Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/bE1G1455Y9MAODsujnugG1sygs8.roa
File: bE1G1455Y9MAODsujnugG1sygs8.roa (raw, json)
Hash identifier: 64bURFH3h//r8C+/KrIcAA+RqAxHFSKcGlXP1obz8tE=
Subject key identifier: 6C:4D:46:D7:8E:79:63:D3:00:38:3B:2E:8E:7B:A0:1B:5B:32:82:CF
Certificate issuer: /CN=65a665b90069bd71850602e7400c529793269e39
Certificate serial: 018ED74944B6752FC8ACC93F0F5A74A82BC3
Authority key identifier: 65:A6:65:B9:00:69:BD:71:85:06:02:E7:40:0C:52:97:93:26:9E:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/bE1G1455Y9MAODsujnugG1sygs8.roa
Signing time: Sat 13 Apr 2024 11:48:06 +0000
ROA not before: Sat 13 Apr 2024 11:48:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215633
IP address blocks: 2a09:2b80:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 14 Apr 2024 18:02:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d7:49:44:b6:75:2f:c8:ac:c9:3f:0f:5a:74:a8:2b:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65a665b90069bd71850602e7400c529793269e39
Validity
Not Before: Apr 13 11:48:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6c4d46d78e7963d300383b2e8e7ba01b5b3282cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:71:04:e4:a2:ed:1c:41:ae:4f:bf:7e:8d:9d:
e6:f8:25:f7:6e:62:a4:0f:84:7e:d6:ad:7c:e9:c8:
79:30:39:c1:fa:52:2c:27:a5:8b:ec:29:39:61:56:
a2:b9:5b:67:e7:b7:90:e9:5a:d0:0b:42:b8:72:bf:
21:a3:c7:e7:e9:a2:72:c9:36:3a:f6:50:06:5e:6d:
cc:96:d7:de:be:38:4c:cd:06:57:a9:96:08:2f:e8:
26:e1:1f:c0:16:28:bd:5d:c5:84:7a:5a:e4:e6:65:
d4:d0:ca:c3:ec:07:8d:53:31:43:52:88:ee:de:22:
98:40:89:9c:0a:05:ac:67:7e:cb:86:2d:e7:92:85:
13:d6:90:88:d3:38:bf:96:a5:7f:8d:51:3c:c4:e1:
31:46:8b:f5:5a:23:d7:89:a3:08:5f:79:06:c6:d4:
9a:91:e8:b8:a9:da:8a:dc:9d:26:3e:8a:ac:c7:e6:
78:cb:31:f3:68:86:0c:63:cb:17:71:6c:71:ba:6a:
cb:55:ea:5c:21:8c:90:cf:c4:6d:87:04:0c:4c:d0:
6d:38:bd:42:ed:34:04:b0:2a:36:f1:65:2e:e7:b1:
58:82:1d:a3:33:7b:f2:ef:e1:99:80:ca:75:90:bf:
d6:1f:ac:04:f0:62:b8:4a:b3:c9:42:b0:ef:cc:76:
32:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:4D:46:D7:8E:79:63:D3:00:38:3B:2E:8E:7B:A0:1B:5B:32:82:CF
X509v3 Authority Key Identifier:
keyid:65:A6:65:B9:00:69:BD:71:85:06:02:E7:40:0C:52:97:93:26:9E:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/bE1G1455Y9MAODsujnugG1sygs8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/e6d880-3903-4a11-ba27-c9457ec81151/1/ZaZluQBpvXGFBgLnQAxSl5Mmnjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:2b80:1::/48
Signature Algorithm: sha256WithRSAEncryption
