Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/6b544c-50e7-4f96-8c8d-8dee1da10741/1/AyCeKy2mQhbkQAMygcoDcT_H9iY.roa
File: AyCeKy2mQhbkQAMygcoDcT_H9iY.roa (raw, json)
Hash identifier: ChpQZyZLJ5yhrmVfRfHkYUCSjIOwjUScneJDJ+gf+sY=
Subject key identifier: 03:20:9E:2B:2D:A6:42:16:E4:40:03:32:81:CA:03:71:3F:C7:F6:26
Certificate issuer: /CN=ec7469c5428eef9ab768d9ed6c2c89443a6bb4be
Certificate serial: 018CCA294E3F7555EABA9DE7EE7FC2FC8309
Authority key identifier: EC:74:69:C5:42:8E:EF:9A:B7:68:D9:ED:6C:2C:89:44:3A:6B:B4:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7HRpxUKO75q3aNntbCyJRDprtL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/6b544c-50e7-4f96-8c8d-8dee1da10741/1/AyCeKy2mQhbkQAMygcoDcT_H9iY.roa
Signing time: Tue 02 Jan 2024 12:32:33 +0000
ROA not before: Tue 02 Jan 2024 12:32:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52209
IP address blocks: 2a09:cbc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jul 2024 15:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:4e:3f:75:55:ea:ba:9d:e7:ee:7f:c2:fc:83:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec7469c5428eef9ab768d9ed6c2c89443a6bb4be
Validity
Not Before: Jan 2 12:32:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=03209e2b2da64216e440033281ca03713fc7f626
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:84:9c:9a:42:27:74:2f:55:30:42:a5:72:4a:
61:6b:47:26:7e:1d:2c:7a:6f:93:b2:15:60:e3:ae:
89:52:d1:b1:27:b6:2a:6e:67:ee:30:a2:52:63:3c:
fe:4f:dc:e8:c0:c2:7c:0a:3e:d9:02:0a:7a:95:da:
ee:3b:04:78:93:b9:07:80:f7:a6:b4:d5:c7:eb:09:
5e:f6:2e:bd:cc:e3:42:86:16:81:00:18:a7:de:a6:
39:4d:c8:52:11:e1:5b:90:d3:a3:90:32:c1:cc:90:
48:3f:a4:9e:a6:c9:e3:77:d9:e0:25:6e:dd:6d:d3:
15:a9:96:b4:86:d1:16:be:f9:3b:b7:03:82:3e:8b:
06:42:4f:f1:4e:26:aa:bc:ca:38:bd:f2:38:db:30:
91:6c:b1:6c:c6:e1:b1:5b:a9:e1:07:25:f1:2e:92:
b3:0b:8b:02:8a:03:6d:f1:bf:75:e5:74:74:c7:cf:
ec:7c:1e:80:c8:45:bc:f0:83:0b:f5:bd:5f:b5:3e:
1a:fa:e0:83:5b:11:cc:e2:13:84:4f:92:5f:b7:57:
d6:74:57:14:65:45:08:90:40:b5:b5:09:62:dd:72:
d5:64:db:04:41:4b:03:84:4a:41:64:e1:7c:ce:58:
15:7f:04:a3:19:89:d3:ed:10:f2:e7:f7:4e:d0:47:
c5:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:20:9E:2B:2D:A6:42:16:E4:40:03:32:81:CA:03:71:3F:C7:F6:26
X509v3 Authority Key Identifier:
keyid:EC:74:69:C5:42:8E:EF:9A:B7:68:D9:ED:6C:2C:89:44:3A:6B:B4:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7HRpxUKO75q3aNntbCyJRDprtL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/6b544c-50e7-4f96-8c8d-8dee1da10741/1/AyCeKy2mQhbkQAMygcoDcT_H9iY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/6b544c-50e7-4f96-8c8d-8dee1da10741/1/7HRpxUKO75q3aNntbCyJRDprtL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:cbc0::/29
