Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/cTeYEFWc4lDpnXwVg61MPcsJjiE.roa
File: cTeYEFWc4lDpnXwVg61MPcsJjiE.roa (raw, json)
Hash identifier: q+w0XqX8k/z/5dH08/7hl46nTKS9PrIDJOnzROAOGbY=
Subject key identifier: 71:37:98:10:55:9C:E2:50:E9:9D:7C:15:83:AD:4C:3D:CB:09:8E:21
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 01856F1DCCF860DBA5B7018D857357FA81E1
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/cTeYEFWc4lDpnXwVg61MPcsJjiE.roa
Signing time: Sun 01 Jan 2023 20:55:02 +0000
ROA not before: Sun 01 Jan 2023 20:55:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24013
IP address blocks: 2a09:7:1000::/36 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:cc:f8:60:db:a5:b7:01:8d:85:73:57:fa:81:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 1 20:55:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=71379810559ce250e99d7c1583ad4c3dcb098e21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:bb:69:4f:e7:73:54:bb:8e:46:96:4c:65:88:
f2:29:da:68:3b:db:4b:43:69:62:5d:17:c0:88:79:
61:2e:e6:b6:e1:cb:db:d0:53:38:67:45:af:b8:ae:
df:ab:87:23:a9:21:32:0a:5b:aa:9e:fb:52:38:6a:
1f:1a:17:35:1f:25:ab:f2:4d:c1:4f:11:97:85:f9:
06:3d:00:06:8c:12:fc:2d:0d:6e:db:29:06:b1:31:
a5:80:a4:87:02:89:a3:ad:27:2e:4c:de:83:f2:af:
6b:76:f4:e9:70:9d:2b:49:03:91:5b:09:73:e1:e8:
1f:95:f5:54:d1:fc:9d:11:53:d7:13:ed:f3:51:ef:
89:0c:75:08:5f:27:87:58:d2:7a:49:60:a3:f0:1f:
73:20:6b:75:4b:13:85:f7:f7:19:05:9a:33:4e:0e:
46:9b:60:8a:5b:49:cf:78:4e:e5:97:d0:e9:b2:af:
46:2f:58:3e:77:e3:b7:6f:d5:a3:20:2f:47:4f:8a:
22:2a:45:c8:57:a4:bd:d0:16:58:45:09:27:7a:d9:
ad:b9:d8:46:81:e6:2d:12:db:28:b6:69:5c:37:00:
94:c2:13:8f:fc:3a:03:20:39:7e:11:02:1b:8a:3b:
ba:da:66:2e:75:ea:f2:96:42:5e:34:b5:af:22:b5:
ee:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:37:98:10:55:9C:E2:50:E9:9D:7C:15:83:AD:4C:3D:CB:09:8E:21
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/cTeYEFWc4lDpnXwVg61MPcsJjiE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:7:1000::/36
Signature Algorithm: sha256WithRSAEncryption
34:91:a1:b3:b3:21:b8:65:5e:fe:2d:da:72:dd:4e:75:c9:8a:
26:51:21:02:c2:71:b5:0e:2b:83:5a:77:2b:6e:e5:8b:2a:ca:
3a:e9:1e:70:ab:23:81:65:7c:97:7e:7d:3a:4c:4d:bb:f1:81:
42:2c:45:dc:2a:04:de:17:48:6e:3b:21:9c:b0:a9:08:c5:6d:
90:cd:5c:ed:1e:89:41:21:ef:1f:2c:12:df:3c:df:26:72:27:
a3:b2:c5:e1:98:b7:a0:7a:0a:0c:bf:c5:f1:10:8d:9e:dc:18:
d6:6b:c4:72:43:0b:97:82:89:b8:4e:2d:35:ac:1d:6b:0c:ee:
82:ce:dc:bd:20:49:db:62:ce:52:bd:63:0a:2f:4b:c0:bf:87:
b7:f3:92:c1:1c:b9:6e:b8:c4:f1:b4:3e:d6:6e:95:26:a0:12:
fb:0c:75:87:69:77:3a:0b:57:35:79:64:5c:98:da:9f:94:86:
6b:75:1d:51:8e:70:77:fe:0a:34:c2:e1:af:48:92:fe:bf:af:
48:e7:1c:97:ad:5e:10:e1:05:c7:06:9a:29:33:60:e6:c4:0a:
b4:68:d3:0e:3e:5a:20:92:ad:2c:7e:e1:1e:10:28:bd:b5:a1:
00:c8:e6:3d:bb:86:d0:34:8a:76:ae:84:ea:3b:f6:77:d2:45:
af:5b:64:d7
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVvHcz4YNultwGNhXNX+oHhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1NzZlYjJjYzQ2MmU2ZTRiZjBkZTY5YjlmNjM0ODc1ZGVi
YmFhZTIwHhcNMjMwMTAxMjA1NTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MTM3OTgxMDU1OWNlMjUwZTk5ZDdjMTU4M2FkNGMzZGNiMDk4ZTIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtrtpT+dzVLuORpZMZYjyKdpoO9tL
Q2liXRfAiHlhLua24cvb0FM4Z0WvuK7fq4cjqSEyCluqnvtSOGofGhc1HyWr8k3B
TxGXhfkGPQAGjBL8LQ1u2ykGsTGlgKSHAomjrScuTN6D8q9rdvTpcJ0rSQORWwlz
4egflfVU0fydEVPXE+3zUe+JDHUIXyeHWNJ6SWCj8B9zIGt1SxOF9/cZBZozTg5G
m2CKW0nPeE7ll9Dpsq9GL1g+d+O3b9WjIC9HT4oiKkXIV6S90BZYRQknetmtudhG
geYtEtsotmlcNwCUwhOP/DoDIDl+EQIbiju62mYuderylkJeNLWvIrXuRwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFHE3mBBVnOJQ6Z18FYOtTD3LCY4hMB8GA1UdIwQY
MBaAFKV26yzEYubkvw3mm59jSHXeu6riMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFhickxNUmk1dVNfRGVhYm4yTklkZDY3cXVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85MzE5MjctOWYzOC00MWI2LTg3ZmEt
MjU0YWNkOTJiNGUxLzEvY1RlWUVGV2M0bERwblh3Vmc2MU1QY3NKamlFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny85MzE5MjctOWYzOC00MWI2LTg3ZmEtMjU0YWNkOTJiNGUx
LzEvcFhickxNUmk1dVNfRGVhYm4yTklkZDY3cXVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKgkABxAw
DQYJKoZIhvcNAQELBQADggEBADSRobOzIbhlXv4t2nLdTnXJiiZRIQLCcbUOK4Na
dytu5YsqyjrpHnCrI4FlfJd+fTpMTbvxgUIsRdwqBN4XSG47IZywqQjFbZDNXO0e
iUEh7x8sEt883yZyJ6OyxeGYt6B6Cgy/xfEQjZ7cGNZrxHJDC5eCibhOLTWsHWsM
7oLO3L0gSdtizlK9YwovS8C/h7fzksEcuW64xPG0PtZulSagEvsMdYdpdzoLVzV5
ZFyY2p+Uhmt1HVGOcHf+CjTC4a9Ikv6/r0jnHJetXhDhBccGmikzYObECrRo0w4+
WiCSrSx+4R4QKL21oQDI5j27htA0inauhOo79nfSRa9bZNc=
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:34 2024 by rpki-client on console-fra.rpki-client.org