Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/SZlRRn5PRivHuNHLxAneIg3_wlY.roa
File: SZlRRn5PRivHuNHLxAneIg3_wlY.roa (raw, json)
Hash identifier: Rcwo7yRA0YT5vLuHxcYeC5oiQ7x+H2sl3TKJJn2wc3s=
Subject key identifier: 49:99:51:46:7E:4F:46:2B:C7:B8:D1:CB:C4:09:DE:22:0D:FF:C2:56
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018EA56CA77AF7670D1DC5BBDC02036A91CB
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/SZlRRn5PRivHuNHLxAneIg3_wlY.roa
Signing time: Wed 03 Apr 2024 19:25:45 +0000
ROA not before: Wed 03 Apr 2024 19:25:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213220
IP address blocks: 2a14:7b81::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 06 Apr 2024 18:50:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a5:6c:a7:7a:f7:67:0d:1d:c5:bb:dc:02:03:6a:91:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Apr 3 19:25:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=499951467e4f462bc7b8d1cbc409de220dffc256
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2e:75:b8:de:e1:04:85:64:e0:5c:f1:7e:87:
9f:54:e9:e7:43:7b:14:69:06:8d:3c:8a:bf:1d:eb:
3e:e9:94:c0:d1:97:7c:ee:1c:53:d2:b0:ad:02:e0:
15:74:19:51:1f:55:4b:ab:3e:7e:84:a0:91:16:51:
a4:28:2d:28:70:90:13:d9:4a:a3:a3:d3:9d:4a:ec:
6e:09:84:a7:33:c3:08:fd:37:0c:2c:0d:b4:01:e0:
04:47:a9:bd:5d:e3:26:71:2b:fe:7d:bd:69:3a:f5:
2d:29:19:80:92:d5:df:7d:d0:7f:c1:2c:28:90:be:
b8:5d:07:9e:c8:04:50:e4:1f:11:81:d6:78:bc:0e:
61:7b:27:09:3f:43:b7:a7:ab:5d:45:6d:2a:89:26:
76:f0:c3:91:20:8d:0c:d0:4f:2f:63:93:0f:77:69:
97:2c:d8:18:27:40:6c:6c:6e:2f:d6:54:07:11:53:
d3:76:2f:43:c6:d4:5e:18:18:2b:29:60:fe:db:fc:
aa:01:9b:38:44:23:e8:0f:1d:97:43:83:6c:71:08:
ac:55:59:1b:2f:72:f2:9f:9c:8a:08:c3:81:d5:74:
93:e5:99:10:c3:61:41:3a:db:cb:99:d4:a9:66:13:
39:cd:ce:f2:b7:e0:22:43:cd:cd:d6:5c:4a:22:ae:
f0:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:99:51:46:7E:4F:46:2B:C7:B8:D1:CB:C4:09:DE:22:0D:FF:C2:56
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/SZlRRn5PRivHuNHLxAneIg3_wlY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:7b81::/32
Signature Algorithm: sha256WithRSAEncryption
3a:5c:03:85:26:e9:2c:f5:0c:6f:e8:c4:6b:48:64:11:09:fa:
46:84:e7:4a:18:ca:1b:af:53:75:fa:c2:6a:0a:5c:eb:2b:b9:
11:63:c9:45:a0:00:35:5c:7e:5a:13:59:ac:df:d3:d4:b0:43:
c6:62:f4:c5:19:7c:d2:c9:6b:6c:e3:68:3b:aa:53:00:21:cd:
9f:83:08:43:07:dd:bd:5f:67:27:a4:4e:17:92:4f:81:39:8a:
2e:84:82:80:c2:8f:42:94:fb:96:61:44:8d:72:df:97:28:df:
3b:f8:d7:f1:52:f8:10:98:25:76:d3:d8:69:96:92:a6:96:c1:
94:fc:86:43:83:b4:a0:c0:30:ef:dc:76:10:6a:c4:69:d8:c3:
49:79:64:a2:3b:7f:90:45:53:7d:3c:5c:a2:ae:d7:72:2f:69:
96:97:05:8b:d2:05:ac:63:c3:96:e5:b9:64:20:df:d0:7e:56:
8c:3d:4f:c0:1f:cc:39:9a:b1:ba:17:b7:3e:ea:80:8d:c9:e1:
a9:01:92:8a:87:a7:99:2e:ee:f6:55:d7:46:5e:02:96:8d:11:
e5:2a:7a:32:be:ba:e8:3c:b0:47:ff:9a:7f:85:ee:30:a8:13:
fc:63:5e:fc:4b:2f:28:9e:2b:5b:b7:66:53:a4:de:fe:cc:dc:
bc:2a:1f:0a
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAY6lbKd692cNHcW73AIDapHLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3NmJiNDhlOTNlOGEwMDU4YzVjNzJhODFhODc5OTQ1NTMw
N2VlNTYwHhcNMjQwNDAzMTkyNTQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OTk5NTE0NjdlNGY0NjJiYzdiOGQxY2JjNDA5ZGUyMjBkZmZjMjU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAry51uN7hBIVk4FzxfoefVOnnQ3sU
aQaNPIq/Hes+6ZTA0Zd87hxT0rCtAuAVdBlRH1VLqz5+hKCRFlGkKC0ocJAT2Uqj
o9OdSuxuCYSnM8MI/TcMLA20AeAER6m9XeMmcSv+fb1pOvUtKRmAktXffdB/wSwo
kL64XQeeyARQ5B8RgdZ4vA5heycJP0O3p6tdRW0qiSZ28MORII0M0E8vY5MPd2mX
LNgYJ0BsbG4v1lQHEVPTdi9DxtReGBgrKWD+2/yqAZs4RCPoDx2XQ4NscQisVVkb
L3Lyn5yKCMOB1XST5ZkQw2FBOtvLmdSpZhM5zc7yt+AiQ83N1lxKIq7wDwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFEmZUUZ+T0Yrx7jRy8QJ3iIN/8JWMB8GA1UdIwQY
MBaAFNdrtI6T6KAFjFxyqBqHmUVTB+5WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgt
OGJmYmRkNDVjYjYyLzEvU1psUlJuNVBSaXZIdU5ITHhBbmVJZzNfd2xZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi9hNWJmYjYtNmExMC00ZmJjLWFmNDgtOGJmYmRkNDVjYjYy
LzEvMTJ1MGpwUG9vQVdNWEhLb0dvZVpSVk1IN2xZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhR7gTAN
BgkqhkiG9w0BAQsFAAOCAQEAOlwDhSbpLPUMb+jEa0hkEQn6RoTnShjKG69TdfrC
agpc6yu5EWPJRaAANVx+WhNZrN/T1LBDxmL0xRl80slrbONoO6pTACHNn4MIQwfd
vV9nJ6ROF5JPgTmKLoSCgMKPQpT7lmFEjXLflyjfO/jX8VL4EJgldtPYaZaSppbB
lPyGQ4O0oMAw79x2EGrEadjDSXlkojt/kEVTfTxcoq7Xci9plpcFi9IFrGPDluW5
ZCDf0H5WjD1PwB/MOZqxuhe3PuqAjcnhqQGSioenmS7u9lXXRl4Clo0R5Sp6Mr66
6DywR/+af4XuMKgT/GNe/EsvKJ4rW7dmU6Te/szcvCofCg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:48 2024 by rpki-client on console-ams.rpki-client.org