Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/026914-1612-45f4-acdf-2acb9d17c11c/1/gb5yNaKDczemdnPDO63yPAWZn9o.roa
File: gb5yNaKDczemdnPDO63yPAWZn9o.roa (raw, json)
Hash identifier: GISJC0aoTNyBZaOoXwFVhqkMxkZj1XFnbsEe6rTRGxk=
Subject key identifier: 81:BE:72:35:A2:83:73:37:A6:76:73:C3:3B:AD:F2:3C:05:99:9F:DA
Certificate issuer: /CN=ca3348abf173d2774c8942008cadf6d6012a3d52
Certificate serial: 01913278D2D33A8C9B78760D03B7181A72BF
Authority key identifier: CA:33:48:AB:F1:73:D2:77:4C:89:42:00:8C:AD:F6:D6:01:2A:3D:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjNIq_Fz0ndMiUIAjK321gEqPVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/026914-1612-45f4-acdf-2acb9d17c11c/1/gb5yNaKDczemdnPDO63yPAWZn9o.roa
Signing time: Thu 08 Aug 2024 14:51:04 +0000
ROA not before: Thu 08 Aug 2024 14:51:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216417
IP address blocks: 2a04:5040::/32 maxlen: 32
2a04:5040:6001::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 08 Aug 2024 23:32:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:32:78:d2:d3:3a:8c:9b:78:76:0d:03:b7:18:1a:72:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca3348abf173d2774c8942008cadf6d6012a3d52
Validity
Not Before: Aug 8 14:51:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=81be7235a2837337a67673c33badf23c05999fda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9a:39:ce:2f:26:24:41:c9:25:8b:a2:72:e2:
0a:d0:21:a1:b1:e0:89:05:b7:f4:86:81:7d:ed:aa:
b0:ac:44:b0:ba:3a:96:fe:d4:0f:0d:c3:50:87:fd:
4b:71:09:ac:54:b9:18:ad:49:fc:60:e4:c9:a8:c5:
bd:cc:93:17:11:22:44:00:d9:b7:79:d7:5e:aa:1f:
13:7e:a5:4b:fc:75:d2:42:b3:de:6e:59:59:7a:d5:
3c:32:72:a9:c9:4c:2c:a7:f9:ee:b5:4e:58:dd:11:
4d:1b:39:16:88:72:f5:ab:03:a6:b3:2d:d7:e6:6c:
92:60:61:2e:99:49:1f:8f:78:5a:0e:7e:17:d6:7e:
95:bd:88:e4:a6:f5:1c:85:c8:d9:33:c1:f2:56:33:
ca:87:20:9b:f7:97:87:9e:f8:02:58:48:83:b1:7b:
e1:b1:cd:03:09:15:99:92:c3:b8:0b:d4:92:f2:9b:
b8:a9:76:64:97:2a:da:12:ef:2f:35:c7:ab:56:1a:
c2:2d:a6:29:92:3a:d8:02:63:b2:0a:3e:ca:4e:d1:
0f:7a:27:22:87:fc:35:21:be:9d:65:42:c4:29:79:
d8:d7:49:4a:88:c1:d5:02:00:df:57:b9:e6:f9:62:
52:f7:cc:55:52:80:d1:3e:e3:1f:44:b7:b4:85:2e:
05:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:BE:72:35:A2:83:73:37:A6:76:73:C3:3B:AD:F2:3C:05:99:9F:DA
X509v3 Authority Key Identifier:
keyid:CA:33:48:AB:F1:73:D2:77:4C:89:42:00:8C:AD:F6:D6:01:2A:3D:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjNIq_Fz0ndMiUIAjK321gEqPVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/026914-1612-45f4-acdf-2acb9d17c11c/1/gb5yNaKDczemdnPDO63yPAWZn9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/026914-1612-45f4-acdf-2acb9d17c11c/1/yjNIq_Fz0ndMiUIAjK321gEqPVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:5040::/32
