Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/B4s3L7x4-tf2bp9VfvW7SatvkKM.roa
File: B4s3L7x4-tf2bp9VfvW7SatvkKM.roa (raw, json)
Hash identifier: XJMyD5atSlkrlMMhhx2zHKgQc9HDyDp+G6o8Sa1GNl0=
Subject key identifier: 07:8B:37:2F:BC:78:FA:D7:F6:6E:9F:55:7E:F5:BB:49:AB:6F:90:A3
Certificate issuer: /CN=ca9ccd830b7e03308bf5cf25e67a7fc2bde0957c
Certificate serial: 01927B049AB239E69D26E5F03BD2CBE6EBF9
Authority key identifier: CA:9C:CD:83:0B:7E:03:30:8B:F5:CF:25:E6:7A:7F:C2:BD:E0:95:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypzNgwt-AzCL9c8l5np_wr3glXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/B4s3L7x4-tf2bp9VfvW7SatvkKM.roa
Signing time: Fri 11 Oct 2024 09:59:12 +0000
ROA not before: Fri 11 Oct 2024 09:59:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209641
IP address blocks: 2a0e:7f40::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 11 Oct 2024 20:35:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:7b:04:9a:b2:39:e6:9d:26:e5:f0:3b:d2:cb:e6:eb:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca9ccd830b7e03308bf5cf25e67a7fc2bde0957c
Validity
Not Before: Oct 11 09:59:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=078b372fbc78fad7f66e9f557ef5bb49ab6f90a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:65:e6:60:b5:95:bb:df:f7:19:5d:46:c8:bb:
d2:57:4b:39:17:e1:ec:cb:22:ec:74:4c:6a:a7:b7:
bb:8d:82:6d:d0:40:ad:eb:68:0f:96:7e:69:c6:a3:
e7:00:36:2e:6a:e7:e4:a9:0a:c7:3a:35:15:49:6d:
89:c3:7f:b6:cd:fa:02:39:9c:88:75:8a:2d:8f:00:
75:f9:99:b2:b9:a8:8f:49:6e:1d:7f:72:ba:8a:20:
e2:da:d2:18:43:fc:9b:98:0a:54:81:1a:9b:6b:dc:
d4:cf:7c:7b:aa:1a:a3:b2:53:fa:a2:01:40:b6:de:
d2:0e:5d:dd:b9:23:cd:9f:ed:ce:72:8e:4a:db:6a:
83:37:da:89:4a:9d:f6:b5:b5:35:cd:57:38:3c:42:
5b:2b:64:5d:dd:fa:a3:3a:cd:4d:a4:12:31:af:f5:
f6:10:9d:6c:95:93:0a:ec:52:23:ea:11:d2:57:57:
a6:9c:8c:2d:a9:ee:ce:f3:08:20:60:26:c6:df:e7:
ec:8c:0c:cc:02:96:3e:bf:28:cb:30:4d:92:9c:3a:
b0:25:f4:88:e4:46:0d:87:37:b2:eb:69:b7:67:9a:
75:17:8b:09:96:a3:09:ab:e3:3a:fc:04:04:b1:4a:
5a:8e:48:70:2a:2b:68:2e:bd:61:48:7c:93:71:27:
ee:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:8B:37:2F:BC:78:FA:D7:F6:6E:9F:55:7E:F5:BB:49:AB:6F:90:A3
X509v3 Authority Key Identifier:
keyid:CA:9C:CD:83:0B:7E:03:30:8B:F5:CF:25:E6:7A:7F:C2:BD:E0:95:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypzNgwt-AzCL9c8l5np_wr3glXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/B4s3L7x4-tf2bp9VfvW7SatvkKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/ypzNgwt-AzCL9c8l5np_wr3glXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:7f40::/32
