Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/b278df-ed37-4de7-a675-107a8d85bd30/1/iRWwu4e1OYn5GUaZ6p5GWzBVxfg.roa
File: iRWwu4e1OYn5GUaZ6p5GWzBVxfg.roa (raw, json)
Hash identifier: x729XSaVq06BPNbgwGBcnTpPAgg5McsZpgOHZBc+Pwg=
Subject key identifier: 89:15:B0:BB:87:B5:39:89:F9:19:46:99:EA:9E:46:5B:30:55:C5:F8
Certificate issuer: /CN=ed5a6ba2d2248bc4782ac0fdb3c64b946640b09c
Certificate serial: 018BF172E862E9448FFB49C4CEFCCFE14169
Authority key identifier: ED:5A:6B:A2:D2:24:8B:C4:78:2A:C0:FD:B3:C6:4B:94:66:40:B0:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7VprotIki8R4KsD9s8ZLlGZAsJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/b278df-ed37-4de7-a675-107a8d85bd30/1/iRWwu4e1OYn5GUaZ6p5GWzBVxfg.roa
Signing time: Tue 21 Nov 2023 10:35:21 +0000
ROA not before: Tue 21 Nov 2023 10:35:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210883
IP address blocks: 2a11:4280::/29 maxlen: 128
2a07:1c40::/29 maxlen: 128
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f1:72:e8:62:e9:44:8f:fb:49:c4:ce:fc:cf:e1:41:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed5a6ba2d2248bc4782ac0fdb3c64b946640b09c
Validity
Not Before: Nov 21 10:35:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8915b0bb87b53989f9194699ea9e465b3055c5f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:35:cb:1f:59:d4:c6:a1:b2:cf:c8:af:07:60:
d4:8c:f2:98:da:ad:1c:a2:22:6b:8f:b2:f8:85:0b:
06:ce:5d:60:97:07:9c:05:11:7a:72:26:c5:86:ec:
77:14:0f:64:64:1a:d2:44:e1:dd:d3:05:62:a4:5d:
2f:14:76:18:0f:90:f8:07:50:24:27:c7:ad:61:49:
41:3e:65:70:ba:88:cf:c1:a5:9d:e3:b8:b8:16:6e:
cb:32:dc:8d:2e:28:8d:9e:32:13:9e:7c:86:54:76:
a7:75:dd:ff:4e:49:fe:85:34:29:23:bf:b2:e9:d5:
e0:00:3e:9d:ea:42:06:f1:40:47:e4:e0:65:64:6c:
7b:59:1e:b3:d8:f9:3d:03:48:e4:38:a1:49:1e:a4:
14:51:a1:c3:f7:3d:73:2f:8a:c8:9b:f5:68:56:78:
e6:83:f1:6b:9c:b4:64:9d:69:89:66:7c:26:d5:d7:
f0:cf:42:02:b0:5e:0d:33:ab:62:f6:26:23:f0:a7:
7d:60:bd:ae:05:26:b4:62:fc:d7:5d:52:3d:13:b6:
0f:ec:5d:fe:71:15:98:59:73:21:81:8a:bc:7b:80:
b0:fd:fd:0e:f2:c0:f1:c5:40:ae:4a:e2:8b:c2:d5:
48:db:a0:28:ab:30:7f:b1:22:e2:6d:9a:c5:07:aa:
5a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:15:B0:BB:87:B5:39:89:F9:19:46:99:EA:9E:46:5B:30:55:C5:F8
X509v3 Authority Key Identifier:
keyid:ED:5A:6B:A2:D2:24:8B:C4:78:2A:C0:FD:B3:C6:4B:94:66:40:B0:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7VprotIki8R4KsD9s8ZLlGZAsJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/b278df-ed37-4de7-a675-107a8d85bd30/1/iRWwu4e1OYn5GUaZ6p5GWzBVxfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/b278df-ed37-4de7-a675-107a8d85bd30/1/7VprotIki8R4KsD9s8ZLlGZAsJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:1c40::/29