Signature Algorithm: sha256WithRSAEncryption
9f:6d:32:ab:4c:12:aa:42:8f:41:8d:fa:03:c0:7a:10:93:20:
8e:66:68:c9:eb:48:f0:af:d3:58:a9:bd:0f:19:8a:86:68:69:
16:c0:a7:78:63:97:41:74:4c:d2:42:7a:2c:ea:9c:77:72:63:
00:7e:0f:15:0f:cc:f4:08:8e:bb:06:86:b6:9f:a9:70:50:8c:
86:9d:07:85:5b:56:05:8f:6e:f6:07:67:01:df:83:72:e6:59:
f2:2e:7a:9d:74:1e:36:52:07:18:bb:a7:7d:50:4a:45:f0:7a:
6c:12:eb:fc:59:ea:ee:fd:55:09:51:09:23:18:66:8a:23:3e:
c6:c9:07:af:38:63:84:b7:da:aa:ec:d2:e5:7f:8c:5c:b0:e1:
9d:d7:b3:6d:e5:3c:92:35:44:4e:7d:82:5d:0b:a8:4d:fc:2a:
b3:52:66:8b:ea:1d:2e:1c:58:82:7a:8f:a1:e6:55:66:59:90:
a1:8d:af:eb:fb:a9:10:86:63:b3:5a:3d:85:c7:84:00:b3:d4:
cf:61:ba:8d:9d:d8:ae:21:f8:28:dc:fa:35:8d:92:5d:f8:bc:
0b:84:88:c0:f1:74:a6:12:99:9e:f3:66:6c:56:37:f0:48:5c:
df:2b:13:4b:cd:a4:05:67:a9:40:ae:6c:89:6f:3a:a7:54:38:
63:c3:d3:01
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZEyeNLTOoybeHYNA7cYGnK/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhMzM0OGFiZjE3M2QyNzc0Yzg5NDIwMDhjYWRmNmQ2MDEy
YTNkNTIwHhcNMjQwODA4MTQ1MTA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MWJlNzIzNWEyODM3MzM3YTY3NjczYzMzYmFkZjIzYzA1OTk5ZmRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtJo5zi8mJEHJJYuicuIK0CGhseCJ
Bbf0hoF97aqwrESwujqW/tQPDcNQh/1LcQmsVLkYrUn8YOTJqMW9zJMXESJEANm3
eddeqh8TfqVL/HXSQrPebllZetU8MnKpyUwsp/nutU5Y3RFNGzkWiHL1qwOmsy3X
5mySYGEumUkfj3haDn4X1n6VvYjkpvUchcjZM8HyVjPKhyCb95eHnvgCWEiDsXvh
sc0DCRWZksO4C9SS8pu4qXZklyraEu8vNcerVhrCLaYpkjrYAmOyCj7KTtEPeici
h/w1Ib6dZULEKXnY10lKiMHVAgDfV7nm+WJS98xVUoDRPuMfRLe0hS4FpwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFIG+cjWig3M3pnZzwzut8jwFmZ/aMB8GA1UdIwQY
MBaAFMozSKvxc9J3TIlCAIyt9tYBKj1SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWpOSXFfRnowbmRNaVVJQWpLMzIxZ0VxUFZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS8wMjY5MTQtMTYxMi00NWY0LWFjZGYt
MmFjYjlkMTdjMTFjLzEvZ2I1eU5hS0RjemVtZG5QRE82M3lQQVdabjlvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS8wMjY5MTQtMTYxMi00NWY0LWFjZGYtMmFjYjlkMTdjMTFj
LzEveWpOSXFfRnowbmRNaVVJQWpLMzIxZ0VxUFZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgRQQDAN
BgkqhkiG9w0BAQsFAAOCAQEAn20yq0wSqkKPQY36A8B6EJMgjmZoyetI8K/TWKm9
DxmKhmhpFsCneGOXQXRM0kJ6LOqcd3JjAH4PFQ/M9AiOuwaGtp+pcFCMhp0HhVtW
BY9u9gdnAd+DcuZZ8i56nXQeNlIHGLunfVBKRfB6bBLr/Fnq7v1VCVEJIxhmiiM+
xskHrzhjhLfaquzS5X+MXLDhndezbeU8kjVETn2CXQuoTfwqs1Jmi+odLhxYgnqP
oeZVZlmQoY2v6/upEIZjs1o9hceEALPUz2G6jZ3YriH4KNz6NY2SXfi8C4SIwPF0
phKZnvNmbFY38Ehc3ysTS82kBWepQK5siW86p1Q4Y8PTAQ==
-----END CERTIFICATE-----
Generated at Fri Aug 9 02:43:41 2024 by rpki-client on console-fra.rpki-client.org