Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/becd16-a9e9-4cd6-800e-f008dd83e32a/1/iRPNzHhwemwhmBEkM8HsPOvwFxs.roa
File: iRPNzHhwemwhmBEkM8HsPOvwFxs.roa (raw, json)
Hash identifier: Bc5rH37rmEfEKjTvhB7IEzFz7w7RMVg2dO8QvIdTRlM=
Subject key identifier: 89:13:CD:CC:78:70:7A:6C:21:98:11:24:33:C1:EC:3C:EB:F0:17:1B
Certificate issuer: /CN=e9be181aabdb195513a26c67b621e2986818d03d
Certificate serial: 01929C026B9650C3E716008E8CC34C328450
Authority key identifier: E9:BE:18:1A:AB:DB:19:55:13:A2:6C:67:B6:21:E2:98:68:18:D0:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6b4YGqvbGVUTomxntiHimGgY0D0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/becd16-a9e9-4cd6-800e-f008dd83e32a/1/iRPNzHhwemwhmBEkM8HsPOvwFxs.roa
Signing time: Thu 17 Oct 2024 19:44:17 +0000
ROA not before: Thu 17 Oct 2024 19:44:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209641
IP address blocks: 2a09:3901::/32 maxlen: 32
2a09:3907::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 25 Oct 2024 10:49:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:9c:02:6b:96:50:c3:e7:16:00:8e:8c:c3:4c:32:84:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9be181aabdb195513a26c67b621e2986818d03d
Validity
Not Before: Oct 17 19:44:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8913cdcc78707a6c2198112433c1ec3cebf0171b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e1:ba:92:51:6f:96:3f:70:58:67:01:ca:9e:
37:14:2a:e7:d1:34:97:f8:04:d5:dd:29:12:65:fd:
27:2c:fb:d0:d4:70:38:7a:cc:37:57:ec:0f:10:45:
98:11:f6:34:df:f0:04:01:bb:80:d6:16:28:ef:82:
2a:b6:ac:06:a7:87:df:ec:b0:97:32:d0:c1:f3:f7:
a3:93:1c:97:97:59:fd:cc:a5:46:0b:26:6d:81:b8:
2c:f4:01:1e:4c:d9:be:b1:54:eb:20:4a:bd:ae:c8:
e1:80:f1:28:2a:ba:0a:24:49:02:a7:5b:9d:06:8e:
97:e4:a3:23:c1:ad:22:60:f2:57:16:e2:61:31:91:
7c:31:35:a6:c1:8b:05:a4:e7:77:16:18:3c:fc:7e:
31:2d:88:a5:cf:36:41:a4:36:e8:df:dc:06:71:2c:
7d:00:6e:28:d2:f9:4d:cc:5b:15:6a:70:64:68:e6:
39:cf:e9:54:69:e3:23:42:32:70:36:b7:75:85:77:
cd:01:0a:fc:de:53:52:4f:5d:c9:3c:ee:53:c8:37:
be:bd:93:87:f7:3a:53:1a:b4:c6:14:82:da:40:1d:
ce:b6:c7:6b:b7:ca:15:87:b5:27:b9:f5:44:fb:b2:
1a:6e:a0:45:c3:0d:d9:dc:1e:bd:a8:d2:af:be:e6:
92:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:13:CD:CC:78:70:7A:6C:21:98:11:24:33:C1:EC:3C:EB:F0:17:1B
X509v3 Authority Key Identifier:
keyid:E9:BE:18:1A:AB:DB:19:55:13:A2:6C:67:B6:21:E2:98:68:18:D0:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b4YGqvbGVUTomxntiHimGgY0D0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/becd16-a9e9-4cd6-800e-f008dd83e32a/1/iRPNzHhwemwhmBEkM8HsPOvwFxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/becd16-a9e9-4cd6-800e-f008dd83e32a/1/6b4YGqvbGVUTomxntiHimGgY0D0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:3901::/32
