Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/w31WNH0CcM04Cm2oNOlnVskfvWw.roa
File: w31WNH0CcM04Cm2oNOlnVskfvWw.roa (raw, json)
Hash identifier: qkXBtcoZMVuyetKmwGSlFs0RF7+oa8pEXaLCFoF/WWo=
Subject key identifier: C3:7D:56:34:7D:02:70:CD:38:0A:6D:A8:34:E9:67:56:C9:1F:BD:6C
Certificate issuer: /CN=68da206c83d505e254b3ef3c7650f9fb93453435
Certificate serial: 0187758478A662AA8DB9F3AC95B77531DA0E
Authority key identifier: 68:DA:20:6C:83:D5:05:E2:54:B3:EF:3C:76:50:F9:FB:93:45:34:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNogbIPVBeJUs-88dlD5-5NFNDU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/w31WNH0CcM04Cm2oNOlnVskfvWw.roa
Signing time: Wed 12 Apr 2023 12:50:28 +0000
ROA not before: Wed 12 Apr 2023 12:50:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60781
IP address blocks: 2a05:3f44::/30 maxlen: 30
Validation: Failed, certificate revoked on Tue 18 Apr 2023 07:47:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:75:84:78:a6:62:aa:8d:b9:f3:ac:95:b7:75:31:da:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68da206c83d505e254b3ef3c7650f9fb93453435
Validity
Not Before: Apr 12 12:50:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c37d56347d0270cd380a6da834e96756c91fbd6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:3d:bb:12:a5:1e:08:49:94:d2:43:c6:40:0e:
9c:15:f0:72:2d:ac:64:79:d0:7f:f7:df:d0:71:5a:
a0:92:ce:42:a4:a6:b2:33:66:33:11:42:ec:2d:1e:
ce:6f:2c:f4:a8:c0:3e:b4:28:23:46:54:aa:92:5c:
1d:29:b4:58:10:a7:f5:8e:9d:77:a7:9c:b2:7a:30:
30:0d:a7:f8:05:62:b7:94:8d:03:c2:83:bd:be:96:
a0:ed:51:6f:7c:6b:6e:a7:1a:35:8b:d9:ed:af:ad:
af:18:ec:93:27:5d:81:53:cb:1a:3a:8f:6f:7d:20:
88:8d:57:b5:e2:2a:15:e9:99:0c:18:6e:01:c5:07:
62:84:87:fa:ad:e7:7a:ac:be:33:f5:e0:a5:3f:9f:
6e:4a:cb:73:38:8e:0e:cb:f1:f5:fa:51:92:bf:99:
2d:26:d8:35:6e:73:d8:c2:0e:59:ad:91:08:b7:8e:
58:df:52:24:53:b2:0b:a3:23:56:2b:30:47:ad:bc:
59:5a:29:b1:7f:c8:d7:81:c0:8e:f1:f8:98:d8:72:
cd:02:18:7f:cd:f3:8a:fb:6d:53:85:a1:80:e3:7c:
c5:8b:a7:e3:05:a4:6d:84:45:22:f9:f6:4b:f5:f4:
e2:f9:1a:a1:c8:99:ae:e0:0f:6b:4a:c7:f6:9b:55:
c3:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:7D:56:34:7D:02:70:CD:38:0A:6D:A8:34:E9:67:56:C9:1F:BD:6C
X509v3 Authority Key Identifier:
keyid:68:DA:20:6C:83:D5:05:E2:54:B3:EF:3C:76:50:F9:FB:93:45:34:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNogbIPVBeJUs-88dlD5-5NFNDU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/w31WNH0CcM04Cm2oNOlnVskfvWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/bb298b-3c39-49b2-abb1-11d636b56dab/1/aNogbIPVBeJUs-88dlD5-5NFNDU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:3f44::/30
