Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/rxpMQSm4fQZB2QDJIibRHmuI7P4.roa
File: rxpMQSm4fQZB2QDJIibRHmuI7P4.roa (raw, json)
Hash identifier: 7RiFCDw4wfMKSiawKQofceyBRsmqtIsuUDllqtjYshY=
Subject key identifier: AF:1A:4C:41:29:B8:7D:06:41:D9:00:C9:22:26:D1:1E:6B:88:EC:FE
Certificate issuer: /CN=44aa813139c06b1dcf1bfe8332b9b801ab3eb302
Certificate serial: 018C8D3485C7A654B840018D6A7E5118467A
Authority key identifier: 44:AA:81:31:39:C0:6B:1D:CF:1B:FE:83:32:B9:B8:01:AB:3E:B3:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RKqBMTnAax3PG_6DMrm4Aas-swI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/rxpMQSm4fQZB2QDJIibRHmuI7P4.roa
Signing time: Thu 21 Dec 2023 16:27:58 +0000
ROA not before: Thu 21 Dec 2023 16:27:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202693
IP address blocks: 2a06:c642::/32 maxlen: 32
2a06:c641::/32 maxlen: 32
2a06:c640::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 24 Dec 2023 10:02:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:8d:34:85:c7:a6:54:b8:40:01:8d:6a:7e:51:18:46:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44aa813139c06b1dcf1bfe8332b9b801ab3eb302
Validity
Not Before: Dec 21 16:27:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af1a4c4129b87d0641d900c92226d11e6b88ecfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:13:94:53:68:78:3b:b1:61:5b:40:62:0b:d9:
c1:b2:ab:85:ae:3c:94:03:17:41:cd:04:d7:30:01:
dc:8b:42:67:44:1c:9d:57:7b:ef:c9:43:11:28:57:
53:94:cf:2c:64:1b:29:28:35:0d:d4:ec:22:c3:41:
7f:fa:26:9d:6a:67:e2:4f:ec:56:3d:00:78:0f:ef:
e1:3c:dd:7c:29:f8:0d:99:55:24:06:d1:d7:59:15:
56:fe:65:a7:90:d3:58:13:e3:1f:9b:19:a5:6d:8c:
eb:b3:ac:0e:b2:e6:17:1c:ae:cb:9c:64:93:58:df:
b6:62:70:13:08:4c:ec:96:3d:4b:fe:a1:b9:ee:5a:
ad:04:59:46:a2:f4:a5:ef:fa:3b:6b:2b:8d:30:d7:
66:36:b0:9d:4c:14:2d:98:27:a4:7a:bf:97:75:d7:
b9:8d:0c:ec:f6:a9:63:6a:b4:9e:a3:2a:88:6f:b0:
c0:47:f9:ff:5a:9e:3f:ea:cb:05:ca:d9:ef:c2:a3:
02:27:40:72:3a:40:70:02:32:c6:41:e7:51:42:24:
77:48:e2:95:ae:cf:ad:6f:cb:cc:87:d0:c8:cb:70:
99:ed:14:80:4f:d4:28:fe:95:dc:1a:cd:70:07:1a:
6d:f7:5d:a4:42:98:d6:8b:de:85:36:32:00:80:f6:
cc:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:1A:4C:41:29:B8:7D:06:41:D9:00:C9:22:26:D1:1E:6B:88:EC:FE
X509v3 Authority Key Identifier:
keyid:44:AA:81:31:39:C0:6B:1D:CF:1B:FE:83:32:B9:B8:01:AB:3E:B3:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RKqBMTnAax3PG_6DMrm4Aas-swI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/rxpMQSm4fQZB2QDJIibRHmuI7P4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/535bf7-59ac-45f1-bec5-41dd7f3ea7a4/1/RKqBMTnAax3PG_6DMrm4Aas-swI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:c640::-2a06:c642:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
