Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/4S0M-vZoiRnNe7v_yeWYCzXFuS8.roa
File: 4S0M-vZoiRnNe7v_yeWYCzXFuS8.roa (raw, json)
Hash identifier: TXrgjvEiwnCNNMd84y0xR2XQLi6+ASTI86odcDaGsWw=
Subject key identifier: E1:2D:0C:FA:F6:68:89:19:CD:7B:BB:FF:C9:E5:98:0B:35:C5:B9:2F
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 018C438D97B420DC290762782EDB1F76AC3D
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/4S0M-vZoiRnNe7v_yeWYCzXFuS8.roa
Signing time: Thu 07 Dec 2023 09:13:22 +0000
ROA not before: Thu 07 Dec 2023 09:13:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 23470
IP address blocks: 2a12:bec0:420::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:43:8d:97:b4:20:dc:29:07:62:78:2e:db:1f:76:ac:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Dec 7 09:13:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e12d0cfaf6688919cd7bbbffc9e5980b35c5b92f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:90:31:7b:c9:28:c6:7e:cc:0a:16:7c:26:de:
14:79:51:eb:82:f8:32:4e:ce:76:39:56:fb:ba:31:
59:32:6c:31:b2:10:9b:5b:60:ef:9a:65:29:9e:84:
8f:d0:f4:0e:64:e4:94:76:ea:d7:72:c4:b4:48:ff:
aa:ea:39:32:1b:0c:bd:c6:39:b7:35:aa:a4:f2:f4:
f6:3a:4f:9b:15:09:f8:d6:e8:33:2b:ea:d8:91:51:
35:fa:3e:0a:f6:8c:bb:11:9d:62:2d:85:e1:ab:c3:
bd:c4:de:cf:92:fc:de:74:3f:76:c3:fd:1f:42:34:
a2:26:7a:30:bc:e0:4f:cb:92:c1:54:27:1e:39:d5:
7f:76:5f:df:02:99:70:9e:67:d4:1c:d4:25:c9:b1:
04:d4:3b:5f:e8:81:fa:16:ca:37:5f:1e:7b:f4:05:
7b:f6:4e:a8:f6:9d:61:1f:9a:26:d9:57:46:48:ea:
96:05:78:2c:0d:95:77:b6:51:23:87:53:70:45:7d:
89:15:a3:9d:f5:7f:47:9e:cb:81:36:a4:6a:2e:92:
3c:67:f1:b6:e3:11:13:ad:03:29:aa:9c:9c:c3:3e:
8a:7d:c8:e2:27:a5:70:5e:79:37:75:7f:53:0b:a6:
87:37:bc:78:6d:ac:7f:09:e5:cc:99:1d:bd:b4:30:
6c:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:2D:0C:FA:F6:68:89:19:CD:7B:BB:FF:C9:E5:98:0B:35:C5:B9:2F
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/4S0M-vZoiRnNe7v_yeWYCzXFuS8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:420::/44
Signature Algorithm: sha256WithRSAEncryption
75:00:96:57:a4:ff:db:16:a8:43:98:19:56:69:5e:32:f8:9d:
1a:52:ef:67:f1:35:77:a2:ae:8f:03:1f:2e:34:6f:e6:27:9b:
a1:b3:83:f6:c2:93:c1:d9:bc:67:dd:c8:f0:36:30:c5:6e:7b:
da:99:9e:2b:ca:c9:ea:45:73:e5:5f:60:97:49:b3:71:40:2e:
7c:bd:5d:53:70:c8:f5:e6:cb:0a:4f:85:5f:29:b3:e0:30:61:
eb:9b:de:2f:0c:1f:57:21:27:2d:3f:75:71:fc:87:87:d4:c7:
c0:27:eb:ce:4c:6b:ef:68:8e:63:8a:e8:9e:93:cd:5f:24:b3:
9c:e4:7a:d6:c5:51:19:5e:7e:6b:1a:1a:12:be:72:94:8b:8d:
72:af:e4:00:28:21:8d:d4:21:4e:45:ea:ce:48:f9:c7:c5:60:
6a:6b:24:2b:53:69:e0:6f:99:98:ab:47:35:28:a1:5d:b8:17:
9a:8e:ce:77:dc:86:f4:81:22:fb:ea:ee:e1:02:f4:81:3c:aa:
79:3b:27:88:19:80:31:e2:c9:83:bb:a2:42:d0:85:2d:6a:85:
6d:64:56:62:8a:c4:7b:db:dc:be:4b:c6:00:02:28:40:a5:6c:
a3:ca:65:04:b5:a8:1e:75:0a:17:65:e8:8b:47:89:dc:c7:d4:
d2:29:58:af
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYxDjZe0INwpB2J4Ltsfdqw9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj
M2Q2NmYwHhcNMjMxMjA3MDkxMzIyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMTJkMGNmYWY2Njg4OTE5Y2Q3YmJiZmZjOWU1OTgwYjM1YzViOTJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyJAxe8koxn7MChZ8Jt4UeVHrgvgy
Ts52OVb7ujFZMmwxshCbW2DvmmUpnoSP0PQOZOSUdurXcsS0SP+q6jkyGwy9xjm3
Naqk8vT2Ok+bFQn41ugzK+rYkVE1+j4K9oy7EZ1iLYXhq8O9xN7PkvzedD92w/0f
QjSiJnowvOBPy5LBVCceOdV/dl/fAplwnmfUHNQlybEE1Dtf6IH6Fso3Xx579AV7
9k6o9p1hH5om2VdGSOqWBXgsDZV3tlEjh1NwRX2JFaOd9X9HnsuBNqRqLpI8Z/G2
4xETrQMpqpycwz6KfcjiJ6VwXnk3dX9TC6aHN7x4bax/CeXMmR29tDBswQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFOEtDPr2aIkZzXu7/8nlmAs1xbkvMB8GA1UdIwQY
MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt
NTUzNjljZjUwN2VlLzEvNFMwTS12Wm9pUm5OZTd2X3llV1lDelhGdVM4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl
LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhK+wAQg
MA0GCSqGSIb3DQEBCwUAA4IBAQB1AJZXpP/bFqhDmBlWaV4y+J0aUu9n8TV3oq6P
Ax8uNG/mJ5uhs4P2wpPB2bxn3cjwNjDFbnvamZ4rysnqRXPlX2CXSbNxQC58vV1T
cMj15ssKT4VfKbPgMGHrm94vDB9XISctP3Vx/IeH1MfAJ+vOTGvvaI5jiuiek81f
JLOc5HrWxVEZXn5rGhoSvnKUi41yr+QAKCGN1CFORerOSPnHxWBqayQrU2ngb5mY
q0c1KKFduBeajs533Ib0gSL76u7hAvSBPKp5OyeIGYAx4smDu6JC0IUtaoVtZFZi
isR729y+S8YAAihApWyjymUEtagedQoXZeiLR4ncx9TSKViv
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org