Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/17c994-1454-4b59-b661-c007436c20be/1/U6ek4Tul7-r6d7toeAfD3kXwKr0.roa
File: U6ek4Tul7-r6d7toeAfD3kXwKr0.roa (raw, json)
Hash identifier: P3SySEI1QyeEkBtZvGC/IR6yKSdrpO+NRYSswcgRLhY=
Subject key identifier: 53:A7:A4:E1:3B:A5:EF:EA:FA:77:BB:68:78:07:C3:DE:45:F0:2A:BD
Certificate issuer: /CN=9b98f423292a35a98c220f90cf301dd4102584a1
Certificate serial: 018BF8F1DA2379B85C0F40D904F0CB6AD176
Authority key identifier: 9B:98:F4:23:29:2A:35:A9:8C:22:0F:90:CF:30:1D:D4:10:25:84:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m5j0IykqNamMIg-QzzAd1BAlhKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/17c994-1454-4b59-b661-c007436c20be/1/U6ek4Tul7-r6d7toeAfD3kXwKr0.roa
Signing time: Wed 22 Nov 2023 21:31:21 +0000
ROA not before: Wed 22 Nov 2023 21:31:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215978
IP address blocks: 2a13:ef41::/32 maxlen: 48
2a13:ef41:cafe::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f8:f1:da:23:79:b8:5c:0f:40:d9:04:f0:cb:6a:d1:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b98f423292a35a98c220f90cf301dd4102584a1
Validity
Not Before: Nov 22 21:31:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53a7a4e13ba5efeafa77bb687807c3de45f02abd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:eb:3f:47:c3:f2:4b:e6:da:91:bf:ce:34:5c:
2b:f5:9b:a1:09:83:c5:c0:11:30:d6:44:89:3d:81:
fc:2f:88:9a:cb:0c:bf:a7:00:f5:86:af:ea:95:a1:
cf:0a:d9:6d:4d:b7:18:e1:53:95:2f:87:8f:2b:28:
95:35:fa:b4:36:8f:5c:a3:7a:3e:04:64:23:c1:09:
00:af:30:ac:3a:e1:8e:fb:a1:e0:e5:cc:3f:e7:63:
c2:2f:87:24:5a:c1:7b:db:4c:85:35:96:fb:16:a4:
1f:86:59:43:f0:3b:cb:52:05:e8:05:8e:49:db:0e:
5e:71:f4:53:97:1a:2f:f8:f9:4c:e6:2e:8d:81:c8:
de:61:a8:3a:3b:25:44:48:d3:a9:ec:09:e6:d0:2e:
89:d0:8e:4f:a9:f7:7f:d0:ae:00:a8:63:a7:b7:b7:
ab:5d:c0:df:f5:1d:c0:c8:29:d6:93:85:1b:7f:13:
01:cb:be:31:d1:47:73:c4:37:6b:c6:a4:dd:b6:26:
33:92:87:21:be:95:55:7d:e6:7a:c4:ef:38:bd:53:
f7:55:33:3b:2e:be:29:7b:52:b8:74:44:3d:cc:5b:
fb:60:61:4d:a2:35:20:b2:17:31:ed:91:61:ab:22:
28:a8:d8:2f:d3:b1:58:7b:76:4c:5c:5a:3a:4f:76:
f1:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:A7:A4:E1:3B:A5:EF:EA:FA:77:BB:68:78:07:C3:DE:45:F0:2A:BD
X509v3 Authority Key Identifier:
keyid:9B:98:F4:23:29:2A:35:A9:8C:22:0F:90:CF:30:1D:D4:10:25:84:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m5j0IykqNamMIg-QzzAd1BAlhKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/17c994-1454-4b59-b661-c007436c20be/1/U6ek4Tul7-r6d7toeAfD3kXwKr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/17c994-1454-4b59-b661-c007436c20be/1/m5j0IykqNamMIg-QzzAd1BAlhKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:ef41::/32
