Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/6RLDSL_RBVdoNQ4jNVh5g1hXogM.roa
File: 6RLDSL_RBVdoNQ4jNVh5g1hXogM.roa (raw, json)
Hash identifier: P1IeLR9f1sjr8gHrzl6UW3GDPrKpnppu90/Cz5YXJv0=
Subject key identifier: E9:12:C3:48:BF:D1:05:57:68:35:0E:23:35:58:79:83:58:57:A2:03
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 01934130B026DE4C9BAD9B5A74E818216030
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/6RLDSL_RBVdoNQ4jNVh5g1hXogM.roa
Signing time: Mon 18 Nov 2024 21:32:10 +0000
ROA not before: Mon 18 Nov 2024 21:32:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 2a12:bec4:1630::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 19 Nov 2024 10:22:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:41:30:b0:26:de:4c:9b:ad:9b:5a:74:e8:18:21:60:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Nov 18 21:32:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e912c348bfd1055768350e23355879835857a203
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9b:88:69:a8:79:d0:52:e1:2e:9b:e2:ad:69:
2a:7a:04:a4:b4:db:5b:a2:f5:a9:52:31:c7:93:c7:
b3:f6:4f:3f:c3:7f:10:42:55:9e:5b:06:1a:0f:68:
40:a0:f3:e5:9d:08:6e:69:b4:9d:f3:8f:ba:50:f0:
2d:54:a7:a8:ef:04:fc:e5:81:b4:44:83:ce:97:4c:
ee:6d:6a:da:92:e5:46:45:73:dc:50:40:71:93:38:
5a:ba:72:95:3c:83:a6:95:a2:38:9c:4c:4b:57:ed:
ce:79:7c:e6:9d:6c:75:0e:29:86:27:5e:8b:5b:c0:
b2:c8:78:04:04:49:ec:1d:cc:bb:72:d7:07:38:7c:
3b:f5:c7:27:d2:5b:c0:c4:52:32:45:50:54:2a:e9:
2e:c3:0b:1f:d6:e9:5b:04:17:92:33:b4:c3:20:e4:
58:82:da:d5:d0:e0:73:75:54:16:e2:e2:90:9c:8e:
53:54:de:2e:46:39:49:c1:48:d0:cc:c5:10:91:bd:
d2:db:c5:fc:04:48:1a:c6:02:cd:90:a2:5f:af:64:
4e:86:2d:df:0e:f6:da:d2:b0:8d:49:be:1d:1d:66:
f2:94:fe:cb:45:cb:0a:4d:f7:bb:8a:f6:7f:28:99:
c4:08:c6:09:26:06:81:34:77:40:1e:95:75:b3:c0:
10:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:12:C3:48:BF:D1:05:57:68:35:0E:23:35:58:79:83:58:57:A2:03
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/6RLDSL_RBVdoNQ4jNVh5g1hXogM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec4:1630::/48
Signature Algorithm: sha256WithRSAEncryption
40:6c:07:54:a2:af:7c:fb:24:31:43:6a:6b:e6:0a:13:c9:31:
8d:d4:dd:77:9e:85:51:ac:b1:0e:d0:c5:cc:8f:fb:b1:a5:ca:
28:fe:6e:90:66:46:1f:19:da:ce:a9:3b:fd:af:52:2f:c2:dc:
2d:eb:a3:4d:f6:5c:b5:22:48:ec:30:ce:41:7d:88:67:93:6e:
6e:d5:d9:04:96:c9:67:77:8d:3d:5c:7f:9c:88:d1:25:e9:22:
e7:d4:e3:ac:29:ec:08:71:b8:ec:f3:2f:5c:3a:40:d6:47:29:
22:f7:bd:d5:1c:e2:8f:e4:fd:82:8b:83:87:c5:fe:f9:68:d3:
06:ef:cd:c7:ab:df:72:4f:49:91:2d:ac:4a:73:49:77:a1:d1:
2b:87:18:48:1b:c1:93:7c:7a:4c:55:5e:87:f0:29:46:36:4a:
c8:d4:95:a9:4d:a4:97:f9:9e:72:a8:f0:0a:bb:22:ef:d4:cd:
68:e7:c5:21:82:8b:08:fd:b7:2d:a9:d8:67:62:fa:51:29:cd:
fc:92:e9:4e:63:3f:e8:b1:06:33:91:db:f5:78:30:20:2f:b9:
32:00:2b:9f:17:a0:e0:3f:ef:14:82:db:63:6e:32:73:77:10:
b8:a2:bd:16:39:3d:c8:4e:b1:c3:40:74:60:40:ba:11:1c:88:
3f:cd:b0:77
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZNBMLAm3kybrZtadOgYIWAwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj
M2Q2NmYwHhcNMjQxMTE4MjEzMjEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOTEyYzM0OGJmZDEwNTU3NjgzNTBlMjMzNTU4Nzk4MzU4NTdhMjAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAppuIaah50FLhLpvirWkqegSktNtb
ovWpUjHHk8ez9k8/w38QQlWeWwYaD2hAoPPlnQhuabSd84+6UPAtVKeo7wT85YG0
RIPOl0zubWrakuVGRXPcUEBxkzhaunKVPIOmlaI4nExLV+3OeXzmnWx1DimGJ16L
W8CyyHgEBEnsHcy7ctcHOHw79ccn0lvAxFIyRVBUKukuwwsf1ulbBBeSM7TDIORY
gtrV0OBzdVQW4uKQnI5TVN4uRjlJwUjQzMUQkb3S28X8BEgaxgLNkKJfr2ROhi3f
Dvba0rCNSb4dHWbylP7LRcsKTfe7ivZ/KJnECMYJJgaBNHdAHpV1s8AQNQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFOkSw0i/0QVXaDUOIzVYeYNYV6IDMB8GA1UdIwQY
MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt
NTUzNjljZjUwN2VlLzEvNlJMRFNMX1JCVmRvTlE0ak5WaDVnMWhYb2dNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl
LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhK+xBYw
MA0GCSqGSIb3DQEBCwUAA4IBAQBAbAdUoq98+yQxQ2pr5goTyTGN1N13noVRrLEO
0MXMj/uxpcoo/m6QZkYfGdrOqTv9r1Ivwtwt66NN9ly1IkjsMM5BfYhnk25u1dkE
lslnd409XH+ciNEl6SLn1OOsKewIcbjs8y9cOkDWRyki973VHOKP5P2Ci4OHxf75
aNMG783Hq99yT0mRLaxKc0l3odErhxhIG8GTfHpMVV6H8ClGNkrI1JWpTaSX+Z5y
qPAKuyLv1M1o58UhgosI/bctqdhnYvpRKc38kulOYz/osQYzkdv1eDAgL7kyACuf
F6DgP+8UgttjbjJzdxC4or0WOT3ITrHDQHRgQLoRHIg/zbB3
-----END CERTIFICATE-----
Generated at Tue Nov 19 13:48:23 2024 by rpki-client on console-ams.rpki-client.org