Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/59a3aa-4eae-44e7-acc1-6f16834bc847/1/DQEBe0CE_d3IHGPHJozSel22zAU.roa
File: DQEBe0CE_d3IHGPHJozSel22zAU.roa (raw, json)
Hash identifier: ODxSGJzib3N9I3AY5SI5w+yxlXYVte7WcNecLamM9sU=
Subject key identifier: 0D:01:01:7B:40:84:FD:DD:C8:1C:63:C7:26:8C:D2:7A:5D:B6:CC:05
Certificate issuer: /CN=7803558ea6e5165b3876097af75bf1e92a142cf2
Certificate serial: 018F78AC8FC5F2A04E97AC84D2FEBDAD7A35
Authority key identifier: 78:03:55:8E:A6:E5:16:5B:38:76:09:7A:F7:5B:F1:E9:2A:14:2C:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eANVjqblFls4dgl691vx6SoULPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/59a3aa-4eae-44e7-acc1-6f16834bc847/1/DQEBe0CE_d3IHGPHJozSel22zAU.roa
Signing time: Tue 14 May 2024 19:55:25 +0000
ROA not before: Tue 14 May 2024 19:55:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42375
IP address blocks: 2a0e:eec2::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 10 Jun 2024 18:41:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:78:ac:8f:c5:f2:a0:4e:97:ac:84:d2:fe:bd:ad:7a:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7803558ea6e5165b3876097af75bf1e92a142cf2
Validity
Not Before: May 14 19:55:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0d01017b4084fdddc81c63c7268cd27a5db6cc05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:c1:35:4b:0e:60:cd:e5:af:f4:90:90:53:93:
a7:a0:44:0f:ab:9f:51:95:26:97:29:bd:32:d0:0a:
8e:4f:b5:1c:12:c0:76:ab:1f:86:b2:08:2a:dc:b0:
ce:41:b2:9a:5c:5e:b6:06:bb:9f:de:ca:ce:18:d0:
ad:77:0a:41:ef:85:94:08:2e:4c:d9:7f:8d:3a:49:
53:40:8f:64:76:8f:ac:d2:0b:28:3d:e2:dc:63:4d:
37:ac:4a:74:65:66:2e:14:99:a8:9e:57:85:43:58:
9c:00:4a:ca:78:98:1b:87:09:ed:f9:53:77:29:bd:
fa:c2:9b:80:05:a3:40:8e:95:55:61:30:72:c0:75:
ed:6c:ac:49:1d:5f:5c:11:85:0f:31:60:0b:e2:a6:
f8:04:d6:26:82:1c:4b:ac:45:cf:ce:cf:89:e8:4f:
3c:d9:30:e0:20:4b:55:45:62:9c:c8:dc:1d:67:7d:
9f:00:6a:6f:c8:be:10:60:1b:9b:2c:77:99:df:88:
14:32:67:dd:39:1b:14:bb:d5:56:05:5e:dd:51:71:
0b:30:3c:96:0c:ff:f1:5f:e2:e5:26:db:67:e3:4e:
17:fa:fb:2d:32:49:d4:8c:76:d4:8e:c4:ac:a2:a3:
4e:2c:27:ed:de:b4:41:79:e7:c8:27:a5:20:8f:83:
73:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:01:01:7B:40:84:FD:DD:C8:1C:63:C7:26:8C:D2:7A:5D:B6:CC:05
X509v3 Authority Key Identifier:
keyid:78:03:55:8E:A6:E5:16:5B:38:76:09:7A:F7:5B:F1:E9:2A:14:2C:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eANVjqblFls4dgl691vx6SoULPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/59a3aa-4eae-44e7-acc1-6f16834bc847/1/DQEBe0CE_d3IHGPHJozSel22zAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/59a3aa-4eae-44e7-acc1-6f16834bc847/1/eANVjqblFls4dgl691vx6SoULPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:eec2::/32
