Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/d9yTYBQp_peSublLX9ZmI23gPkk.roa
File: d9yTYBQp_peSublLX9ZmI23gPkk.roa (raw, json)
Hash identifier: qWVVeledxoUX2Q9WRDafrJBnQ6/dB4TkG261+t8dVf0=
Subject key identifier: 77:DC:93:60:14:29:FE:97:92:B9:B9:4B:5F:D6:66:23:6D:E0:3E:49
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018FF48D8C02485B51B770B5A4C1CACF202C
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/d9yTYBQp_peSublLX9ZmI23gPkk.roa
Signing time: Fri 07 Jun 2024 21:14:28 +0000
ROA not before: Fri 07 Jun 2024 21:14:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8075
IP address blocks: 2a0e:b107:27ac::/48 maxlen: 48
2a0e:b107:27c7::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 20 Jul 2024 19:58:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f4:8d:8c:02:48:5b:51:b7:70:b5:a4:c1:ca:cf:20:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jun 7 21:14:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=77dc93601429fe9792b9b94b5fd666236de03e49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:6a:ee:14:08:8e:35:71:c7:dc:60:04:17:a6:
29:50:6f:60:e2:d7:b7:41:0e:c2:3d:46:52:60:ac:
c4:7a:c2:00:38:e6:95:76:85:b1:26:4b:5d:19:ad:
2a:94:d1:3a:38:fb:2c:27:e3:67:41:93:88:10:03:
92:6a:d4:47:19:17:08:3e:5c:b3:db:dc:d8:83:3d:
44:18:27:e1:33:bc:81:09:79:e8:d9:04:72:25:64:
ef:9c:e1:f3:27:20:61:23:93:2e:33:08:6d:dc:e4:
2c:5e:e7:20:db:fa:c9:ab:a0:eb:24:d2:14:95:2f:
3b:30:0d:e0:4c:38:3c:36:86:15:6b:9b:4c:2e:70:
21:76:ac:9b:83:39:8f:0f:78:4b:5e:03:3a:ab:4a:
2d:50:5d:46:1a:91:26:65:e6:50:df:05:f5:f0:b4:
da:4c:c8:2b:e3:ba:b9:0f:96:82:0a:28:e2:19:f5:
3b:a8:3b:c6:dc:8c:46:a9:2c:13:0d:5e:f6:6d:e1:
49:cd:cf:bf:f6:c6:d7:20:a8:69:51:8f:5f:aa:b6:
e7:13:1c:2d:ce:e3:94:8c:e0:01:96:81:e8:39:82:
32:43:f5:42:11:cc:a2:b5:70:d1:3a:92:cc:d4:07:
37:fa:91:b1:8c:b9:c0:87:49:39:70:4b:5f:ad:13:
da:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:DC:93:60:14:29:FE:97:92:B9:B9:4B:5F:D6:66:23:6D:E0:3E:49
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/d9yTYBQp_peSublLX9ZmI23gPkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:27ac::/48
2a0e:b107:27c7::/48
Signature Algorithm: sha256WithRSAEncryption
56:52:4c:dc:f7:7a:72:bb:c0:59:df:41:8d:8f:32:85:50:5f:
97:6c:c8:6b:96:10:3d:66:35:7b:e1:1b:95:f0:6c:08:9d:78:
04:9a:63:f9:22:4a:b9:07:a0:76:c1:a2:8a:60:e4:24:c1:0d:
0b:60:45:0b:11:13:6e:c9:eb:85:5d:95:70:46:65:1e:88:27:
a6:b4:fd:16:e7:be:bd:47:b6:c6:0f:59:d5:b3:da:9a:eb:d4:
30:de:af:73:b2:ea:9f:7a:d9:5c:96:2b:c8:d2:8a:24:f8:84:
95:86:c0:df:1c:dd:b3:09:56:c2:f0:57:ac:8b:2b:97:5c:5c:
68:d7:fd:a4:62:39:03:4d:33:12:46:2a:c7:b9:b6:93:f3:9d:
a9:fe:27:6f:c5:0e:1b:7f:e2:b4:bf:01:c4:c3:06:c6:1f:bb:
98:7b:f9:26:92:a9:fb:6b:e9:7b:f5:18:4f:2d:78:dd:c6:46:
ba:81:2e:32:8d:69:c7:cb:d2:24:eb:62:59:8e:47:b1:e2:59:
07:d6:9f:2b:52:7c:d3:22:4f:4b:f2:c9:2b:ce:84:4d:68:2b:
9b:f4:61:b3:95:0a:91:31:4e:0d:e0:90:da:47:c1:d1:25:10:
2d:e1:3e:47:90:2e:3f:e3:2a:9a:53:ac:00:d3:fa:f8:5e:74:
1c:e8:a7:f3
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAY/0jYwCSFtRt3C1pMHKzyAsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjQwNjA3MjExNDI4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3N2RjOTM2MDE0MjlmZTk3OTJiOWI5NGI1ZmQ2NjYyMzZkZTAzZTQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm2ruFAiONXHH3GAEF6YpUG9g4te3
QQ7CPUZSYKzEesIAOOaVdoWxJktdGa0qlNE6OPssJ+NnQZOIEAOSatRHGRcIPlyz
29zYgz1EGCfhM7yBCXno2QRyJWTvnOHzJyBhI5MuMwht3OQsXucg2/rJq6DrJNIU
lS87MA3gTDg8NoYVa5tMLnAhdqybgzmPD3hLXgM6q0otUF1GGpEmZeZQ3wX18LTa
TMgr47q5D5aCCijiGfU7qDvG3IxGqSwTDV72beFJzc+/9sbXIKhpUY9fqrbnExwt
zuOUjOABloHoOYIyQ/VCEcyitXDROpLM1Ac3+pGxjLnAh0k5cEtfrRPaxQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFHfck2AUKf6Xkrm5S1/WZiNt4D5JMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvZDl5VFlCUXBfcGVTdWJsTFg5Wm1JMjNnUGtrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKg6xByes
AwcAKg6xByfHMA0GCSqGSIb3DQEBCwUAA4IBAQBWUkzc93pyu8BZ30GNjzKFUF+X
bMhrlhA9ZjV74RuV8GwInXgEmmP5Ikq5B6B2waKKYOQkwQ0LYEULERNuyeuFXZVw
RmUeiCemtP0W5769R7bGD1nVs9qa69Qw3q9zsuqfetlclivI0ook+ISVhsDfHN2z
CVbC8FesiyuXXFxo1/2kYjkDTTMSRirHubaT852p/idvxQ4bf+K0vwHEwwbGH7uY
e/kmkqn7a+l79RhPLXjdxka6gS4yjWnHy9Ik62JZjkex4lkH1p8rUnzTIk9L8skr
zoRNaCub9GGzlQqRMU4N4JDaR8HRJRAt4T5HkC4/4yqaU6wA0/r4XnQc6Kfz
-----END CERTIFICATE-----
Generated at Sat Jul 20 21:33:57 2024 by rpki-client on console-fra.rpki-client.org