Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/9ed76b-35a6-4a9d-9fa6-8517a8f355ae/1/zM3sChVC2TMaY_t-2HSTO-bs7RE.roa
File: zM3sChVC2TMaY_t-2HSTO-bs7RE.roa (raw, json)
Hash identifier: EYS7ALux/LOPdXBGnWnpLP5nFd9nBBXNsZinMEw13j4=
Subject key identifier: CC:CD:EC:0A:15:42:D9:33:1A:63:FB:7E:D8:74:93:3B:E6:EC:ED:11
Certificate issuer: /CN=03196c89e554dbe4774522759906e2581a174694
Certificate serial: 018EE67D2D9F68046371E12943D15BD400FA
Authority key identifier: 03:19:6C:89:E5:54:DB:E4:77:45:22:75:99:06:E2:58:1A:17:46:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AxlsieVU2-R3RSJ1mQbiWBoXRpQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/9ed76b-35a6-4a9d-9fa6-8517a8f355ae/1/zM3sChVC2TMaY_t-2HSTO-bs7RE.roa
Signing time: Tue 16 Apr 2024 10:39:07 +0000
ROA not before: Tue 16 Apr 2024 10:39:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215092
IP address blocks: 2a0b:c0c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 17 Apr 2024 10:09:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e6:7d:2d:9f:68:04:63:71:e1:29:43:d1:5b:d4:00:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03196c89e554dbe4774522759906e2581a174694
Validity
Not Before: Apr 16 10:39:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cccdec0a1542d9331a63fb7ed874933be6eced11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:90:0f:65:92:21:2c:e2:b9:5b:8c:56:db:56:
b7:81:89:37:19:7a:70:65:05:c1:61:1b:ad:b5:82:
fa:ab:2e:ce:07:df:35:b7:6c:f7:1f:04:f9:c0:5a:
68:b2:00:0f:4f:63:0b:fc:ec:d1:f6:20:3c:c9:93:
a7:b6:20:3a:da:db:bc:c3:61:68:98:67:34:02:e5:
56:0a:ea:f4:9f:0e:f1:2c:81:37:2d:96:7a:9c:d3:
9c:6f:57:86:36:41:f8:8c:65:77:70:99:45:5e:d7:
6c:22:94:07:05:27:fe:fb:c0:96:e2:f3:9a:39:8e:
da:b6:27:b0:42:85:07:6f:41:3e:29:9c:3f:62:07:
96:45:2d:18:45:50:68:f9:04:7c:16:0d:f4:dd:d1:
df:e5:00:72:3c:28:09:df:fa:35:af:cb:ba:7d:3a:
fa:48:4e:00:9d:22:33:63:1f:97:6b:54:44:5e:03:
bc:77:59:cd:ad:07:47:e9:6a:83:21:b4:7d:d2:ec:
37:6f:a3:ff:8d:3c:9d:10:ad:a6:2f:9e:34:49:bf:
bf:98:17:6b:15:b4:5b:fd:2e:fc:23:87:40:ef:08:
6c:49:66:25:45:27:89:0e:3e:b2:1b:d8:2f:3d:6a:
3c:9a:97:57:ea:0d:51:f5:9c:9a:83:1e:0b:a1:a1:
30:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:CD:EC:0A:15:42:D9:33:1A:63:FB:7E:D8:74:93:3B:E6:EC:ED:11
X509v3 Authority Key Identifier:
keyid:03:19:6C:89:E5:54:DB:E4:77:45:22:75:99:06:E2:58:1A:17:46:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AxlsieVU2-R3RSJ1mQbiWBoXRpQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/9ed76b-35a6-4a9d-9fa6-8517a8f355ae/1/zM3sChVC2TMaY_t-2HSTO-bs7RE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/9ed76b-35a6-4a9d-9fa6-8517a8f355ae/1/AxlsieVU2-R3RSJ1mQbiWBoXRpQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:c0c0::/29
