Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/092b11-1622-4556-8e65-2409aad081d2/1/1-NTXkPut3LvDEiBTxDNu0Ef9aXY.roa
File: 1-NTXkPut3LvDEiBTxDNu0Ef9aXY.roa (raw, json)
Hash identifier: raP5cgzLIzjxZRjLTn0qIYa+zt7FNIHSXBvg9KNSp08=
Subject key identifier: F8:D4:D7:90:FB:AD:DC:BB:C3:12:20:53:C4:33:6E:D0:47:FD:69:76
Certificate issuer: /CN=97ebf14a8e54f12dd8b245353df683e182a096c5
Certificate serial: 018F2AEFB14D95175F9183A2D096C6C3E83F
Authority key identifier: 97:EB:F1:4A:8E:54:F1:2D:D8:B2:45:35:3D:F6:83:E1:82:A0:96:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l-vxSo5U8S3YskU1PfaD4YKglsU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/092b11-1622-4556-8e65-2409aad081d2/1/1-NTXkPut3LvDEiBTxDNu0Ef9aXY.roa
Signing time: Mon 29 Apr 2024 17:38:22 +0000
ROA not before: Mon 29 Apr 2024 17:38:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215158
IP address blocks: 2a12:2bc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 02 May 2024 16:04:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:2a:ef:b1:4d:95:17:5f:91:83:a2:d0:96:c6:c3:e8:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97ebf14a8e54f12dd8b245353df683e182a096c5
Validity
Not Before: Apr 29 17:38:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f8d4d790fbaddcbbc3122053c4336ed047fd6976
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ce:8a:ed:36:07:c2:11:66:77:93:a1:dd:7a:
66:65:9c:13:77:b1:42:fa:22:9b:f1:85:86:e7:1b:
3b:b1:2e:f3:09:39:45:31:f6:eb:c7:27:15:55:a6:
04:3e:86:1e:2f:2c:a4:8a:6e:bb:f9:70:2d:b0:2a:
43:9e:78:55:72:d3:ca:f7:7e:a7:4e:3a:0d:27:44:
a9:cf:f3:65:22:96:e3:c3:1c:66:26:54:9f:90:01:
1d:d5:95:cb:26:13:70:ab:35:2e:24:d9:21:51:1b:
93:de:11:af:0c:3a:8c:27:1f:3c:ec:62:bf:74:8b:
d0:61:20:cc:34:3b:2f:a1:dc:99:e4:c4:52:c3:80:
9e:78:78:6b:53:f4:b6:42:9b:a7:76:ef:b4:8f:6a:
0b:75:ee:20:73:29:14:50:fe:27:b5:76:48:b4:45:
a8:6d:96:fb:44:6c:6d:59:a4:cb:3a:c7:cd:fd:37:
7f:3c:34:4f:58:4a:5d:6c:fe:60:62:59:06:04:74:
a2:fe:b6:fe:23:8a:3b:d8:8b:7a:e8:cd:b7:29:b8:
1e:bc:4a:67:07:2c:33:92:58:46:ae:c1:31:58:49:
e5:d3:c1:4f:99:83:e3:b1:34:08:0b:6b:2b:d4:2b:
8e:ad:e9:2b:f3:68:00:58:9a:81:3a:c7:37:d9:d7:
57:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:D4:D7:90:FB:AD:DC:BB:C3:12:20:53:C4:33:6E:D0:47:FD:69:76
X509v3 Authority Key Identifier:
keyid:97:EB:F1:4A:8E:54:F1:2D:D8:B2:45:35:3D:F6:83:E1:82:A0:96:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l-vxSo5U8S3YskU1PfaD4YKglsU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/092b11-1622-4556-8e65-2409aad081d2/1/1-NTXkPut3LvDEiBTxDNu0Ef9aXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/092b11-1622-4556-8e65-2409aad081d2/1/l-vxSo5U8S3YskU1PfaD4YKglsU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:2bc0::/29
