Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/c65398-a8eb-4d16-9c4e-3584e2ab1f0d/1/xRl79H4eWpWXNfrjMPg5VQI7y-Y.roa
File: xRl79H4eWpWXNfrjMPg5VQI7y-Y.roa (raw, json)
Hash identifier: xnhlvLn/q26cYS1krvFkMrjMpRmSDnd3N6RhvCg6Zw8=
Subject key identifier: C5:19:7B:F4:7E:1E:5A:95:97:35:FA:E3:30:F8:39:55:02:3B:CB:E6
Certificate issuer: /CN=c0d0495acf9c78b9183bba0c05b8a29974382b14
Certificate serial: 018571D7DBF49DCCC6F267074F3BFA378649
Authority key identifier: C0:D0:49:5A:CF:9C:78:B9:18:3B:BA:0C:05:B8:A2:99:74:38:2B:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wNBJWs-ceLkYO7oMBbiimXQ4KxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/c65398-a8eb-4d16-9c4e-3584e2ab1f0d/1/xRl79H4eWpWXNfrjMPg5VQI7y-Y.roa
Signing time: Mon 02 Jan 2023 09:37:29 +0000
ROA not before: Mon 02 Jan 2023 09:37:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20860
IP address blocks: 2a04:de40::/42 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:db:f4:9d:cc:c6:f2:67:07:4f:3b:fa:37:86:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0d0495acf9c78b9183bba0c05b8a29974382b14
Validity
Not Before: Jan 2 09:37:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c5197bf47e1e5a959735fae330f83955023bcbe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:56:32:2a:e3:4a:d8:22:0d:9e:d1:e6:bb:46:
d7:25:14:7e:65:c3:60:15:2c:57:9a:fc:1e:46:47:
e6:02:b2:d4:07:8b:08:f1:5c:e1:32:a8:97:fd:d9:
37:db:3f:d9:c3:ac:6f:34:3a:7b:73:23:ee:40:88:
6e:5a:a8:4e:8d:c2:2c:c5:6b:13:86:20:19:ad:4a:
6c:15:68:5e:6a:bf:f9:da:29:65:d6:29:1f:9f:a5:
1d:4a:c9:bc:5b:aa:f7:ea:86:a2:2e:7a:4e:5c:8b:
84:18:8c:b5:b0:eb:25:cd:a7:dd:82:d0:e8:45:9e:
24:a6:63:02:3d:b3:24:d3:b3:a5:4d:9a:ff:69:64:
2d:f8:f6:2a:bb:86:98:be:f5:69:3f:39:a5:5c:c4:
eb:ea:79:1a:3c:21:c2:cb:d2:a4:1a:4b:48:a3:a2:
41:99:14:d2:fe:45:71:c1:9f:9b:d1:e4:cd:9e:fb:
fe:39:15:a1:0b:d4:7c:9b:25:ca:a8:36:40:4c:3a:
31:ce:3e:09:5c:d1:2d:5f:04:77:de:64:bd:48:52:
71:70:b0:d4:6e:ab:bd:29:58:23:00:53:b2:80:ff:
61:f1:d3:9d:63:1f:7b:9d:03:97:1b:b6:98:bd:e2:
19:79:f2:95:f1:a3:96:05:3e:9d:b2:c3:10:30:33:
54:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:19:7B:F4:7E:1E:5A:95:97:35:FA:E3:30:F8:39:55:02:3B:CB:E6
X509v3 Authority Key Identifier:
keyid:C0:D0:49:5A:CF:9C:78:B9:18:3B:BA:0C:05:B8:A2:99:74:38:2B:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wNBJWs-ceLkYO7oMBbiimXQ4KxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/c65398-a8eb-4d16-9c4e-3584e2ab1f0d/1/xRl79H4eWpWXNfrjMPg5VQI7y-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/c65398-a8eb-4d16-9c4e-3584e2ab1f0d/1/wNBJWs-ceLkYO7oMBbiimXQ4KxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:de40::/42
