Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/501fd3-a8cd-4e2d-9d32-2fb72a0aef6d/1/J1nLt1XWYK3yJyq9apZKbDlaZs4.roa
File: J1nLt1XWYK3yJyq9apZKbDlaZs4.roa (raw, json)
Hash identifier: QL8/mZgnnffCXPAc9M5juk70hFPlrDYV0xxETR+OHoQ=
Subject key identifier: 27:59:CB:B7:55:D6:60:AD:F2:27:2A:BD:6A:96:4A:6C:39:5A:66:CE
Certificate issuer: /CN=1faacab8e456bb291979a7357a7024f00bebaaf5
Certificate serial: 018F5F48C9681CF46BD24CE49215A3AF2A84
Authority key identifier: 1F:AA:CA:B8:E4:56:BB:29:19:79:A7:35:7A:70:24:F0:0B:EB:AA:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H6rKuORWuykZeac1enAk8AvrqvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/501fd3-a8cd-4e2d-9d32-2fb72a0aef6d/1/J1nLt1XWYK3yJyq9apZKbDlaZs4.roa
Signing time: Thu 09 May 2024 21:35:56 +0000
ROA not before: Thu 09 May 2024 21:35:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50937
IP address blocks: 2a14:3b40::/36 maxlen: 48
Validation: Failed, certificate revoked on Sat 18 May 2024 20:20:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:5f:48:c9:68:1c:f4:6b:d2:4c:e4:92:15:a3:af:2a:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1faacab8e456bb291979a7357a7024f00bebaaf5
Validity
Not Before: May 9 21:35:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2759cbb755d660adf2272abd6a964a6c395a66ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:cd:44:9b:b6:95:b9:ac:7a:02:36:67:52:4d:
9c:ef:16:0c:2c:9e:32:86:23:e9:d4:36:50:c7:eb:
a5:1e:54:53:d9:7c:c3:cf:a2:f1:65:99:16:88:16:
26:51:a5:f8:5c:0f:63:7b:4d:d9:f8:33:2b:d2:61:
e2:be:bd:2c:71:f1:cf:d1:5a:81:14:7d:9b:61:16:
bb:6b:97:e4:e3:c6:ce:1e:8b:99:fd:5a:b0:44:b1:
6a:5a:37:d6:22:28:df:62:42:66:17:79:e7:de:14:
0d:91:a2:0f:89:22:62:cd:d9:df:57:29:db:56:c1:
89:8b:db:5b:1a:b4:98:ae:e6:f8:ac:6c:a9:aa:99:
83:0f:b3:1f:11:fe:41:7a:0c:13:37:d2:c9:e3:fe:
a3:fd:3e:6e:9f:ab:f5:e0:79:0f:39:1b:49:6c:4b:
3c:e4:95:90:86:6f:81:c7:69:b0:89:33:34:b6:09:
bc:1d:46:12:0a:85:f3:39:ac:5b:6e:01:7d:be:11:
b1:82:31:81:d3:38:a4:c5:64:f1:ac:05:1e:8a:fa:
c2:7e:62:ac:fb:ee:c7:20:3f:6f:a0:f3:21:df:d5:
f8:8e:6d:9b:db:fc:c6:e2:31:7b:9c:43:b4:fb:b4:
db:b3:37:81:9c:e6:96:0d:36:6b:d6:58:b1:9d:22:
8f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:59:CB:B7:55:D6:60:AD:F2:27:2A:BD:6A:96:4A:6C:39:5A:66:CE
X509v3 Authority Key Identifier:
keyid:1F:AA:CA:B8:E4:56:BB:29:19:79:A7:35:7A:70:24:F0:0B:EB:AA:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H6rKuORWuykZeac1enAk8AvrqvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/501fd3-a8cd-4e2d-9d32-2fb72a0aef6d/1/J1nLt1XWYK3yJyq9apZKbDlaZs4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/501fd3-a8cd-4e2d-9d32-2fb72a0aef6d/1/H6rKuORWuykZeac1enAk8AvrqvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:3b40::/36
