Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/9DxX8oeUcem7my-y5XK3vi5JYHY.roa
File: 9DxX8oeUcem7my-y5XK3vi5JYHY.roa (raw, json)
Hash identifier: Haf8GHAAtpCxHIMbAeLt0KR22/MVtNhTEyurWsfrVe4=
Subject key identifier: F4:3C:57:F2:87:94:71:E9:BB:9B:2F:B2:E5:72:B7:BE:2E:49:60:76
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0186DB63C63DA9ADCA6C4771F3252E891AFE
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/9DxX8oeUcem7my-y5XK3vi5JYHY.roa
Signing time: Mon 13 Mar 2023 14:33:14 +0000
ROA not before: Mon 13 Mar 2023 14:33:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211659
IP address blocks: 2a0e:b105:121::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 May 2023 05:21:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:db:63:c6:3d:a9:ad:ca:6c:47:71:f3:25:2e:89:1a:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 13 14:33:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f43c57f2879471e9bb9b2fb2e572b7be2e496076
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:af:f9:21:37:b6:41:6f:ea:e3:0c:c6:3a:35:
43:a2:7e:30:d4:31:2d:d4:36:05:1f:96:c2:2f:35:
0d:0d:25:ac:92:17:db:54:63:92:b3:27:97:26:e0:
c4:a8:4e:4c:d2:62:ff:53:e7:36:fb:fe:37:38:37:
82:5e:3d:ee:3c:3a:72:c0:23:85:b6:34:e5:e2:7e:
97:18:e0:60:14:cf:d1:b9:f6:fc:2f:68:03:1c:a4:
44:8a:f7:4b:4b:5c:3d:d2:c4:28:f6:4d:27:4b:fd:
00:88:14:8a:61:a9:cb:14:56:41:ee:b5:c4:b2:b6:
8e:d0:60:e4:23:31:1d:53:7c:04:f5:33:08:5e:47:
fc:a1:f2:83:c7:d6:7f:4f:b3:af:ec:ae:7a:97:b2:
01:68:66:54:5a:54:b9:45:cf:9c:03:54:c7:97:7e:
d6:40:2d:6e:9a:4c:5b:fe:90:70:e3:fc:56:64:e0:
c5:0d:88:6a:83:e1:3a:4b:31:5f:ee:78:6d:a6:bf:
ae:f5:77:d9:12:07:f6:73:13:60:f8:4c:09:b5:e6:
51:74:e6:d5:39:dc:99:00:94:49:73:9c:ce:81:5d:
74:e2:1e:ae:a7:ce:ef:fe:2b:bd:3c:f1:85:a4:bd:
cc:88:1e:e5:ed:1f:59:0f:cd:5e:9b:8c:a1:6e:6b:
95:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:3C:57:F2:87:94:71:E9:BB:9B:2F:B2:E5:72:B7:BE:2E:49:60:76
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/9DxX8oeUcem7my-y5XK3vi5JYHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b105:121::/48
Signature Algorithm: sha256WithRSAEncryption
57:79:b1:28:28:71:70:82:61:52:ad:87:ad:9c:fd:4f:68:59:
61:b1:a1:9f:93:38:f2:c8:3c:ff:01:11:27:6c:5d:4b:d5:3b:
07:56:d4:6c:ca:15:ff:03:fa:42:1b:01:b7:8e:27:8f:be:41:
6e:9c:48:9e:3a:e1:95:ab:ed:0e:af:c3:20:db:39:32:03:f6:
a4:e5:bc:59:20:fb:d2:3c:24:55:af:6b:1d:79:58:35:e5:dd:
21:02:9d:f4:bb:fd:4a:ce:33:7f:d6:18:17:a2:f2:7a:9d:fd:
4c:54:28:9c:4a:c7:e9:95:32:7f:e1:d7:74:90:cc:e5:ea:15:
b1:0a:72:4e:fd:92:d1:e4:40:2d:fd:25:65:3e:50:6a:9d:28:
72:10:04:22:44:fb:37:93:9d:9e:89:98:82:6c:6f:e2:1a:7a:
56:1e:81:d4:2d:99:0c:38:0e:4b:18:ab:d3:ca:4d:53:2d:5e:
c7:ce:40:c5:91:69:bf:f3:0b:83:72:a4:d0:52:e8:ef:bb:25:
4d:ac:9e:91:41:03:ed:ba:85:6f:4c:46:85:63:80:f8:68:43:
c1:18:9e:1c:e3:18:f9:8d:05:bb:f6:b9:37:ae:ef:ce:c7:7c:
bb:ac:66:37:49:08:88:df:6b:b1:98:a9:01:cc:0c:c5:55:b4:
c2:6c:64:c7
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYbbY8Y9qa3KbEdx8yUuiRr+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwMzEzMTQzMzE0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNDNjNTdmMjg3OTQ3MWU5YmI5YjJmYjJlNTcyYjdiZTJlNDk2MDc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlq/5ITe2QW/q4wzGOjVDon4w1DEt
1DYFH5bCLzUNDSWskhfbVGOSsyeXJuDEqE5M0mL/U+c2+/43ODeCXj3uPDpywCOF
tjTl4n6XGOBgFM/Rufb8L2gDHKREivdLS1w90sQo9k0nS/0AiBSKYanLFFZB7rXE
sraO0GDkIzEdU3wE9TMIXkf8ofKDx9Z/T7Ov7K56l7IBaGZUWlS5Rc+cA1THl37W
QC1umkxb/pBw4/xWZODFDYhqg+E6SzFf7nhtpr+u9XfZEgf2cxNg+EwJteZRdObV
OdyZAJRJc5zOgV104h6up87v/iu9PPGFpL3MiB7l7R9ZD81em4yhbmuVQQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFPQ8V/KHlHHpu5svsuVyt74uSWB2MB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvOUR4WDhvZVVjZW03bXkteTVYSzN2aTVKWUhZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg6xBQEh
MA0GCSqGSIb3DQEBCwUAA4IBAQBXebEoKHFwgmFSrYetnP1PaFlhsaGfkzjyyDz/
AREnbF1L1TsHVtRsyhX/A/pCGwG3jiePvkFunEieOuGVq+0Or8Mg2zkyA/ak5bxZ
IPvSPCRVr2sdeVg15d0hAp30u/1KzjN/1hgXovJ6nf1MVCicSsfplTJ/4dd0kMzl
6hWxCnJO/ZLR5EAt/SVlPlBqnShyEAQiRPs3k52eiZiCbG/iGnpWHoHULZkMOA5L
GKvTyk1TLV7HzkDFkWm/8wuDcqTQUujvuyVNrJ6RQQPtuoVvTEaFY4D4aEPBGJ4c
4xj5jQW79rk3ru/Ox3y7rGY3SQiI32uxmKkBzAzFVbTCbGTH
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:23 2024 by rpki-client on console-fra.rpki-client.org