Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/9eTimV-mxqAtAedKcc6s_uXjz2k.roa
File: 9eTimV-mxqAtAedKcc6s_uXjz2k.roa (raw, json)
Hash identifier: l8dDYzJcIHlgweH/u4mqWzSaTtSB9b9SvjN/SMrTJNg=
Subject key identifier: F5:E4:E2:99:5F:A6:C6:A0:2D:01:E7:4A:71:CE:AC:FE:E5:E3:CF:69
Certificate issuer: /CN=8f2824c61357dc344bbdf35b83577459b9d3fc44
Certificate serial: 018BDCF076440AA7B032DD251A293BEE195D
Authority key identifier: 8F:28:24:C6:13:57:DC:34:4B:BD:F3:5B:83:57:74:59:B9:D3:FC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jygkxhNX3DRLvfNbg1d0WbnT_EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/9eTimV-mxqAtAedKcc6s_uXjz2k.roa
Signing time: Fri 17 Nov 2023 11:00:28 +0000
ROA not before: Fri 17 Nov 2023 11:00:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 2a00:4bc0:2300::/40 maxlen: 48
2a00:4bc0:2100::/40 maxlen: 48
2a00:4bc0:2400::/40 maxlen: 48
2a00:4bc0:2600::/40 maxlen: 48
2a00:4bc0:2000::/44 maxlen: 56
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:dc:f0:76:44:0a:a7:b0:32:dd:25:1a:29:3b:ee:19:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f2824c61357dc344bbdf35b83577459b9d3fc44
Validity
Not Before: Nov 17 11:00:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5e4e2995fa6c6a02d01e74a71ceacfee5e3cf69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:f8:17:01:0f:b0:78:a3:aa:e3:26:ea:a3:7e:
ad:d0:93:67:7d:f1:a1:03:d9:1d:0d:66:2b:d2:11:
8b:5d:eb:dc:c6:9d:81:5c:df:7a:a1:48:70:48:a4:
34:40:99:c4:54:9b:3f:c5:80:1a:59:8d:68:24:bb:
3d:4c:5d:43:68:66:00:60:35:83:60:58:de:5e:46:
db:a2:57:a3:8a:48:bb:1c:a7:c8:51:83:ec:9b:7f:
c9:d0:0d:a7:2c:79:e6:a0:1c:6b:3b:70:41:fc:22:
be:ca:7a:da:72:54:aa:74:fc:3d:fb:46:b8:bc:83:
f0:21:34:ed:f6:c4:50:41:96:55:8e:8c:1e:6f:7a:
c1:89:5d:e5:ff:58:22:7b:38:39:ba:41:38:4f:f2:
6c:2a:33:04:ba:e9:55:1d:67:20:5b:61:75:76:8d:
01:7b:25:26:68:d9:7c:f1:e0:77:e9:6a:d0:2e:b4:
75:6b:d9:66:72:6b:21:61:5b:00:56:1a:56:ad:1a:
ff:48:48:dc:c7:07:4d:a4:97:b5:90:9e:2c:41:1a:
d0:fe:6f:b9:b5:17:7f:7a:08:6d:bf:2e:50:c7:36:
bf:6d:12:27:63:1f:1b:f1:f8:d1:c5:de:76:55:25:
a1:aa:23:6a:26:7d:9d:4b:00:58:d3:4b:57:2a:c9:
49:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:E4:E2:99:5F:A6:C6:A0:2D:01:E7:4A:71:CE:AC:FE:E5:E3:CF:69
X509v3 Authority Key Identifier:
keyid:8F:28:24:C6:13:57:DC:34:4B:BD:F3:5B:83:57:74:59:B9:D3:FC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jygkxhNX3DRLvfNbg1d0WbnT_EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/9eTimV-mxqAtAedKcc6s_uXjz2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/652eb4-321c-48c0-9272-3ae711af034b/1/jygkxhNX3DRLvfNbg1d0WbnT_EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:4bc0:2000::/44
2a00:4bc0:2100::/40
