Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/nlR0yOegp_cUAntZRxCwf2mc5_o.roa
File: nlR0yOegp_cUAntZRxCwf2mc5_o.roa (raw, json)
Hash identifier: hc4p/1loSltqycTgEt7++ecAEncQGpfp7YNFNiTlxAM=
Subject key identifier: 9E:54:74:C8:E7:A0:A7:F7:14:02:7B:59:47:10:B0:7F:69:9C:E7:FA
Certificate issuer: /CN=5ae8c78f161397ae1dbd0ac322584f62fb740097
Certificate serial: 01856E264EDE6B034D9774F34E4F16017500
Authority key identifier: 5A:E8:C7:8F:16:13:97:AE:1D:BD:0A:C3:22:58:4F:62:FB:74:00:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WujHjxYTl64dvQrDIlhPYvt0AJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/nlR0yOegp_cUAntZRxCwf2mc5_o.roa
Signing time: Sun 01 Jan 2023 16:24:42 +0000
ROA not before: Sun 01 Jan 2023 16:24:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57651
IP address blocks: 2001:78c::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:4e:de:6b:03:4d:97:74:f3:4e:4f:16:01:75:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ae8c78f161397ae1dbd0ac322584f62fb740097
Validity
Not Before: Jan 1 16:24:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9e5474c8e7a0a7f714027b594710b07f699ce7fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:86:21:bd:e7:56:71:0a:da:b8:94:50:5b:04:
eb:30:f0:ea:49:76:fe:07:f5:64:06:f2:3d:9e:59:
31:df:7a:9e:5a:1f:3c:72:8d:64:f7:7a:88:a8:93:
bf:96:59:32:c6:e2:b3:5e:59:d6:42:21:af:df:ff:
34:a0:d0:76:b7:99:d7:f1:54:44:50:12:a9:2f:e9:
df:e5:20:f8:09:5d:59:92:ab:ef:9a:f8:5b:d5:6b:
a5:f4:11:87:7f:bf:19:78:f8:61:b9:d3:5d:0c:d3:
70:7b:75:f1:7c:d4:23:19:c5:b4:cd:79:05:ef:3e:
b7:ae:fe:86:1f:ef:71:28:24:52:d1:05:c8:fe:53:
f2:2c:59:f0:6a:29:57:72:27:67:da:17:57:70:ec:
1e:ab:cb:1a:67:f2:cd:1a:46:e1:33:c6:fa:88:60:
0a:11:ed:21:f8:38:0d:4e:9f:74:97:f4:79:81:9b:
eb:1f:76:e8:dc:7d:bd:1b:07:a0:0a:42:ba:ef:b3:
cf:d8:17:99:3e:15:71:5c:39:0d:ce:9d:26:e1:30:
5d:e5:ee:dc:55:f3:99:31:1e:7e:8c:32:58:29:cb:
89:45:fd:da:57:41:a9:14:eb:e1:7e:34:cd:53:0a:
72:1e:d5:3d:87:2e:58:3e:9f:42:c2:d2:4d:10:d4:
6b:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:54:74:C8:E7:A0:A7:F7:14:02:7B:59:47:10:B0:7F:69:9C:E7:FA
X509v3 Authority Key Identifier:
keyid:5A:E8:C7:8F:16:13:97:AE:1D:BD:0A:C3:22:58:4F:62:FB:74:00:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WujHjxYTl64dvQrDIlhPYvt0AJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/nlR0yOegp_cUAntZRxCwf2mc5_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/4d27bb-f85c-4bfd-b1c3-47bcd39c3d86/1/WujHjxYTl64dvQrDIlhPYvt0AJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:78c::/32
Signature Algorithm: sha256WithRSAEncryption