2a09:3907::/32
Signature Algorithm: sha256WithRSAEncryption
01:6c:83:27:d8:8f:ec:b1:f2:75:ea:b4:72:f3:6c:e3:6a:2f:
94:59:4f:b9:5b:60:3c:ab:d8:26:90:16:d2:02:48:81:69:c2:
57:13:3b:d7:f1:5c:7f:83:b0:a3:d0:35:13:44:b6:18:60:1e:
f3:35:c4:df:c5:1b:88:76:95:16:61:07:19:1c:1d:99:26:86:
82:3f:3e:e7:d5:34:be:bb:af:a7:e7:f5:ed:c5:55:be:94:41:
64:c0:e3:44:a4:7f:db:f1:59:74:72:f9:0d:13:9f:18:38:28:
21:14:90:b8:52:ba:79:6a:22:1a:88:8e:10:a9:6a:62:52:6a:
d0:6b:87:ad:fe:85:d5:cb:31:c8:67:ac:5e:e1:d4:a4:1e:b0:
54:26:f7:01:d3:ec:ea:07:d1:ff:33:27:d5:5b:ba:96:5d:5e:
54:e6:8c:9a:ca:30:60:81:5b:b5:72:86:c3:2d:c9:99:da:71:
64:7b:50:31:33:22:26:ab:20:0e:ff:69:45:09:b1:f7:85:64:
7a:68:4b:a2:ac:a3:e7:b1:e5:2b:16:e6:71:a4:39:c0:f3:b1:
20:79:d5:c5:17:c9:c5:9c:b8:20:f6:c8:26:9f:df:29:d2:44:
2a:5c:2d:f8:2c:d2:f7:51:f2:d9:52:2d:8b:98:9b:8e:15:85:
6c:2a:f0:72
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAZKcAmuWUMPnFgCOjMNMMoRQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5YmUxODFhYWJkYjE5NTUxM2EyNmM2N2I2MjFlMjk4Njgx
OGQwM2QwHhcNMjQxMDE3MTk0NDE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OTEzY2RjYzc4NzA3YTZjMjE5ODExMjQzM2MxZWMzY2ViZjAxNzFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu+G6klFvlj9wWGcByp43FCrn0TSX
+ATV3SkSZf0nLPvQ1HA4esw3V+wPEEWYEfY03/AEAbuA1hYo74IqtqwGp4ff7LCX
MtDB8/ejkxyXl1n9zKVGCyZtgbgs9AEeTNm+sVTrIEq9rsjhgPEoKroKJEkCp1ud
Bo6X5KMjwa0iYPJXFuJhMZF8MTWmwYsFpOd3Fhg8/H4xLYilzzZBpDbo39wGcSx9
AG4o0vlNzFsVanBkaOY5z+lUaeMjQjJwNrd1hXfNAQr83lNST13JPO5TyDe+vZOH
9zpTGrTGFILaQB3Otsdrt8oVh7UnufVE+7IabqBFww3Z3B69qNKvvuaS5QIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFIkTzcx4cHpsIZgRJDPB7Dzr8BcbMB8GA1UdIwQY
MBaAFOm+GBqr2xlVE6JsZ7Yh4phoGNA9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNmI0WUdxdmJHVlVUb214bnRpSGltR2dZMEQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9iZWNkMTYtYTllOS00Y2Q2LTgwMGUt
ZjAwOGRkODNlMzJhLzEvaVJQTnpIaHdlbXdobUJFa004SHNQT3Z3RnhzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9iZWNkMTYtYTllOS00Y2Q2LTgwMGUtZjAwOGRkODNlMzJh
LzEvNmI0WUdxdmJHVlVUb214bnRpSGltR2dZMEQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUAKgk5AQMF
ACoJOQcwDQYJKoZIhvcNAQELBQADggEBAAFsgyfYj+yx8nXqtHLzbONqL5RZT7lb
YDyr2CaQFtICSIFpwlcTO9fxXH+DsKPQNRNEthhgHvM1xN/FG4h2lRZhBxkcHZkm
hoI/PufVNL67r6fn9e3FVb6UQWTA40Skf9vxWXRy+Q0Tnxg4KCEUkLhSunlqIhqI
jhCpamJSatBrh63+hdXLMchnrF7h1KQesFQm9wHT7OoH0f8zJ9VbupZdXlTmjJrK
MGCBW7VyhsMtyZnacWR7UDEzIiarIA7/aUUJsfeFZHpoS6Kso+ex5SsW5nGkOcDz
sSB51cUXycWcuCD2yCaf3ynSRCpcLfgs0vdR8tlSLYuYm44VhWwq8HI=
-----END CERTIFICATE-----
Generated at Fri Oct 25 15:00:20 2024 by rpki-client on console-ams.rpki-client.org