Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/kFe1vd43oYw9VcumAUQ_DrDDc2U.roa
File: kFe1vd43oYw9VcumAUQ_DrDDc2U.roa (raw, json)
Hash identifier: OCBCTg+sTFhFXYG7sYSXukGTBhbCAsqXDOs4kok1Ddo=
Subject key identifier: 90:57:B5:BD:DE:37:A1:8C:3D:55:CB:A6:01:44:3F:0E:B0:C3:73:65
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01856F2FE74244B26E884EA7943DBA4F4034
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/kFe1vd43oYw9VcumAUQ_DrDDc2U.roa
Signing time: Sun 01 Jan 2023 21:14:48 +0000
ROA not before: Sun 01 Jan 2023 21:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202662
IP address blocks: 2a0e:aa07:e04d::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:e7:42:44:b2:6e:88:4e:a7:94:3d:ba:4f:40:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 21:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9057b5bdde37a18c3d55cba601443f0eb0c37365
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:64:e9:38:ec:5e:8c:b2:42:41:5c:8c:43:3e:
2b:39:84:45:fd:e5:d1:d2:c8:05:98:7e:b9:5b:39:
db:ae:0d:75:84:ae:85:33:77:69:79:96:fa:3c:6d:
92:72:c3:f9:5e:52:82:09:c8:2d:24:2f:7a:15:4c:
c0:ae:c7:ce:f0:cf:07:a3:c3:cd:1f:4c:60:90:ca:
b3:43:dc:5d:36:fc:7e:26:a6:d3:c5:7a:5a:12:71:
b6:3f:3d:a0:14:48:98:d6:87:47:e6:86:93:42:40:
0a:20:6d:fe:c1:0c:36:3d:95:a2:d7:4a:29:f3:8c:
9d:31:59:b1:0a:7e:a0:de:f6:07:c2:db:19:db:84:
e4:42:e2:76:ee:06:d4:f4:bf:06:ac:86:ab:b6:37:
0a:d3:9f:99:25:77:42:01:1c:70:91:f6:a0:d1:9c:
1e:6e:5f:a0:94:97:ea:11:fd:80:08:80:b8:10:dc:
30:d3:1e:6b:e7:d7:67:16:ba:be:ed:07:0b:27:a7:
1d:e9:c1:15:4b:dc:db:e2:df:1d:c6:a9:03:89:36:
8f:2f:27:52:a9:1f:72:b3:19:83:6b:15:eb:94:99:
ce:a7:81:df:21:6c:c3:36:2b:a7:af:d0:d7:93:80:
e5:85:69:7e:30:58:58:52:86:22:85:8b:f1:f8:bf:
82:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:57:B5:BD:DE:37:A1:8C:3D:55:CB:A6:01:44:3F:0E:B0:C3:73:65
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/kFe1vd43oYw9VcumAUQ_DrDDc2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e04d::/48
Signature Algorithm: sha256WithRSAEncryption
5a:96:62:26:b3:ad:e5:05:69:ce:ad:59:4c:67:11:13:9b:dc:
b8:7d:09:ce:c6:b6:da:fe:93:b1:09:3c:11:ca:90:17:00:af:
fd:e8:56:ee:d4:85:53:30:3f:af:ec:80:68:1a:46:c0:1b:5b:
bc:f5:98:59:93:62:e0:cb:94:e3:ef:ba:17:af:7e:5a:f6:00:
65:b9:51:be:f9:37:b8:40:03:30:13:cd:16:71:c0:65:48:37:
f1:b8:d3:d7:fc:33:1d:52:fb:bc:f5:50:a5:14:31:67:a9:ce:
ea:a2:6a:7e:87:b2:d4:7a:68:a1:d9:fb:6d:d5:91:a8:4d:09:
30:1e:73:48:dc:97:c3:a5:88:19:d2:fa:07:10:54:68:7e:c8:
c5:bf:d0:ec:9d:8d:46:7d:bc:69:34:77:db:e6:0e:93:97:fd:
44:9b:f1:5f:9e:7c:17:91:90:d9:93:86:d3:c0:08:b0:31:e4:
4f:e0:29:cb:26:3c:96:ea:b1:0a:4b:d2:a2:4c:62:26:a1:9b:
2e:6f:43:5b:54:30:69:a7:3e:fc:2b:8c:c2:c7:64:83:02:18:
4e:73:74:90:85:e1:85:57:5a:b8:c4:d1:4e:cf:67:ba:72:b9:
99:64:cd:5a:30:91:6e:ca:99:37:06:e1:7d:e1:a8:3c:bb:ff:
55:ef:f9:79
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVvL+dCRLJuiE6nlD26T0A0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzNjFiNWNkNjk2ODI1Yjc0ZmNjYmE3ZDk3YzNkMGEyNzI0
ZWYzYWEwHhcNMjMwMTAxMjExNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MDU3YjViZGRlMzdhMThjM2Q1NWNiYTYwMTQ0M2YwZWIwYzM3MzY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmWTpOOxejLJCQVyMQz4rOYRF/eXR
0sgFmH65Wznbrg11hK6FM3dpeZb6PG2ScsP5XlKCCcgtJC96FUzArsfO8M8Ho8PN
H0xgkMqzQ9xdNvx+JqbTxXpaEnG2Pz2gFEiY1odH5oaTQkAKIG3+wQw2PZWi10op
84ydMVmxCn6g3vYHwtsZ24TkQuJ27gbU9L8GrIartjcK05+ZJXdCARxwkfag0Zwe
bl+glJfqEf2ACIC4ENww0x5r59dnFrq+7QcLJ6cd6cEVS9zb4t8dxqkDiTaPLydS
qR9ysxmDaxXrlJnOp4HfIWzDNiunr9DXk4DlhWl+MFhYUoYihYvx+L+CrQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFJBXtb3eN6GMPVXLpgFEPw6ww3NlMB8GA1UdIwQY
MBaAFJNhtc1paCW3T8y6fZfD0KJyTvOqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEt
YTU0MWQxYmNlZTE5LzEva0ZlMXZkNDNvWXc5VmN1bUFVUV9EckREYzJVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEtYTU0MWQxYmNlZTE5
LzEvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg6qB+BN
MA0GCSqGSIb3DQEBCwUAA4IBAQBalmIms63lBWnOrVlMZxETm9y4fQnOxrba/pOx
CTwRypAXAK/96Fbu1IVTMD+v7IBoGkbAG1u89ZhZk2Lgy5Tj77oXr35a9gBluVG+
+Te4QAMwE80WccBlSDfxuNPX/DMdUvu89VClFDFnqc7qomp+h7LUemih2ftt1ZGo
TQkwHnNI3JfDpYgZ0voHEFRofsjFv9DsnY1GfbxpNHfb5g6Tl/1Em/FfnnwXkZDZ
k4bTwAiwMeRP4CnLJjyW6rEKS9KiTGImoZsub0NbVDBppz78K4zCx2SDAhhOc3SQ
heGFV1q4xNFOz2e6crmZZM1aMJFuypk3BuF94ag8u/9V7/l5
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org