Signature Algorithm: sha256WithRSAEncryption
38:9f:35:a4:21:70:52:01:bc:74:f6:15:4b:aa:89:c1:83:55:
b7:3e:fc:48:63:8f:d8:e2:a6:c9:62:5d:1f:db:8a:1f:7c:49:
2c:1b:ab:9d:c7:59:b4:ea:0f:20:38:3a:12:cd:61:fe:be:c0:
0e:8b:72:e6:64:20:e5:0a:89:48:8f:ee:fa:c5:5a:ef:51:b8:
01:89:2d:40:42:41:7f:64:33:5a:df:88:9c:f2:47:50:44:31:
e3:b7:2d:98:ce:91:d8:6a:93:6e:c0:88:4b:13:08:ed:69:fe:
96:e3:4e:59:0b:9a:27:ed:9e:e0:d1:83:15:03:e0:08:61:b7:
86:82:dc:bc:3e:60:42:22:5f:80:28:1e:16:a5:e3:95:ca:3a:
bd:b4:9f:44:d9:2e:d4:98:5c:20:bf:63:5d:64:88:5e:eb:0e:
1b:b0:ad:7d:f1:44:5c:0b:c9:4d:21:c0:d1:d2:63:a0:b5:99:
69:90:cf:aa:0a:96:c0:9e:97:a6:7e:26:6c:6a:69:83:62:67:
6c:51:f1:51:fd:ea:91:6c:bd:39:28:28:9e:5e:cc:29:95:46:
57:04:b7:f4:f7:9f:ce:1d:f8:87:9a:b9:99:57:e5:c6:98:54:
b2:28:67:85:c2:2b:82:1c:c4:1b:0b:86:f2:54:08:28:03:c0:
cd:33:46:5c
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZJ7BJqyOeadJuXwO9LL5uv5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhOWNjZDgzMGI3ZTAzMzA4YmY1Y2YyNWU2N2E3ZmMyYmRl
MDk1N2MwHhcNMjQxMDExMDk1OTEyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNzhiMzcyZmJjNzhmYWQ3ZjY2ZTlmNTU3ZWY1YmI0OWFiNmY5MGEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs2XmYLWVu9/3GV1GyLvSV0s5F+Hs
yyLsdExqp7e7jYJt0ECt62gPln5pxqPnADYuaufkqQrHOjUVSW2Jw3+2zfoCOZyI
dYotjwB1+ZmyuaiPSW4df3K6iiDi2tIYQ/ybmApUgRqba9zUz3x7qhqjslP6ogFA
tt7SDl3duSPNn+3Oco5K22qDN9qJSp32tbU1zVc4PEJbK2Rd3fqjOs1NpBIxr/X2
EJ1slZMK7FIj6hHSV1emnIwtqe7O8wggYCbG3+fsjAzMApY+vyjLME2SnDqwJfSI
5EYNhzey62m3Z5p1F4sJlqMJq+M6/AQEsUpajkhwKitoLr1hSHyTcSfuEQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFAeLNy+8ePrX9m6fVX71u0mrb5CjMB8GA1UdIwQY
MBaAFMqczYMLfgMwi/XPJeZ6f8K94JV8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveXB6Tmd3dC1BekNMOWM4bDVucF93cjNnbFh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9hNjhmMjEtOWZmOC00YTQ0LWEzNmQt
ZDFjZGUyNDY1Zjg5LzEvQjRzM0w3eDQtdGYyYnA5VmZ2VzdTYXR2a0tNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My9hNjhmMjEtOWZmOC00YTQ0LWEzNmQtZDFjZGUyNDY1Zjg5
LzEveXB6Tmd3dC1BekNMOWM4bDVucF93cjNnbFh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKg5/QDAN
BgkqhkiG9w0BAQsFAAOCAQEAOJ81pCFwUgG8dPYVS6qJwYNVtz78SGOP2OKmyWJd
H9uKH3xJLBurncdZtOoPIDg6Es1h/r7ADoty5mQg5QqJSI/u+sVa71G4AYktQEJB
f2QzWt+InPJHUEQx47ctmM6R2GqTbsCISxMI7Wn+luNOWQuaJ+2e4NGDFQPgCGG3
hoLcvD5gQiJfgCgeFqXjlco6vbSfRNku1JhcIL9jXWSIXusOG7CtffFEXAvJTSHA
0dJjoLWZaZDPqgqWwJ6Xpn4mbGppg2JnbFHxUf3qkWy9OSgonl7MKZVGVwS39Pef
zh34h5q5mVflxphUsihnhcIrghzEGwuG8lQIKAPAzTNGXA==
-----END CERTIFICATE-----
Generated at Fri Oct 11 21:51:48 2024 by rpki-client on console-ams.rpki-client.org