Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/hiNjbphh8K1jnZIbmYyshmgxC9c.roa
File: hiNjbphh8K1jnZIbmYyshmgxC9c.roa (raw, json)
Hash identifier: N+4f0wZFleYQmkkQxBAqvCI/xzcXesnfs13PBGphOrg=
Subject key identifier: 86:23:63:6E:98:61:F0:AD:63:9D:92:1B:99:8C:AC:86:68:31:0B:D7
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185AC39D614FBBFD10E377F6C38735B52DD
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/hiNjbphh8K1jnZIbmYyshmgxC9c.roa
Signing time: Fri 13 Jan 2023 17:42:29 +0000
ROA not before: Fri 13 Jan 2023 17:42:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 2a0e:b107:19a0::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 23 Jan 2023 10:50:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:ac:39:d6:14:fb:bf:d1:0e:37:7f:6c:38:73:5b:52:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 13 17:42:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8623636e9861f0ad639d921b998cac8668310bd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:96:a5:7f:e9:70:a7:5d:98:9c:09:85:c4:8e:
fe:b2:09:b7:a3:ff:42:cc:d7:28:b1:aa:2f:94:bf:
71:98:39:c2:64:5d:32:3e:45:ac:a4:13:e7:68:af:
01:2a:d9:99:69:80:a4:b7:68:45:71:87:34:6a:5f:
81:66:98:16:5a:f7:1f:a0:a0:22:47:50:e4:67:3a:
d0:71:d7:a8:c8:d9:49:90:9f:de:d5:d4:5e:c9:54:
7e:b8:b4:44:e2:05:26:d3:45:7b:09:11:e1:cf:01:
58:d3:55:8b:47:b4:40:1c:fb:0e:b4:b0:14:64:f9:
85:6a:7a:ff:0c:fb:15:54:5f:45:ed:51:a9:32:1a:
82:3d:b2:82:ac:09:f5:5d:9e:eb:f1:9f:d6:7d:80:
f2:d2:d5:92:fe:41:c3:13:fb:7f:8b:ef:b5:7f:2f:
f0:ac:27:10:01:e1:48:0b:0c:22:3f:90:9c:7e:91:
47:b0:9a:8e:a3:d9:65:72:f4:26:27:60:19:3e:3c:
7c:63:2f:99:0d:b7:4e:ee:86:0d:ce:23:aa:d0:b2:
de:36:5d:57:8a:bf:3a:99:28:d4:6f:14:b0:f4:ad:
7b:fe:98:31:e7:6e:79:4c:0c:d0:08:72:3d:33:e7:
d4:35:a9:4c:ab:46:09:b1:53:fa:60:68:ca:5b:39:
35:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:23:63:6E:98:61:F0:AD:63:9D:92:1B:99:8C:AC:86:68:31:0B:D7
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/hiNjbphh8K1jnZIbmYyshmgxC9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:19a0::/48
Signature Algorithm: sha256WithRSAEncryption
21:3b:4f:ad:d9:d6:d4:0b:70:b9:bb:69:e0:c6:99:51:1e:99:
84:74:4c:fb:e4:33:69:3a:4c:02:b0:8e:f9:e4:9c:2e:a0:59:
0d:e4:30:2a:6a:f0:b3:1b:1f:a6:cb:88:13:71:e8:26:47:d0:
9b:50:dd:43:68:cf:9e:c8:e2:2a:50:fb:24:77:fb:5a:f4:b3:
85:1e:26:30:8f:44:7a:a6:91:a3:be:94:40:29:73:4a:09:5a:
55:ab:7c:e6:f4:3d:ba:65:13:e1:ab:b0:46:2b:7e:d6:a1:e1:
8c:a3:e7:f6:3c:1d:86:37:05:cd:16:10:a2:b1:53:6e:d9:17:
50:97:8c:bc:72:22:4a:02:c0:b8:5d:3d:7b:59:4a:76:53:47:
9d:a6:36:4a:f0:c0:f5:62:63:46:e4:ad:6c:54:65:ec:36:bd:
2b:25:42:e6:53:d1:71:af:69:db:4d:91:ce:ca:1c:85:f8:5b:
53:2b:16:7f:2c:2e:1b:41:e0:64:de:70:f0:8e:7c:fa:3a:6e:
ee:b6:b1:32:6a:8c:a3:52:37:ca:8e:f2:20:19:a5:bb:9e:74:
0e:62:fa:77:ee:c4:d9:04:12:6e:0b:28:b2:62:ef:f7:c7:e2:
68:04:f4:3c:ed:74:4d:a9:ce:6a:90:4d:64:17:50:40:94:b1:
8b:23:c8:be
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYWsOdYU+7/RDjd/bDhzW1LdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwMTEzMTc0MjI5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NjIzNjM2ZTk4NjFmMGFkNjM5ZDkyMWI5OThjYWM4NjY4MzEwYmQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs5alf+lwp12YnAmFxI7+sgm3o/9C
zNcosaovlL9xmDnCZF0yPkWspBPnaK8BKtmZaYCkt2hFcYc0al+BZpgWWvcfoKAi
R1DkZzrQcdeoyNlJkJ/e1dReyVR+uLRE4gUm00V7CRHhzwFY01WLR7RAHPsOtLAU
ZPmFanr/DPsVVF9F7VGpMhqCPbKCrAn1XZ7r8Z/WfYDy0tWS/kHDE/t/i++1fy/w
rCcQAeFICwwiP5CcfpFHsJqOo9llcvQmJ2AZPjx8Yy+ZDbdO7oYNziOq0LLeNl1X
ir86mSjUbxSw9K17/pgx5255TAzQCHI9M+fUNalMq0YJsVP6YGjKWzk1XwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFIYjY26YYfCtY52SG5mMrIZoMQvXMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvaGlOamJwaGg4SzFqblpJYm1ZeXNobWd4QzljLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg6xBxmg
MA0GCSqGSIb3DQEBCwUAA4IBAQAhO0+t2dbUC3C5u2ngxplRHpmEdEz75DNpOkwC
sI755JwuoFkN5DAqavCzGx+my4gTcegmR9CbUN1DaM+eyOIqUPskd/ta9LOFHiYw
j0R6ppGjvpRAKXNKCVpVq3zm9D26ZRPhq7BGK37WoeGMo+f2PB2GNwXNFhCisVNu
2RdQl4y8ciJKAsC4XT17WUp2U0edpjZK8MD1YmNG5K1sVGXsNr0rJULmU9Fxr2nb
TZHOyhyF+FtTKxZ/LC4bQeBk3nDwjnz6Om7utrEyaoyjUjfKjvIgGaW7nnQOYvp3
7sTZBBJuCyiyYu/3x+JoBPQ87XRNqc5qkE1kF1BAlLGLI8i+
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:36 2024 by rpki-client on console-fra.rpki-client.org