Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/xk95J9KzP69RR2NL2-fJKC3VWcE.roa
File: xk95J9KzP69RR2NL2-fJKC3VWcE.roa (raw, json)
Hash identifier: BGaHOJEUtNgjInHx0xTKETLL9nRf0Zm0ATsdHWzdIDE=
Subject key identifier: C6:4F:79:27:D2:B3:3F:AF:51:47:63:4B:DB:E7:C9:28:2D:D5:59:C1
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 0187EBAD8C7F918CEDDF70551A710EAB2F1F
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/xk95J9KzP69RR2NL2-fJKC3VWcE.roa
Signing time: Fri 05 May 2023 11:30:32 +0000
ROA not before: Fri 05 May 2023 11:30:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211027
IP address blocks: 2a0f:6fc1::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:eb:ad:8c:7f:91:8c:ed:df:70:55:1a:71:0e:ab:2f:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: May 5 11:30:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c64f7927d2b33faf5147634bdbe7c9282dd559c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:36:0e:55:c9:48:9d:27:ef:72:aa:81:f0:af:
ea:6a:f1:21:53:ab:4e:43:fa:22:20:69:89:d7:cc:
0e:d8:db:bb:f8:d8:b2:6a:9c:c1:b6:1c:ee:06:67:
b0:6b:5c:b2:39:5e:df:65:95:56:43:7f:56:2f:25:
9e:07:cf:87:d5:ce:a9:0b:78:7a:f5:f5:87:34:1a:
a4:20:d5:7a:e6:bc:a4:42:87:09:4c:b9:eb:50:ae:
55:b6:ac:97:86:d7:b9:9a:df:19:6c:3f:4d:cd:ce:
51:bd:7d:ff:74:72:c4:6b:7b:d1:9c:5e:05:62:ea:
09:99:27:bc:36:c9:1f:d7:ab:bb:f1:8b:9a:bf:bc:
f0:41:db:68:ba:18:85:1e:e6:d1:f6:1e:15:76:49:
d3:85:cc:c5:c3:ff:f4:bc:84:e5:18:98:4b:d3:21:
18:0e:52:92:79:e3:fc:f9:5d:8a:58:37:f8:90:11:
bd:d1:01:e3:a6:47:90:2b:f0:2d:63:99:e6:13:08:
c1:31:0a:3d:43:73:2e:86:40:6e:7b:79:e0:6c:c1:
2c:42:da:54:40:99:63:8f:3a:6d:92:82:cf:79:85:
b0:3d:bf:34:ae:4e:e4:2d:c7:53:85:9a:eb:d5:6c:
fd:f5:72:55:25:db:02:e4:7a:3c:63:df:a7:4b:7d:
5b:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:4F:79:27:D2:B3:3F:AF:51:47:63:4B:DB:E7:C9:28:2D:D5:59:C1
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/xk95J9KzP69RR2NL2-fJKC3VWcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:6fc1::/32
Signature Algorithm: sha256WithRSAEncryption
67:80:c0:39:c8:87:27:21:51:12:7b:21:12:c3:66:92:14:04:
bb:6b:b3:86:1e:4f:78:c6:1e:3d:05:10:c1:06:22:21:b3:fd:
62:7e:02:e6:e5:5d:84:db:59:0a:7d:44:5a:49:86:a1:07:2d:
46:18:d9:99:cd:35:22:eb:28:b3:08:7d:84:57:a6:a1:a5:47:
6c:81:2d:93:36:64:ae:31:6a:b7:b5:25:e1:ae:6c:18:3c:e3:
03:48:fd:46:6b:c3:89:63:08:e2:38:a8:89:37:48:d1:7b:bd:
d2:a4:c9:ef:db:d4:f4:32:ea:1f:42:67:af:77:59:b4:3c:19:
29:4e:e5:c5:e3:cc:7b:cd:70:6d:91:8c:80:6e:0f:27:90:49:
7f:c2:ad:7c:0b:14:61:3b:8d:2c:19:62:a1:f6:6d:ef:be:02:
2c:5e:bd:fa:08:db:f7:2b:01:eb:3c:5e:70:98:13:e0:88:06:
51:2e:09:5e:c0:f6:9a:55:37:01:62:79:b5:c9:c9:d4:fb:18:
61:6b:89:50:ed:d1:1d:4b:06:82:9a:fd:1c:c7:67:68:79:cb:
04:ea:15:e2:82:b5:48:2c:63:3f:87:32:70:d0:0a:67:4d:4b:
c9:0a:53:16:1a:32:98:1e:5d:18:e8:e7:4e:02:f3:74:6e:83:
28:30:43:33
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYfrrYx/kYzt33BVGnEOqy8fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVkYTM5NDFjMjdjZmU1YzIzNGM0YmYyMjFlY2IyYTU3OWIy
ZGVhYWIwHhcNMjMwNTA1MTEzMDMyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjNjRmNzkyN2QyYjMzZmFmNTE0NzYzNGJkYmU3YzkyODJkZDU1OWMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmjYOVclInSfvcqqB8K/qavEhU6tO
Q/oiIGmJ18wO2Nu7+NiyapzBthzuBmewa1yyOV7fZZVWQ39WLyWeB8+H1c6pC3h6
9fWHNBqkINV65rykQocJTLnrUK5VtqyXhte5mt8ZbD9Nzc5RvX3/dHLEa3vRnF4F
YuoJmSe8Nskf16u78Yuav7zwQdtouhiFHubR9h4VdknThczFw//0vITlGJhL0yEY
DlKSeeP8+V2KWDf4kBG90QHjpkeQK/AtY5nmEwjBMQo9Q3MuhkBue3ngbMEsQtpU
QJljjzptkoLPeYWwPb80rk7kLcdThZrr1Wz99XJVJdsC5Ho8Y9+nS31brQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFMZPeSfSsz+vUUdjS9vnySgt1VnBMB8GA1UdIwQY
MBaAFF2jlBwnz+XCNMS/Ih7LKlebLeqrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGFPVUhDZlA1Y0kweEw4aUhzc3FWNXN0NnFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC8zMGVkM2UtYzRjNC00ZGU4LWI0ZjEt
ZjExYTM5ZjI2YzNiLzEveGs5NUo5S3pQNjlSUjJOTDItZkpLQzNWV2NFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC8zMGVkM2UtYzRjNC00ZGU4LWI0ZjEtZjExYTM5ZjI2YzNi
LzEvWGFPVUhDZlA1Y0kweEw4aUhzc3FWNXN0NnFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKg9vwTAN
BgkqhkiG9w0BAQsFAAOCAQEAZ4DAOciHJyFREnshEsNmkhQEu2uzhh5PeMYePQUQ
wQYiIbP9Yn4C5uVdhNtZCn1EWkmGoQctRhjZmc01Iusoswh9hFemoaVHbIEtkzZk
rjFqt7Ul4a5sGDzjA0j9RmvDiWMI4jioiTdI0Xu90qTJ79vU9DLqH0Jnr3dZtDwZ
KU7lxePMe81wbZGMgG4PJ5BJf8KtfAsUYTuNLBliofZt774CLF69+gjb9ysB6zxe
cJgT4IgGUS4JXsD2mlU3AWJ5tcnJ1PsYYWuJUO3RHUsGgpr9HMdnaHnLBOoV4oK1
SCxjP4cycNAKZ01LyQpTFhoymB5dGOjnTgLzdG6DKDBDMw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:47 2024 by rpki-client on console-fra.rpki-client.org