Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/DiLpmjfqQdpk6mMwxSmHu0vr_Yo.roa
File: DiLpmjfqQdpk6mMwxSmHu0vr_Yo.roa (raw, json)
Hash identifier: PHIpZ6AVDz683ulHKWD7ZiIZ1ZvnBqHcHruNJt/niTc=
Subject key identifier: 0E:22:E9:9A:37:EA:41:DA:64:EA:63:30:C5:29:87:BB:4B:EB:FD:8A
Certificate issuer: /CN=ea2d102b6112b0d9a8b8eebac4b97c819f97c606
Certificate serial: 01856CE5F656D843A862D9C9834F327F3C34
Authority key identifier: EA:2D:10:2B:61:12:B0:D9:A8:B8:EE:BA:C4:B9:7C:81:9F:97:C6:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6i0QK2ESsNmouO66xLl8gZ-XxgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/DiLpmjfqQdpk6mMwxSmHu0vr_Yo.roa
Signing time: Sun 01 Jan 2023 10:34:48 +0000
ROA not before: Sun 01 Jan 2023 10:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 38042
IP address blocks: 2a13:2200::/29 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e5:f6:56:d8:43:a8:62:d9:c9:83:4f:32:7f:3c:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea2d102b6112b0d9a8b8eebac4b97c819f97c606
Validity
Not Before: Jan 1 10:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e22e99a37ea41da64ea6330c52987bb4bebfd8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:01:c2:cd:60:12:2a:1d:83:72:f2:a4:6a:a5:
c1:c8:58:60:b8:16:a0:ea:77:1f:ae:69:50:b6:4d:
2b:54:1c:69:4c:24:60:36:6b:79:5d:9d:26:a5:d2:
df:1c:58:62:fb:a3:ab:6b:b3:5e:ab:5b:3a:21:2d:
19:39:0a:bc:22:dc:66:80:07:0a:bc:b4:9d:1b:fa:
4f:f1:fe:e2:1c:57:25:4b:a6:10:9a:70:54:8a:c1:
12:79:5f:7b:cd:0f:bd:b8:0c:14:eb:a0:a8:44:f4:
f9:d3:64:27:b6:2b:64:2d:3b:53:1d:06:3a:7c:fe:
72:02:12:3c:06:a5:9b:f4:c2:57:f1:d6:e1:e4:f2:
a9:3f:ee:d1:bf:a3:9e:1f:3e:fe:bf:15:c5:d9:db:
d6:d9:e8:ad:2b:fa:66:b3:89:a7:15:34:9a:59:38:
c0:a7:ef:08:f9:87:8f:fc:4a:a2:a5:ae:de:0e:a6:
63:a9:7f:2b:5e:a9:8e:5e:dd:20:0a:01:54:ca:48:
79:5e:97:e2:ce:e6:f5:47:77:24:f5:1f:b0:9a:e2:
fc:82:1e:46:7b:08:58:8d:1a:03:18:13:fe:49:13:
8c:67:54:6d:24:95:42:d9:b1:b3:3d:a5:83:12:6a:
dc:f6:78:3d:1e:14:54:01:2f:24:9d:b3:42:38:08:
c8:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:22:E9:9A:37:EA:41:DA:64:EA:63:30:C5:29:87:BB:4B:EB:FD:8A
X509v3 Authority Key Identifier:
keyid:EA:2D:10:2B:61:12:B0:D9:A8:B8:EE:BA:C4:B9:7C:81:9F:97:C6:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6i0QK2ESsNmouO66xLl8gZ-XxgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/DiLpmjfqQdpk6mMwxSmHu0vr_Yo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/4cdefa-5ee2-4719-a7e1-b829cc401031/1/6i0QK2ESsNmouO66xLl8gZ-XxgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:2200::/29
Signature Algorithm: sha256WithRSAEncryption