6a:c6:5c:b6:26:95:23:01:e7:4d:fe:97:bf:30:e9:0b:bc:23:
66:6e:91:fc:2d:8f:7d:80:cf:0d:39:e7:37:d4:d7:e0:25:76:
f1:f4:77:6e:3c:65:bc:0e:32:db:cf:ea:b6:63:0b:4e:54:48:
9a:ed:fa:49:69:13:df:42:31:78:56:0a:ae:df:18:ab:b2:3b:
3a:79:94:9e:28:f6:03:e7:f5:20:26:c5:e4:a9:02:27:6d:5f:
42:5a:c5:ce:9f:95:58:33:4b:d1:23:87:79:d2:3f:bd:67:98:
20:9e:4e:5d:14:31:4d:af:11:53:5e:a2:54:2d:c9:bd:87:8e:
81:74:d4:52:e1:2a:d8:1a:21:7c:36:5c:fd:ca:47:f3:46:89:
08:26:22:5e:fb:f0:5d:ad:ba:2b:81:64:17:6f:c6:82:2e:ac:
c3:ac:67:f8:69:cc:f6:af:a0:bb:da:a0:3f:31:53:c3:d3:1f:
1b:ef:cd:cb:8a:97:f0:c0:3e:bc:d1:3c:1f:1e:bb:7d:9b:20:
af:a2:5b:24:41:c9:98:44:1a:f7:61:68:64:a3:49:e1:af:10:
9b:65:e9:b0:f5:52:8a:c6:71:72:4d:87:93:22:55:19:2c:b7:
18:6d:8a:5b:47:23:f2:66:25:ed:56:8e:da:94:86:ef:ed:8f:
22:48:a9:72
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVuJk7eawNNl3TzTk8WAXUAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVhZThjNzhmMTYxMzk3YWUxZGJkMGFjMzIyNTg0ZjYyZmI3
NDAwOTcwHhcNMjMwMTAxMTYyNDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZTU0NzRjOGU3YTBhN2Y3MTQwMjdiNTk0NzEwYjA3ZjY5OWNlN2ZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq4YhvedWcQrauJRQWwTrMPDqSXb+
B/VkBvI9nlkx33qeWh88co1k93qIqJO/llkyxuKzXlnWQiGv3/80oNB2t5nX8VRE
UBKpL+nf5SD4CV1Zkqvvmvhb1Wul9BGHf78ZePhhudNdDNNwe3XxfNQjGcW0zXkF
7z63rv6GH+9xKCRS0QXI/lPyLFnwailXcidn2hdXcOweq8saZ/LNGkbhM8b6iGAK
Ee0h+DgNTp90l/R5gZvrH3bo3H29GwegCkK677PP2BeZPhVxXDkNzp0m4TBd5e7c
VfOZMR5+jDJYKcuJRf3aV0GpFOvhfjTNUwpyHtU9hy5YPp9CwtJNENRrmQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFJ5UdMjnoKf3FAJ7WUcQsH9pnOf6MB8GA1UdIwQY
MBaAFFrox48WE5euHb0KwyJYT2L7dACXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV3VqSGp4WVRsNjRkdlFyRElsaFBZdnQwQUpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni80ZDI3YmItZjg1Yy00YmZkLWIxYzMt
NDdiY2QzOWMzZDg2LzEvbmxSMHlPZWdwX2NVQW50WlJ4Q3dmMm1jNV9vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni80ZDI3YmItZjg1Yy00YmZkLWIxYzMtNDdiY2QzOWMzZDg2
LzEvV3VqSGp4WVRsNjRkdlFyRElsaFBZdnQwQUpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAIAEHjDAN
BgkqhkiG9w0BAQsFAAOCAQEAasZctiaVIwHnTf6XvzDpC7wjZm6R/C2PfYDPDTnn
N9TX4CV28fR3bjxlvA4y28/qtmMLTlRImu36SWkT30IxeFYKrt8Yq7I7OnmUnij2
A+f1ICbF5KkCJ21fQlrFzp+VWDNL0SOHedI/vWeYIJ5OXRQxTa8RU16iVC3JvYeO
gXTUUuEq2BohfDZc/cpH80aJCCYiXvvwXa26K4FkF2/Ggi6sw6xn+GnM9q+gu9qg
PzFTw9MfG+/Ny4qX8MA+vNE8Hx67fZsgr6JbJEHJmEQa92FoZKNJ4a8Qm2XpsPVS
isZxck2HkyJVGSy3GG2KW0cj8mYl7VaO2pSG7+2PIkipcg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:28 2024 by rpki-client on console-ams.rpki-client.org