Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/S0TvbOjpe8GESXcS-rn3KbJDXR8.roa
File: S0TvbOjpe8GESXcS-rn3KbJDXR8.roa (raw, json)
Hash identifier: qCww9tHRjVvzmb0e7Au3ZHkWTNdSPjXcD1fNfRx5X9I=
Subject key identifier: 4B:44:EF:6C:E8:E9:7B:C1:84:49:77:12:FA:B9:F7:29:B2:43:5D:1F
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01856F300C0E13EA89A974BD232E8246750D
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/S0TvbOjpe8GESXcS-rn3KbJDXR8.roa
Signing time: Sun 01 Jan 2023 21:14:57 +0000
ROA not before: Sun 01 Jan 2023 21:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212690
IP address blocks: 2a0e:aa07:e022::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:30:0c:0e:13:ea:89:a9:74:bd:23:2e:82:46:75:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 21:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b44ef6ce8e97bc184497712fab9f729b2435d1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:dc:c9:df:6e:f5:ad:58:03:fa:92:4f:db:41:
8b:08:05:6c:dc:54:e9:93:fb:86:22:b3:0f:8c:51:
a0:82:b6:48:da:1d:15:05:0b:f3:d6:74:5d:f6:02:
54:ba:c4:68:b7:65:48:c6:66:ac:54:d9:2e:b9:e2:
c2:38:16:e7:57:69:b4:7d:bb:f3:2e:06:95:db:2c:
1e:70:e2:89:83:be:5e:0e:37:0c:eb:07:28:da:5d:
28:5c:2b:fa:f7:e0:51:03:a8:cc:e9:45:b2:f7:ee:
86:41:9b:6d:f8:a9:43:6b:5a:e1:31:2f:cd:45:88:
c7:6b:2c:12:d5:a4:82:b5:c2:ba:15:ec:6f:d9:05:
89:ed:aa:5f:d5:9c:45:80:6c:3e:7f:93:33:8b:08:
1c:cb:cb:fa:65:84:c8:5d:f9:f1:2a:90:0f:62:42:
66:f4:dc:a9:7e:c7:a8:5f:b6:d7:91:86:99:b9:73:
18:f5:7a:0f:8e:18:3d:16:52:2f:13:29:9d:3b:05:
7e:0b:af:22:88:19:30:1b:ba:0c:7b:eb:08:8b:51:
ca:31:8d:6e:62:e7:78:24:fc:6e:f5:d2:95:f8:3a:
9a:91:1e:95:d9:00:26:19:e4:70:f1:56:3d:94:1a:
1c:08:61:9e:2f:54:3f:16:ed:3c:36:e8:ff:03:47:
6b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:44:EF:6C:E8:E9:7B:C1:84:49:77:12:FA:B9:F7:29:B2:43:5D:1F
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/S0TvbOjpe8GESXcS-rn3KbJDXR8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e022::/48
Signature Algorithm: sha256WithRSAEncryption
38:7e:85:a2:ea:66:75:f6:a7:be:4b:4e:85:ed:7d:e2:5e:d6:
46:85:f3:98:67:19:59:12:d3:68:2f:4a:a1:08:00:85:82:1d:
c7:fc:d7:93:06:38:81:fc:2f:d8:8e:a8:08:10:c1:96:ab:0c:
3e:7d:7c:13:c7:ea:9d:09:ce:5b:d6:c4:be:e4:40:40:bf:e1:
d9:35:09:69:c6:61:77:3d:a3:ff:05:34:4a:c2:45:8f:09:eb:
79:61:b2:d5:4b:89:58:50:8f:14:2d:3d:51:93:99:50:b5:d8:
ac:24:13:94:2d:bf:56:36:69:88:d3:f5:4b:fb:33:39:54:87:
86:7c:ed:ed:9b:c1:23:47:8a:4e:93:27:a3:b3:b2:f4:23:a2:
cf:3f:48:55:65:b3:31:91:a9:e8:cb:81:6f:58:48:ac:36:a1:
6a:f6:4f:16:33:12:d0:10:57:0e:47:3c:49:6b:2f:af:fc:9c:
ab:b1:98:e4:84:87:fb:7b:7d:6f:de:3f:d1:06:48:35:34:0b:
b5:7f:82:61:25:f5:2b:af:e3:9b:13:94:8e:af:22:d7:98:4c:
ba:aa:46:08:67:c4:67:bb:1b:6d:a6:f7:1b:7b:78:fd:28:d9:
ba:a5:aa:ea:15:cd:f1:21:9f:cb:43:60:15:5c:ce:47:14:1c:
d9:e8:fe:ff
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVvMAwOE+qJqXS9Iy6CRnUNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzNjFiNWNkNjk2ODI1Yjc0ZmNjYmE3ZDk3YzNkMGEyNzI0
ZWYzYWEwHhcNMjMwMTAxMjExNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YjQ0ZWY2Y2U4ZTk3YmMxODQ0OTc3MTJmYWI5ZjcyOWIyNDM1ZDFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt9zJ3271rVgD+pJP20GLCAVs3FTp
k/uGIrMPjFGggrZI2h0VBQvz1nRd9gJUusRot2VIxmasVNkuueLCOBbnV2m0fbvz
LgaV2ywecOKJg75eDjcM6wco2l0oXCv69+BRA6jM6UWy9+6GQZtt+KlDa1rhMS/N
RYjHaywS1aSCtcK6Fexv2QWJ7apf1ZxFgGw+f5Mziwgcy8v6ZYTIXfnxKpAPYkJm
9NypfseoX7bXkYaZuXMY9XoPjhg9FlIvEymdOwV+C68iiBkwG7oMe+sIi1HKMY1u
Yud4JPxu9dKV+DqakR6V2QAmGeRw8VY9lBocCGGeL1Q/Fu08Nuj/A0drJQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFEtE72zo6XvBhEl3Evq59ymyQ10fMB8GA1UdIwQY
MBaAFJNhtc1paCW3T8y6fZfD0KJyTvOqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEt
YTU0MWQxYmNlZTE5LzEvUzBUdmJPanBlOEdFU1hjUy1ybjNLYkpEWFI4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEtYTU0MWQxYmNlZTE5
LzEvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg6qB+Ai
MA0GCSqGSIb3DQEBCwUAA4IBAQA4foWi6mZ19qe+S06F7X3iXtZGhfOYZxlZEtNo
L0qhCACFgh3H/NeTBjiB/C/YjqgIEMGWqww+fXwTx+qdCc5b1sS+5EBAv+HZNQlp
xmF3PaP/BTRKwkWPCet5YbLVS4lYUI8ULT1Rk5lQtdisJBOULb9WNmmI0/VL+zM5
VIeGfO3tm8EjR4pOkyejs7L0I6LPP0hVZbMxkanoy4FvWEisNqFq9k8WMxLQEFcO
RzxJay+v/JyrsZjkhIf7e31v3j/RBkg1NAu1f4JhJfUrr+ObE5SOryLXmEy6qkYI
Z8Rnuxttpvcbe3j9KNm6parqFc3xIZ/LQ2AVXM5HFBzZ6P7/
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:11 2024 by rpki-client on console-ams.rpki-client.org