUYmlGZy1wNHZHOHNwZFB0OXhNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS81OGZmNTQtMzQxMC00ZTQyLWFhYjgtZDJkN2YyYmI2NGRm
LzEvMVc3MGp0WVZYZGVFUHUwMk1rYWF1cU1RQ19NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6PAiIQ
MA0GCSqGSIb3DQEBCwUAA4IBAQCFmYyFz/8KialPSKEjC+csVnUm2ri3b7UHRf8J
nYMHY6zR7eR2LeCIzMlphaIhaEN+xBvJw7CfMJ/uVvpYnWbOJK1OMz8ovJlbc04o
p2NM8XhHTClEdY0x8p+wMegq0RSJpDRgyi7iqqJc3u5AFMY59TEDRgnN0rVWMOwf
LfxaBHrzwG/ygRZHP7jhAD5/fBGqm9vGJ5tyuHCWTqpUcC57saTmjSwjParPeenb
0z8iYcygNziSxBrfJ0slHm4vUIA+qeOC/mkgEQAhkjl1w8+N4K8WM4DEj4n6ytWA
VrJfykwUrvMiuyPB52Tvw0lo4EZV8evJRi/EVLjLbBGihi42
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:00 2024 by rpki-client on console-ams.rpki-client.org