14:31:4f:b7:02:ec:6f:b3:68:92:58:19:2c:81:16:1e:1b:a6:
88:32:3a:e1:34:8d:16:f3:6e:3f:5c:4b:0c:79:5e:15:23:6a:
26:3b:2b:89:14:bf:cd:39:26:af:c1:b4:c5:62:3f:78:42:cf:
4e:00:40:89:67:5d:cb:0b:ba:a6:71:31:51:bd:89:47:c6:63:
a2:a0:59:a3:b3:58:03:00:17:9c:ef:4a:d7:5a:28:a7:f8:97:
b7:74:d3:3d:f3:27:8e:1f:c5:b5:0c:db:1c:6c:55:bb:a3:17:
7b:2e:c5:23:89:0b:f2:37:72:64:34:fa:52:c7:a6:50:25:7a:
02:0e:b8:1e:a5:9b:e7:21:07:55:c7:ff:ad:6f:12:44:dd:53:
7e:ce:4f:bb:16:84:ac:a3:a0:9d:75:13:17:2b:e4:fa:cb:50:
1d:78:28:50:6e:a1:f0:36:22:0f:26:52:79:6b:7e:9d:18:d7:
4e:2a:9f:69:30:12:32:3c:c0:8c:02:62:b5:13:85:26:f2:89:
bf:0c:ea:49:ec:c7:83:ee:2f:49:26:a1:02:4e:1c:ed:dc:ee:
2f:45:be:cd:9a:b2:66:29:de:a3:15:88:10:aa:27:15:9e:77:
0d:cd:d3:7d:36:2c:c4:53:72:db:17:9b:cb:af:d3:8f:01:47:
e1:a3:6f:21
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVs5fZW2EOoYtnJg08yfzw0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVhMmQxMDJiNjExMmIwZDlhOGI4ZWViYWM0Yjk3YzgxOWY5
N2M2MDYwHhcNMjMwMTAxMTAzNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZTIyZTk5YTM3ZWE0MWRhNjRlYTYzMzBjNTI5ODdiYjRiZWJmZDhhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlgHCzWASKh2DcvKkaqXByFhguBag
6ncfrmlQtk0rVBxpTCRgNmt5XZ0mpdLfHFhi+6Ora7Neq1s6IS0ZOQq8ItxmgAcK
vLSdG/pP8f7iHFclS6YQmnBUisESeV97zQ+9uAwU66CoRPT502QntitkLTtTHQY6
fP5yAhI8BqWb9MJX8dbh5PKpP+7Rv6OeHz7+vxXF2dvW2eitK/pms4mnFTSaWTjA
p+8I+YeP/Eqipa7eDqZjqX8rXqmOXt0gCgFUykh5Xpfizub1R3ck9R+wmuL8gh5G
ewhYjRoDGBP+SROMZ1RtJJVC2bGzPaWDEmrc9ng9HhRUAS8knbNCOAjIawIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFA4i6Zo36kHaZOpjMMUph7tL6/2KMB8GA1UdIwQY
MBaAFOotECthErDZqLjuusS5fIGfl8YGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNmkwUUsyRVNzTm1vdU82NnhMbDhnWi1YeGdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC80Y2RlZmEtNWVlMi00NzE5LWE3ZTEt
YjgyOWNjNDAxMDMxLzEvRGlMcG1qZnFRZHBrNm1Nd3hTbUh1MHZyX1lvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC80Y2RlZmEtNWVlMi00NzE5LWE3ZTEtYjgyOWNjNDAxMDMx
LzEvNmkwUUsyRVNzTm1vdU82NnhMbDhnWi1YeGdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhMiADAN
BgkqhkiG9w0BAQsFAAOCAQEAFDFPtwLsb7NoklgZLIEWHhumiDI64TSNFvNuP1xL
DHleFSNqJjsriRS/zTkmr8G0xWI/eELPTgBAiWddywu6pnExUb2JR8ZjoqBZo7NY
AwAXnO9K11oop/iXt3TTPfMnjh/FtQzbHGxVu6MXey7FI4kL8jdyZDT6UsemUCV6
Ag64HqWb5yEHVcf/rW8SRN1Tfs5PuxaErKOgnXUTFyvk+stQHXgoUG6h8DYiDyZS
eWt+nRjXTiqfaTASMjzAjAJitROFJvKJvwzqSezHg+4vSSahAk4c7dzuL0W+zZqy
ZineoxWIEKonFZ53Dc3TfTYsxFNy2xeby6/TjwFH4aNvIQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:35 2024 by rpki-client on console-fra.rpki-client.org