Signature Algorithm: sha256WithRSAEncryption
96:4f:d3:cd:09:f0:bc:af:8d:f4:98:19:51:d7:ba:a6:c6:09:
60:50:88:c6:f9:a7:e6:e9:9f:ba:db:6a:23:92:66:7f:1e:9d:
fe:a5:68:b7:7b:77:ab:6a:6d:43:66:7c:b1:f6:e9:d8:19:16:
87:f7:18:be:03:d1:d7:e2:2f:47:89:9f:48:da:d4:5a:40:fb:
34:32:d2:fc:53:53:0a:81:0f:4b:34:0e:5d:e5:3d:f7:71:79:
8e:45:3f:5a:e5:e4:e3:a8:53:fc:6e:fc:cd:32:77:33:bf:62:
51:59:e7:8f:8c:58:bf:8e:12:34:4b:80:ce:27:ef:aa:29:9e:
4b:f9:46:27:8b:ad:e0:54:49:87:ff:9c:4d:86:73:28:b9:95:
78:ed:95:23:55:ef:86:80:58:45:ab:11:80:d5:cf:ad:80:dd:
b6:dc:13:aa:fe:a9:ec:37:1a:5a:b4:f8:76:9a:0c:af:3a:11:
f7:d5:5a:9f:57:9f:10:b6:04:b8:52:7a:21:0d:63:df:24:bc:
10:17:6c:63:fb:c0:05:73:4a:31:8b:2e:55:4e:69:55:1b:66:
2d:df:9d:24:46:36:0a:c6:00:e6:40:01:53:69:a2:24:69:0f:
5e:09:67:80:1f:f0:88:ce:1b:f5:d9:53:0a:83:05:b7:2c:95:
6b:bc:77:7e
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYzKKU4/dVXqup3n7n/C/IMJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVjNzQ2OWM1NDI4ZWVmOWFiNzY4ZDllZDZjMmM4OTQ0M2E2
YmI0YmUwHhcNMjQwMTAyMTIzMjMzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMzIwOWUyYjJkYTY0MjE2ZTQ0MDAzMzI4MWNhMDM3MTNmYzdmNjI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp4ScmkIndC9VMEKlckpha0cmfh0s
em+TshVg466JUtGxJ7YqbmfuMKJSYzz+T9zowMJ8Cj7ZAgp6ldruOwR4k7kHgPem
tNXH6wle9i69zONChhaBABin3qY5TchSEeFbkNOjkDLBzJBIP6Sepsnjd9ngJW7d
bdMVqZa0htEWvvk7twOCPosGQk/xTiaqvMo4vfI42zCRbLFsxuGxW6nhByXxLpKz
C4sCigNt8b915XR0x8/sfB6AyEW88IML9b1ftT4a+uCDWxHM4hOET5Jft1fWdFcU
ZUUIkEC1tQli3XLVZNsEQUsDhEpBZOF8zlgVfwSjGYnT7RDy5/dO0EfF1QIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFAMgnistpkIW5EADMoHKA3E/x/YmMB8GA1UdIwQY
MBaAFOx0acVCju+at2jZ7WwsiUQ6a7S+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN0hScHhVS083NXEzYU5udGJDeUpSRHBydEw0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny82YjU0NGMtNTBlNy00Zjk2LThjOGQt
OGRlZTFkYTEwNzQxLzEvQXlDZUt5Mm1RaGJrUUFNeWdjb0RjVF9IOWlZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny82YjU0NGMtNTBlNy00Zjk2LThjOGQtOGRlZTFkYTEwNzQx
LzEvN0hScHhVS083NXEzYU5udGJDeUpSRHBydEw0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgnLwDAN
BgkqhkiG9w0BAQsFAAOCAQEAlk/TzQnwvK+N9JgZUde6psYJYFCIxvmn5umfuttq
I5Jmfx6d/qVot3t3q2ptQ2Z8sfbp2BkWh/cYvgPR1+IvR4mfSNrUWkD7NDLS/FNT
CoEPSzQOXeU993F5jkU/WuXk46hT/G78zTJ3M79iUVnnj4xYv44SNEuAzifvqime
S/lGJ4ut4FRJh/+cTYZzKLmVeO2VI1XvhoBYRasRgNXPrYDdttwTqv6p7DcaWrT4
dpoMrzoR99Van1efELYEuFJ6IQ1j3yS8EBdsY/vABXNKMYsuVU5pVRtmLd+dJEY2
CsYA5kABU2miJGkPXglngB/wiM4b9dlTCoMFtyyVa7x3fg==
-----END CERTIFICATE-----
Generated at Mon Jul 1 18:05:18 2024 by rpki-client on console-ams.rpki-client.org