Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Mmq2DlpVfZYqWlkOMb3we_YeanQ.roa
File: Mmq2DlpVfZYqWlkOMb3we_YeanQ.roa (raw, json)
Hash identifier: WMtW0yuDfoWis1ErVfv8XtNO/5w6nFi7mO70RXEG6Jg=
Subject key identifier: 32:6A:B6:0E:5A:55:7D:96:2A:5A:59:0E:31:BD:F0:7B:F6:1E:6A:74
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018968C3289BCD4F087CDF17567609AC9E77
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Mmq2DlpVfZYqWlkOMb3we_YeanQ.roa
Signing time: Tue 18 Jul 2023 11:29:27 +0000
ROA not before: Tue 18 Jul 2023 11:29:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211603
IP address blocks: 2a0e:97c0:ac0::/44 maxlen: 48
Validation: Failed, certificate revoked on Fri 20 Oct 2023 22:25:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:68:c3:28:9b:cd:4f:08:7c:df:17:56:76:09:ac:9e:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jul 18 11:29:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=326ab60e5a557d962a5a590e31bdf07bf61e6a74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:64:a2:67:bc:f1:28:20:bc:40:9e:62:5d:a7:
9a:5f:58:d6:23:e0:0f:f4:3c:ba:5d:98:92:b7:ca:
af:c9:fc:44:50:bd:a0:86:c9:f6:d3:66:72:1c:a7:
b0:d7:da:91:a3:1b:e5:11:f7:93:bf:32:46:6b:ba:
fb:ce:7a:38:4c:27:07:38:59:de:e2:16:90:56:73:
10:03:b3:e2:eb:27:3f:f8:5c:49:26:9d:97:a1:7a:
e2:2b:8f:b8:fc:3b:c8:26:90:7e:44:58:e7:7f:bc:
f2:59:b7:cb:07:a3:6d:a1:52:5d:4b:ad:a6:77:28:
4d:fb:92:8f:df:5e:27:64:b2:c2:35:d2:24:36:ec:
40:b9:78:88:2d:5c:30:44:99:c6:1d:ce:1f:55:64:
9f:95:0c:4b:eb:07:76:a4:6c:13:bc:58:ea:95:49:
db:d3:b4:4b:fc:fe:10:86:bb:b4:bd:b4:ff:c8:f2:
25:fc:67:c3:ec:53:30:2b:28:bf:ee:34:87:d5:6f:
94:98:60:d8:5b:e7:b4:a3:72:67:64:fb:5e:3b:b3:
d2:9f:36:bf:15:2f:ff:44:1d:1c:b1:03:76:be:df:
7a:c8:dd:de:a9:18:14:1a:28:7a:82:cd:87:51:a5:
3d:06:44:89:8f:e5:20:0b:41:03:94:59:6b:64:d5:
5b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:6A:B6:0E:5A:55:7D:96:2A:5A:59:0E:31:BD:F0:7B:F6:1E:6A:74
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Mmq2DlpVfZYqWlkOMb3we_YeanQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:ac0::/44
Signature Algorithm: sha256WithRSAEncryption
52:92:97:c2:d9:71:e0:6a:62:3c:a6:69:3f:ec:9a:60:18:31:
d3:22:12:5c:37:92:4a:f4:9a:98:fa:6b:b5:58:2b:2f:15:c1:
c0:c5:ea:ed:36:b3:2f:2b:cb:75:42:82:e4:39:83:85:0e:c5:
b9:92:4c:72:e6:53:cd:82:0a:04:83:32:69:ee:0e:f7:32:49:
10:9c:71:27:24:0a:0b:86:d9:42:61:e6:0e:cf:52:5b:cc:e8:
6c:01:dc:69:02:01:0c:c2:bb:a7:88:56:8b:39:98:74:8f:47:
ce:eb:e8:2d:39:86:f6:99:0b:b2:4c:ae:e7:6b:85:51:42:3a:
64:6b:e3:19:58:56:49:c7:21:b9:fb:eb:28:7e:e0:e3:3d:33:
52:34:cf:9b:ad:e4:80:11:8c:86:33:51:75:10:a2:a3:46:94:
08:45:a2:88:44:5d:3f:d6:df:2d:26:f8:2f:4f:e8:0d:46:b1:
b1:fa:60:3a:61:c0:2b:4e:67:fd:88:ae:3b:be:64:93:ed:1d:
e2:8b:a6:c2:1c:ce:75:32:a7:59:37:66:eb:c7:4c:c6:78:71:
51:9f:3b:00:d5:0c:fa:fd:82:13:cc:48:0f:9c:2b:68:e7:ce:
c4:38:8f:b6:95:62:45:a2:4f:84:8e:1b:f1:aa:5a:c0:13:e3:
02:70:ff:95
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYlowyibzU8IfN8XVnYJrJ53MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwNzE4MTEyOTI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMjZhYjYwZTVhNTU3ZDk2MmE1YTU5MGUzMWJkZjA3YmY2MWU2YTc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsGSiZ7zxKCC8QJ5iXaeaX1jWI+AP
9Dy6XZiSt8qvyfxEUL2ghsn202ZyHKew19qRoxvlEfeTvzJGa7r7zno4TCcHOFne
4haQVnMQA7Pi6yc/+FxJJp2XoXriK4+4/DvIJpB+RFjnf7zyWbfLB6NtoVJdS62m
dyhN+5KP314nZLLCNdIkNuxAuXiILVwwRJnGHc4fVWSflQxL6wd2pGwTvFjqlUnb
07RL/P4Qhru0vbT/yPIl/GfD7FMwKyi/7jSH1W+UmGDYW+e0o3JnZPteO7PSnza/
FS//RB0csQN2vt96yN3eqRgUGih6gs2HUaU9BkSJj+UgC0EDlFlrZNVbiwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFDJqtg5aVX2WKlpZDjG98Hv2Hmp0MB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvTW1xMkRscFZmWllxV2xrT01iM3dlX1llYW5RLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6XwArA
MA0GCSqGSIb3DQEBCwUAA4IBAQBSkpfC2XHgamI8pmk/7JpgGDHTIhJcN5JK9JqY
+mu1WCsvFcHAxertNrMvK8t1QoLkOYOFDsW5kkxy5lPNggoEgzJp7g73MkkQnHEn
JAoLhtlCYeYOz1JbzOhsAdxpAgEMwruniFaLOZh0j0fO6+gtOYb2mQuyTK7na4VR
Qjpka+MZWFZJxyG5++sofuDjPTNSNM+breSAEYyGM1F1EKKjRpQIRaKIRF0/1t8t
JvgvT+gNRrGx+mA6YcArTmf9iK47vmST7R3ii6bCHM51MqdZN2brx0zGeHFRnzsA
1Qz6/YITzEgPnCto587EOI+2lWJFok+EjhvxqlrAE+MCcP+V
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:30 2024 by rpki-client on console-fra.rpki-client.org