Signature Algorithm: sha256WithRSAEncryption
aa:5c:66:c0:bc:f5:c9:e0:c3:24:07:8e:98:49:69:10:33:8d:
07:89:41:22:7f:b8:fe:39:f2:5b:ef:b1:0c:60:16:ec:e1:26:
2b:ad:f4:88:dd:c1:04:b6:10:69:9c:85:10:82:1c:be:bf:96:
f6:f7:e8:df:41:b7:a8:89:35:b7:01:a3:5e:05:f1:e8:eb:a6:
31:9f:a6:e7:0f:42:9c:6f:df:3a:67:ca:89:9f:b1:15:c0:64:
10:82:7f:61:78:4b:65:77:e8:1b:ab:a5:1b:bd:ae:71:11:85:
dc:0d:88:a3:c5:e6:d8:eb:a2:d1:8a:1e:26:a7:b7:ac:53:82:
30:2f:58:1d:e2:bc:0c:24:f8:3c:e8:36:4a:dd:69:9f:2d:4b:
c9:28:e8:01:37:dd:13:10:0e:b2:d6:68:e5:9b:22:0f:51:50:
16:36:61:be:8c:ae:da:c3:43:f8:28:db:3b:de:63:3f:d8:c5:
85:30:c4:bf:65:00:76:9a:38:63:03:65:fe:15:72:e3:70:f6:
bd:64:30:4d:e4:ed:e7:b4:0d:ff:46:6b:1f:12:94:32:7a:9b:
a9:02:50:e0:45:32:07:c7:b3:81:e4:7e:a3:0f:00:5f:7a:9a:
27:9d:41:1e:17:2b:0b:26:cf:9e:80:61:b9:f2:3f:19:f6:c0:
db:43:fc:d8
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAY7mfS2faARjceEpQ9Fb1AD6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzMTk2Yzg5ZTU1NGRiZTQ3NzQ1MjI3NTk5MDZlMjU4MWEx
NzQ2OTQwHhcNMjQwNDE2MTAzOTA3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjY2NkZWMwYTE1NDJkOTMzMWE2M2ZiN2VkODc0OTMzYmU2ZWNlZDExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn5APZZIhLOK5W4xW21a3gYk3GXpw
ZQXBYRuttYL6qy7OB981t2z3HwT5wFposgAPT2ML/OzR9iA8yZOntiA62tu8w2Fo
mGc0AuVWCur0nw7xLIE3LZZ6nNOcb1eGNkH4jGV3cJlFXtdsIpQHBSf++8CW4vOa
OY7atiewQoUHb0E+KZw/YgeWRS0YRVBo+QR8Fg303dHf5QByPCgJ3/o1r8u6fTr6
SE4AnSIzYx+Xa1REXgO8d1nNrQdH6WqDIbR90uw3b6P/jTydEK2mL540Sb+/mBdr
FbRb/S78I4dA7whsSWYlRSeJDj6yG9gvPWo8mpdX6g1R9Zyagx4LoaEwtQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFMzN7AoVQtkzGmP7fth0kzvm7O0RMB8GA1UdIwQY
MBaAFAMZbInlVNvkd0UidZkG4lgaF0aUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQXhsc2llVlUyLVIzUlNKMW1RYmlXQm9YUnBRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi85ZWQ3NmItMzVhNi00YTlkLTlmYTYt
ODUxN2E4ZjM1NWFlLzEvek0zc0NoVkMyVE1hWV90LTJIU1RPLWJzN1JFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi85ZWQ3NmItMzVhNi00YTlkLTlmYTYtODUxN2E4ZjM1NWFl
LzEvQXhsc2llVlUyLVIzUlNKMW1RYmlXQm9YUnBRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgvAwDAN
BgkqhkiG9w0BAQsFAAOCAQEAqlxmwLz1yeDDJAeOmElpEDONB4lBIn+4/jnyW++x
DGAW7OEmK630iN3BBLYQaZyFEIIcvr+W9vfo30G3qIk1twGjXgXx6OumMZ+m5w9C
nG/fOmfKiZ+xFcBkEIJ/YXhLZXfoG6ulG72ucRGF3A2Io8Xm2Oui0YoeJqe3rFOC
MC9YHeK8DCT4POg2St1pny1LySjoATfdExAOstZo5ZsiD1FQFjZhvoyu2sND+Cjb
O95jP9jFhTDEv2UAdpo4YwNl/hVy43D2vWQwTeTt57QN/0ZrHxKUMnqbqQJQ4EUy
B8ezgeR+ow8AX3qaJ51BHhcrCybPnoBhufI/GfbA20P82A==
-----END CERTIFICATE-----
Generated at Wed Apr 17 15:04:50 2024 by rpki-client on console-ams.rpki-client.org