2a11:4280::/29
Signature Algorithm: sha256WithRSAEncryption
2a:0c:ae:fc:10:39:05:6e:50:a6:b2:b4:ef:92:47:3f:e6:d6:
2d:06:f9:77:cc:da:74:b7:bf:4f:03:3d:34:02:6a:cf:81:f3:
21:29:67:fc:6a:d9:d3:38:c7:6c:5e:bf:a2:41:2b:8f:59:fd:
c5:5f:87:ba:ab:39:9e:f2:a3:e5:4d:3c:2d:54:82:82:55:4a:
bd:f2:0f:e3:8f:27:f7:54:ee:b7:fa:e5:35:1d:4f:ed:e9:8a:
42:00:ff:7a:74:71:eb:0a:eb:7d:59:48:3f:8e:5f:fc:8a:a2:
cc:31:1a:ae:3b:0a:8b:a7:4e:42:0b:5f:79:e8:46:1b:f2:cc:
47:75:2a:a6:ad:5c:21:8f:9a:c5:34:3d:49:6c:f9:59:88:ba:
0f:b0:3f:d2:8d:76:15:de:8d:9d:35:ce:33:a3:ad:5b:df:e6:
fd:20:7c:60:ca:3f:64:35:7d:32:8d:ee:1c:13:01:e7:5a:d2:
15:1d:31:45:0d:e9:1f:01:84:57:90:05:b8:cf:52:2c:bd:de:
48:04:a6:e8:bc:bf:2d:25:c1:e7:ae:79:11:e4:61:c6:a2:fc:
a2:2c:f0:b5:55:f4:08:73:7c:36:69:95:ee:ad:89:32:a9:26:
70:17:91:1b:c6:22:1e:c0:7d:b8:ff:ea:d3:58:2a:8b:13:eb:
c7:f7:43:c8
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYvxcuhi6USP+0nEzvzP4UFpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVkNWE2YmEyZDIyNDhiYzQ3ODJhYzBmZGIzYzY0Yjk0NjY0
MGIwOWMwHhcNMjMxMTIxMTAzNTIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OTE1YjBiYjg3YjUzOTg5ZjkxOTQ2OTllYTllNDY1YjMwNTVjNWY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArzXLH1nUxqGyz8ivB2DUjPKY2q0c
oiJrj7L4hQsGzl1glwecBRF6cibFhux3FA9kZBrSROHd0wVipF0vFHYYD5D4B1Ak
J8etYUlBPmVwuojPwaWd47i4Fm7LMtyNLiiNnjITnnyGVHandd3/Tkn+hTQpI7+y
6dXgAD6d6kIG8UBH5OBlZGx7WR6z2Pk9A0jkOKFJHqQUUaHD9z1zL4rIm/VoVnjm
g/FrnLRknWmJZnwm1dfwz0ICsF4NM6ti9iYj8Kd9YL2uBSa0YvzXXVI9E7YP7F3+
cRWYWXMhgYq8e4Cw/f0O8sDxxUCuSuKLwtVI26AoqzB/sSLibZrFB6paoQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFIkVsLuHtTmJ+RlGmeqeRlswVcX4MB8GA1UdIwQY
MBaAFO1aa6LSJIvEeCrA/bPGS5RmQLCcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN1Zwcm90SWtpOFI0S3NEOXM4WkxsR1pBc0p3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9iMjc4ZGYtZWQzNy00ZGU3LWE2NzUt
MTA3YThkODViZDMwLzEvaVJXd3U0ZTFPWW41R1VhWjZwNUdXekJWeGZnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC9iMjc4ZGYtZWQzNy00ZGU3LWE2NzUtMTA3YThkODViZDMw
LzEvN1Zwcm90SWtpOFI0S3NEOXM4WkxsR1pBc0p3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUDKgccQAMF
AyoRQoAwDQYJKoZIhvcNAQELBQADggEBACoMrvwQOQVuUKaytO+SRz/m1i0G+XfM
2nS3v08DPTQCas+B8yEpZ/xq2dM4x2xev6JBK49Z/cVfh7qrOZ7yo+VNPC1UgoJV
Sr3yD+OPJ/dU7rf65TUdT+3pikIA/3p0cesK631ZSD+OX/yKoswxGq47CounTkIL
X3noRhvyzEd1KqatXCGPmsU0PUls+VmIug+wP9KNdhXejZ01zjOjrVvf5v0gfGDK
P2Q1fTKN7hwTAeda0hUdMUUN6R8BhFeQBbjPUiy93kgEpui8vy0lweeueRHkYcai
/KIs8LVV9AhzfDZple6tiTKpJnAXkRvGIh7Afbj/6tNYKosT68f3Q8g=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:52 2024 by rpki-client on console-fra.rpki-client.org