Signature Algorithm: sha256WithRSAEncryption
13:fd:cf:7b:25:bc:12:47:b0:c8:3a:6f:06:04:f8:51:f6:e5:
37:e2:bd:0f:5c:e6:fc:39:85:5e:d9:c1:38:05:08:18:3b:30:
37:f3:ba:93:44:65:81:cf:1f:c0:f5:a9:b6:77:2e:11:1f:d9:
f3:cc:1c:bd:ae:de:68:6e:28:6d:a0:9e:85:7a:41:c8:fa:0c:
b1:ca:fb:73:98:63:1b:7c:b7:88:c5:66:a3:e0:3a:de:84:35:
1d:a6:7d:93:0e:2c:bb:3e:61:9a:e9:bc:fc:ba:38:bd:be:f1:
30:45:58:e1:24:ba:23:8b:28:17:86:ea:e9:d4:ce:b3:08:4d:
11:9a:30:44:0d:bc:af:ec:cc:7c:a1:6d:53:7e:84:b8:c1:7f:
1a:7b:7e:e8:86:42:1d:6c:12:65:3b:6c:8a:71:38:04:df:0f:
59:78:34:17:54:d7:13:22:c3:91:d8:26:53:6d:c7:43:38:2e:
c7:61:ff:a6:a9:a8:26:58:6b:6f:2f:b2:ab:a3:38:3d:54:e8:
89:d9:2a:ad:46:dc:30:30:b9:95:7b:1e:af:ac:0b:bd:a0:ce:
6a:25:86:73:25:a8:51:c2:0c:4f:4b:f3:b8:88:e4:5d:37:95:
eb:77:e1:61:55:b4:80:65:40:0b:c1:e8:f3:a4:94:51:4e:15:
78:fe:7c:4f
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAY94rI/F8qBOl6yE0v69rXo1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc4MDM1NThlYTZlNTE2NWIzODc2MDk3YWY3NWJmMWU5MmEx
NDJjZjIwHhcNMjQwNTE0MTk1NTI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZDAxMDE3YjQwODRmZGRkYzgxYzYzYzcyNjhjZDI3YTVkYjZjYzA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA48E1Sw5gzeWv9JCQU5OnoEQPq59R
lSaXKb0y0AqOT7UcEsB2qx+Gsggq3LDOQbKaXF62Bruf3srOGNCtdwpB74WUCC5M
2X+NOklTQI9kdo+s0gsoPeLcY003rEp0ZWYuFJmonleFQ1icAErKeJgbhwnt+VN3
Kb36wpuABaNAjpVVYTBywHXtbKxJHV9cEYUPMWAL4qb4BNYmghxLrEXPzs+J6E88
2TDgIEtVRWKcyNwdZ32fAGpvyL4QYBubLHeZ34gUMmfdORsUu9VWBV7dUXELMDyW
DP/xX+LlJttn404X+vstMknUjHbUjsSsoqNOLCft3rRBeefIJ6Ugj4NzYwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFA0BAXtAhP3dyBxjxyaM0npdtswFMB8GA1UdIwQY
MBaAFHgDVY6m5RZbOHYJevdb8ekqFCzyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZUFOVmpxYmxGbHM0ZGdsNjkxdng2U29VTFBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS81OWEzYWEtNGVhZS00NGU3LWFjYzEt
NmYxNjgzNGJjODQ3LzEvRFFFQmUwQ0VfZDNJSEdQSEpvelNlbDIyekFVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS81OWEzYWEtNGVhZS00NGU3LWFjYzEtNmYxNjgzNGJjODQ3
LzEvZUFOVmpxYmxGbHM0ZGdsNjkxdng2U29VTFBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKg7uwjAN
BgkqhkiG9w0BAQsFAAOCAQEAE/3PeyW8EkewyDpvBgT4UfblN+K9D1zm/DmFXtnB
OAUIGDswN/O6k0Rlgc8fwPWptncuER/Z88wcva7eaG4obaCehXpByPoMscr7c5hj
G3y3iMVmo+A63oQ1HaZ9kw4suz5hmum8/Lo4vb7xMEVY4SS6I4soF4bq6dTOswhN
EZowRA28r+zMfKFtU36EuMF/Gnt+6IZCHWwSZTtsinE4BN8PWXg0F1TXEyLDkdgm
U23HQzgux2H/pqmoJlhrby+yq6M4PVToidkqrUbcMDC5lXser6wLvaDOaiWGcyWo
UcIMT0vzuIjkXTeV63fhYVW0gGVAC8Ho86SUUU4VeP58Tw==
-----END CERTIFICATE-----
Generated at Mon Jun 10 21:13:37 2024 by rpki-client on console-ams.rpki-client.org