Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/oOR76E5_USuzsB7_NbJpXT1H1F0.roa
File: oOR76E5_USuzsB7_NbJpXT1H1F0.roa (raw, json)
Hash identifier: JJpaFf1Q/rfatWv/tiLe5OhNmN+1pPTVohEyX1QC06g=
Subject key identifier: A0:E4:7B:E8:4E:7F:51:2B:B3:B0:1E:FF:35:B2:69:5D:3D:47:D4:5D
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0185E48ACCC0C8D751D25E86F179D23B85A5
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/oOR76E5_USuzsB7_NbJpXT1H1F0.roa
Signing time: Tue 24 Jan 2023 16:09:39 +0000
ROA not before: Tue 24 Jan 2023 16:09:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 149007
IP address blocks: 2a0e:b107:1800::/44 maxlen: 48
2a0e:b107:1806::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e4:8a:cc:c0:c8:d7:51:d2:5e:86:f1:79:d2:3b:85:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 24 16:09:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0e47be84e7f512bb3b01eff35b2695d3d47d45d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:03:67:69:bd:e4:78:4e:12:a9:ea:18:bd:5f:
a5:20:3d:db:2e:22:b5:13:b9:76:4f:85:b4:e5:d8:
fc:ec:fb:e5:5f:a3:11:ff:9f:9c:f5:15:b1:8f:45:
34:dd:1d:93:19:7e:5f:b9:74:d5:5e:4e:f6:ce:6e:
58:90:1b:47:29:0f:d4:7b:5c:c1:4a:31:c4:e4:a5:
3e:81:7a:9c:ab:bb:93:74:1e:e4:a2:67:4a:96:3f:
d0:49:82:04:31:a0:76:a8:e1:6b:0a:78:ee:9a:01:
d3:ba:32:c0:c1:4f:4d:5f:9f:d1:7a:3d:6e:47:ff:
9b:60:7f:7b:a3:1b:2f:3d:be:0a:70:46:db:80:21:
94:23:82:4d:40:14:cc:3c:ae:b9:7e:18:a3:e8:63:
a9:25:4b:9d:47:f0:bd:73:b3:7f:40:75:33:14:55:
43:e8:4b:9b:03:ef:73:1e:8e:21:43:1c:85:18:57:
9f:8c:d6:69:06:48:91:1f:89:f2:6f:ad:46:94:2c:
73:a0:0d:30:07:99:7d:4a:14:27:4c:51:92:df:15:
b0:d9:08:6a:71:1b:e8:5a:33:33:e2:9d:e4:70:fd:
25:6d:25:65:7a:45:6b:f6:ba:84:ae:25:69:91:a9:
76:90:c2:be:22:93:72:25:05:37:cf:9e:33:99:cd:
76:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:E4:7B:E8:4E:7F:51:2B:B3:B0:1E:FF:35:B2:69:5D:3D:47:D4:5D
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/oOR76E5_USuzsB7_NbJpXT1H1F0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1800::/44
Signature Algorithm: sha256WithRSAEncryption
28:c4:95:ef:36:12:38:52:a8:61:92:be:36:74:cc:bc:f3:20:
bc:49:81:d2:2b:6c:88:45:1b:84:bb:8a:a7:c1:9c:11:f6:40:
c5:ae:83:46:7a:75:6b:ad:07:91:c6:c5:53:1c:43:54:fc:a2:
97:6a:da:fb:91:cf:b2:34:de:ce:3b:fe:fc:95:dd:6a:cd:b4:
45:62:57:d9:97:f1:e6:4f:1a:c5:e4:9c:82:77:16:61:8d:f4:
bb:21:ee:7b:d0:f8:6a:98:50:1a:33:12:e7:63:0c:76:b8:e7:
e3:ec:ce:67:af:5c:2d:41:fa:4c:03:ba:61:9f:8b:3b:6e:8b:
bd:01:7a:ae:54:64:0a:be:7c:6e:df:81:59:89:8c:b1:3b:b9:
ff:9a:11:e0:97:33:c6:30:64:a9:ac:56:8a:67:38:2b:34:8c:
f3:1a:d4:04:41:be:d7:b4:91:60:c8:9b:0e:fa:ff:2d:a2:99:
56:d0:b2:6f:04:3a:14:b5:a7:ef:43:6c:ae:62:16:48:16:e5:
08:b5:73:1f:9e:d2:69:7b:8a:58:71:66:bb:ed:86:6f:7c:f9:
02:8a:be:e2:aa:70:ab:3e:61:31:5b:dd:39:fe:f0:d3:ff:47:
96:62:df:72:a6:23:3f:b1:b9:e1:aa:07:15:9a:bb:ed:e7:7f:
6b:6d:8d:e1
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYXkiszAyNdR0l6G8XnSO4WlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwMTI0MTYwOTM5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMGU0N2JlODRlN2Y1MTJiYjNiMDFlZmYzNWIyNjk1ZDNkNDdkNDVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAugNnab3keE4SqeoYvV+lID3bLiK1
E7l2T4W05dj87PvlX6MR/5+c9RWxj0U03R2TGX5fuXTVXk72zm5YkBtHKQ/Ue1zB
SjHE5KU+gXqcq7uTdB7komdKlj/QSYIEMaB2qOFrCnjumgHTujLAwU9NX5/Rej1u
R/+bYH97oxsvPb4KcEbbgCGUI4JNQBTMPK65fhij6GOpJUudR/C9c7N/QHUzFFVD
6EubA+9zHo4hQxyFGFefjNZpBkiRH4nyb61GlCxzoA0wB5l9ShQnTFGS3xWw2Qhq
cRvoWjMz4p3kcP0lbSVlekVr9rqEriVpkal2kMK+IpNyJQU3z54zmc12qwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFKDke+hOf1Ers7Ae/zWyaV09R9RdMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvb09SNzZFNV9VU3V6c0I3X05iSnBYVDFIMUYwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6xBxgA
MA0GCSqGSIb3DQEBCwUAA4IBAQAoxJXvNhI4Uqhhkr42dMy88yC8SYHSK2yIRRuE
u4qnwZwR9kDFroNGenVrrQeRxsVTHENU/KKXatr7kc+yNN7OO/78ld1qzbRFYlfZ
l/HmTxrF5JyCdxZhjfS7Ie570PhqmFAaMxLnYwx2uOfj7M5nr1wtQfpMA7phn4s7
bou9AXquVGQKvnxu34FZiYyxO7n/mhHglzPGMGSprFaKZzgrNIzzGtQEQb7XtJFg
yJsO+v8toplW0LJvBDoUtafvQ2yuYhZIFuUItXMfntJpe4pYcWa77YZvfPkCir7i
qnCrPmExW905/vDT/0eWYt9ypiM/sbnhqgcVmrvt539rbY3h
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:12 2024 by rpki-client on console-ams.rpki-client.org