Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/HaJvCxpVPb9e-OVuCcZQdWZMBSo.roa
File: HaJvCxpVPb9e-OVuCcZQdWZMBSo.roa (raw, json)
Hash identifier: rVQpVOIeRIJgayH9DktBJxHnv+hEurXSpvHQKQrD5n8=
Subject key identifier: 1D:A2:6F:0B:1A:55:3D:BF:5E:F8:E5:6E:09:C6:50:75:66:4C:05:2A
Certificate issuer: /CN=ee31367df6d1861071c92bae726523326f45ba2a
Certificate serial: 0189DA0DB2A88F67E29855CC76105482F986
Authority key identifier: EE:31:36:7D:F6:D1:86:10:71:C9:2B:AE:72:65:23:32:6F:45:BA:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/HaJvCxpVPb9e-OVuCcZQdWZMBSo.roa
Signing time: Wed 09 Aug 2023 11:27:58 +0000
ROA not before: Wed 09 Aug 2023 11:27:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200325
IP address blocks: 2a0e:1cc0:4::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:da:0d:b2:a8:8f:67:e2:98:55:cc:76:10:54:82:f9:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee31367df6d1861071c92bae726523326f45ba2a
Validity
Not Before: Aug 9 11:27:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1da26f0b1a553dbf5ef8e56e09c65075664c052a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:20:5e:86:ef:9a:1c:d5:1b:19:d2:bf:5a:50:
27:09:dc:49:41:17:20:22:c3:68:bf:4d:10:20:fb:
19:79:8b:8d:20:b4:0d:ee:d0:09:b3:b6:7f:58:35:
14:ab:d4:5e:53:e6:ec:5c:ca:ff:4e:ca:78:67:70:
a4:a9:b3:15:7a:3d:1c:1d:90:83:eb:58:23:9b:e6:
a6:cc:4f:67:c3:62:cd:3f:a6:a8:6a:73:a3:3f:33:
ad:ea:9e:a4:c9:85:ae:52:12:cf:90:86:34:0f:c8:
44:e3:b9:84:ff:2d:4e:55:62:5c:71:23:5a:87:1c:
81:ba:f6:c0:86:5d:5a:e3:cc:d4:85:0c:32:27:b0:
43:06:85:12:e3:f6:f0:e6:72:7f:c3:e8:5f:7c:7e:
1c:2b:65:bc:5e:6e:11:a4:59:cc:6b:5d:e6:02:cf:
02:db:15:1a:c7:7a:70:54:5b:ca:97:53:3e:9b:4c:
0a:29:fa:c8:08:2f:28:0d:5c:ff:d7:ad:37:f4:b6:
9c:35:6f:5e:e8:71:d5:9a:7f:71:6c:ed:6a:6d:24:
ed:29:7e:d3:ae:91:57:37:47:73:6f:81:68:0a:dc:
98:9a:0a:9e:98:f4:2a:4c:5d:f4:a5:b3:40:a1:59:
49:a2:a7:43:2c:9f:37:a9:49:6a:9a:de:6f:67:47:
a5:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A2:6F:0B:1A:55:3D:BF:5E:F8:E5:6E:09:C6:50:75:66:4C:05:2A
X509v3 Authority Key Identifier:
keyid:EE:31:36:7D:F6:D1:86:10:71:C9:2B:AE:72:65:23:32:6F:45:BA:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/HaJvCxpVPb9e-OVuCcZQdWZMBSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/7jE2ffbRhhBxySuucmUjMm9Fuio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:1cc0:4::/48
Signature Algorithm: sha256WithRSAEncryption
ce:ac:72:55:d3:4a:93:f3:90:38:25:50:56:ce:91:e7:9b:50:
