Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/22581e-fe8c-4fb8-9585-9880f04db94a/1/HvShr7ykmc06QyGpcKtz2f-oNRM.roa
File: HvShr7ykmc06QyGpcKtz2f-oNRM.roa (raw, json)
Hash identifier: ni8fuQhBbSUkv4NNZvoY34ftvspx1kU6qUxs8c1JJaA=
Subject key identifier: 1E:F4:A1:AF:BC:A4:99:CD:3A:43:21:A9:70:AB:73:D9:FF:A8:35:13
Certificate issuer: /CN=62beaa57c67aeb5bafd99793ab4846850a796c28
Certificate serial: 0185E9FEE173D756FF43F95774EFE88C9939
Authority key identifier: 62:BE:AA:57:C6:7A:EB:5B:AF:D9:97:93:AB:48:46:85:0A:79:6C:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yr6qV8Z661uv2ZeTq0hGhQp5bCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/22581e-fe8c-4fb8-9585-9880f04db94a/1/HvShr7ykmc06QyGpcKtz2f-oNRM.roa
Signing time: Wed 25 Jan 2023 17:34:33 +0000
ROA not before: Wed 25 Jan 2023 17:34:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56687
IP address blocks: 2a13:d000::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e9:fe:e1:73:d7:56:ff:43:f9:57:74:ef:e8:8c:99:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62beaa57c67aeb5bafd99793ab4846850a796c28
Validity
Not Before: Jan 25 17:34:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ef4a1afbca499cd3a4321a970ab73d9ffa83513
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f6:64:47:5d:3b:7b:db:a2:48:39:27:ce:90:
1a:a4:2c:68:30:96:00:db:8c:e9:d9:2c:82:bc:fd:
b7:9a:79:4e:0b:46:1e:9d:51:38:d8:a7:7f:7b:7b:
10:03:1a:2e:22:65:84:7a:d7:37:22:f1:ad:a8:fd:
f3:9c:43:91:7d:c2:12:a6:32:01:bd:8e:51:08:75:
a0:ff:77:d5:1c:f9:6d:65:12:22:89:17:06:33:ad:
af:62:b9:fe:d3:b6:bb:a0:27:da:a4:06:3d:55:9c:
84:30:58:f6:10:98:0a:9b:9f:e6:f2:e8:8d:29:bd:
bc:b3:12:ec:84:53:28:29:e2:db:db:dc:14:2a:d9:
40:1f:ad:b8:f0:2e:90:bc:f9:25:64:8d:ef:7d:29:
da:7f:3f:a4:62:8a:1a:ea:91:f2:3b:db:5b:d7:56:
e2:64:58:28:ca:4d:df:be:6d:af:a3:1c:0d:ef:2e:
cb:98:74:d0:f7:5d:dc:7c:27:1c:9b:7a:2b:0b:90:
26:24:38:65:bb:a5:ec:d6:c9:4d:c4:c7:20:f3:54:
75:93:09:db:13:13:54:83:a6:2a:73:3d:61:93:c9:
3a:66:f9:87:36:b9:88:9a:2e:7b:5e:33:5f:18:0d:
b2:8d:3c:1b:b2:50:32:94:e8:87:90:66:3e:52:2c:
f3:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:F4:A1:AF:BC:A4:99:CD:3A:43:21:A9:70:AB:73:D9:FF:A8:35:13
X509v3 Authority Key Identifier:
keyid:62:BE:AA:57:C6:7A:EB:5B:AF:D9:97:93:AB:48:46:85:0A:79:6C:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yr6qV8Z661uv2ZeTq0hGhQp5bCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/22581e-fe8c-4fb8-9585-9880f04db94a/1/HvShr7ykmc06QyGpcKtz2f-oNRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/22581e-fe8c-4fb8-9585-9880f04db94a/1/Yr6qV8Z661uv2ZeTq0hGhQp5bCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:d000::/29
