Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/d19f2d-9659-48b1-b1e8-de13a552df63/1/2S_xjdt22TZw-QACC1Nei-k48SA.roa
File: 2S_xjdt22TZw-QACC1Nei-k48SA.roa (raw, json)
Hash identifier: 16grrqCLxj/4xFnvOZ5K/UhP9pQHVOUSuXVu4vhHCvM=
Subject key identifier: D9:2F:F1:8D:DB:76:D9:36:70:F9:00:02:0B:53:5E:8B:E9:38:F1:20
Certificate issuer: /CN=5140b5cb5986084126f68d6032316d3b1b57696e
Certificate serial: 018CC50128EB3D86B4C65A0303EBEABAF793
Authority key identifier: 51:40:B5:CB:59:86:08:41:26:F6:8D:60:32:31:6D:3B:1B:57:69:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UUC1y1mGCEEm9o1gMjFtOxtXaW4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/d19f2d-9659-48b1-b1e8-de13a552df63/1/2S_xjdt22TZw-QACC1Nei-k48SA.roa
Signing time: Mon 01 Jan 2024 12:30:36 +0000
ROA not before: Mon 01 Jan 2024 12:30:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198889
IP address blocks: 2a06:1b83::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 15 Feb 2024 19:53:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:28:eb:3d:86:b4:c6:5a:03:03:eb:ea:ba:f7:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5140b5cb5986084126f68d6032316d3b1b57696e
Validity
Not Before: Jan 1 12:30:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d92ff18ddb76d93670f900020b535e8be938f120
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:37:3f:d4:dc:9a:4b:06:66:57:23:38:c6:12:
1e:bc:aa:f5:5a:2c:53:9f:fd:df:71:4d:02:63:e8:
0e:6a:a7:28:61:0d:04:7c:1c:52:34:91:b5:76:e0:
0e:e8:e4:c4:80:6f:16:8d:e2:cf:51:ac:53:32:f4:
68:50:3d:6d:7c:d8:b9:b5:6a:c4:43:78:65:2d:dd:
02:09:c4:bb:4c:23:31:ba:7f:36:ee:0b:df:95:47:
c7:03:63:5a:7d:41:72:df:de:55:06:5f:76:0a:03:
98:b2:db:83:21:4c:23:ad:d5:51:29:90:6b:9b:95:
2e:8d:0d:4a:f0:cf:73:59:8b:7b:5a:80:b7:0c:5c:
6f:44:7f:53:28:c3:19:6b:51:fc:23:01:5b:f3:45:
d5:6f:ec:81:71:7a:f4:56:98:8b:5b:42:f3:0b:62:
8d:45:b2:a9:26:5d:b8:9f:5c:2d:61:eb:65:37:4a:
95:95:ab:a8:00:23:52:4b:8e:8d:73:3e:bc:a7:7a:
72:b7:de:76:ca:a0:69:c0:76:9e:9f:04:89:d4:22:
f0:5e:e6:59:d9:1f:fe:b6:28:03:7c:81:49:36:98:
e0:a6:da:a7:06:48:28:23:a0:40:90:15:c9:ba:76:
c1:8c:a8:b0:ac:10:a7:ee:ed:01:ce:7c:d2:c4:f1:
e2:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:2F:F1:8D:DB:76:D9:36:70:F9:00:02:0B:53:5E:8B:E9:38:F1:20
X509v3 Authority Key Identifier:
keyid:51:40:B5:CB:59:86:08:41:26:F6:8D:60:32:31:6D:3B:1B:57:69:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UUC1y1mGCEEm9o1gMjFtOxtXaW4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/d19f2d-9659-48b1-b1e8-de13a552df63/1/2S_xjdt22TZw-QACC1Nei-k48SA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/d19f2d-9659-48b1-b1e8-de13a552df63/1/UUC1y1mGCEEm9o1gMjFtOxtXaW4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1b83::/32
