Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/RNm2wRXVjkD4vXzvYINvu0_R5x8.roa
File: RNm2wRXVjkD4vXzvYINvu0_R5x8.roa (raw, json)
Hash identifier: qBC1sqCBb4y1JHLh5oZUnUEWJX6mnr9YzElgz9OSXxw=
Subject key identifier: 44:D9:B6:C1:15:D5:8E:40:F8:BD:7C:EF:60:83:6F:BB:4F:D1:E7:1F
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 01877596C752AD2CB56005CABE7A4A72EE97
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/RNm2wRXVjkD4vXzvYINvu0_R5x8.roa
Signing time: Wed 12 Apr 2023 13:10:28 +0000
ROA not before: Wed 12 Apr 2023 13:10:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199175
IP address blocks: 2a12:bec0:2b0::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:75:96:c7:52:ad:2c:b5:60:05:ca:be:7a:4a:72:ee:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Apr 12 13:10:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=44d9b6c115d58e40f8bd7cef60836fbb4fd1e71f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d2:b3:e4:c9:59:aa:fc:83:27:83:3f:07:b7:
94:3a:c0:b2:17:dd:1c:9d:ba:21:06:44:18:12:39:
60:f7:c2:3c:5d:cb:00:04:c4:e1:26:e5:6c:13:ec:
e6:81:1f:45:9a:33:14:66:8b:d4:bb:19:fa:6c:78:
85:ff:ef:91:f0:e5:b9:49:96:55:37:74:26:a8:9a:
33:39:c7:a4:84:44:5f:12:fe:f7:fa:e7:7b:cb:c0:
e3:4e:14:86:c3:58:95:ed:63:9e:71:24:82:ad:90:
0a:bf:2d:6e:0e:9b:11:a5:67:2f:ef:2a:01:3a:2d:
e2:5b:ad:cc:64:1d:87:24:23:3d:f3:db:de:4f:fc:
48:9a:f9:32:ff:b6:31:03:9e:85:ba:b1:6c:c5:d9:
8a:4c:5d:24:21:e2:dc:7d:7b:3c:29:9d:8b:9e:18:
45:a4:07:61:c9:fc:b8:84:da:20:a0:0e:df:f6:c2:
9c:4a:10:40:8c:83:23:df:98:d9:b0:12:03:ae:dd:
69:ef:a1:4a:39:48:14:c3:3c:1e:47:26:dd:17:f4:
87:6b:33:c0:fe:b8:d0:4a:0e:6e:ba:78:21:f1:52:
f9:76:e3:c1:fb:5b:97:71:95:81:9b:db:a8:6e:3c:
3b:50:ae:35:a1:c1:71:9a:f9:60:32:aa:a4:26:c1:
cb:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:D9:B6:C1:15:D5:8E:40:F8:BD:7C:EF:60:83:6F:BB:4F:D1:E7:1F
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/RNm2wRXVjkD4vXzvYINvu0_R5x8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:2b0::/44
Signature Algorithm: sha256WithRSAEncryption
af:9d:54:b1:f6:9d:3b:52:6f:29:35:21:9e:e2:ab:b9:8d:f6:
71:03:2f:d5:41:22:35:cb:63:46:b3:27:bc:fd:bc:ee:ea:03:
c9:9e:7f:18:ad:11:a7:fa:c8:7f:cb:32:a2:f6:1c:b2:2b:ac:
7a:ca:8a:ae:a4:71:89:b1:bc:cf:4c:6d:ef:93:34:0c:7c:49:
2f:8b:f7:9c:e2:07:19:88:43:28:bf:fe:e9:cf:5c:04:9a:33:
c3:8c:42:21:b5:eb:39:51:54:c9:90:78:2d:7a:b5:ae:33:8c:
95:d1:ff:9d:4d:dd:9b:04:09:93:99:c0:52:ea:36:ed:b2:c9:
8e:ee:2d:59:8d:06:52:c0:32:60:3e:65:08:aa:2c:61:43:82:
72:41:6f:22:95:67:82:35:58:61:f5:2f:2d:cd:5c:ce:16:e1:
24:8c:f6:1b:66:19:d1:19:65:f2:13:10:95:bc:6c:2c:49:c6:
e6:ee:75:e2:09:53:25:95:fd:6e:4f:b1:d6:77:a9:ef:98:49:
5b:9a:28:5d:d9:14:2f:ca:e8:ef:1a:40:f0:f5:8c:85:fc:5e:
8d:5b:69:c2:d9:78:2a:0a:bf:84:e0:cc:5a:83:d3:12:7c:7f:
3e:db:81:e0:84:2f:8f:3c:5b:87:ba:dc:db:47:05:0d:8d:22:
4c:54:31:65
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYd1lsdSrSy1YAXKvnpKcu6XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj
M2Q2NmYwHhcNMjMwNDEyMTMxMDI4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NGQ5YjZjMTE1ZDU4ZTQwZjhiZDdjZWY2MDgzNmZiYjRmZDFlNzFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAldKz5MlZqvyDJ4M/B7eUOsCyF90c
nbohBkQYEjlg98I8XcsABMThJuVsE+zmgR9FmjMUZovUuxn6bHiF/++R8OW5SZZV
N3QmqJozOcekhERfEv73+ud7y8DjThSGw1iV7WOecSSCrZAKvy1uDpsRpWcv7yoB
Oi3iW63MZB2HJCM989veT/xImvky/7YxA56FurFsxdmKTF0kIeLcfXs8KZ2LnhhF
pAdhyfy4hNogoA7f9sKcShBAjIMj35jZsBIDrt1p76FKOUgUwzweRybdF/SHazPA
/rjQSg5uungh8VL5duPB+1uXcZWBm9uobjw7UK41ocFxmvlgMqqkJsHLhwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFETZtsEV1Y5A+L1872CDb7tP0ecfMB8GA1UdIwQY
MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt
NTUzNjljZjUwN2VlLzEvUk5tMndSWFZqa0Q0dlh6dllJTnZ1MF9SNXg4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl
LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhK+wAKw
MA0GCSqGSIb3DQEBCwUAA4IBAQCvnVSx9p07Um8pNSGe4qu5jfZxAy/VQSI1y2NG
sye8/bzu6gPJnn8YrRGn+sh/yzKi9hyyK6x6yoqupHGJsbzPTG3vkzQMfEkvi/ec
4gcZiEMov/7pz1wEmjPDjEIhtes5UVTJkHgterWuM4yV0f+dTd2bBAmTmcBS6jbt
ssmO7i1ZjQZSwDJgPmUIqixhQ4JyQW8ilWeCNVhh9S8tzVzOFuEkjPYbZhnRGWXy
ExCVvGwsScbm7nXiCVMllf1uT7HWd6nvmElbmihd2RQvyujvGkDw9YyF/F6NW2nC
2XgqCr+E4Mxag9MSfH8+24HghC+PPFuHutzbRwUNjSJMVDFl
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org