Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/ea9402-be4d-49f3-81fb-4df728c58d17/1/ZfvgpYShks_yLjZKnGTOvzNl5Kg.roa
File: ZfvgpYShks_yLjZKnGTOvzNl5Kg.roa (raw, json)
Hash identifier: 0hFf+Gjm+4TgRn3G1Yk3hyRd7E83LF49mY9YQ5uXEM4=
Subject key identifier: 65:FB:E0:A5:84:A1:92:CF:F2:2E:36:4A:9C:64:CE:BF:33:65:E4:A8
Certificate issuer: /CN=e938f9182b7da44003591eeae2560f8451b3393a
Certificate serial: 01915C79F77A30AE52E860E193A51DAC3560
Authority key identifier: E9:38:F9:18:2B:7D:A4:40:03:59:1E:EA:E2:56:0F:84:51:B3:39:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6Tj5GCt9pEADWR7q4lYPhFGzOTo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/ea9402-be4d-49f3-81fb-4df728c58d17/1/ZfvgpYShks_yLjZKnGTOvzNl5Kg.roa
Signing time: Fri 16 Aug 2024 18:36:22 +0000
ROA not before: Fri 16 Aug 2024 18:36:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49556
IP address blocks: 2a13:5ac0::/38 maxlen: 38
Validation: Failed, certificate revoked on Tue 27 Aug 2024 10:39:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:5c:79:f7:7a:30:ae:52:e8:60:e1:93:a5:1d:ac:35:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e938f9182b7da44003591eeae2560f8451b3393a
Validity
Not Before: Aug 16 18:36:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=65fbe0a584a192cff22e364a9c64cebf3365e4a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e9:98:df:80:92:5e:e4:c8:2a:47:54:55:36:
1f:b9:20:f4:58:f0:46:82:11:ec:97:76:c2:ba:a5:
df:c0:ac:a5:a5:0f:b3:d7:22:8e:a5:cd:b6:c4:19:
38:54:3a:34:a2:fe:50:80:22:51:56:96:9d:7c:74:
b4:35:b6:ee:89:ce:8d:db:53:7a:ae:4b:f0:d4:41:
1c:d9:01:de:ce:ec:59:0f:48:21:d4:cd:92:20:f9:
8d:26:c2:aa:4d:de:14:39:f4:d7:07:c1:16:eb:5f:
92:bf:12:84:49:36:49:97:6c:82:22:86:94:03:7e:
d2:69:d4:a5:fe:07:a7:a0:bb:76:30:66:48:5b:62:
5c:fe:90:c9:22:4e:92:bf:39:d2:df:d5:a4:58:16:
7e:41:d4:3b:50:c8:e3:4d:09:35:43:81:bb:97:4c:
3f:11:a8:43:e3:98:df:2d:ed:8c:46:ea:a9:fa:5e:
90:8d:40:42:5a:61:08:60:31:f7:a8:41:99:cd:b5:
74:1f:6b:3e:71:2a:85:48:1d:3e:32:88:28:54:0e:
28:da:0f:9b:63:25:43:91:78:05:9f:c6:67:0c:00:
5a:f5:3e:9c:61:72:f8:18:3a:a1:d3:8b:f1:3b:c3:
0b:22:cb:47:32:e3:f9:93:17:ad:e3:fb:38:d6:e0:
0a:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:FB:E0:A5:84:A1:92:CF:F2:2E:36:4A:9C:64:CE:BF:33:65:E4:A8
X509v3 Authority Key Identifier:
keyid:E9:38:F9:18:2B:7D:A4:40:03:59:1E:EA:E2:56:0F:84:51:B3:39:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6Tj5GCt9pEADWR7q4lYPhFGzOTo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/ea9402-be4d-49f3-81fb-4df728c58d17/1/ZfvgpYShks_yLjZKnGTOvzNl5Kg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/ea9402-be4d-49f3-81fb-4df728c58d17/1/6Tj5GCt9pEADWR7q4lYPhFGzOTo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:5ac0::/38
