Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/6af3cd-525b-49ba-b388-2359cb60a574/1/4-DK1aibu0XLSwbrTR9JPqIEOm0.roa
File: 4-DK1aibu0XLSwbrTR9JPqIEOm0.roa (raw, json)
Hash identifier: uHADZZ+KJdCxFdK3JuSICj2oGJihOj3/pr+0xy+NOf0=
Subject key identifier: E3:E0:CA:D5:A8:9B:BB:45:CB:4B:06:EB:4D:1F:49:3E:A2:04:3A:6D
Certificate issuer: /CN=ede2a122dcffc222fa9984bf16b6f9f13f78a5a5
Certificate serial: 018DEE9DB0AE31734B273F2DE54854C06EFE
Authority key identifier: ED:E2:A1:22:DC:FF:C2:22:FA:99:84:BF:16:B6:F9:F1:3F:78:A5:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7eKhItz_wiL6mYS_Frb58T94paU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/6af3cd-525b-49ba-b388-2359cb60a574/1/4-DK1aibu0XLSwbrTR9JPqIEOm0.roa
Signing time: Wed 28 Feb 2024 07:28:48 +0000
ROA not before: Wed 28 Feb 2024 07:28:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201712
IP address blocks: 2a13:e00::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 19 Jul 2024 13:02:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ee:9d:b0:ae:31:73:4b:27:3f:2d:e5:48:54:c0:6e:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ede2a122dcffc222fa9984bf16b6f9f13f78a5a5
Validity
Not Before: Feb 28 07:28:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e3e0cad5a89bbb45cb4b06eb4d1f493ea2043a6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c2:eb:62:dd:d7:f7:d3:71:fa:1c:72:2c:d9:
9a:29:73:2b:d1:fa:27:cd:c8:40:41:d9:d0:fa:9c:
36:d0:45:a5:12:8a:6a:49:fa:d2:c1:4e:ca:93:b6:
fe:4c:c3:e0:f6:d3:a6:29:f1:8b:57:be:0f:c8:56:
b0:bf:fa:a5:b1:76:ed:4b:6f:34:97:53:0a:e9:fa:
fe:f7:ab:7f:82:39:31:e4:7f:35:83:21:4b:43:83:
ee:a9:69:ed:b7:c4:cf:8a:a7:99:af:39:f2:64:1b:
7c:83:05:3a:d6:8c:2d:87:45:f6:4e:a7:8d:6a:f4:
a2:ee:12:83:39:08:b9:8f:aa:10:d1:41:9d:46:73:
f7:ad:2e:cd:08:b5:4b:1f:56:43:db:be:37:76:10:
af:31:db:6b:1c:94:34:01:08:7b:2f:23:69:58:60:
ed:6e:d5:cc:04:f1:35:fa:c7:83:f5:9b:90:33:74:
1b:42:8e:71:12:8f:29:f6:0c:ac:49:7a:4e:5b:2c:
43:e6:5d:9a:85:2a:da:3a:6d:8d:8a:f3:77:8a:8f:
28:fb:78:c9:23:5d:4a:38:39:ea:5e:21:e5:ee:44:
1f:3c:cd:70:fd:0a:25:ec:2c:8d:d2:76:2b:92:16:
2a:35:db:87:84:b5:69:ac:5e:19:82:da:b1:00:5a:
e0:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:E0:CA:D5:A8:9B:BB:45:CB:4B:06:EB:4D:1F:49:3E:A2:04:3A:6D
X509v3 Authority Key Identifier:
keyid:ED:E2:A1:22:DC:FF:C2:22:FA:99:84:BF:16:B6:F9:F1:3F:78:A5:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7eKhItz_wiL6mYS_Frb58T94paU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/6af3cd-525b-49ba-b388-2359cb60a574/1/4-DK1aibu0XLSwbrTR9JPqIEOm0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/6af3cd-525b-49ba-b388-2359cb60a574/1/7eKhItz_wiL6mYS_Frb58T94paU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:e00::/29
