Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/nRN_E0uEh8fdI-t-H6YajkIo6hQ.roa
File: nRN_E0uEh8fdI-t-H6YajkIo6hQ.roa (raw, json)
Hash identifier: AMbwJjI+Dp2J1tS9Nm8q2bC6pHodbOY6jkVURbYB8EE=
Subject key identifier: 9D:13:7F:13:4B:84:87:C7:DD:23:EB:7E:1F:A6:1A:8E:42:28:EA:14
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01856F30091DC595877E77A371722022B63F
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/nRN_E0uEh8fdI-t-H6YajkIo6hQ.roa
Signing time: Sun 01 Jan 2023 21:14:56 +0000
ROA not before: Sun 01 Jan 2023 21:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211877
IP address blocks: 2a0e:aa07:e04b::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:30:09:1d:c5:95:87:7e:77:a3:71:72:20:22:b6:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 21:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d137f134b8487c7dd23eb7e1fa61a8e4228ea14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:49:a0:e0:8f:6d:72:e6:bf:4b:51:6e:c9:91:
65:98:4e:40:72:ac:0b:ed:e8:aa:19:06:73:43:5b:
fa:79:6b:68:13:cf:4a:08:5b:b7:ca:22:3a:37:fc:
11:9f:75:91:c7:f5:34:ae:e2:1c:6b:17:43:fa:ac:
bb:cf:f5:93:99:d3:69:00:94:21:56:57:c9:bb:84:
e0:f8:2c:54:d9:89:2b:cb:98:e9:4f:37:f3:8a:3f:
84:8b:e7:4e:ca:f9:dd:5d:eb:4f:6b:19:7a:80:15:
5d:0e:56:3a:c4:39:38:e6:1d:79:1f:af:3b:57:0f:
40:88:82:e5:8e:c3:7a:84:36:de:73:34:f3:49:e2:
95:4c:d2:e6:6e:58:b3:33:0a:1e:9a:32:54:b4:f7:
fc:97:a9:0a:5a:6a:dd:73:c7:27:e0:d5:f7:54:16:
3b:b5:37:af:53:a0:38:78:11:73:9d:b6:b0:0a:8f:
38:f6:19:a4:79:e2:4f:d6:4a:e2:ec:7e:93:88:65:
63:59:a1:a0:7b:c1:90:e7:8b:07:76:9d:f8:a3:75:
aa:fe:29:cf:a1:96:cf:ba:5d:44:80:7d:71:48:c7:
42:4c:e9:74:6d:dd:f1:79:fe:da:2e:e4:57:90:9a:
cc:a2:83:ca:a5:f3:a2:ad:6a:04:28:10:83:11:d9:
23:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:13:7F:13:4B:84:87:C7:DD:23:EB:7E:1F:A6:1A:8E:42:28:EA:14
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/nRN_E0uEh8fdI-t-H6YajkIo6hQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e04b::/48
Signature Algorithm: sha256WithRSAEncryption
9e:0c:64:7d:b8:b2:c2:99:1d:6e:fd:80:14:f6:42:f1:35:0f:
10:a3:c2:be:d6:90:4a:4a:cc:af:36:f4:3b:d8:0a:d0:b3:8f:
16:25:22:80:88:14:a8:1b:4c:e5:d0:8a:72:38:26:48:17:36:
96:03:83:98:f5:97:00:e3:f1:ae:d5:f8:97:3b:d4:92:9d:0e:
7b:f2:55:f9:c8:59:2b:77:e2:ec:14:33:0e:27:ef:1b:35:20:
ca:26:c8:bf:a6:33:68:f5:bc:b4:cc:c5:fd:78:4b:86:57:5b:
b5:89:4b:5f:3a:a8:bf:d3:1b:88:f9:a8:91:f6:04:25:4d:fa:
5f:f8:74:b5:f0:69:18:4c:7d:f3:18:6d:4d:15:21:75:63:90:
02:fd:58:51:56:fb:af:ac:e6:14:40:fa:61:b5:24:de:2f:ac:
2f:8a:e6:cc:e4:59:82:01:aa:79:e0:dc:1d:ba:33:ae:7d:e3:
3c:87:bc:02:63:34:15:af:ab:f4:b1:88:7d:84:11:89:46:8e:
2c:cb:34:81:d0:8c:f4:25:7b:6c:cf:da:e2:1b:ba:6d:0e:2e:
60:32:42:67:c7:b4:c4:03:47:41:85:88:fa:47:85:46:f1:7f:
5f:6b:80:42:56:20:a2:ec:6b:ca:13:26:bc:c8:c6:6b:20:56:
e1:ae:5f:1b
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVvMAkdxZWHfnejcXIgIrY/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzNjFiNWNkNjk2ODI1Yjc0ZmNjYmE3ZDk3YzNkMGEyNzI0
ZWYzYWEwHhcNMjMwMTAxMjExNDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZDEzN2YxMzRiODQ4N2M3ZGQyM2ViN2UxZmE2MWE4ZTQyMjhlYTE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0mg4I9tcua/S1FuyZFlmE5AcqwL
7eiqGQZzQ1v6eWtoE89KCFu3yiI6N/wRn3WRx/U0ruIcaxdD+qy7z/WTmdNpAJQh
VlfJu4Tg+CxU2Ykry5jpTzfzij+Ei+dOyvndXetPaxl6gBVdDlY6xDk45h15H687
Vw9AiILljsN6hDbeczTzSeKVTNLmblizMwoemjJUtPf8l6kKWmrdc8cn4NX3VBY7
tTevU6A4eBFznbawCo849hmkeeJP1kri7H6TiGVjWaGge8GQ54sHdp34o3Wq/inP
oZbPul1EgH1xSMdCTOl0bd3xef7aLuRXkJrMooPKpfOirWoEKBCDEdkjEQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFJ0TfxNLhIfH3SPrfh+mGo5CKOoUMB8GA1UdIwQY
MBaAFJNhtc1paCW3T8y6fZfD0KJyTvOqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEt
YTU0MWQxYmNlZTE5LzEvblJOX0UwdUVoOGZkSS10LUg2WWFqa0lvNmhRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEtYTU0MWQxYmNlZTE5
LzEvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg6qB+BL
MA0GCSqGSIb3DQEBCwUAA4IBAQCeDGR9uLLCmR1u/YAU9kLxNQ8Qo8K+1pBKSsyv
NvQ72ArQs48WJSKAiBSoG0zl0IpyOCZIFzaWA4OY9ZcA4/Gu1fiXO9SSnQ578lX5
yFkrd+LsFDMOJ+8bNSDKJsi/pjNo9by0zMX9eEuGV1u1iUtfOqi/0xuI+aiR9gQl
Tfpf+HS18GkYTH3zGG1NFSF1Y5AC/VhRVvuvrOYUQPphtSTeL6wviubM5FmCAap5
4NwdujOufeM8h7wCYzQVr6v0sYh9hBGJRo4syzSB0Iz0JXtsz9riG7ptDi5gMkJn
x7TEA0dBhYj6R4VG8X9fa4BCViCi7GvKEya8yMZrIFbhrl8b
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org