Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4oHvfYQ0XyeBcUb-V3eGqG8Wits.roa
File: 4oHvfYQ0XyeBcUb-V3eGqG8Wits.roa (raw, json)
Hash identifier: XmU4aYsuOqJ41OVs0eJl4ebaq9OsvQPWNAlnDz6Dj/o=
Subject key identifier: E2:81:EF:7D:84:34:5F:27:81:71:46:FE:57:77:86:A8:6F:16:8A:DB
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E819367BB949D26F1A328EB443C1FB
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4oHvfYQ0XyeBcUb-V3eGqG8Wits.roa
Signing time: Mon 02 Jan 2023 05:15:36 +0000
ROA not before: Mon 02 Jan 2023 05:15:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212483
IP address blocks: 2a0e:b107:1be0::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 23 Jan 2023 10:50:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e8:19:36:7b:b9:49:d2:6f:1a:32:8e:b4:43:c1:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e281ef7d84345f27817146fe577786a86f168adb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:67:3a:34:f7:21:0f:49:6d:e8:94:5f:5d:a6:
2b:14:33:3a:10:c1:96:1a:de:02:46:40:df:15:cd:
2e:83:90:b7:18:2c:8c:3f:cd:15:a0:09:d3:dd:db:
17:b5:2c:95:59:00:1f:0e:d6:2a:52:ab:b0:b0:e9:
f4:4e:c2:eb:c7:76:86:01:74:d3:d4:b9:8e:23:a1:
0b:fb:9b:a3:cb:0d:c3:21:26:ce:59:a7:06:7b:3f:
76:0b:42:6b:af:98:62:e0:8d:48:c3:bd:4c:a4:0f:
53:3a:b3:7f:a0:06:47:1e:d6:a9:a7:dd:c2:72:01:
84:e1:af:be:76:73:a9:07:dc:35:50:64:8d:67:13:
5c:d3:a8:7d:e0:40:09:5d:59:a5:20:89:e8:60:37:
42:53:a9:83:b8:98:9e:fb:4f:41:75:54:1d:22:ba:
10:a7:02:3e:3e:32:5b:1d:8f:14:1e:15:15:be:7e:
da:0e:4c:5e:14:a6:0b:0f:da:42:82:73:3a:4e:80:
cb:1b:04:98:a8:ad:f4:03:1b:05:1e:af:94:af:93:
6c:c5:c5:c0:04:f4:66:84:39:1d:bd:d9:cc:d7:8f:
9f:9f:8f:e4:6d:39:61:c3:89:d4:3a:3e:fe:27:ea:
7e:58:18:10:70:e7:ee:4a:17:57:79:66:6d:28:b7:
fd:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:81:EF:7D:84:34:5F:27:81:71:46:FE:57:77:86:A8:6F:16:8A:DB
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/4oHvfYQ0XyeBcUb-V3eGqG8Wits.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1be0::/44
Signature Algorithm: sha256WithRSAEncryption
12:b6:fb:e1:11:4c:2c:57:bf:94:96:98:fe:06:07:5d:e1:e1:
d1:46:68:5e:90:3b:7b:db:ac:11:e4:55:5f:f5:78:3d:e8:a3:
06:3d:8e:a5:03:11:30:45:01:c1:d9:fd:65:df:8c:0f:b5:24:
66:04:cb:0c:67:95:3f:2b:23:35:df:82:6a:f7:12:2b:1f:9b:
6e:aa:94:b9:a7:d5:22:28:bd:b9:83:68:62:79:37:36:8e:c6:
fd:42:9b:44:34:f8:65:b8:bc:24:e8:6f:7a:f0:72:c5:48:79:
9e:37:3f:4d:55:c3:d2:a5:03:93:2d:6d:31:f0:3e:0b:78:d8:
98:14:5a:ef:92:dd:5e:6f:29:92:f7:8e:5c:8e:f3:c7:f3:6d:
82:b9:0a:92:8c:32:48:a4:ec:e6:ca:54:e5:dd:4c:91:1e:ba:
1f:4b:c9:ad:c1:a7:02:57:cc:93:a1:0f:9b:63:1e:5b:f8:a4:
60:6f:86:de:20:2f:af:50:b5:6e:11:3c:61:ca:84:34:7c:a0:
d0:27:7a:39:3c:47:61:f3:15:86:5b:15:4a:b6:2c:d8:eb:49:
04:28:ee:72:97:3a:19:04:4a:66:e9:87:ce:5b:80:3e:15:b9:
a0:ee:e3:ba:b0:7f:ac:c2:98:d4:74:e7:94:5d:b1:12:71:9a:
31:65:dc:d2
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVw6Bk2e7lJ0m8aMo60Q8H7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwMTAyMDUxNTM2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMjgxZWY3ZDg0MzQ1ZjI3ODE3MTQ2ZmU1Nzc3ODZhODZmMTY4YWRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgGc6NPchD0lt6JRfXaYrFDM6EMGW
Gt4CRkDfFc0ug5C3GCyMP80VoAnT3dsXtSyVWQAfDtYqUquwsOn0TsLrx3aGAXTT
1LmOI6EL+5ujyw3DISbOWacGez92C0Jrr5hi4I1Iw71MpA9TOrN/oAZHHtapp93C
cgGE4a++dnOpB9w1UGSNZxNc06h94EAJXVmlIInoYDdCU6mDuJie+09BdVQdIroQ
pwI+PjJbHY8UHhUVvn7aDkxeFKYLD9pCgnM6ToDLGwSYqK30AxsFHq+Ur5NsxcXA
BPRmhDkdvdnM14+fn4/kbTlhw4nUOj7+J+p+WBgQcOfuShdXeWZtKLf9MQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFOKB732ENF8ngXFG/ld3hqhvForbMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvNG9IdmZZUTBYeWVCY1ViLVYzZUdxRzhXaXRzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6xBxvg
MA0GCSqGSIb3DQEBCwUAA4IBAQAStvvhEUwsV7+Ulpj+Bgdd4eHRRmhekDt726wR
5FVf9Xg96KMGPY6lAxEwRQHB2f1l34wPtSRmBMsMZ5U/KyM134Jq9xIrH5tuqpS5
p9UiKL25g2hieTc2jsb9QptENPhluLwk6G968HLFSHmeNz9NVcPSpQOTLW0x8D4L
eNiYFFrvkt1ebymS945cjvPH822CuQqSjDJIpOzmylTl3UyRHrofS8mtwacCV8yT
oQ+bYx5b+KRgb4beIC+vULVuETxhyoQ0fKDQJ3o5PEdh8xWGWxVKtizY60kEKO5y
lzoZBEpm6YfOW4A+Fbmg7uO6sH+swpjUdOeUXbEScZoxZdzS
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:22 2024 by rpki-client on console-fra.rpki-client.org