Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/3T1kdSeg_ipNm5u4VIHzSocNnfU.roa
File: 3T1kdSeg_ipNm5u4VIHzSocNnfU.roa (raw, json)
Hash identifier: eT4WXBuNkqu6d9DuTqqk7ojaABROU5weaLiah+s7i5M=
Subject key identifier: DD:3D:64:75:27:A0:FE:2A:4D:9B:9B:B8:54:81:F3:4A:87:0D:9D:F5
Certificate issuer: /CN=2901d76431c6e873d3c44730571e1e50d602057c
Certificate serial: 018CC794F9B46E0EBE9E45FF2AB77F94CDEE
Authority key identifier: 29:01:D7:64:31:C6:E8:73:D3:C4:47:30:57:1E:1E:50:D6:02:05:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQHXZDHG6HPTxEcwVx4eUNYCBXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/3T1kdSeg_ipNm5u4VIHzSocNnfU.roa
Signing time: Tue 02 Jan 2024 00:31:18 +0000
ROA not before: Tue 02 Jan 2024 00:31:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212037
IP address blocks: 2001:67c:1680::/48 maxlen: 128
Validation: Failed, certificate revoked on Thu 31 Oct 2024 08:40:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:f9:b4:6e:0e:be:9e:45:ff:2a:b7:7f:94:cd:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2901d76431c6e873d3c44730571e1e50d602057c
Validity
Not Before: Jan 2 00:31:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dd3d647527a0fe2a4d9b9bb85481f34a870d9df5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:08:ad:60:bd:41:06:0e:e5:3f:30:6f:53:4a:
d5:af:2f:c2:0f:a2:a2:9d:a7:9b:c3:bd:fd:e9:b9:
e4:f5:80:50:fa:bc:32:1c:58:f3:5f:6b:ba:4c:3b:
ce:ec:cb:38:f7:a0:2a:b2:2e:0e:ce:81:06:62:0e:
83:1b:94:46:d4:76:a5:6b:4f:84:04:ed:30:62:cc:
2a:ae:be:06:14:94:6d:da:86:d0:9c:00:7a:aa:50:
85:2a:b8:f7:6c:2c:40:79:f5:81:dd:c4:d8:b6:88:
4d:03:c1:16:2e:5d:96:f2:49:ad:dc:fa:05:67:fc:
29:c5:94:67:fb:db:b6:85:c4:44:43:b6:e3:98:52:
a3:22:3c:61:da:59:26:50:8c:89:2e:ff:bc:bd:af:
7a:1c:72:bd:3b:c6:09:57:91:85:26:9d:80:36:70:
5f:3c:a9:f6:a0:71:ff:61:fd:f0:5c:fc:79:a9:96:
ec:2a:1e:9b:9b:c5:04:08:3d:5a:2c:9a:9c:03:66:
13:49:c7:14:09:5a:0d:be:18:cd:2a:27:b0:82:19:
89:23:fe:54:dc:f3:8d:3b:27:12:26:24:6b:e0:78:
b5:2b:14:86:0b:62:ad:20:35:36:d3:83:20:25:c5:
04:51:d5:de:b6:4b:96:57:32:bc:90:86:a0:d7:53:
b0:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:3D:64:75:27:A0:FE:2A:4D:9B:9B:B8:54:81:F3:4A:87:0D:9D:F5
X509v3 Authority Key Identifier:
keyid:29:01:D7:64:31:C6:E8:73:D3:C4:47:30:57:1E:1E:50:D6:02:05:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQHXZDHG6HPTxEcwVx4eUNYCBXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/3T1kdSeg_ipNm5u4VIHzSocNnfU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1680::/48
Signature Algorithm: sha256WithRSAEncryption