9c:da:2d:96:45:4b:95:ac:90:79:14:f2:be:b1:d0:86:ad:db:
01:e5:8b:c0:4a:2c:68:c3:a8:f9:4f:fe:1d:db:f2:e4:77:2a:
ff:39:8a:8b:28:80:31:2a:72:8d:c5:98:ca:43:91:c3:75:3d:
a5:e7:7c:ab:56:9d:ac:14:6c:65:4e:38:7a:70:38:49:d0:fb:
93:44:9d:89:85:9e:4c:b9:09:88:ab:13:5e:53:35:3f:c8:32:
a1:45:19:a3:71:e0:ae:b3:36:70:b0:62:ff:4e:77:f1:be:89:
d8:79:5f:27:ef:43:8f:36:ec:f7:d9:d4:76:91:84:00:53:57:
d5:d0:4f:72:5a:b7:87:f5:5f:2c:17:d3:8b:fe:99:e2:91:84:
18:b8:be:f2:bb:1f:ec:af:ed:04:6a:11:da:fd:c5:ae:e8:1f:
d8:e5:0f:b9:f9:ff:01:c4:b9:ca:c7:03:e4:68:f3:d6:db:20:
4e:e2:48:d4:f3:1b:05:44:2e:23:92:82:a8:90:ad:59:87:73:
46:c1:cc:65:7f:50:f9:06:ef:27:a0:68:72:b4:21:18:c1:2f:
8c:c9:06:76:96:82:ce:ff:1d:72:57:2f:16:a2:a5:59:b1:ed:
18:f0:d1:a8
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYnaDbKoj2fimFXMdhBUgvmGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlMzEzNjdkZjZkMTg2MTA3MWM5MmJhZTcyNjUyMzMyNmY0
NWJhMmEwHhcNMjMwODA5MTEyNzU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZGEyNmYwYjFhNTUzZGJmNWVmOGU1NmUwOWM2NTA3NTY2NGMwNTJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArCBehu+aHNUbGdK/WlAnCdxJQRcg
IsNov00QIPsZeYuNILQN7tAJs7Z/WDUUq9ReU+bsXMr/Tsp4Z3CkqbMVej0cHZCD
61gjm+amzE9nw2LNP6aoanOjPzOt6p6kyYWuUhLPkIY0D8hE47mE/y1OVWJccSNa
hxyBuvbAhl1a48zUhQwyJ7BDBoUS4/bw5nJ/w+hffH4cK2W8Xm4RpFnMa13mAs8C
2xUax3pwVFvKl1M+m0wKKfrICC8oDVz/16039LacNW9e6HHVmn9xbO1qbSTtKX7T
rpFXN0dzb4FoCtyYmgqemPQqTF30pbNAoVlJoqdDLJ83qUlqmt5vZ0elZQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFB2ibwsaVT2/XvjlbgnGUHVmTAUqMB8GA1UdIwQY
MBaAFO4xNn320YYQcckrrnJlIzJvRboqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN2pFMmZmYlJoaEJ4eVN1dWNtVWpNbTlGdWlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8xYmI0ZGQtZTljNC00ZDNkLTlhM2It
MTE1OWRiZmJlZDU0LzEvSGFKdkN4cFZQYjllLU9WdUNjWlFkV1pNQlNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8xYmI0ZGQtZTljNC00ZDNkLTlhM2ItMTE1OWRiZmJlZDU0
LzEvN2pFMmZmYlJoaEJ4eVN1dWNtVWpNbTlGdWlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg4cwAAE
MA0GCSqGSIb3DQEBCwUAA4IBAQDOrHJV00qT85A4JVBWzpHnm1Cc2i2WRUuVrJB5
FPK+sdCGrdsB5YvASixow6j5T/4d2/Lkdyr/OYqLKIAxKnKNxZjKQ5HDdT2l53yr
Vp2sFGxlTjh6cDhJ0PuTRJ2JhZ5MuQmIqxNeUzU/yDKhRRmjceCuszZwsGL/Tnfx
vonYeV8n70OPNuz32dR2kYQAU1fV0E9yWreH9V8sF9OL/pnikYQYuL7yux/sr+0E
ahHa/cWu6B/Y5Q+5+f8BxLnKxwPkaPPW2yBO4kjU8xsFRC4jkoKokK1Zh3NGwcxl
f1D5Bu8noGhytCEYwS+MyQZ2loLO/x1yVy8WoqVZse0Y8NGo
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org