Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/MiNcrhLhYLj8AeWkD4fu8ZA_L8g.roa
File: MiNcrhLhYLj8AeWkD4fu8ZA_L8g.roa (raw, json)
Hash identifier: HKATgdDPH+PS5pm1CNnUJ/VGZnkeQGbiUUr1RqNFZpA=
Subject key identifier: 32:23:5C:AE:12:E1:60:B8:FC:01:E5:A4:0F:87:EE:F1:90:3F:2F:C8
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0186EA00D3BFA2B50F20C2F8E1A58833EBC8
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/MiNcrhLhYLj8AeWkD4fu8ZA_L8g.roa
Signing time: Thu 16 Mar 2023 10:39:28 +0000
ROA not before: Thu 16 Mar 2023 10:39:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213086
IP address blocks: 2a0e:b107:1f00::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 10 Apr 2023 10:49:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ea:00:d3:bf:a2:b5:0f:20:c2:f8:e1:a5:88:33:eb:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 16 10:39:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32235cae12e160b8fc01e5a40f87eef1903f2fc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a5:b6:31:9a:a5:84:a3:c3:82:50:92:a6:e1:
16:72:93:96:a9:a9:5f:e1:ee:4e:9b:10:a7:fe:38:
8c:02:a0:57:96:ce:a1:32:1b:69:28:85:35:31:30:
34:f5:1c:e8:2b:e3:a0:dd:62:10:38:fa:56:9a:c8:
42:fb:c9:0d:13:f8:a7:46:10:33:4d:15:58:6e:e5:
52:39:f0:0d:0e:75:a8:4a:0c:42:18:f4:2b:ad:81:
4a:b2:f0:f2:58:15:d3:40:36:00:05:59:79:77:dc:
27:a9:fd:39:4c:39:77:63:d8:5b:7b:0a:d7:5f:ae:
d8:b5:48:8e:c1:42:51:95:92:63:9f:41:d8:c1:dc:
4c:6f:3c:dd:87:75:eb:18:7e:44:69:97:35:0e:15:
84:e3:1e:79:29:09:8a:30:cf:01:2f:68:90:d4:3d:
0f:11:0c:26:cb:5a:ff:39:e0:bf:ca:16:ea:7b:b1:
7f:0a:07:9c:cb:9b:e6:31:b8:d6:d3:7f:cb:e0:10:
a3:27:df:2a:2c:e6:6a:2d:50:01:ab:49:8a:b7:29:
10:73:18:b4:75:84:55:64:77:97:b2:44:a5:1c:11:
d1:0d:01:00:2a:63:aa:2c:d9:e0:94:7c:57:2e:d4:
11:91:d1:21:8a:29:34:4d:f4:80:02:4f:38:cf:41:
77:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:23:5C:AE:12:E1:60:B8:FC:01:E5:A4:0F:87:EE:F1:90:3F:2F:C8
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/MiNcrhLhYLj8AeWkD4fu8ZA_L8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1f00::/44
Signature Algorithm: sha256WithRSAEncryption
a2:9f:cd:1f:cc:86:20:f7:1e:09:c8:89:6b:7c:dc:c6:d0:6e:
cb:08:3c:8e:ee:cc:a0:1f:66:c9:5c:7e:53:01:ca:06:32:0a:
91:1a:85:2f:28:7e:a8:f9:18:2c:a9:e9:78:29:c5:a7:f8:f3:
55:06:1b:23:65:9e:f9:90:92:9c:14:b2:bb:fa:11:9f:f1:80:
b2:6f:31:10:f5:ac:6f:76:6f:e9:b7:74:21:35:25:d3:50:98:
48:7f:da:f9:1c:97:99:36:c6:73:3d:dd:1c:0b:6d:ca:dc:bf:
8b:19:84:89:d3:2c:5c:df:31:be:ab:71:01:1e:95:28:2e:e4:
4e:22:81:bf:0a:00:12:7e:aa:9c:c4:6f:0a:e5:2a:ff:65:91:
9e:cc:91:fb:1a:42:4b:f0:54:c2:c8:ee:ba:6d:5a:d1:cf:e8:
64:c7:6f:29:ee:24:17:76:70:5d:1a:f3:bf:3b:5c:7f:96:05:
c5:5b:54:f0:7c:45:75:68:e9:97:5b:23:f4:9a:d3:da:22:73:
a0:60:0d:28:80:4f:d3:2c:60:74:64:1a:ba:e0:91:46:bf:31:
85:83:70:a6:68:e1:d4:d5:96:4a:7c:86:8c:41:56:98:2e:2d:
40:56:e9:f1:19:dd:85:f3:03:86:36:35:f7:7f:7a:7c:36:19:
8e:7f:b3:3f
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYbqANO/orUPIML44aWIM+vIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwMzE2MTAzOTI4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMjIzNWNhZTEyZTE2MGI4ZmMwMWU1YTQwZjg3ZWVmMTkwM2YyZmM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmKW2MZqlhKPDglCSpuEWcpOWqalf
4e5OmxCn/jiMAqBXls6hMhtpKIU1MTA09RzoK+Og3WIQOPpWmshC+8kNE/inRhAz
TRVYbuVSOfANDnWoSgxCGPQrrYFKsvDyWBXTQDYABVl5d9wnqf05TDl3Y9hbewrX
X67YtUiOwUJRlZJjn0HYwdxMbzzdh3XrGH5EaZc1DhWE4x55KQmKMM8BL2iQ1D0P
EQwmy1r/OeC/yhbqe7F/Cgecy5vmMbjW03/L4BCjJ98qLOZqLVABq0mKtykQcxi0
dYRVZHeXskSlHBHRDQEAKmOqLNnglHxXLtQRkdEhiik0TfSAAk84z0F3AQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFDIjXK4S4WC4/AHlpA+H7vGQPy/IMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvTWlOY3JoTGhZTGo4QWVXa0Q0ZnU4WkFfTDhnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6xBx8A
MA0GCSqGSIb3DQEBCwUAA4IBAQCin80fzIYg9x4JyIlrfNzG0G7LCDyO7sygH2bJ
XH5TAcoGMgqRGoUvKH6o+Rgsqel4KcWn+PNVBhsjZZ75kJKcFLK7+hGf8YCybzEQ
9axvdm/pt3QhNSXTUJhIf9r5HJeZNsZzPd0cC23K3L+LGYSJ0yxc3zG+q3EBHpUo
LuROIoG/CgASfqqcxG8K5Sr/ZZGezJH7GkJL8FTCyO66bVrRz+hkx28p7iQXdnBd
GvO/O1x/lgXFW1TwfEV1aOmXWyP0mtPaInOgYA0ogE/TLGB0ZBq64JFGvzGFg3Cm
aOHU1ZZKfIaMQVaYLi1AVunxGd2F8wOGNjX3f3p8NhmOf7M/
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:30 2024 by rpki-client on console-fra.rpki-client.org