Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5VIdAiwzpiMmCWKn8ndEV0qlx4g.roa
File: 5VIdAiwzpiMmCWKn8ndEV0qlx4g.roa (raw, json)
Hash identifier: Hly0Q45mmgDsh1Rk0dvj9x9/W1aBWRDjBVT+wpQWxJg=
Subject key identifier: E5:52:1D:02:2C:33:A6:23:26:09:62:A7:F2:77:44:57:4A:A5:C7:88
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185DE40B4AE394AB7B5F6578251B5F6738B
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5VIdAiwzpiMmCWKn8ndEV0qlx4g.roa
Signing time: Mon 23 Jan 2023 10:51:00 +0000
ROA not before: Mon 23 Jan 2023 10:51:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212767
IP address blocks: 2a10:2f00:14a::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 24 Jan 2023 16:09:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:de:40:b4:ae:39:4a:b7:b5:f6:57:82:51:b5:f6:73:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 23 10:51:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e5521d022c33a623260962a7f27744574aa5c788
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:19:be:f2:27:58:a4:f2:bd:04:fe:04:b8:4d:
75:8d:ad:a9:f8:0b:f2:22:4d:77:7b:2d:05:01:16:
64:2d:a2:d4:0c:b2:2e:1d:c8:26:5b:06:99:05:28:
56:9a:6d:4f:f9:c4:4a:d2:96:59:e8:e9:68:c1:ed:
82:7f:19:6f:08:85:52:dc:a6:62:b5:d6:71:be:a2:
ce:be:c7:a0:d8:95:51:19:e6:a3:ed:c0:75:46:92:
61:5e:aa:37:8c:51:a4:74:d2:6d:12:5e:86:5e:b4:
f0:64:63:70:8e:7c:2b:24:fa:51:ab:e1:79:82:e2:
c2:77:52:78:f2:6c:d4:2f:98:1f:7b:00:cb:8a:77:
e5:99:d7:4e:4e:f7:24:6d:de:9c:45:98:99:68:d4:
22:bd:83:6f:89:40:92:c7:7e:b2:d7:a9:3b:c0:3b:
0d:2b:c2:d8:dd:76:29:3e:48:44:93:7b:99:6f:91:
a8:5a:f2:9a:8f:87:6d:4f:6e:7d:b7:27:07:5c:6f:
f9:8e:c8:67:bd:df:bf:45:66:e2:13:29:92:b5:2b:
36:ab:12:26:b9:4d:85:b1:0d:3f:93:aa:15:b2:cf:
9d:44:a1:20:6d:9c:03:5a:9f:7d:26:5f:2a:e5:d4:
88:d3:51:02:74:5b:c2:54:3a:9d:0e:03:03:38:78:
6b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:52:1D:02:2C:33:A6:23:26:09:62:A7:F2:77:44:57:4A:A5:C7:88
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5VIdAiwzpiMmCWKn8ndEV0qlx4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f00:14a::/48
Signature Algorithm: sha256WithRSAEncryption
7c:c2:0c:98:83:a3:81:9b:2b:de:b7:78:78:49:0a:c4:c0:b9:
71:7e:ff:0d:21:8d:8b:cb:10:5f:a9:a3:a1:8b:f1:5b:25:a7:
32:f8:ea:2b:76:71:5d:f0:82:b9:e1:f4:3a:9c:83:e3:66:fd:
51:46:53:a0:14:70:f1:4a:0b:07:26:f9:51:7f:33:06:c9:24:
89:1e:17:47:3f:08:30:d5:6e:1b:93:68:9a:ee:55:2c:d9:74:
b0:9f:3f:a3:9d:ae:e8:4e:f3:fc:fa:8e:39:5c:85:fa:e1:4c:
91:c0:af:57:5a:27:ad:96:7b:c4:01:bd:4c:d1:ce:07:0a:13:
9b:79:f2:06:86:97:f4:5d:c0:56:90:71:c7:03:1e:75:ac:6e:
89:37:65:21:59:e2:98:c5:33:f0:1d:09:f8:ca:48:6e:aa:4a:
50:ac:e4:ea:b3:11:33:96:0c:10:e5:b1:80:ca:03:9a:cc:76:
07:6c:fb:1c:63:24:1f:91:09:30:c8:4f:29:c1:5b:e3:1a:43:
c0:69:2a:17:34:05:cb:ea:67:82:fd:b2:8a:35:55:5a:8b:f6:
e2:a8:8c:93:11:d9:9d:7c:1d:a8:f2:49:fb:8c:f6:f4:fe:be:
1c:37:82:a7:87:54:f3:6b:b9:08:81:78:b9:a4:ce:49:4e:2d:
f2:61:6c:26
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYXeQLSuOUq3tfZXglG19nOLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwMTIzMTA1MTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNTUyMWQwMjJjMzNhNjIzMjYwOTYyYTdmMjc3NDQ1NzRhYTVjNzg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgRm+8idYpPK9BP4EuE11ja2p+Avy
Ik13ey0FARZkLaLUDLIuHcgmWwaZBShWmm1P+cRK0pZZ6Olowe2CfxlvCIVS3KZi
tdZxvqLOvseg2JVRGeaj7cB1RpJhXqo3jFGkdNJtEl6GXrTwZGNwjnwrJPpRq+F5
guLCd1J48mzUL5gfewDLinflmddOTvckbd6cRZiZaNQivYNviUCSx36y16k7wDsN
K8LY3XYpPkhEk3uZb5GoWvKaj4dtT259tycHXG/5jshnvd+/RWbiEymStSs2qxIm
uU2FsQ0/k6oVss+dRKEgbZwDWp99Jl8q5dSI01ECdFvCVDqdDgMDOHhrCwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFOVSHQIsM6YjJglip/J3RFdKpceIMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvNVZJZEFpd3pwaU1tQ1dLbjhuZEVWMHFseDRnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhAvAAFK
MA0GCSqGSIb3DQEBCwUAA4IBAQB8wgyYg6OBmyvet3h4SQrEwLlxfv8NIY2LyxBf
qaOhi/FbJacy+OordnFd8IK54fQ6nIPjZv1RRlOgFHDxSgsHJvlRfzMGySSJHhdH
Pwgw1W4bk2ia7lUs2XSwnz+jna7oTvP8+o45XIX64UyRwK9XWietlnvEAb1M0c4H
ChObefIGhpf0XcBWkHHHAx51rG6JN2UhWeKYxTPwHQn4ykhuqkpQrOTqsxEzlgwQ
5bGAygOazHYHbPscYyQfkQkwyE8pwVvjGkPAaSoXNAXL6meC/bKKNVVai/biqIyT
EdmdfB2o8kn7jPb0/r4cN4Knh1Tza7kIgXi5pM5JTi3yYWwm
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:22 2024 by rpki-client on console-fra.rpki-client.org