Signature Algorithm: sha256WithRSAEncryption
3d:a8:51:32:99:23:5b:b0:c9:66:b6:fe:24:39:b9:ff:72:89:
06:7b:99:f3:2f:5b:55:1a:17:b5:d7:ce:89:34:3e:bc:24:b6:
ca:85:b3:ff:dd:34:15:7d:66:65:eb:5b:b4:15:38:4a:be:03:
08:ef:73:60:be:19:b2:30:6a:80:5a:6f:2c:5c:fc:c0:fa:b9:
28:70:6b:3a:60:1e:64:ac:ba:93:48:17:8c:d8:1e:93:96:77:
d9:cc:ea:16:ab:a0:ba:c9:87:01:20:cb:f7:b1:a5:47:61:2c:
c7:58:fe:a8:c6:8b:11:00:f5:6f:aa:64:ad:2d:c9:14:4f:c7:
d9:04:0d:f5:20:90:26:c7:ab:55:86:5e:2d:35:64:00:03:0e:
e5:6c:e3:cc:c6:8e:60:57:e1:4a:01:30:41:51:5c:8d:6e:39:
c8:c6:be:8a:e9:4c:1d:92:c1:a1:64:41:aa:b3:f0:9c:f2:45:
c7:22:47:e8:08:57:01:39:19:a2:95:26:7c:75:ef:24:60:14:
43:b2:58:57:21:d8:b5:c8:d0:db:9b:26:92:57:d7:a2:5b:16:
71:bf:4e:a6:98:3c:d6:08:8c:17:79:05:66:4c:e2:9f:0b:67:
5b:71:43:20:97:5e:60:e9:8d:5c:0e:3b:6c:b9:8c:4c:02:44:
e3:c6:13:77
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYd1hHimYqqNufOslbd1MdoOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4ZGEyMDZjODNkNTA1ZTI1NGIzZWYzYzc2NTBmOWZiOTM0
NTM0MzUwHhcNMjMwNDEyMTI1MDI4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMzdkNTYzNDdkMDI3MGNkMzgwYTZkYTgzNGU5Njc1NmM5MWZiZDZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgz27EqUeCEmU0kPGQA6cFfByLaxk
edB/99/QcVqgks5CpKayM2YzEULsLR7Obyz0qMA+tCgjRlSqklwdKbRYEKf1jp13
p5yyejAwDaf4BWK3lI0DwoO9vpag7VFvfGtupxo1i9ntr62vGOyTJ12BU8saOo9v
fSCIjVe14ioV6ZkMGG4BxQdihIf6red6rL4z9eClP59uSstzOI4Oy/H1+lGSv5kt
Jtg1bnPYwg5ZrZEIt45Y31IkU7ILoyNWKzBHrbxZWimxf8jXgcCO8fiY2HLNAhh/
zfOK+21ThaGA43zFi6fjBaRthEUi+fZL9fTi+RqhyJmu4A9rSsf2m1XDqQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFMN9VjR9AnDNOAptqDTpZ1bJH71sMB8GA1UdIwQY
MBaAFGjaIGyD1QXiVLPvPHZQ+fuTRTQ1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYU5vZ2JJUFZCZUpVcy04OGRsRDUtNU5GTkRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NS9iYjI5OGItM2MzOS00OWIyLWFiYjEt
MTFkNjM2YjU2ZGFiLzEvdzMxV05IMENjTTA0Q20yb05PbG5Wc2tmdld3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NS9iYjI5OGItM2MzOS00OWIyLWFiYjEtMTFkNjM2YjU2ZGFi
LzEvYU5vZ2JJUFZCZUpVcy04OGRsRDUtNU5GTkRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUCKgU/RDAN
BgkqhkiG9w0BAQsFAAOCAQEAPahRMpkjW7DJZrb+JDm5/3KJBnuZ8y9bVRoXtdfO
iTQ+vCS2yoWz/900FX1mZetbtBU4Sr4DCO9zYL4ZsjBqgFpvLFz8wPq5KHBrOmAe
ZKy6k0gXjNgek5Z32czqFqugusmHASDL97GlR2Esx1j+qMaLEQD1b6pkrS3JFE/H
2QQN9SCQJserVYZeLTVkAAMO5WzjzMaOYFfhSgEwQVFcjW45yMa+iulMHZLBoWRB
qrPwnPJFxyJH6AhXATkZopUmfHXvJGAUQ7JYVyHYtcjQ25smklfXolsWcb9Oppg8
1giMF3kFZkzinwtnW3FDIJdeYOmNXA47bLmMTAJE48YTdw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:19 2024 by rpki-client on console-ams.rpki-client.org