3b:74:a8:30:ae:d6:be:34:66:a7:66:5f:b1:2f:32:f2:81:c7:
5b:9a:3a:c6:a4:d9:3b:4e:f5:36:a6:75:d7:02:04:ff:08:d9:
37:42:33:3a:79:1f:56:82:9a:6d:1b:57:42:a7:16:60:bc:28:
de:54:61:92:49:55:7a:8c:69:67:a2:31:9b:1c:32:1d:85:86:
d5:90:b9:f8:85:52:5f:c8:13:a2:3c:28:33:47:04:9c:b5:aa:
02:1d:c1:7b:07:b3:6f:f2:ce:5c:c7:4a:c6:22:28:55:5a:b2:
78:26:7f:19:b6:f6:97:a4:09:99:50:9d:68:71:a7:21:a6:f7:
3b:a2:64:60:18:f2:cc:a6:24:be:14:11:22:3d:92:1e:1e:da:
8e:96:c6:f6:b5:e7:5f:2c:af:a8:33:7c:ba:95:8a:64:4f:58:
64:3f:61:e3:a8:16:b5:5c:82:1f:a9:0d:cd:a1:f6:47:55:45:
69:fd:a2:56:7e:f8:2e:91:1d:75:da:c5:8e:b5:f1:cf:42:10:
0b:2f:2d:1c:32:49:cd:8c:34:12:05:c4:d4:41:01:e3:01:b7:
23:7e:5f:02:45:58:61:c8:b9:5a:fe:34:ca:a3:be:44:5c:f4:
84:a9:73:02:49:b7:81:50:53:7c:f7:ee:3c:7d:dc:e8:8c:b9:
09:e9:0c:cf
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgISAYyNNIXHplS4QAGNan5RGEZ6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0YWE4MTMxMzljMDZiMWRjZjFiZmU4MzMyYjliODAxYWIz
ZWIzMDIwHhcNMjMxMjIxMTYyNzU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZjFhNGM0MTI5Yjg3ZDA2NDFkOTAwYzkyMjI2ZDExZTZiODhlY2ZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqROUU2h4O7FhW0BiC9nBsquFrjyU
AxdBzQTXMAHci0JnRBydV3vvyUMRKFdTlM8sZBspKDUN1Owiw0F/+iadamfiT+xW
PQB4D+/hPN18KfgNmVUkBtHXWRVW/mWnkNNYE+MfmxmlbYzrs6wOsuYXHK7LnGST
WN+2YnATCEzslj1L/qG57lqtBFlGovSl7/o7ayuNMNdmNrCdTBQtmCeker+Xdde5
jQzs9qljarSeoyqIb7DAR/n/Wp4/6ssFytnvwqMCJ0ByOkBwAjLGQedRQiR3SOKV
rs+tb8vMh9DIy3CZ7RSAT9Qo/pXcGs1wBxpt912kQpjWi96FNjIAgPbMTQIDAQAB
o4ICEzCCAg8wHQYDVR0OBBYEFK8aTEEpuH0GQdkAySIm0R5riOz+MB8GA1UdIwQY
MBaAFESqgTE5wGsdzxv+gzK5uAGrPrMCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUktxQk1UbkFheDNQR182RE1ybTRBYXMtc3dJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy81MzViZjctNTlhYy00NWYxLWJlYzUt
NDFkZDdmM2VhN2E0LzEvcnhwTVFTbTRmUVpCMlFESklpYlJIbXVJN1A0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy81MzViZjctNTlhYy00NWYxLWJlYzUtNDFkZDdmM2VhN2E0
LzEvUktxQk1UbkFheDNQR182RE1ybTRBYXMtc3dJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQMA4DBQYqBsZA
AwUAKgbGQjANBgkqhkiG9w0BAQsFAAOCAQEAO3SoMK7WvjRmp2ZfsS8y8oHHW5o6
xqTZO071NqZ11wIE/wjZN0IzOnkfVoKabRtXQqcWYLwo3lRhkklVeoxpZ6Ixmxwy
HYWG1ZC5+IVSX8gTojwoM0cEnLWqAh3Bewezb/LOXMdKxiIoVVqyeCZ/Gbb2l6QJ
mVCdaHGnIab3O6JkYBjyzKYkvhQRIj2SHh7ajpbG9rXnXyyvqDN8upWKZE9YZD9h
46gWtVyCH6kNzaH2R1VFaf2iVn74LpEdddrFjrXxz0IQCy8tHDJJzYw0EgXE1EEB
4wG3I35fAkVYYci5Wv40yqO+RFz0hKlzAkm3gVBTfPfuPH3c6Iy5CekMzw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:50 2024 by rpki-client on console-fra.rpki-client.org