Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lneqTpV2TOnZHqcsZz-4NSm4jgY.roa
File: lneqTpV2TOnZHqcsZz-4NSm4jgY.roa (raw, json)
Hash identifier: kxOev2FLYsJjTxg9GumVg+OhkrEFlGULTh0QqMHX+MM=
Subject key identifier: 96:77:AA:4E:95:76:4C:E9:D9:1E:A7:2C:67:3F:B8:35:29:B8:8E:06
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E81872136074B3AD97FB99E3B8EED5
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lneqTpV2TOnZHqcsZz-4NSm4jgY.roa
Signing time: Mon 02 Jan 2023 05:15:36 +0000
ROA not before: Mon 02 Jan 2023 05:15:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212425
IP address blocks: 2a10:2f00:157::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e8:18:72:13:60:74:b3:ad:97:fb:99:e3:b8:ee:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9677aa4e95764ce9d91ea72c673fb83529b88e06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e4:d6:a7:c1:c6:ed:e7:e7:c7:4e:f4:68:6d:
88:89:c0:8f:f0:11:b4:54:fb:b8:c4:52:4f:b1:d7:
94:31:cd:b4:c0:67:e7:b9:36:55:87:97:58:7f:1c:
6d:82:46:18:0b:c5:d2:76:09:d1:e2:78:1a:8e:09:
52:5c:a9:68:f9:7c:ba:c4:f9:1d:77:20:7c:cc:b6:
10:a8:2e:f1:f0:0f:00:d4:92:7c:ac:e2:fe:17:e6:
58:c7:b7:f4:de:d4:89:31:1a:04:19:05:39:ce:0f:
d2:f6:d3:fe:b1:27:ef:4b:e2:28:15:40:b5:34:78:
79:b5:5c:12:ea:5d:cd:60:0d:2c:d6:24:54:15:11:
bc:6a:7c:a0:1e:26:f7:c7:94:8f:d7:fa:76:9e:d9:
55:e9:6a:02:bb:90:02:a8:de:16:9c:e0:ad:c6:80:
8d:ef:ad:2d:e9:bc:10:c1:82:00:b3:35:1a:07:fb:
fc:a7:06:a3:6b:0e:9a:92:4e:44:97:d9:52:4d:4b:
4a:ce:70:44:93:2e:f8:20:84:1b:c6:3f:5b:dc:f6:
a5:fc:2b:a3:ec:53:48:9c:4e:8a:aa:83:a8:ce:92:
c3:07:e0:65:31:2a:d6:70:36:db:1d:7e:ec:f5:cd:
c0:98:6d:fc:96:cb:7b:fd:da:41:11:b7:dc:41:92:
7c:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:77:AA:4E:95:76:4C:E9:D9:1E:A7:2C:67:3F:B8:35:29:B8:8E:06
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/lneqTpV2TOnZHqcsZz-4NSm4jgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f00:157::/48
Signature Algorithm: sha256WithRSAEncryption
9a:f5:46:d2:fe:82:ff:61:ea:f0:60:30:8d:d9:64:40:fa:9d:
30:38:f4:e5:c6:73:cc:9d:9d:d7:6f:8d:b2:ce:f6:ed:9f:e9:
c5:95:0e:fc:17:29:1a:e3:a4:15:f7:1e:b7:ec:65:3c:83:1b:
06:4e:ca:55:8d:1c:e0:bb:0a:8c:49:1a:04:e3:cc:98:27:06:
01:ff:03:63:90:6c:f9:1a:36:d4:4a:25:9b:c0:f6:7d:fd:05:
3a:c0:86:fb:4c:34:30:fa:54:ac:6c:b3:9e:4c:40:d0:59:4f:
e0:cb:51:bb:47:13:b8:54:4f:d9:24:17:5e:5b:97:45:27:85:
42:5f:6a:65:70:7c:d3:c2:5d:82:c9:1e:64:58:69:1b:72:5d:
29:48:a3:e3:d6:91:bc:d3:7c:af:59:e5:7a:53:d3:d4:90:c3:
ad:ae:fb:5e:7d:ae:62:d4:48:25:7f:fa:3b:f3:d7:51:13:a4:
56:52:ac:4c:db:c6:ac:86:a7:79:17:36:1d:6f:e5:d1:11:0c:
b4:6c:c7:c4:62:1a:df:1e:d1:fe:e6:cc:0b:05:0f:ca:dd:7c:
f8:5a:2a:4d:62:21:3d:a0:b2:d4:07:c7:47:34:26:a1:39:0d:
a5:b0:b8:6d:b8:91:3e:bc:2c:a5:4b:95:b6:ba:d4:11:f7:5c:
e6:4a:a6:61
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVw6BhyE2B0s62X+5njuO7VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwMTAyMDUxNTM2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5Njc3YWE0ZTk1NzY0Y2U5ZDkxZWE3MmM2NzNmYjgzNTI5Yjg4ZTA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAouTWp8HG7efnx070aG2IicCP8BG0
VPu4xFJPsdeUMc20wGfnuTZVh5dYfxxtgkYYC8XSdgnR4ngajglSXKlo+Xy6xPkd
dyB8zLYQqC7x8A8A1JJ8rOL+F+ZYx7f03tSJMRoEGQU5zg/S9tP+sSfvS+IoFUC1
NHh5tVwS6l3NYA0s1iRUFRG8anygHib3x5SP1/p2ntlV6WoCu5ACqN4WnOCtxoCN
760t6bwQwYIAszUaB/v8pwajaw6akk5El9lSTUtKznBEky74IIQbxj9b3Pal/Cuj
7FNInE6KqoOozpLDB+BlMSrWcDbbHX7s9c3AmG38lst7/dpBEbfcQZJ81wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFJZ3qk6Vdkzp2R6nLGc/uDUpuI4GMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvbG5lcVRwVjJUT25aSHFjc1p6LTROU200amdZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhAvAAFX
MA0GCSqGSIb3DQEBCwUAA4IBAQCa9UbS/oL/YerwYDCN2WRA+p0wOPTlxnPMnZ3X
b42yzvbtn+nFlQ78Fyka46QV9x637GU8gxsGTspVjRzguwqMSRoE48yYJwYB/wNj
kGz5GjbUSiWbwPZ9/QU6wIb7TDQw+lSsbLOeTEDQWU/gy1G7RxO4VE/ZJBdeW5dF
J4VCX2plcHzTwl2CyR5kWGkbcl0pSKPj1pG803yvWeV6U9PUkMOtrvtefa5i1Egl
f/o789dRE6RWUqxM28ashqd5FzYdb+XREQy0bMfEYhrfHtH+5swLBQ/K3Xz4WipN
YiE9oLLUB8dHNCahOQ2lsLhtuJE+vCylS5W2utQR91zmSqZh
-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:33 2024 by rpki-client on console-fra.rpki-client.org