Signature Algorithm: sha256WithRSAEncryption
49:47:54:9f:16:7a:b6:9a:37:46:e8:60:24:5f:1c:9c:33:30:
46:12:e9:b0:33:a6:c5:08:34:f7:6d:26:4c:44:99:66:4c:f1:
cc:61:69:ee:26:a1:62:f0:b5:0d:73:2c:94:2e:c7:4a:9b:a8:
df:c9:72:c4:32:ff:ba:f1:61:18:29:0e:39:42:f3:cb:87:a7:
8f:0f:35:9d:39:84:24:b2:c8:9a:80:60:c1:dd:b4:a9:d7:62:
64:49:5f:e1:69:3a:69:3d:f3:68:e8:5b:8a:89:e9:3b:a2:95:
15:26:e6:9f:1f:c4:ce:73:85:9f:95:af:0a:4e:d5:67:60:c6:
4e:9c:1c:f4:45:35:38:c7:28:82:ee:51:bf:e7:94:b6:0e:10:
df:8b:f2:7c:ca:56:80:0b:0a:5e:22:92:6d:47:cb:9a:6f:32:
f9:ba:86:35:e7:b9:c4:b4:03:d2:58:ab:61:07:71:c3:5d:5f:
f8:01:4e:00:38:7e:3a:5d:2c:55:9a:e8:7d:e7:c6:5d:8a:63:
67:21:c5:71:41:59:c1:70:01:9b:ac:86:29:58:66:44:ae:7b:
69:8c:fd:c9:46:f5:37:42:5b:80:e9:5e:3b:37:58:29:af:44:
52:a0:2e:a2:6f:41:67:68:ae:fb:c7:f5:35:2d:af:3c:c2:3e:
08:5f:87:0b
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAZFcefd6MK5S6GDhk6UdrDVgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5MzhmOTE4MmI3ZGE0NDAwMzU5MWVlYWUyNTYwZjg0NTFi
MzM5M2EwHhcNMjQwODE2MTgzNjIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NWZiZTBhNTg0YTE5MmNmZjIyZTM2NGE5YzY0Y2ViZjMzNjVlNGE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt+mY34CSXuTIKkdUVTYfuSD0WPBG
ghHsl3bCuqXfwKylpQ+z1yKOpc22xBk4VDo0ov5QgCJRVpadfHS0Nbbuic6N21N6
rkvw1EEc2QHezuxZD0gh1M2SIPmNJsKqTd4UOfTXB8EW61+SvxKESTZJl2yCIoaU
A37SadSl/genoLt2MGZIW2Jc/pDJIk6SvznS39WkWBZ+QdQ7UMjjTQk1Q4G7l0w/
EahD45jfLe2MRuqp+l6QjUBCWmEIYDH3qEGZzbV0H2s+cSqFSB0+MogoVA4o2g+b
YyVDkXgFn8ZnDABa9T6cYXL4GDqh04vxO8MLIstHMuP5kxet4/s41uAKtwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFGX74KWEoZLP8i42Spxkzr8zZeSoMB8GA1UdIwQY
MBaAFOk4+RgrfaRAA1ke6uJWD4RRszk6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNlRqNUdDdDlwRUFEV1I3cTRsWVBoRkd6T1RvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9lYTk0MDItYmU0ZC00OWYzLTgxZmIt
NGRmNzI4YzU4ZDE3LzEvWmZ2Z3BZU2hrc195TGpaS25HVE92ek5sNUtnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi9lYTk0MDItYmU0ZC00OWYzLTgxZmItNGRmNzI4YzU4ZDE3
LzEvNlRqNUdDdDlwRUFEV1I3cTRsWVBoRkd6T1RvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYCKhNawAAw
DQYJKoZIhvcNAQELBQADggEBAElHVJ8WeraaN0boYCRfHJwzMEYS6bAzpsUINPdt
JkxEmWZM8cxhae4moWLwtQ1zLJQux0qbqN/JcsQy/7rxYRgpDjlC88uHp48PNZ05
hCSyyJqAYMHdtKnXYmRJX+FpOmk982joW4qJ6TuilRUm5p8fxM5zhZ+VrwpO1Wdg
xk6cHPRFNTjHKILuUb/nlLYOEN+L8nzKVoALCl4ikm1Hy5pvMvm6hjXnucS0A9JY
q2EHccNdX/gBTgA4fjpdLFWa6H3nxl2KY2chxXFBWcFwAZushilYZkSue2mM/clG
9TdCW4DpXjs3WCmvRFKgLqJvQWdorvvH9TUtrzzCPghfhws=
-----END CERTIFICATE-----
Generated at Tue Aug 27 13:37:28 2024 by rpki-client on console-fra.rpki-client.org