Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/PoW6WA0Si2xkgFxqiw5kPzKwVZI.roa
File: PoW6WA0Si2xkgFxqiw5kPzKwVZI.roa (raw, json)
Hash identifier: DkLR2eyaRuStsnyQF0xYrNqEWdBSZ0apEA9ikJpyUkk=
Subject key identifier: 3E:85:BA:58:0D:12:8B:6C:64:80:5C:6A:8B:0E:64:3F:32:B0:55:92
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E79FD81E909FA0E7F9BEAD62EE808A
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/PoW6WA0Si2xkgFxqiw5kPzKwVZI.roa
Signing time: Mon 02 Jan 2023 05:15:05 +0000
ROA not before: Mon 02 Jan 2023 05:15:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200529
IP address blocks: 2a0e:b107:1d30::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 23 Jan 2023 10:50:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:9f:d8:1e:90:9f:a0:e7:f9:be:ad:62:ee:80:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3e85ba580d128b6c64805c6a8b0e643f32b05592
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:5c:83:7b:bd:88:46:2e:f0:9a:31:8a:93:67:
6d:ac:03:1b:ef:95:e1:03:36:c0:13:e7:3d:4e:bf:
48:08:69:fc:5b:ed:bd:5d:5d:16:3e:00:35:f2:17:
33:90:76:b7:a6:34:4c:a3:bb:a5:a4:d7:7d:4b:98:
e1:66:8e:0a:db:82:b3:6d:9e:e4:63:c6:b6:fb:b5:
67:fa:3d:2a:70:47:0a:20:f7:da:15:f5:bf:fa:4c:
f8:b1:94:39:a2:82:47:8d:dd:27:5d:48:f7:2f:d7:
51:f3:a4:6e:37:8e:77:22:d0:f9:40:c4:9b:ff:28:
b6:a0:19:7e:16:8d:51:ee:ed:78:70:0a:24:54:b8:
92:63:91:2c:4d:fc:db:69:87:21:9d:7e:1a:d1:b3:
4c:01:39:75:02:3b:07:a1:76:61:57:41:ff:ab:8d:
7c:68:d3:17:b4:16:b3:4e:86:61:aa:ca:4e:a1:16:
da:af:1b:33:86:95:02:ea:d5:d6:3c:b2:43:39:0e:
0e:1f:cd:78:a2:f9:bc:ce:d6:9b:dc:79:11:8f:79:
1a:e1:71:f7:49:6b:64:ee:34:de:c8:a2:20:97:0f:
bf:8f:73:b9:f3:19:9a:60:73:d5:14:3c:f4:9a:c9:
21:15:52:e1:23:89:75:1b:5f:82:82:62:bb:ed:67:
05:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:85:BA:58:0D:12:8B:6C:64:80:5C:6A:8B:0E:64:3F:32:B0:55:92
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/PoW6WA0Si2xkgFxqiw5kPzKwVZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1d30::/44
Signature Algorithm: sha256WithRSAEncryption
92:b5:34:6f:7e:2c:4d:5e:19:a9:89:41:e7:a3:be:57:4f:48:
95:5f:d8:9d:c3:e8:17:e2:36:c0:07:18:04:00:32:1b:e9:06:
a5:b3:cc:5e:29:82:63:56:32:38:2c:ab:f6:c4:ed:76:d5:24:
07:e6:da:c5:08:9a:be:ab:17:ab:bf:50:57:a3:36:fc:5b:8d:
ad:10:4f:8e:2e:88:ba:22:8f:f4:9c:32:b6:72:10:d3:23:eb:
a7:7e:de:2b:a4:7d:33:c1:36:ba:3a:58:81:38:cd:56:7a:20:
53:3b:a1:82:43:30:fb:dc:3a:fe:0b:c1:7c:bd:9d:cb:f5:87:
66:11:1d:62:be:40:5c:8b:7c:3e:f4:54:05:20:23:85:86:58:
5c:a9:61:a5:d1:36:7f:57:5b:de:6c:58:29:a5:53:72:b4:f2:
04:2a:dd:b9:91:bc:9f:82:e8:60:93:70:f0:0a:ca:0d:5d:a3:
7d:18:eb:e6:ad:00:d5:88:65:2f:0b:a8:ae:15:f8:cb:8b:de:
96:ed:7c:82:e0:4a:06:24:70:c9:0e:cd:da:7c:9f:6c:18:76:
4a:77:e7:b8:85:2b:05:b5:03:5c:8f:f3:68:c6:de:e6:f0:04:
27:b0:da:a7:f5:50:7a:d4:ab:34:d7:3c:4e:ee:22:e0:16:61:
56:82:65:b7
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVw55/YHpCfoOf5vq1i7oCKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwMTAyMDUxNTA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZTg1YmE1ODBkMTI4YjZjNjQ4MDVjNmE4YjBlNjQzZjMyYjA1NTkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmlyDe72IRi7wmjGKk2dtrAMb75Xh
AzbAE+c9Tr9ICGn8W+29XV0WPgA18hczkHa3pjRMo7ulpNd9S5jhZo4K24KzbZ7k
Y8a2+7Vn+j0qcEcKIPfaFfW/+kz4sZQ5ooJHjd0nXUj3L9dR86RuN453ItD5QMSb
/yi2oBl+Fo1R7u14cAokVLiSY5EsTfzbaYchnX4a0bNMATl1AjsHoXZhV0H/q418
aNMXtBazToZhqspOoRbarxszhpUC6tXWPLJDOQ4OH814ovm8ztab3HkRj3ka4XH3
SWtk7jTeyKIglw+/j3O58xmaYHPVFDz0mskhFVLhI4l1G1+CgmK77WcFgwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFD6FulgNEotsZIBcaosOZD8ysFWSMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvUG9XNldBMFNpMnhrZ0Z4cWl3NWtQekt3VlpJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6xBx0w
MA0GCSqGSIb3DQEBCwUAA4IBAQCStTRvfixNXhmpiUHno75XT0iVX9idw+gX4jbA
BxgEADIb6Qals8xeKYJjVjI4LKv2xO121SQH5trFCJq+qxerv1BXozb8W42tEE+O
Loi6Io/0nDK2chDTI+unft4rpH0zwTa6OliBOM1WeiBTO6GCQzD73Dr+C8F8vZ3L
9YdmER1ivkBci3w+9FQFICOFhlhcqWGl0TZ/V1vebFgppVNytPIEKt25kbyfguhg
k3DwCsoNXaN9GOvmrQDViGUvC6iuFfjLi96W7XyC4EoGJHDJDs3afJ9sGHZKd+e4
hSsFtQNcj/Noxt7m8AQnsNqn9VB61Ks01zxO7iLgFmFWgmW3
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:02 2024 by rpki-client on console-ams.rpki-client.org