Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/1-sgU4rROJgTSSW2_haV2ctFYPMM.roa
File: 1-sgU4rROJgTSSW2_haV2ctFYPMM.roa (raw, json)
Hash identifier: jWwm93AXIf+RXYodynxE1Vv24g2EgML3GqOcZ0LfAYc=
Subject key identifier: FA:C8:14:E2:B4:4E:26:04:D2:49:6D:BF:85:A5:76:72:D1:58:3C:C3
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 0186A69AD0D17E6E79EF74497C70207E9D99
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/1-sgU4rROJgTSSW2_haV2ctFYPMM.roa
Signing time: Fri 03 Mar 2023 08:33:29 +0000
ROA not before: Fri 03 Mar 2023 08:33:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199654
IP address blocks: 2a12:bec0:200::/44 maxlen: 44
Validation: Failed, certificate revoked on Tue 07 Mar 2023 10:02:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a6:9a:d0:d1:7e:6e:79:ef:74:49:7c:70:20:7e:9d:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Mar 3 08:33:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fac814e2b44e2604d2496dbf85a57672d1583cc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a8:8e:04:10:10:aa:32:0a:7d:79:1b:31:e5:
cb:3d:c3:6c:11:26:12:0a:fc:9c:f9:d2:e9:ac:57:
a1:1c:22:9f:cc:f0:96:d3:da:db:05:cf:21:ec:2d:
90:e7:6f:13:18:3d:7b:52:18:2c:a2:85:b5:c2:22:
ab:e2:dc:7d:3e:bd:3d:69:52:39:86:38:cd:79:c5:
a7:3a:db:ac:a4:60:28:e4:ca:c1:29:32:8e:3c:5a:
b8:81:c6:34:df:85:fa:df:e6:62:e7:f8:3a:41:7e:
05:23:53:ea:a0:b1:41:e8:f2:78:9e:c2:65:cb:4b:
62:ff:97:75:5d:73:7e:84:0e:14:81:00:1b:58:84:
cc:cc:69:36:da:69:89:dd:db:fc:ed:e5:e6:61:ee:
a7:88:b5:82:85:92:0d:fb:f1:7b:8e:a7:49:1f:87:
57:8f:c6:74:ee:b7:f2:68:18:47:e1:15:f6:19:d0:
d3:3c:fb:5e:5b:b9:3f:26:01:0e:d9:a1:80:38:9d:
f6:3c:ea:8e:95:ef:f7:7c:0b:d8:69:5b:2b:8f:53:
7d:17:be:bb:7a:ab:d1:db:7e:33:e6:e2:2e:ba:62:
29:7a:c4:7e:3a:a1:ae:c4:22:02:52:be:d4:c6:27:
cd:52:75:9f:b4:f2:db:e9:1f:7f:54:de:18:29:84:
5e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:C8:14:E2:B4:4E:26:04:D2:49:6D:BF:85:A5:76:72:D1:58:3C:C3
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/1-sgU4rROJgTSSW2_haV2ctFYPMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:200::/44
Signature Algorithm: sha256WithRSAEncryption
0e:91:24:60:e9:fa:11:66:91:08:ae:c8:85:7f:c2:fc:25:80:
96:6e:2c:63:4c:17:9f:d6:82:8e:d9:f0:ae:22:6d:b6:c9:dc:
79:74:86:1a:6f:0e:c8:08:5b:b2:07:d1:35:f7:c3:5d:4b:e4:
c0:8b:b3:bb:9f:46:43:92:bb:d6:36:3d:1c:24:01:e9:df:12:
bd:2c:91:30:7b:40:51:49:cd:9f:b3:c1:c5:53:5a:b9:2d:a3:
ee:30:7d:9c:d6:e4:c5:17:04:99:eb:51:f1:f8:cf:eb:07:f2:
2b:18:cb:fc:49:df:74:77:9d:ea:b2:40:bd:70:73:18:24:2b:
63:b2:7c:71:41:5f:5e:4b:9b:84:6c:38:96:7f:42:05:7e:0e:
68:dc:0d:ef:7d:3c:12:f4:64:1e:3d:96:4b:37:37:ce:65:16:
d6:df:e7:f1:6e:9d:ab:7b:ef:0a:1e:51:0c:37:41:ae:d7:42:
ae:10:81:02:d2:de:8c:30:df:a8:13:fb:78:f2:34:d1:f2:28:
cf:e3:21:08:a7:d6:64:65:db:47:a5:03:da:97:0e:79:f5:d8:
51:b7:51:70:97:59:7e:72:85:58:50:4f:58:8e:98:42:1b:96:
72:b4:9e:e3:bb:65:66:58:c2:11:bc:8f:bd:b4:7e:23:6d:88:
0a:dc:82:6c
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgISAYammtDRfm5573RJfHAgfp2ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj
M2Q2NmYwHhcNMjMwMzAzMDgzMzI5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYWM4MTRlMmI0NGUyNjA0ZDI0OTZkYmY4NWE1NzY3MmQxNTgzY2MzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvaiOBBAQqjIKfXkbMeXLPcNsESYS
Cvyc+dLprFehHCKfzPCW09rbBc8h7C2Q528TGD17UhgsooW1wiKr4tx9Pr09aVI5
hjjNecWnOtuspGAo5MrBKTKOPFq4gcY034X63+Zi5/g6QX4FI1PqoLFB6PJ4nsJl
y0ti/5d1XXN+hA4UgQAbWITMzGk22mmJ3dv87eXmYe6niLWChZIN+/F7jqdJH4dX
j8Z07rfyaBhH4RX2GdDTPPteW7k/JgEO2aGAOJ32POqOle/3fAvYaVsrj1N9F767
eqvR234z5uIuumIpesR+OqGuxCICUr7UxifNUnWftPLb6R9/VN4YKYReXQIDAQAB
o4ICDTCCAgkwHQYDVR0OBBYEFPrIFOK0TiYE0kltv4WldnLRWDzDMB8GA1UdIwQY
MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt
NTUzNjljZjUwN2VlLzEvMS1zZ1U0clJPSmdUU1NXMl9oYVYyY3RGWVBNTS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvODcvOTdmNDlhLTdhOTUtNGRkNS04Yzc0LTU1MzY5Y2Y1MDdl
ZS8xL3MzNGhXa0ZlMTdYZVMyM0JMeTk3ZDFERDFtOC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHBCoSvsAC
ADANBgkqhkiG9w0BAQsFAAOCAQEADpEkYOn6EWaRCK7IhX/C/CWAlm4sY0wXn9aC
jtnwriJttsnceXSGGm8OyAhbsgfRNffDXUvkwIuzu59GQ5K71jY9HCQB6d8SvSyR
MHtAUUnNn7PBxVNauS2j7jB9nNbkxRcEmetR8fjP6wfyKxjL/EnfdHed6rJAvXBz
GCQrY7J8cUFfXkubhGw4ln9CBX4OaNwN7308EvRkHj2WSzc3zmUW1t/n8W6dq3vv
Ch5RDDdBrtdCrhCBAtLejDDfqBP7ePI00fIoz+MhCKfWZGXbR6UD2pcOefXYUbdR
cJdZfnKFWFBPWI6YQhuWcrSe47tlZljCEbyPvbR+I22ICtyCbA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org