Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/a9bd50-b4a4-4063-8436-4e2a8f84aeed/1/1-zUrEPRVVbxNSuRAE4gmOLMo2BU.roa
File: 1-zUrEPRVVbxNSuRAE4gmOLMo2BU.roa (raw, json)
Hash identifier: novuTVrQdODPraCOcvmJNtQ15twfQNTkT8mjffsDWWM=
Subject key identifier: FB:35:2B:10:F4:55:55:BC:4D:4A:E4:40:13:88:26:38:B3:28:D8:15
Certificate issuer: /CN=ec79a7b54c8c94d06ca2f685971a2449fb8fcece
Certificate serial: 0189AB7EE6834AC26E6E67835F039D929237
Authority key identifier: EC:79:A7:B5:4C:8C:94:D0:6C:A2:F6:85:97:1A:24:49:FB:8F:CE:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7HmntUyMlNBsovaFlxokSfuPzs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/a9bd50-b4a4-4063-8436-4e2a8f84aeed/1/1-zUrEPRVVbxNSuRAE4gmOLMo2BU.roa
Signing time: Mon 31 Jul 2023 10:29:27 +0000
ROA not before: Mon 31 Jul 2023 10:29:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48194
IP address blocks: 2a13:9644:10::/46 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ab:7e:e6:83:4a:c2:6e:6e:67:83:5f:03:9d:92:92:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec79a7b54c8c94d06ca2f685971a2449fb8fcece
Validity
Not Before: Jul 31 10:29:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fb352b10f45555bc4d4ae44013882638b328d815
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a0:cb:73:61:27:db:4d:50:75:eb:bc:77:24:
0d:84:1d:b7:a4:66:96:60:df:59:d3:c5:bf:b8:ea:
fd:8c:27:05:cd:00:a7:6d:27:c7:70:be:f7:c2:88:
b6:4b:20:29:85:49:1a:d3:f7:c8:27:99:24:5e:90:
bd:48:db:d2:b1:76:18:43:66:31:4d:00:d1:48:c7:
45:63:98:e9:e6:e6:ca:e6:c7:54:4a:a8:e5:a6:f5:
9c:9f:17:bb:e0:79:c5:4f:09:f4:12:78:de:72:4d:
4c:30:57:d0:87:56:40:3e:d4:0e:e7:2c:09:bb:f6:
97:e1:40:09:e8:e3:dc:a0:a3:d0:c9:fd:18:9f:59:
6b:79:7c:af:3f:4e:b9:a0:ad:23:87:ec:11:ed:b7:
db:0c:ed:27:2a:ef:db:66:e6:40:42:c2:4a:04:7a:
b9:8a:4d:c7:26:93:3d:5b:95:d8:ee:eb:67:e6:fb:
2a:31:54:c1:6b:69:6b:08:3c:83:5d:8b:d5:61:c5:
e3:b2:55:4d:77:06:24:01:69:9e:22:d0:aa:dd:51:
e4:8f:df:89:0d:70:f0:ef:30:92:f8:99:89:8c:4c:
a3:1c:e1:ec:d6:01:66:14:a5:60:73:df:e4:4f:98:
77:b1:a2:66:db:15:35:dd:af:86:37:b9:31:fc:f1:
db:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:35:2B:10:F4:55:55:BC:4D:4A:E4:40:13:88:26:38:B3:28:D8:15
X509v3 Authority Key Identifier:
keyid:EC:79:A7:B5:4C:8C:94:D0:6C:A2:F6:85:97:1A:24:49:FB:8F:CE:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7HmntUyMlNBsovaFlxokSfuPzs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/a9bd50-b4a4-4063-8436-4e2a8f84aeed/1/1-zUrEPRVVbxNSuRAE4gmOLMo2BU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/a9bd50-b4a4-4063-8436-4e2a8f84aeed/1/7HmntUyMlNBsovaFlxokSfuPzs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:9644:10::/46