Signature Algorithm: sha256WithRSAEncryption
04:6a:cc:3c:be:be:22:8d:21:0a:da:1c:3b:5a:a4:42:f7:b5:
0c:dc:31:56:76:82:e5:12:8c:8a:96:b1:00:c2:d0:0b:97:6e:
39:cb:15:eb:a1:0a:a3:63:34:86:3f:b4:90:6e:9f:2c:a0:df:
d4:0f:05:47:9e:53:44:54:2f:ab:85:d2:8d:38:3e:b3:9f:d1:
f1:a3:e7:fe:db:c3:90:ee:02:c5:bb:e0:84:8a:3c:68:b3:af:
e7:13:2b:c9:25:4f:d4:38:84:a7:25:79:d7:98:ca:e5:af:48:
ec:57:67:7d:9b:fa:dc:1a:2e:b6:84:c5:c0:d9:bd:23:b5:cb:
a2:c0:67:c8:10:a2:fb:3a:83:90:04:f3:dc:91:61:b3:38:4b:
0b:34:4a:1b:34:ca:04:a4:34:4d:76:ca:b1:97:b1:7b:60:b8:
91:6c:4b:ee:70:fc:55:d3:c2:5c:b7:01:4e:95:e7:bd:ad:6d:
67:b6:eb:00:92:a5:ed:2a:9c:73:69:83:5f:f6:c4:36:a0:bb:
c8:02:7c:a5:0f:f6:a3:bf:55:46:95:bd:00:02:54:7b:1f:41:
c9:49:d6:0e:d8:cd:6b:73:8f:e1:df:60:fc:85:2c:ba:69:a7:
5e:5d:b6:6f:07:89:05:99:91:79:89:91:8d:90:53:96:71:8d:
fa:7d:ac:30
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYv48dojebhcD0DZBPDLatF2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDliOThmNDIzMjkyYTM1YTk4YzIyMGY5MGNmMzAxZGQ0MTAy
NTg0YTEwHhcNMjMxMTIyMjEzMTIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1M2E3YTRlMTNiYTVlZmVhZmE3N2JiNjg3ODA3YzNkZTQ1ZjAyYWJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAges/R8PyS+bakb/ONFwr9ZuhCYPF
wBEw1kSJPYH8L4iaywy/pwD1hq/qlaHPCtltTbcY4VOVL4ePKyiVNfq0No9co3o+
BGQjwQkArzCsOuGO+6Hg5cw/52PCL4ckWsF720yFNZb7FqQfhllD8DvLUgXoBY5J
2w5ecfRTlxov+PlM5i6NgcjeYag6OyVESNOp7Anm0C6J0I5Pqfd/0K4AqGOnt7er
XcDf9R3AyCnWk4UbfxMBy74x0UdzxDdrxqTdtiYzkochvpVVfeZ6xO84vVP3VTM7
Lr4pe1K4dEQ9zFv7YGFNojUgshcx7ZFhqyIoqNgv07FYe3ZMXFo6T3bxVwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFFOnpOE7pe/q+ne7aHgHw95F8Cq9MB8GA1UdIwQY
MBaAFJuY9CMpKjWpjCIPkM8wHdQQJYShMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbTVqMEl5a3FOYW1NSWctUXp6QWQxQkFsaEtFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8xN2M5OTQtMTQ1NC00YjU5LWI2NjEt
YzAwNzQzNmMyMGJlLzEvVTZlazRUdWw3LXI2ZDd0b2VBZkQza1h3S3IwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8xN2M5OTQtMTQ1NC00YjU5LWI2NjEtYzAwNzQzNmMyMGJl
LzEvbTVqMEl5a3FOYW1NSWctUXp6QWQxQkFsaEtFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhPvQTAN
BgkqhkiG9w0BAQsFAAOCAQEABGrMPL6+Io0hCtocO1qkQve1DNwxVnaC5RKMipax
AMLQC5duOcsV66EKo2M0hj+0kG6fLKDf1A8FR55TRFQvq4XSjTg+s5/R8aPn/tvD
kO4CxbvghIo8aLOv5xMrySVP1DiEpyV515jK5a9I7FdnfZv63BoutoTFwNm9I7XL
osBnyBCi+zqDkATz3JFhszhLCzRKGzTKBKQ0TXbKsZexe2C4kWxL7nD8VdPCXLcB
TpXnva1tZ7brAJKl7Sqcc2mDX/bENqC7yAJ8pQ/2o79VRpW9AAJUex9ByUnWDtjN
a3OP4d9g/IUsummnXl22bweJBZmReYmRjZBTlnGN+n2sMA==
-----END CERTIFICATE-----
Generated at Thu Nov 23 22:44:01 2023 by rpki-client on console-ams.rpki-client.org