Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/rEGMdhHQJc1hd5ucuE_Y5G5Cvno.roa
File: rEGMdhHQJc1hd5ucuE_Y5G5Cvno.roa (raw, json)
Hash identifier: O3yL2fjfyS+Xi7GdX5i0SGsC0PCba9Dj2Ifl2TT4ADI=
Subject key identifier: AC:41:8C:76:11:D0:25:CD:61:77:9B:9C:B8:4F:D8:E4:6E:42:BE:7A
Certificate issuer: /CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2
Certificate serial: 01880A58C370D0AEA979EC3AFBB899504AAA
Authority key identifier: AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/rEGMdhHQJc1hd5ucuE_Y5G5Cvno.roa
Signing time: Thu 11 May 2023 10:26:09 +0000
ROA not before: Thu 11 May 2023 10:26:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 196952
IP address blocks: 2a10:d181::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0a:58:c3:70:d0:ae:a9:79:ec:3a:fb:b8:99:50:4a:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2
Validity
Not Before: May 11 10:26:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac418c7611d025cd61779b9cb84fd8e46e42be7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:61:23:66:73:62:c8:84:ae:db:61:25:12:28:
65:d8:2c:92:2b:b4:62:70:e3:21:ed:85:14:4f:95:
ec:d7:8d:eb:48:35:0b:b9:25:a2:1a:90:67:90:a9:
ff:f0:57:a3:9a:8d:e4:1c:09:65:0f:37:1f:a7:88:
cb:c5:da:5c:dc:00:d1:c2:37:7f:55:bc:3c:60:8d:
6a:f6:3b:59:71:d1:b6:ba:52:46:ac:09:31:b0:85:
ee:e8:75:4c:84:d9:d9:0d:5a:12:0b:d7:44:41:48:
2d:d5:1d:fe:77:f5:3d:6a:bd:f9:7c:6c:e7:fd:35:
0a:02:b1:97:cd:5f:a3:0e:55:81:a9:c2:30:e1:e7:
c0:2f:69:49:7f:af:7d:a9:2c:f6:d2:35:a0:72:28:
4e:1d:f3:9c:27:21:cc:e1:6d:59:aa:80:92:9d:db:
25:64:87:05:7e:90:b6:96:37:42:f2:ab:57:52:65:
dd:6f:67:27:04:ef:c5:8d:c5:78:b1:46:a1:dc:10:
80:55:98:28:6b:b4:2b:9f:d1:2b:c6:20:33:86:2b:
03:e4:93:45:28:ed:e0:8e:79:bf:fc:5f:5e:32:e1:
14:90:d2:8f:5f:a7:c7:5c:03:5b:60:bd:f6:63:13:
df:68:07:a3:71:aa:da:91:a6:d8:fa:94:c2:60:9e:
68:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:41:8C:76:11:D0:25:CD:61:77:9B:9C:B8:4F:D8:E4:6E:42:BE:7A
X509v3 Authority Key Identifier:
keyid:AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/rEGMdhHQJc1hd5ucuE_Y5G5Cvno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/r16T-QI1TOSAS0ywSc9osg92rrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:d181::/32
Signature Algorithm: sha256WithRSAEncryption
1b:86:aa:7a:99:0c:1b:a4:51:83:f0:6d:30:10:8c:fd:70:fa:
9e:40:a2:c9:b9:ee:57:4f:b5:16:c5:00:c8:4d:28:20:84:9b:
39:79:17:f4:11:e4:64:33:40:c6:93:0f:70:b8:bb:3c:3d:3e:
57:16:85:86:97:b7:33:d7:52:ef:24:1c:ca:a2:d7:7b:ec:ce:
26:3b:e0:05:bc:46:0e:de:7c:dd:00:fa:db:3a:98:50:76:0c:
33:ce:f2:e7:65:3a:bc:90:15:d8:8e:b6:08:03:3e:3a:c6:48:
99:c9:60:46:b4:32:b0:c1:fa:74:97:64:ec:68:04:a4:9b:80:
56:b0:ff:84:93:25:70:73:e0:31:39:e3:cc:04:5c:e0:d0:54:
28:00:ba:c5:55:99:12:92:ec:2a:2a:39:48:26:7f:68:d8:31:
bc:c8:3f:78:97:c9:6f:65:cd:b1:44:d1:68:f6:87:b4:b7:bb:
df:c5:a0:27:27:49:2f:a6:1c:36:9b:d1:eb:ee:ab:35:cc:c3:
1c:de:8c:7b:5a:5a:92:df:ea:c8:82:a8:b1:42:fa:0e:83:79:
1a:af:a7:7e:72:a3:a2:eb:ff:76:18:43:fd:05:73:16:f9:3d:
19:16:32:15:aa:25:20:19:0d:99:a9:84:d3:b3:a5:fd:c3:77:
1d:83:1b:b3
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYgKWMNw0K6peew6+7iZUEqqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmNWU5M2Y5MDIzNTRjZTQ4MDRiNGNiMDQ5Y2Y2OGIyMGY3
NmFlYjIwHhcNMjMwNTExMTAyNjA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYzQxOGM3NjExZDAyNWNkNjE3NzliOWNiODRmZDhlNDZlNDJiZTdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlWEjZnNiyISu22ElEihl2CySK7Ri
cOMh7YUUT5Xs143rSDULuSWiGpBnkKn/8Fejmo3kHAllDzcfp4jLxdpc3ADRwjd/
Vbw8YI1q9jtZcdG2ulJGrAkxsIXu6HVMhNnZDVoSC9dEQUgt1R3+d/U9ar35fGzn
/TUKArGXzV+jDlWBqcIw4efAL2lJf699qSz20jWgcihOHfOcJyHM4W1ZqoCSndsl
ZIcFfpC2ljdC8qtXUmXdb2cnBO/FjcV4sUah3BCAVZgoa7Qrn9ErxiAzhisD5JNF
KO3gjnm//F9eMuEUkNKPX6fHXANbYL32YxPfaAejcarakabY+pTCYJ5oXwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFKxBjHYR0CXNYXebnLhP2ORuQr56MB8GA1UdIwQY
MBaAFK9ek/kCNUzkgEtMsEnPaLIPdq6yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcjE2VC1RSTFUT1NBUzB5d1NjOW9zZzkycnJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi9mNDAwNGItZDYwMi00NzVkLTkzMWIt
N2UwNWFkMDE5MGNlLzEvckVHTWRoSFFKYzFoZDV1Y3VFX1k1RzVDdm5vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi9mNDAwNGItZDYwMi00NzVkLTkzMWItN2UwNWFkMDE5MGNl
LzEvcjE2VC1RSTFUT1NBUzB5d1NjOW9zZzkycnJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhDRgTAN
BgkqhkiG9w0BAQsFAAOCAQEAG4aqepkMG6RRg/BtMBCM/XD6nkCiybnuV0+1FsUA
yE0oIISbOXkX9BHkZDNAxpMPcLi7PD0+VxaFhpe3M9dS7yQcyqLXe+zOJjvgBbxG
Dt583QD62zqYUHYMM87y52U6vJAV2I62CAM+OsZImclgRrQysMH6dJdk7GgEpJuA
VrD/hJMlcHPgMTnjzARc4NBUKAC6xVWZEpLsKio5SCZ/aNgxvMg/eJfJb2XNsUTR
aPaHtLe738WgJydJL6YcNpvR6+6rNczDHN6Me1pakt/qyIKosUL6DoN5Gq+nfnKj
ouv/dhhD/QVzFvk9GRYyFaolIBkNmamE07Ol/cN3HYMbsw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:09 2024 by rpki-client on console-fra.rpki-client.org