00:82:2b:8b:d4:24:b7:33:de:e4:49:be:da:8f:c0:90:d5:c6:
48:12:01:67:0b:5b:07:cf:27:74:47:45:2d:43:c4:cf:ee:be:
4d:43:f4:bd:95:da:13:5d:13:c9:f8:0e:b5:18:ae:55:d5:87:
e9:64:0b:6a:8f:eb:12:2a:fd:e0:14:92:0f:7a:1e:4f:76:ad:
ba:ea:f6:ef:cc:da:ce:17:10:8c:3f:51:cc:bd:81:75:dc:d4:
ab:a4:fb:35:1b:cd:4a:cb:9e:59:ae:2d:63:d8:d4:b6:c7:eb:
d4:3f:3e:05:1a:c4:9f:f7:21:af:ad:4f:15:d8:3a:14:ff:a3:
7d:39:a8:71:d5:84:d9:83:c4:22:e3:82:33:f1:1d:f9:44:13:
b2:5e:95:fe:fa:dc:c2:2b:01:32:df:30:a1:c2:fb:c5:c6:6c:
b2:37:86:68:aa:74:83:32:22:de:1d:59:d9:36:2e:64:14:e1:
4a:29:a2:05:42:4f:db:7a:ee:b9:e6:7a:a7:28:eb:37:30:32:
9a:65:7f:18:3a:af:b4:6f:a8:bf:79:e1:54:d8:9c:6f:55:69:
26:0e:8e:9a:2d:31:3e:8a:6e:7d:d2:97:8b:dd:7b:07:25:0b:
31:b4:25:14:22:93:14:9a:d0:41:a4:47:1b:61:fd:8f:de:30:
1a:fa:67:3b
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYzHlPm0bg6+nkX/Krd/lM3uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5MDFkNzY0MzFjNmU4NzNkM2M0NDczMDU3MWUxZTUwZDYw
MjA1N2MwHhcNMjQwMTAyMDAzMTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZDNkNjQ3NTI3YTBmZTJhNGQ5YjliYjg1NDgxZjM0YTg3MGQ5ZGY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnwitYL1BBg7lPzBvU0rVry/CD6Ki
naebw7396bnk9YBQ+rwyHFjzX2u6TDvO7Ms496Aqsi4OzoEGYg6DG5RG1Hala0+E
BO0wYswqrr4GFJRt2obQnAB6qlCFKrj3bCxAefWB3cTYtohNA8EWLl2W8kmt3PoF
Z/wpxZRn+9u2hcREQ7bjmFKjIjxh2lkmUIyJLv+8va96HHK9O8YJV5GFJp2ANnBf
PKn2oHH/Yf3wXPx5qZbsKh6bm8UECD1aLJqcA2YTSccUCVoNvhjNKiewghmJI/5U
3PONOycSJiRr4Hi1KxSGC2KtIDU204MgJcUEUdXetkuWVzK8kIag11OwdwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFN09ZHUnoP4qTZubuFSB80qHDZ31MB8GA1UdIwQY
MBaAFCkB12Qxxuhz08RHMFceHlDWAgV8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1FIWFpESEc2SFBUeEVjd1Z4NGVVTllDQlh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS8wNWMzYTEtYzhmZS00MGZmLTljNTIt
M2U2ZjAzMjQ0MTBhLzEvM1Qxa2RTZWdfaXBObTV1NFZJSHpTb2NObmZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS8wNWMzYTEtYzhmZS00MGZmLTljNTItM2U2ZjAzMjQ0MTBh
LzEvS1FIWFpESEc2SFBUeEVjd1Z4NGVVTllDQlh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfBaA
MA0GCSqGSIb3DQEBCwUAA4IBAQAAgiuL1CS3M97kSb7aj8CQ1cZIEgFnC1sHzyd0
R0UtQ8TP7r5NQ/S9ldoTXRPJ+A61GK5V1YfpZAtqj+sSKv3gFJIPeh5Pdq266vbv
zNrOFxCMP1HMvYF13NSrpPs1G81Ky55Zri1j2NS2x+vUPz4FGsSf9yGvrU8V2DoU
/6N9Oahx1YTZg8Qi44Iz8R35RBOyXpX++tzCKwEy3zChwvvFxmyyN4ZoqnSDMiLe
HVnZNi5kFOFKKaIFQk/beu655nqnKOs3MDKaZX8YOq+0b6i/eeFU2JxvVWkmDo6a
LTE+im590peL3XsHJQsxtCUUIpMUmtBBpEcbYf2P3jAa+mc7
-----END CERTIFICATE-----
Generated at Thu Oct 31 11:02:22 2024 by rpki-client on console-ams.rpki-client.org