2a00:4bc0:2300::-2a00:4bc0:24ff:ffff:ffff:ffff:ffff:ffff
2a00:4bc0:2600::/40
Signature Algorithm: sha256WithRSAEncryption
5a:2d:b0:38:ca:1a:92:8d:f7:eb:0d:e6:c1:c2:9c:33:3e:99:
05:ad:98:66:8d:f3:d8:62:07:2a:74:e8:70:92:21:d3:c1:5f:
fe:b2:e8:84:a8:a0:56:5c:ca:dd:a3:19:94:f1:eb:c2:17:69:
2e:f3:e2:25:f3:44:bc:21:14:72:c8:05:bb:10:4a:12:1e:d6:
9f:40:38:8f:8b:34:d8:16:78:06:c7:ab:4c:38:e1:e9:96:f1:
94:22:8b:14:04:25:5f:72:00:2b:a8:4a:51:2d:36:24:b4:38:
26:fd:d2:14:b9:09:dc:36:2d:2d:0e:0d:20:9c:1f:c6:0a:ff:
7f:79:e4:17:ac:f2:3f:d3:99:b9:ac:ad:f9:c5:26:90:e4:c6:
1f:5b:5a:e4:23:c9:4c:86:07:02:f7:5f:31:07:8f:d8:03:15:
9f:4f:79:87:68:e2:0b:8c:41:47:da:c0:1c:af:32:85:ec:24:
a5:6e:cb:f4:b2:9a:eb:89:5b:d1:ca:db:d5:12:f0:b7:90:f7:
50:93:a3:ea:eb:d1:83:20:fe:ae:8d:fe:cd:a4:cd:b9:c2:c9:
16:09:77:a5:0c:e6:c2:d7:0e:a2:d4:c4:1b:7d:d7:02:e1:82:
50:c3:42:0e:eb:60:bd:92:3d:bd:54:ac:87:02:a2:3f:29:ee:
8e:34:5e:63
-----BEGIN CERTIFICATE-----
MIIFIjCCBAqgAwIBAgISAYvc8HZECqewMt0lGik77hldMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhmMjgyNGM2MTM1N2RjMzQ0YmJkZjM1YjgzNTc3NDU5Yjlk
M2ZjNDQwHhcNMjMxMTE3MTEwMDI4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNWU0ZTI5OTVmYTZjNmEwMmQwMWU3NGE3MWNlYWNmZWU1ZTNjZjY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgfgXAQ+weKOq4ybqo36t0JNnffGh
A9kdDWYr0hGLXevcxp2BXN96oUhwSKQ0QJnEVJs/xYAaWY1oJLs9TF1DaGYAYDWD
YFjeXkbbolejiki7HKfIUYPsm3/J0A2nLHnmoBxrO3BB/CK+ynraclSqdPw9+0a4
vIPwITTt9sRQQZZVjoweb3rBiV3l/1giezg5ukE4T/JsKjMEuulVHWcgW2F1do0B
eyUmaNl88eB36WrQLrR1a9lmcmshYVsAVhpWrRr/SEjcxwdNpJe1kJ4sQRrQ/m+5
tRd/eghtvy5Qxza/bRInYx8b8fjRxd52VSWhqiNqJn2dSwBY00tXKslJDwIDAQAB
o4ICLjCCAiowHQYDVR0OBBYEFPXk4plfpsagLQHnSnHOrP7l489pMB8GA1UdIwQY
MBaAFI8oJMYTV9w0S73zW4NXdFm50/xEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvanlna3hoTlgzRFJMdmZOYmcxZDBXYm5UX0VRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS82NTJlYjQtMzIxYy00OGMwLTkyNzIt
M2FlNzExYWYwMzRiLzEvOWVUaW1WLW14cUF0QWVkS2NjNnNfdVhqejJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OS82NTJlYjQtMzIxYy00OGMwLTkyNzItM2FlNzExYWYwMzRi
LzEvanlna3hoTlgzRFJMdmZOYmcxZDBXYm5UX0VRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEQGCCsGAQUFBwEHAQH/BDUwMzAxBAIAAjArAwcEKgBLwCAA
AwYAKgBLwCEwEAMGACoAS8AjAwYAKgBLwCQDBgAqAEvAJjANBgkqhkiG9w0BAQsF
AAOCAQEAWi2wOMoako336w3mwcKcMz6ZBa2YZo3z2GIHKnTocJIh08Ff/rLohKig
VlzK3aMZlPHrwhdpLvPiJfNEvCEUcsgFuxBKEh7Wn0A4j4s02BZ4BserTDjh6Zbx
lCKLFAQlX3IAK6hKUS02JLQ4Jv3SFLkJ3DYtLQ4NIJwfxgr/f3nkF6zyP9OZuayt
+cUmkOTGH1ta5CPJTIYHAvdfMQeP2AMVn095h2jiC4xBR9rAHK8yhewkpW7L9LKa
64lb0crb1RLwt5D3UJOj6uvRgyD+ro3+zaTNucLJFgl3pQzmwtcOotTEG33XAuGC
UMNCDutgvZI9vVSshwKiPynujjReYw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:46 2024 by rpki-client on console-fra.rpki-client.org