Signature Algorithm: sha256WithRSAEncryption
1d:90:9d:47:1c:fb:10:bd:01:b4:d2:75:1c:a8:c0:60:e8:7f:
17:8c:3b:90:06:af:b5:90:a4:0f:40:ab:4f:07:87:ea:95:4b:
cf:16:1d:fe:fc:17:fe:f3:0a:3e:e8:c6:a2:37:f4:b2:05:80:
bb:59:6b:bb:c0:ab:31:47:32:bf:09:f4:2b:8e:d2:9c:e4:31:
88:fb:04:00:8f:64:d9:1b:b4:49:ed:37:cd:34:a0:ac:91:05:
a6:b5:c6:48:b9:74:e1:1f:f8:c9:34:56:9d:98:7e:2a:78:f5:
51:82:b2:29:cb:d8:90:10:85:1d:e2:2f:79:08:0e:93:51:55:
07:2b:a9:3b:68:25:80:b9:a5:69:37:46:5c:6d:81:2c:70:55:
9c:89:1c:df:3e:41:2d:d4:09:33:f4:31:33:4d:82:a4:36:5c:
7d:a3:0c:b9:48:3b:ea:d4:37:79:70:46:5f:1f:0c:7f:01:de:
64:bf:df:54:d2:02:11:f4:41:74:b8:be:94:57:f4:81:3f:f0:
e5:b9:a1:ae:c3:cb:0b:cb:0b:a1:59:9f:c5:2a:e7:54:8d:9b:
9b:ce:1e:cb:27:fb:8b:93:d0:85:bf:e2:10:d7:20:02:13:1e:
f9:90:cf:27:bf:37:c4:be:94:df:4c:04:dd:c1:d4:4a:18:69:
54:0b:76:a1
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAY8q77FNlRdfkYOi0JbGw+g/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3ZWJmMTRhOGU1NGYxMmRkOGIyNDUzNTNkZjY4M2UxODJh
MDk2YzUwHhcNMjQwNDI5MTczODIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOGQ0ZDc5MGZiYWRkY2JiYzMxMjIwNTNjNDMzNmVkMDQ3ZmQ2OTc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAis6K7TYHwhFmd5Oh3XpmZZwTd7FC
+iKb8YWG5xs7sS7zCTlFMfbrxycVVaYEPoYeLyykim67+XAtsCpDnnhVctPK936n
TjoNJ0Spz/NlIpbjwxxmJlSfkAEd1ZXLJhNwqzUuJNkhURuT3hGvDDqMJx887GK/
dIvQYSDMNDsvodyZ5MRSw4CeeHhrU/S2Qpundu+0j2oLde4gcykUUP4ntXZItEWo
bZb7RGxtWaTLOsfN/Td/PDRPWEpdbP5gYlkGBHSi/rb+I4o72It66M23KbgevEpn
BywzklhGrsExWEnl08FPmYPjsTQIC2sr1CuOrekr82gAWJqBOsc32ddXBwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFPjU15D7rdy7wxIgU8QzbtBH/Wl2MB8GA1UdIwQY
MBaAFJfr8UqOVPEt2LJFNT32g+GCoJbFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbC12eFNvNVU4UzNZc2tVMVBmYUQ0WUtnbHNVLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS8wOTJiMTEtMTYyMi00NTU2LThlNjUt
MjQwOWFhZDA4MWQyLzEvMS1OVFhrUHV0M0x2REVpQlR4RE51MEVmOWFYWS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNDEvMDkyYjExLTE2MjItNDU1Ni04ZTY1LTI0MDlhYWQwODFk
Mi8xL2wtdnhTbzVVOFMzWXNrVTFQZmFENFlLZ2xzVS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFAyoSK8Aw
DQYJKoZIhvcNAQELBQADggEBAB2QnUcc+xC9AbTSdRyowGDofxeMO5AGr7WQpA9A
q08Hh+qVS88WHf78F/7zCj7oxqI39LIFgLtZa7vAqzFHMr8J9CuO0pzkMYj7BACP
ZNkbtEntN800oKyRBaa1xki5dOEf+Mk0Vp2Yfip49VGCsinL2JAQhR3iL3kIDpNR
VQcrqTtoJYC5pWk3RlxtgSxwVZyJHN8+QS3UCTP0MTNNgqQ2XH2jDLlIO+rUN3lw
Rl8fDH8B3mS/31TSAhH0QXS4vpRX9IE/8OW5oa7DywvLC6FZn8Uq51SNm5vOHssn
+4uT0IW/4hDXIAITHvmQzye/N8S+lN9MBN3B1EoYaVQLdqE=
-----END CERTIFICATE-----
Generated at Thu May 2 18:54:44 2024 by rpki-client on console-ams.rpki-client.org