Signature Algorithm: sha256WithRSAEncryption
45:46:a6:77:8e:67:3b:77:48:93:59:68:5d:9e:6b:49:1f:26:
63:bf:e0:b3:8f:17:9a:ee:2d:8e:7e:b6:93:8a:71:43:5a:d7:
98:05:34:00:44:b6:58:c3:b1:e3:46:1e:a5:a2:63:29:7c:91:
a8:79:9e:55:84:92:27:77:9f:85:55:da:73:11:f5:fa:46:99:
27:17:39:c5:aa:50:bd:68:ea:fe:73:6d:b0:02:b6:dd:f5:50:
26:76:81:d2:bb:7a:16:40:56:dd:78:c5:13:42:1d:6b:20:22:
60:1d:73:f2:59:41:a8:8c:b5:60:86:ca:90:14:1b:b8:25:b8:
c1:80:8c:f5:0a:8a:12:df:1c:8c:97:54:aa:94:87:40:da:8e:
1e:38:41:a3:82:7c:30:f9:31:aa:a2:a4:5c:59:73:c9:d7:13:
27:b6:73:a8:64:7f:11:e7:5a:20:0a:b3:9e:c4:c9:ba:22:fa:
11:6f:e6:48:cc:41:d4:77:4d:65:59:11:0a:f1:1d:21:5f:e4:
ce:64:06:4e:6e:ab:be:a0:1f:1e:bc:55:6b:71:ff:bd:47:81:
02:f6:75:69:79:eb:df:d8:c3:b3:e8:18:c7:6d:7b:7a:94:31:
5d:8c:e2:0e:68:0b:26:2b:d2:ea:9e:17:1e:68:35:cc:44:b3:
65:1f:26:88
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYXp/uFz11b/Q/lXdO/ojJk5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyYmVhYTU3YzY3YWViNWJhZmQ5OTc5M2FiNDg0Njg1MGE3
OTZjMjgwHhcNMjMwMTI1MTczNDMzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZWY0YTFhZmJjYTQ5OWNkM2E0MzIxYTk3MGFiNzNkOWZmYTgzNTEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1/ZkR107e9uiSDknzpAapCxoMJYA
24zp2SyCvP23mnlOC0YenVE42Kd/e3sQAxouImWEetc3IvGtqP3znEORfcISpjIB
vY5RCHWg/3fVHPltZRIiiRcGM62vYrn+07a7oCfapAY9VZyEMFj2EJgKm5/m8uiN
Kb28sxLshFMoKeLb29wUKtlAH6248C6QvPklZI3vfSnafz+kYooa6pHyO9tb11bi
ZFgoyk3fvm2voxwN7y7LmHTQ913cfCccm3orC5AmJDhlu6Xs1slNxMcg81R1kwnb
ExNUg6Yqcz1hk8k6ZvmHNrmImi57XjNfGA2yjTwbslAylOiHkGY+UizzawIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFB70oa+8pJnNOkMhqXCrc9n/qDUTMB8GA1UdIwQY
MBaAFGK+qlfGeutbr9mXk6tIRoUKeWwoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXI2cVY4WjY2MXV2MlplVHEwaEdoUXA1YkNnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy8yMjU4MWUtZmU4Yy00ZmI4LTk1ODUt
OTg4MGYwNGRiOTRhLzEvSHZTaHI3eWttYzA2UXlHcGNLdHoyZi1vTlJNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy8yMjU4MWUtZmU4Yy00ZmI4LTk1ODUtOTg4MGYwNGRiOTRh
LzEvWXI2cVY4WjY2MXV2MlplVHEwaEdoUXA1YkNnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhPQADAN
BgkqhkiG9w0BAQsFAAOCAQEARUamd45nO3dIk1loXZ5rSR8mY7/gs48Xmu4tjn62
k4pxQ1rXmAU0AES2WMOx40YepaJjKXyRqHmeVYSSJ3efhVXacxH1+kaZJxc5xapQ
vWjq/nNtsAK23fVQJnaB0rt6FkBW3XjFE0IdayAiYB1z8llBqIy1YIbKkBQbuCW4
wYCM9QqKEt8cjJdUqpSHQNqOHjhBo4J8MPkxqqKkXFlzydcTJ7ZzqGR/EedaIAqz
nsTJuiL6EW/mSMxB1HdNZVkRCvEdIV/kzmQGTm6rvqAfHrxVa3H/vUeBAvZ1aXnr
39jDs+gYx217epQxXYziDmgLJivS6p4XHmg1zESzZR8miA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:12 2024 by rpki-client on console-fra.rpki-client.org