Signature Algorithm: sha256WithRSAEncryption
9b:23:a8:80:e9:25:9a:4f:be:e2:49:47:e3:ca:c4:f0:85:9e:
26:a7:e1:9b:98:7d:19:86:ac:b7:e6:0e:8a:ed:e1:fd:81:93:
8a:84:69:c8:c4:97:e5:e8:0e:5d:d3:01:ef:d6:68:d5:98:c8:
11:73:fb:44:1c:cb:87:e6:97:e0:82:29:53:f1:f4:f4:a8:34:
59:77:d5:52:a3:e6:85:d6:17:4e:42:38:3c:ed:e0:f3:e5:13:
4b:1b:5f:36:3f:b1:0d:b0:09:f0:85:5a:bc:90:6b:ef:ee:27:
69:c9:60:5d:b5:8c:58:85:2b:58:9b:ca:13:55:16:d0:50:cb:
82:88:7a:5a:d7:81:cc:7b:cf:1c:93:6b:79:67:a1:ba:19:81:
ed:61:f5:1b:dd:71:24:58:e4:a4:bc:ca:7e:96:bf:71:b4:49:
f4:72:32:08:d7:10:91:7b:79:7e:38:c0:f2:3d:df:ec:f2:0c:
b4:7c:cd:b1:fc:c3:c2:0f:61:bf:b7:31:d1:43:b9:57:c3:13:
fe:81:04:8e:80:f4:a6:c5:a5:c6:8b:c2:13:29:fb:21:1d:04:
68:25:5c:f7:70:97:e4:cf:0d:b4:c0:ba:04:2a:7a:9e:04:6e:
7a:f7:b5:29:ba:06:fc:fe:b4:85:40:ad:3f:a1:3b:13:1c:3c:
5c:b2:4c:30
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYzFASjrPYa0xloDA+vquveTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxNDBiNWNiNTk4NjA4NDEyNmY2OGQ2MDMyMzE2ZDNiMWI1
NzY5NmUwHhcNMjQwMTAxMTIzMDM2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkOTJmZjE4ZGRiNzZkOTM2NzBmOTAwMDIwYjUzNWU4YmU5MzhmMTIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiTc/1NyaSwZmVyM4xhIevKr1WixT
n/3fcU0CY+gOaqcoYQ0EfBxSNJG1duAO6OTEgG8WjeLPUaxTMvRoUD1tfNi5tWrE
Q3hlLd0CCcS7TCMxun827gvflUfHA2NafUFy395VBl92CgOYstuDIUwjrdVRKZBr
m5UujQ1K8M9zWYt7WoC3DFxvRH9TKMMZa1H8IwFb80XVb+yBcXr0VpiLW0LzC2KN
RbKpJl24n1wtYetlN0qVlauoACNSS46Ncz68p3pyt952yqBpwHaenwSJ1CLwXuZZ
2R/+tigDfIFJNpjgptqnBkgoI6BAkBXJunbBjKiwrBCn7u0BznzSxPHiaQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFNkv8Y3bdtk2cPkAAgtTXovpOPEgMB8GA1UdIwQY
MBaAFFFAtctZhghBJvaNYDIxbTsbV2luMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVVDMXkxbUdDRUVtOW8xZ01qRnRPeHRYYVc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9kMTlmMmQtOTY1OS00OGIxLWIxZTgt
ZGUxM2E1NTJkZjYzLzEvMlNfeGpkdDIyVFp3LVFBQ0MxTmVpLWs0OFNBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy9kMTlmMmQtOTY1OS00OGIxLWIxZTgtZGUxM2E1NTJkZjYz
LzEvVVVDMXkxbUdDRUVtOW8xZ01qRnRPeHRYYVc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgYbgzAN
BgkqhkiG9w0BAQsFAAOCAQEAmyOogOklmk++4klH48rE8IWeJqfhm5h9GYast+YO
iu3h/YGTioRpyMSX5egOXdMB79Zo1ZjIEXP7RBzLh+aX4IIpU/H09Kg0WXfVUqPm
hdYXTkI4PO3g8+UTSxtfNj+xDbAJ8IVavJBr7+4naclgXbWMWIUrWJvKE1UW0FDL
goh6WteBzHvPHJNreWehuhmB7WH1G91xJFjkpLzKfpa/cbRJ9HIyCNcQkXt5fjjA
8j3f7PIMtHzNsfzDwg9hv7cx0UO5V8MT/oEEjoD0psWlxovCEyn7IR0EaCVc93CX
5M8NtMC6BCp6ngRueve1KboG/P60hUCtP6E7Exw8XLJMMA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:18 2024 by rpki-client on console-fra.rpki-client.org