Signature Algorithm: sha256WithRSAEncryption
64:79:9f:c9:22:64:77:20:5e:e2:7e:9d:b9:b7:48:69:60:fd:
6b:a8:ba:8d:18:18:08:4a:17:54:c5:a9:b4:62:d1:35:98:b7:
eb:02:50:e3:8c:21:0c:1a:b0:04:98:a8:97:b3:c5:fd:ef:cc:
e5:db:98:f1:7e:18:82:dc:f3:68:5e:90:8d:ba:ab:ad:9b:46:
23:c7:3b:af:dc:93:71:61:74:f6:09:5d:fe:c9:63:6c:5a:08:
a9:04:72:f2:60:52:c3:24:78:14:72:1a:af:f3:14:4a:6a:4f:
b5:c4:e3:9a:0e:cb:59:62:0b:12:36:0a:b2:6d:b1:2a:33:ab:
37:98:5d:1a:59:e7:ed:ab:7a:22:7a:63:80:ad:fc:57:ff:80:
b8:58:ae:91:0f:b4:63:7f:71:a0:44:df:cb:ed:66:4b:93:78:
af:53:e2:06:cb:8a:f1:83:f6:ec:20:d6:a6:9e:84:e7:4f:7b:
bc:cb:ae:33:2b:5f:c9:15:78:87:e3:36:0a:5e:0a:02:7a:49:
49:8d:14:e2:03:f6:7a:04:52:9b:b7:7e:c9:9d:0b:83:5a:3d:
d9:35:fb:ce:e3:15:9e:3e:f4:28:15:d3:1a:d8:64:0b:2d:a7:
cd:c8:c9:92:a5:81:14:9b:37:d9:85:1a:1e:8a:17:2d:07:a9:
ee:25:a4:bf
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVx19v0nczG8mcHTzv6N4ZJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMwZDA0OTVhY2Y5Yzc4YjkxODNiYmEwYzA1YjhhMjk5NzQz
ODJiMTQwHhcNMjMwMTAyMDkzNzI5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNTE5N2JmNDdlMWU1YTk1OTczNWZhZTMzMGY4Mzk1NTAyM2JjYmU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqFYyKuNK2CINntHmu0bXJRR+ZcNg
FSxXmvweRkfmArLUB4sI8VzhMqiX/dk32z/Zw6xvNDp7cyPuQIhuWqhOjcIsxWsT
hiAZrUpsFWhear/52ill1ikfn6UdSsm8W6r36oaiLnpOXIuEGIy1sOslzafdgtDo
RZ4kpmMCPbMk07OlTZr/aWQt+PYqu4aYvvVpPzmlXMTr6nkaPCHCy9KkGktIo6JB
mRTS/kVxwZ+b0eTNnvv+ORWhC9R8myXKqDZATDoxzj4JXNEtXwR33mS9SFJxcLDU
bqu9KVgjAFOygP9h8dOdYx97nQOXG7aYveIZefKV8aOWBT6dssMQMDNUAQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFMUZe/R+HlqVlzX64zD4OVUCO8vmMB8GA1UdIwQY
MBaAFMDQSVrPnHi5GDu6DAW4opl0OCsUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd05CSldzLWNlTGtZTzdvTUJiaWltWFE0S3hRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9jNjUzOTgtYThlYi00ZDE2LTljNGUt
MzU4NGUyYWIxZjBkLzEveFJsNzlINGVXcFdYTmZyak1QZzVWUUk3eS1ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9jNjUzOTgtYThlYi00ZDE2LTljNGUtMzU4NGUyYWIxZjBk
LzEvd05CSldzLWNlTGtZTzdvTUJiaWltWFE0S3hRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcGKgTeQAAA
MA0GCSqGSIb3DQEBCwUAA4IBAQBkeZ/JImR3IF7ifp25t0hpYP1rqLqNGBgIShdU
xam0YtE1mLfrAlDjjCEMGrAEmKiXs8X978zl25jxfhiC3PNoXpCNuqutm0Yjxzuv
3JNxYXT2CV3+yWNsWgipBHLyYFLDJHgUchqv8xRKak+1xOOaDstZYgsSNgqybbEq
M6s3mF0aWeftq3oiemOArfxX/4C4WK6RD7Rjf3GgRN/L7WZLk3ivU+IGy4rxg/bs
INamnoTnT3u8y64zK1/JFXiH4zYKXgoCeklJjRTiA/Z6BFKbt37JnQuDWj3ZNfvO
4xWePvQoFdMa2GQLLafNyMmSpYEUmzfZhRoeihctB6nuJaS/
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:04 2024 by rpki-client on console-fra.rpki-client.org