Signature Algorithm: sha256WithRSAEncryption
36:33:09:ac:6b:a3:3b:aa:d2:b9:74:63:0d:7b:f8:99:b8:29:
be:54:47:f9:66:25:01:d5:44:d9:a7:37:fe:34:44:42:40:82:
bf:bf:af:95:79:00:bf:db:ea:de:73:43:a7:0a:c5:02:ee:28:
26:e2:73:68:8e:f1:bd:f4:75:15:e3:4b:11:7a:39:53:00:1b:
1e:17:1d:8c:08:a4:05:dc:ca:48:ca:d7:34:9f:5a:41:d6:cf:
c8:94:df:20:12:da:1f:f9:d3:2d:1a:ee:bc:77:0d:f6:d6:d7:
ec:01:0d:96:35:f7:d1:26:08:66:86:98:df:be:8e:a1:68:48:
d2:71:92:a4:82:53:4d:1d:7b:7d:64:85:9a:cb:ce:eb:22:1d:
1a:11:ab:fd:c6:e3:17:1e:1d:b4:92:89:39:ad:0b:2b:e0:ed:
eb:f2:87:15:dc:88:0c:25:7d:bc:8c:ae:d6:01:05:67:ec:9a:
ca:fb:af:f1:5d:c6:81:26:63:74:d3:e7:67:8f:ae:3f:fe:ad:
00:f5:a1:55:83:b3:df:fb:cd:e9:4b:ca:6b:22:c7:fe:df:70:
c6:8e:74:70:1c:fc:d4:8f:e1:b5:22:17:fd:2b:f4:a8:9f:85:
55:f5:b5:07:13:24:ed:15:81:65:16:f3:73:c0:13:54:fd:75:
fd:27:17:bc
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAY9fSMloHPRr0kzkkhWjryqEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmYWFjYWI4ZTQ1NmJiMjkxOTc5YTczNTdhNzAyNGYwMGJl
YmFhZjUwHhcNMjQwNTA5MjEzNTU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNzU5Y2JiNzU1ZDY2MGFkZjIyNzJhYmQ2YTk2NGE2YzM5NWE2NmNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5c1Em7aVuax6AjZnUk2c7xYMLJ4y
hiPp1DZQx+ulHlRT2XzDz6LxZZkWiBYmUaX4XA9je03Z+DMr0mHivr0scfHP0VqB
FH2bYRa7a5fk48bOHouZ/VqwRLFqWjfWIijfYkJmF3nn3hQNkaIPiSJizdnfVynb
VsGJi9tbGrSYrub4rGypqpmDD7MfEf5BegwTN9LJ4/6j/T5un6v14HkPORtJbEs8
5JWQhm+Bx2mwiTM0tgm8HUYSCoXzOaxbbgF9vhGxgjGB0zikxWTxrAUeivrCfmKs
++7HID9voPMh39X4jm2b2/zG4jF7nEO0+7TbszeBnOaWDTZr1lixnSKP2QIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFCdZy7dV1mCt8icqvWqWSmw5WmbOMB8GA1UdIwQY
MBaAFB+qyrjkVrspGXmnNXpwJPAL66r1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDZyS3VPUld1eWtaZWFjMWVuQWs4QXZycXZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My81MDFmZDMtYThjZC00ZTJkLTlkMzIt
MmZiNzJhMGFlZjZkLzEvSjFuTHQxWFdZSzN5SnlxOWFwWktiRGxhWnM0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My81MDFmZDMtYThjZC00ZTJkLTlkMzItMmZiNzJhMGFlZjZk
LzEvSDZyS3VPUld1eWtaZWFjMWVuQWs4QXZycXZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKhQ7QAAw
DQYJKoZIhvcNAQELBQADggEBADYzCaxrozuq0rl0Yw17+Jm4Kb5UR/lmJQHVRNmn
N/40REJAgr+/r5V5AL/b6t5zQ6cKxQLuKCbic2iO8b30dRXjSxF6OVMAGx4XHYwI
pAXcykjK1zSfWkHWz8iU3yAS2h/50y0a7rx3DfbW1+wBDZY199EmCGaGmN++jqFo
SNJxkqSCU00de31khZrLzusiHRoRq/3G4xceHbSSiTmtCyvg7evyhxXciAwlfbyM
rtYBBWfsmsr7r/FdxoEmY3TT52ePrj/+rQD1oVWDs9/7zelLymsix/7fcMaOdHAc
/NSP4bUiF/0r9KifhVX1tQcTJO0VgWUW83PAE1T9df0nF7w=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:54 2024 by rpki-client on console-ams.rpki-client.org