Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4ZWKbLzb3q5G9uc6JJt1TteC97c.roa
File: 4ZWKbLzb3q5G9uc6JJt1TteC97c.roa (raw, json)
Hash identifier: RQsrauq+K85zqsyK1L2QZ9PwMHhSoFEBPTxhUWXDPmw=
Subject key identifier: E1:95:8A:6C:BC:DB:DE:AE:46:F6:E7:3A:24:9B:75:4E:D7:82:F7:B7
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E7FBE762724D4FC4A3E5F93953E047
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4ZWKbLzb3q5G9uc6JJt1TteC97c.roa
Signing time: Mon 02 Jan 2023 05:15:29 +0000
ROA not before: Mon 02 Jan 2023 05:15:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211168
IP address blocks: 2a0e:b107:13d6::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:fb:e7:62:72:4d:4f:c4:a3:e5:f9:39:53:e0:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1958a6cbcdbdeae46f6e73a249b754ed782f7b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:26:2d:13:b5:99:e7:5c:80:f2:4e:8a:8a:dc:
e2:c6:8b:df:c5:5a:ed:d3:b1:9e:1c:d0:cf:f3:76:
60:6a:3b:54:62:10:18:0d:8a:3a:cf:74:06:bf:29:
20:38:16:03:f4:f0:ba:2b:2b:7e:96:74:e5:77:02:
4f:90:f2:22:45:1b:62:c3:07:2c:13:f0:8e:56:69:
3e:9d:72:44:2c:89:31:7c:06:c6:ee:fc:48:c2:44:
dd:58:ad:94:1d:b5:69:74:86:02:f0:aa:02:9f:bf:
6e:5d:42:5a:7f:61:05:cc:63:83:65:b6:dc:21:67:
6e:06:89:62:83:89:7d:46:15:88:a7:f9:4d:7c:a7:
b8:d3:09:fd:9f:68:df:c5:95:f8:9c:b0:4d:cb:dc:
10:b1:d9:d7:08:26:40:74:47:3f:ac:07:e1:23:82:
cd:f2:b1:38:06:41:d8:45:eb:6c:00:50:d3:f8:c5:
0c:f5:35:68:e8:6b:0e:b9:db:39:6a:e5:69:d0:4e:
e8:0d:70:ce:08:3c:b7:5f:94:f6:ec:9d:72:e4:0c:
dd:aa:d7:59:40:8c:4f:82:c9:91:1a:3f:c8:61:f0:
dd:f7:33:42:91:0d:fd:f0:a5:2f:72:c6:1c:91:28:
ee:f8:f2:3f:df:97:a7:10:39:4b:33:b1:41:e8:d4:
68:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:95:8A:6C:BC:DB:DE:AE:46:F6:E7:3A:24:9B:75:4E:D7:82:F7:B7
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4ZWKbLzb3q5G9uc6JJt1TteC97c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:13d6::/48
Signature Algorithm: sha256WithRSAEncryption
ca:f9:75:87:cc:1d:c8:1c:24:eb:d5:94:e5:c3:fd:ed:95:d9:
08:2a:a4:d7:5b:e9:f6:cf:d7:55:55:11:53:2e:ea:ae:f5:36:
8d:02:bf:f6:01:0d:6a:63:52:5f:5f:b7:d4:3d:6f:63:4b:57:
76:70:13:4d:9e:c1:5b:86:c0:7e:c4:06:5f:f6:fa:28:66:cd:
7e:ae:a1:14:5e:66:73:f5:66:6e:28:5d:1e:81:3c:6e:ab:d6:
57:ed:be:85:b3:ff:a4:dd:16:89:2b:66:3e:56:d0:93:01:74:
27:6b:a0:ab:65:ef:a0:dd:ce:32:06:b4:3e:e9:fc:85:96:9a:
48:05:ce:c2:1c:b7:b3:93:2f:36:a4:4d:41:d2:99:58:30:37:
96:f7:74:ef:51:f3:0d:fb:10:7e:84:ec:c4:e2:59:50:4a:01:
81:96:cf:ab:2c:19:70:13:b5:6a:85:c1:60:bd:88:c7:12:29:
bb:ed:b5:9e:60:0c:a5:e6:a7:8a:8b:1c:c1:26:48:83:60:43:
89:8a:ed:4d:ce:e3:69:32:ed:96:8c:a6:49:7a:5c:9c:1b:00:
a3:3c:23:f6:a9:a2:23:fb:1f:4a:08:d1:1e:3a:44:d7:16:e4:
03:fd:e3:f7:48:0c:de:44:f2:99:a9:6c:ec:7c:08:34:bc:7e:
d2:45:f2:67
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVw5/vnYnJNT8Sj5fk5U+BHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwMTAyMDUxNTI5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMTk1OGE2Y2JjZGJkZWFlNDZmNmU3M2EyNDliNzU0ZWQ3ODJmN2I3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjyYtE7WZ51yA8k6KitzixovfxVrt
07GeHNDP83ZgajtUYhAYDYo6z3QGvykgOBYD9PC6Kyt+lnTldwJPkPIiRRtiwwcs
E/COVmk+nXJELIkxfAbG7vxIwkTdWK2UHbVpdIYC8KoCn79uXUJaf2EFzGODZbbc
IWduBolig4l9RhWIp/lNfKe40wn9n2jfxZX4nLBNy9wQsdnXCCZAdEc/rAfhI4LN
8rE4BkHYRetsAFDT+MUM9TVo6GsOuds5auVp0E7oDXDOCDy3X5T27J1y5AzdqtdZ
QIxPgsmRGj/IYfDd9zNCkQ398KUvcsYckSju+PI/35enEDlLM7FB6NRoUQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFOGVimy8296uRvbnOiSbdU7Xgve3MB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvNFpXS2JMemIzcTVHOXVjNkpKdDFUdGVDOTdjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg6xBxPW
MA0GCSqGSIb3DQEBCwUAA4IBAQDK+XWHzB3IHCTr1ZTlw/3tldkIKqTXW+n2z9dV
VRFTLuqu9TaNAr/2AQ1qY1JfX7fUPW9jS1d2cBNNnsFbhsB+xAZf9vooZs1+rqEU
XmZz9WZuKF0egTxuq9ZX7b6Fs/+k3RaJK2Y+VtCTAXQna6CrZe+g3c4yBrQ+6fyF
lppIBc7CHLezky82pE1B0plYMDeW93TvUfMN+xB+hOzE4llQSgGBls+rLBlwE7Vq
hcFgvYjHEim77bWeYAyl5qeKixzBJkiDYEOJiu1NzuNpMu2WjKZJelycGwCjPCP2
qaIj+x9KCNEeOkTXFuQD/eP3SAzeRPKZqWzsfAg0vH7SRfJn
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:54 2023 by rpki-client on console-ams.rpki-client.org