Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/2LmewaVkNC4lBmDz-THFDoZulPY.roa
File: 2LmewaVkNC4lBmDz-THFDoZulPY.roa (raw, json)
Hash identifier: 5DC6L4Wn6t1kbt1h5czy94th0Ul88/9oWtPw8h4JSPs=
Subject key identifier: D8:B9:9E:C1:A5:64:34:2E:25:06:60:F3:F9:31:C5:0E:86:6E:94:F6
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 018AE85689DA2B3CFC49BFC5004D564EC86A
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/2LmewaVkNC4lBmDz-THFDoZulPY.roa
Signing time: Sat 30 Sep 2023 23:04:59 +0000
ROA not before: Sat 30 Sep 2023 23:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 2a12:bec0:36a::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 02 Oct 2023 20:57:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:e8:56:89:da:2b:3c:fc:49:bf:c5:00:4d:56:4e:c8:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Sep 30 23:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8b99ec1a564342e250660f3f931c50e866e94f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:83:fe:35:43:86:ca:1e:91:a7:c4:68:0c:04:
22:09:df:eb:53:99:e0:5b:66:05:70:f3:78:d9:fa:
39:86:2e:f3:f9:e1:1f:9a:1b:0e:c0:52:a7:28:e1:
2c:ba:b0:06:a9:62:c8:fc:c0:9c:28:a9:32:d0:ed:
13:52:f8:50:fa:17:30:8c:ea:0d:a5:8f:3c:6d:e9:
33:a4:be:b6:52:ce:d0:18:de:cc:4e:c6:a6:da:f1:
37:80:39:61:03:7f:84:2a:ee:bf:69:65:ac:3a:d4:
45:8b:e9:06:8e:cf:a3:25:b5:c3:6e:cb:c2:f7:b9:
e0:12:e4:85:42:63:40:7a:46:80:b7:ac:f3:b6:cf:
96:f5:6a:0e:2d:e8:e6:f3:37:95:57:51:77:45:75:
81:b1:da:1d:0e:b2:b0:83:17:f5:ed:74:17:a3:96:
e7:9f:9a:38:c7:99:fb:31:af:33:73:19:0f:fd:a8:
2e:83:e9:3d:d2:c5:5b:21:41:92:c0:62:ab:8f:06:
f7:62:85:9d:96:23:68:21:04:5e:32:ae:96:1d:c4:
e0:8e:cc:5b:76:e3:dd:1a:67:e6:ea:0a:8f:c3:fb:
5f:0b:b9:cb:b6:0c:15:21:37:1b:98:bc:d0:d5:11:
b7:65:4b:18:7f:73:de:d3:ab:93:73:23:76:0f:3c:
91:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:B9:9E:C1:A5:64:34:2E:25:06:60:F3:F9:31:C5:0E:86:6E:94:F6
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/2LmewaVkNC4lBmDz-THFDoZulPY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:36a::/48
Signature Algorithm: sha256WithRSAEncryption
36:3b:ca:92:05:b2:f2:e5:ee:fb:c2:53:9a:79:e2:0b:de:a5:
40:f4:d2:85:f6:8f:fe:85:29:23:59:22:8c:f0:c0:f6:d1:55:
da:94:cc:74:49:24:a9:a4:13:e9:e5:3f:cc:1a:16:1a:02:84:
1d:94:be:4b:69:8e:c4:1a:9e:e8:f9:6a:19:41:01:8d:97:3b:
dc:2a:ae:1e:a8:cc:00:25:2a:b5:cc:26:70:ef:5e:86:31:f3:
7e:e0:ae:d1:96:ad:28:3a:bb:d0:8d:5b:6e:04:6c:4d:f1:f8:
93:20:85:cc:d6:6f:e0:d0:b8:b0:85:a1:45:44:49:50:c7:02:
c9:81:67:52:99:dd:e3:d5:50:6b:88:50:23:61:65:bf:e6:68:
eb:03:81:df:61:da:5c:cd:38:b8:83:e3:9f:75:70:c8:87:bf:
ab:eb:4b:0a:01:d7:30:9a:96:73:66:7b:99:5a:f9:41:7c:e4:
c0:a1:9f:80:32:88:aa:17:20:2d:da:23:37:fe:c9:e4:89:b7:
6e:40:a9:66:05:d9:10:e1:84:c0:db:d4:76:4d:31:d1:fb:f1:
fb:d6:db:5b:e5:e4:57:32:8f:5d:44:5d:1f:ad:7a:71:c1:a3:
9f:14:dd:e5:d3:fb:dc:3e:ac:c6:b8:41:6b:ef:f8:f6:7a:01:
86:d0:4d:dc
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYroVonaKzz8Sb/FAE1WTshqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj
M2Q2NmYwHhcNMjMwOTMwMjMwNDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkOGI5OWVjMWE1NjQzNDJlMjUwNjYwZjNmOTMxYzUwZTg2NmU5NGY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoYP+NUOGyh6Rp8RoDAQiCd/rU5ng
W2YFcPN42fo5hi7z+eEfmhsOwFKnKOEsurAGqWLI/MCcKKky0O0TUvhQ+hcwjOoN
pY88bekzpL62Us7QGN7MTsam2vE3gDlhA3+EKu6/aWWsOtRFi+kGjs+jJbXDbsvC
97ngEuSFQmNAekaAt6zzts+W9WoOLejm8zeVV1F3RXWBsdodDrKwgxf17XQXo5bn
n5o4x5n7Ma8zcxkP/agug+k90sVbIUGSwGKrjwb3YoWdliNoIQReMq6WHcTgjsxb
duPdGmfm6gqPw/tfC7nLtgwVITcbmLzQ1RG3ZUsYf3Pe06uTcyN2DzyRkQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFNi5nsGlZDQuJQZg8/kxxQ6GbpT2MB8GA1UdIwQY
MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt
NTUzNjljZjUwN2VlLzEvMkxtZXdhVmtOQzRsQm1Eei1USEZEb1p1bFBZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl
LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhK+wANq
MA0GCSqGSIb3DQEBCwUAA4IBAQA2O8qSBbLy5e77wlOaeeIL3qVA9NKF9o/+hSkj
WSKM8MD20VXalMx0SSSppBPp5T/MGhYaAoQdlL5LaY7EGp7o+WoZQQGNlzvcKq4e
qMwAJSq1zCZw716GMfN+4K7Rlq0oOrvQjVtuBGxN8fiTIIXM1m/g0LiwhaFFRElQ
xwLJgWdSmd3j1VBriFAjYWW/5mjrA4HfYdpczTi4g+OfdXDIh7+r60sKAdcwmpZz
ZnuZWvlBfOTAoZ+AMoiqFyAt2iM3/snkibduQKlmBdkQ4YTA29R2TTHR+/H71ttb
5eRXMo9dRF0frXpxwaOfFN3l0/vcPqzGuEFr7/j2egGG0E3c
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:47 2024 by rpki-client on console-ams.rpki-client.org