Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/kv1mR_qkKLt6X0dSXy7Z2thq-2g.roa
File: kv1mR_qkKLt6X0dSXy7Z2thq-2g.roa (raw, json)
Hash identifier: 2TcfFF0cgbo/lDbrVjCzWmPEhl5WhpIR8odAomW//oc=
Subject key identifier: 92:FD:66:47:FA:A4:28:BB:7A:5F:47:52:5F:2E:D9:DA:D8:6A:FB:68
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018E7966857824179508D7D93D4E9E5E41C6
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/kv1mR_qkKLt6X0dSXy7Z2thq-2g.roa
Signing time: Tue 26 Mar 2024 06:15:45 +0000
ROA not before: Tue 26 Mar 2024 06:15:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215296
IP address blocks: 2a10:ccc0:140::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Apr 2024 11:55:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:79:66:85:78:24:17:95:08:d7:d9:3d:4e:9e:5e:41:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 26 06:15:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=92fd6647faa428bb7a5f47525f2ed9dad86afb68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f4:2e:ac:7e:54:df:9b:b6:40:f9:76:05:51:
bf:1f:b3:fd:c5:3d:f5:7b:88:8e:0d:ba:67:c9:ba:
2f:19:47:5f:ef:dc:ea:b5:e0:b6:a7:1f:a5:7e:12:
42:c5:92:74:d7:20:f8:c7:d0:f5:0c:64:38:f1:c6:
34:bb:c8:9d:0a:01:2d:4b:7f:de:48:d1:4a:f4:1d:
f0:20:ee:44:53:9a:d0:5c:a6:6f:c1:59:db:5c:91:
23:89:68:f9:60:f4:08:03:67:34:8b:67:4a:9b:c7:
a6:79:8b:d1:ca:41:bd:40:8f:b8:30:15:5b:58:31:
3d:1a:a0:f1:53:60:12:fd:64:5d:c4:57:bc:44:f1:
de:bb:00:3d:ff:e9:52:72:05:a3:66:23:8a:aa:4b:
5f:90:3d:8b:3e:23:01:04:0a:b8:cc:d0:f6:de:b5:
06:ed:e3:01:d6:33:13:4b:9d:10:93:4e:32:c7:43:
75:4c:6c:25:27:63:e2:04:6c:66:e8:f5:fb:76:62:
d7:32:33:45:6c:76:2c:35:e4:27:32:8b:8a:c1:df:
fc:22:62:b1:58:9e:5c:49:bb:6c:19:07:e3:0c:26:
99:95:4b:57:4c:af:09:75:dc:f6:18:43:db:1e:d3:
0c:7e:ed:fb:cb:b1:f0:6b:e6:66:b3:c5:be:64:d6:
d0:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:FD:66:47:FA:A4:28:BB:7A:5F:47:52:5F:2E:D9:DA:D8:6A:FB:68
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/kv1mR_qkKLt6X0dSXy7Z2thq-2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:ccc0:140::/44
Signature Algorithm: sha256WithRSAEncryption
c9:78:67:bc:b7:b8:72:8b:c4:d6:6e:48:5f:09:81:02:42:9b:
77:63:c5:db:d5:51:ea:99:26:37:b2:18:f9:1a:bc:77:d7:c5:
62:4c:e4:a6:b6:c5:55:39:46:0b:8b:1c:be:81:da:f0:a4:00:
bd:68:d6:14:d0:9e:d9:d2:2a:e4:1a:60:1b:ef:c6:13:5f:7d:
30:7d:c7:3c:b5:22:fc:03:64:9b:b0:c5:b1:18:90:60:5b:38:
06:f5:4b:bc:01:ca:62:c7:4c:57:c4:3d:86:93:56:5e:6c:3f:
8c:ac:91:68:ef:40:47:49:2f:85:e0:5b:db:7f:67:0d:90:e1:
ba:1a:c6:7f:69:99:0c:42:d3:7f:20:12:09:55:22:26:1b:95:
91:db:7c:a6:77:55:53:d4:d5:26:d7:20:26:e1:dd:5d:3f:2a:
df:86:43:b1:21:bb:45:f0:60:8e:43:63:8d:06:ba:ad:16:51:
ce:fa:c1:24:6b:96:76:20:f6:ee:51:84:71:43:8e:34:8e:e6:
d0:22:58:66:39:71:35:46:f7:cd:af:6c:69:7f:69:20:5c:cd:
dd:36:af:b2:e9:48:94:8a:aa:38:a6:e3:12:ae:38:29:2a:01:
de:c7:2e:65:24:f0:6c:c6:27:7d:90:7b:50:22:a4:eb:34:7f:
25:8c:cd:54
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY55ZoV4JBeVCNfZPU6eXkHGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjQwMzI2MDYxNTQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MmZkNjY0N2ZhYTQyOGJiN2E1ZjQ3NTI1ZjJlZDlkYWQ4NmFmYjY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwfQurH5U35u2QPl2BVG/H7P9xT31
e4iODbpnybovGUdf79zqteC2px+lfhJCxZJ01yD4x9D1DGQ48cY0u8idCgEtS3/e
SNFK9B3wIO5EU5rQXKZvwVnbXJEjiWj5YPQIA2c0i2dKm8emeYvRykG9QI+4MBVb
WDE9GqDxU2AS/WRdxFe8RPHeuwA9/+lScgWjZiOKqktfkD2LPiMBBAq4zND23rUG
7eMB1jMTS50Qk04yx0N1TGwlJ2PiBGxm6PX7dmLXMjNFbHYsNeQnMouKwd/8ImKx
WJ5cSbtsGQfjDCaZlUtXTK8Jddz2GEPbHtMMfu37y7Hwa+Zms8W+ZNbQWQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFJL9Zkf6pCi7el9HUl8u2drYavtoMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEva3YxbVJfcWtLTHQ2WDBkU1h5N1oydGhxLTJnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhDMwAFA
MA0GCSqGSIb3DQEBCwUAA4IBAQDJeGe8t7hyi8TWbkhfCYECQpt3Y8Xb1VHqmSY3
shj5Grx318ViTOSmtsVVOUYLixy+gdrwpAC9aNYU0J7Z0irkGmAb78YTX30wfcc8
tSL8A2SbsMWxGJBgWzgG9Uu8Acpix0xXxD2Gk1ZebD+MrJFo70BHSS+F4Fvbf2cN
kOG6GsZ/aZkMQtN/IBIJVSImG5WR23ymd1VT1NUm1yAm4d1dPyrfhkOxIbtF8GCO
Q2ONBrqtFlHO+sEka5Z2IPbuUYRxQ440jubQIlhmOXE1RvfNr2xpf2kgXM3dNq+y
6UiUiqo4puMSrjgpKgHexy5lJPBsxid9kHtQIqTrNH8ljM1U
-----END CERTIFICATE-----
Generated at Mon Apr 1 16:41:06 2024 by rpki-client on console-ams.rpki-client.org