Signature Algorithm: sha256WithRSAEncryption
e0:22:56:f7:98:e8:b6:71:9d:35:8a:ad:a7:73:9a:a9:95:3d:
63:47:f5:c1:e7:32:0d:68:45:fa:ec:cf:41:57:3b:2a:c9:79:
2b:cb:3b:d3:96:bd:f2:df:63:96:a4:60:5d:5d:cf:87:99:54:
eb:3c:ab:69:f2:61:11:bd:f9:23:f7:fd:ae:88:a3:50:00:23:
de:a4:ce:36:3c:08:f4:33:af:ad:3d:bc:38:e9:ef:65:20:71:
8c:9c:46:08:5a:a1:7b:a6:f2:7f:88:67:f2:b6:1f:6c:9d:54:
88:be:57:fb:99:97:75:a9:22:c9:00:66:47:e6:70:bf:52:60:
62:fa:86:31:91:fc:7e:cc:ff:fb:b9:39:73:f4:2b:02:a5:13:
5a:24:ca:a7:7c:5b:62:f3:2c:9c:47:e2:a6:ce:04:1c:58:92:
fd:59:f7:6b:68:73:a6:36:f9:cb:40:62:32:8e:ec:97:c5:b0:
ca:b3:d9:e7:b5:28:81:c2:21:6e:4f:2d:d3:79:46:bb:ff:76:
40:71:3c:5b:da:4c:09:0c:a6:33:60:8f:dc:3b:86:58:71:01:
e1:87:fc:dc:4e:d0:da:bc:01:0e:b8:23:8e:49:dc:cb:09:f3:
a8:7a:dd:34:69:71:7b:99:9b:d3:fa:10:08:f8:cf:91:bf:39:
65:6d:e0:42
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgISAYmrfuaDSsJubmeDXwOdkpI3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVjNzlhN2I1NGM4Yzk0ZDA2Y2EyZjY4NTk3MWEyNDQ5ZmI4
ZmNlY2UwHhcNMjMwNzMxMTAyOTI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYjM1MmIxMGY0NTU1NWJjNGQ0YWU0NDAxMzg4MjYzOGIzMjhkODE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoqDLc2En201Qdeu8dyQNhB23pGaW
YN9Z08W/uOr9jCcFzQCnbSfHcL73woi2SyAphUka0/fIJ5kkXpC9SNvSsXYYQ2Yx
TQDRSMdFY5jp5ubK5sdUSqjlpvWcnxe74HnFTwn0Enjeck1MMFfQh1ZAPtQO5ywJ
u/aX4UAJ6OPcoKPQyf0Yn1lreXyvP065oK0jh+wR7bfbDO0nKu/bZuZAQsJKBHq5
ik3HJpM9W5XY7utn5vsqMVTBa2lrCDyDXYvVYcXjslVNdwYkAWmeItCq3VHkj9+J
DXDw7zCS+JmJjEyjHOHs1gFmFKVgc9/kT5h3saJm2xU13a+GN7kx/PHb7QIDAQAB
o4ICDTCCAgkwHQYDVR0OBBYEFPs1KxD0VVW8TUrkQBOIJjizKNgVMB8GA1UdIwQY
MBaAFOx5p7VMjJTQbKL2hZcaJEn7j87OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN0htbnRVeU1sTkJzb3ZhRmx4b2tTZnVQenM0LmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS9hOWJkNTAtYjRhNC00MDYzLTg0MzYt
NGUyYThmODRhZWVkLzEvMS16VXJFUFJWVmJ4TlN1UkFFNGdtT0xNbzJCVS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvN2EvYTliZDUwLWI0YTQtNDA2My04NDM2LTRlMmE4Zjg0YWVl
ZC8xLzdIbW50VXlNbE5Cc292YUZseG9rU2Z1UHpzNC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHAioTlkQA
EDANBgkqhkiG9w0BAQsFAAOCAQEA4CJW95jotnGdNYqtp3OaqZU9Y0f1wecyDWhF
+uzPQVc7Ksl5K8s705a98t9jlqRgXV3Ph5lU6zyrafJhEb35I/f9roijUAAj3qTO
NjwI9DOvrT28OOnvZSBxjJxGCFqhe6byf4hn8rYfbJ1UiL5X+5mXdakiyQBmR+Zw
v1JgYvqGMZH8fsz/+7k5c/QrAqUTWiTKp3xbYvMsnEfips4EHFiS/Vn3a2hzpjb5
y0BiMo7sl8WwyrPZ57UogcIhbk8t03lGu/92QHE8W9pMCQymM2CP3DuGWHEB4Yf8
3E7Q2rwBDrgjjkncywnzqHrdNGlxe5mb0/oQCPjPkb85ZW3gQg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:01 2024 by rpki-client on console-fra.rpki-client.org