ba:12:09:c4:78:30:ee:93:7a:f4:94:9e:20:ba:ee:5e:72:a5:
74:8b:75:04:7f:a5:7d:39:89:db:47:12:34:5d:a1:15:e5:60:
47:1a:19:26:49:55:92:da:96:e4:52:85:cf:4b:e6:c7:2b:11:
2b:58:e9:b4:ad:76:36:2a:2b:13:e7:6d:02:90:98:56:d6:86:
48:0b:e4:e4:1b:82:d4:e9:00:e7:21:5e:40:55:73:a5:08:1a:
df:71:46:58:25:73:cd:a6:38:c5:30:81:b3:89:e8:1d:ae:f4:
e2:69:d7:55:3e:6e:fb:f2:6d:63:dd:ea:a5:68:1c:1c:89:34:
03:a8:c7:41:92:63:d4:74:87:22:87:66:5f:c1:14:56:82:0d:
6d:c6:99:06:a5:43:52:f9:a9:87:dd:80:df:a8:33:f3:ab:b5:
b7:bb:30:47:73:07:28:b6:84:f8:d8:26:0d:d0:65:ee:9a:f5:
53:0a:18:b6:39:80:70:3b:55:a2:c5:59:d5:0c:a7:4e:2a:82:
73:86:93:7c:48:78:df:e6:c4:3c:43:8c:b5:ee:70:02:78:d8:
f8:f6:3c:06:88:7a:93:86:6c:2e:96:a5:ed:1a:8f:0a:ea:f6:
48:b4:b1:52:58:95:cb:b2:b7:ed:59:d7:cd:0d:3a:ed:3d:56:
90:7a:c3:ad
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY7XSUS2dS/IrMk/D1p0qCvDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY1YTY2NWI5MDA2OWJkNzE4NTA2MDJlNzQwMGM1Mjk3OTMy
NjllMzkwHhcNMjQwNDEzMTE0ODA2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YzRkNDZkNzhlNzk2M2QzMDAzODNiMmU4ZTdiYTAxYjViMzI4MmNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn3EE5KLtHEGuT79+jZ3m+CX3bmKk
D4R+1q186ch5MDnB+lIsJ6WL7Ck5YVaiuVtn57eQ6VrQC0K4cr8ho8fn6aJyyTY6
9lAGXm3MltfevjhMzQZXqZYIL+gm4R/AFii9XcWEelrk5mXU0MrD7AeNUzFDUoju
3iKYQImcCgWsZ37Lhi3nkoUT1pCI0zi/lqV/jVE8xOExRov1WiPXiaMIX3kGxtSa
kei4qdqK3J0mPoqsx+Z4yzHzaIYMY8sXcWxxumrLVepcIYyQz8RthwQMTNBtOL1C
7TQEsCo28WUu57FYgh2jM3vy7+GZgMp1kL/WH6wE8GK4SrPJQrDvzHYyCwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFGxNRteOeWPTADg7Lo57oBtbMoLPMB8GA1UdIwQY
MBaAFGWmZbkAab1xhQYC50AMUpeTJp45MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWmFabHVRQnB2WEdGQmdMblFBeFNsNU1tbmprLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9lNmQ4ODAtMzkwMy00YTExLWJhMjct
Yzk0NTdlYzgxMTUxLzEvYkUxRzE0NTVZOU1BT0RzdWpudWdHMXN5Z3M4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS9lNmQ4ODAtMzkwMy00YTExLWJhMjctYzk0NTdlYzgxMTUx
LzEvWmFabHVRQnB2WEdGQmdMblFBeFNsNU1tbmprLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgkrgAAB
MA0GCSqGSIb3DQEBCwUAA4IBAQC6EgnEeDDuk3r0lJ4guu5ecqV0i3UEf6V9OYnb
RxI0XaEV5WBHGhkmSVWS2pbkUoXPS+bHKxErWOm0rXY2KisT520CkJhW1oZIC+Tk
G4LU6QDnIV5AVXOlCBrfcUZYJXPNpjjFMIGziegdrvTiaddVPm778m1j3eqlaBwc
iTQDqMdBkmPUdIcih2ZfwRRWgg1txpkGpUNS+amH3YDfqDPzq7W3uzBHcwcotoT4
2CYN0GXumvVTChi2OYBwO1WixVnVDKdOKoJzhpN8SHjf5sQ8Q4y17nACeNj49jwG
iHqThmwulqXtGo8K6vZItLFSWJXLsrftWdfNDTrtPVaQesOt
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:17 2024 by rpki-client on console-fra.rpki-client.org