Signature Algorithm: sha256WithRSAEncryption
7f:ef:18:d9:3f:39:0d:d2:bb:b6:0e:5a:7f:41:1a:ef:b0:0d:
89:03:d5:bf:20:5a:2b:cf:09:35:c7:16:d3:b0:70:73:8f:ac:
eb:d2:4f:64:e7:30:06:3d:4e:56:80:23:85:b9:71:aa:4b:aa:
aa:67:b1:7b:90:7c:77:2a:fd:5f:1a:4c:83:cc:4d:ac:02:bc:
4d:4b:a3:b4:bf:ae:f1:ce:99:a1:c2:b3:81:d6:96:98:ce:7e:
13:27:2c:0f:d8:c8:3e:cd:bc:38:1a:c1:fc:45:25:2d:d5:55:
24:f1:2c:23:a1:3a:ad:b5:90:5a:7d:ea:92:98:d0:c3:bc:54:
c4:79:d2:c2:cb:bf:fe:92:65:4d:bf:d4:59:c6:53:be:45:ef:
19:55:07:e9:67:58:e3:fc:6c:71:32:50:7a:bc:c2:85:de:2a:
e9:43:12:cd:40:9f:83:fc:23:1b:92:4b:0d:df:ee:20:10:0c:
0f:4d:0f:2a:7f:90:5f:bd:e8:8a:f5:dd:4e:5d:e3:84:bb:2a:
6a:a6:d2:81:49:23:0c:a7:2a:65:34:20:06:77:ee:35:f2:89:
c8:7e:d6:13:57:f2:1c:42:22:f3:7b:aa:17:f1:40:f7:46:1a:
75:f5:d8:6a:fa:f7:08:96:d3:aa:41:fc:9a:d0:6e:1c:65:60:
98:25:9f:54
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAY3unbCuMXNLJz8t5UhUwG7+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVkZTJhMTIyZGNmZmMyMjJmYTk5ODRiZjE2YjZmOWYxM2Y3
OGE1YTUwHhcNMjQwMjI4MDcyODQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlM2UwY2FkNWE4OWJiYjQ1Y2I0YjA2ZWI0ZDFmNDkzZWEyMDQzYTZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwsLrYt3X99Nx+hxyLNmaKXMr0fon
zchAQdnQ+pw20EWlEopqSfrSwU7Kk7b+TMPg9tOmKfGLV74PyFawv/qlsXbtS280
l1MK6fr+96t/gjkx5H81gyFLQ4PuqWntt8TPiqeZrznyZBt8gwU61owth0X2TqeN
avSi7hKDOQi5j6oQ0UGdRnP3rS7NCLVLH1ZD2743dhCvMdtrHJQ0AQh7LyNpWGDt
btXMBPE1+seD9ZuQM3QbQo5xEo8p9gysSXpOWyxD5l2ahSraOm2NivN3io8o+3jJ
I11KODnqXiHl7kQfPM1w/Qol7CyN0nYrkhYqNduHhLVprF4ZgtqxAFrg5QIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFOPgytWom7tFy0sG600fST6iBDptMB8GA1UdIwQY
MBaAFO3ioSLc/8Ii+pmEvxa2+fE/eKWlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN2VLaEl0el93aUw2bVlTX0ZyYjU4VDk0cGFVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC82YWYzY2QtNTI1Yi00OWJhLWIzODgt
MjM1OWNiNjBhNTc0LzEvNC1ESzFhaWJ1MFhMU3diclRSOUpQcUlFT20wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC82YWYzY2QtNTI1Yi00OWJhLWIzODgtMjM1OWNiNjBhNTc0
LzEvN2VLaEl0el93aUw2bVlTX0ZyYjU4VDk0cGFVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhMOADAN
BgkqhkiG9w0BAQsFAAOCAQEAf+8Y2T85DdK7tg5af0Ea77ANiQPVvyBaK88JNccW
07Bwc4+s69JPZOcwBj1OVoAjhblxqkuqqmexe5B8dyr9XxpMg8xNrAK8TUujtL+u
8c6ZocKzgdaWmM5+EycsD9jIPs28OBrB/EUlLdVVJPEsI6E6rbWQWn3qkpjQw7xU
xHnSwsu//pJlTb/UWcZTvkXvGVUH6WdY4/xscTJQerzChd4q6UMSzUCfg/wjG5JL
Dd/uIBAMD00PKn+QX73oivXdTl3jhLsqaqbSgUkjDKcqZTQgBnfuNfKJyH7WE1fy
HEIi83uqF/FA90YadfXYavr3CJbTqkH8mtBuHGVgmCWfVA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:25:51 2025 by rpki-client