Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/oQ4e-vpvTN9tTdRTieyKbjB_MWQ.roa
File: oQ4e-vpvTN9tTdRTieyKbjB_MWQ.roa (raw, json)
Hash identifier: ROrT9BL9rrRTihVP60KQLHAcTt4DtPss2bH+v/hGRYg=
Subject key identifier: A1:0E:1E:FA:FA:6F:4C:DF:6D:4D:D4:53:89:EC:8A:6E:30:7F:31:64
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 0191EAB5CE778DA5DF3407795F0D0FA2B625
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/oQ4e-vpvTN9tTdRTieyKbjB_MWQ.roa
Signing time: Fri 13 Sep 2024 09:27:48 +0000
ROA not before: Fri 13 Sep 2024 09:27:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214212
IP address blocks: 2a12:bec4:14f0::/44 maxlen: 44
Validation: Failed, certificate revoked on Sun 15 Sep 2024 22:27:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ea:b5:ce:77:8d:a5:df:34:07:79:5f:0d:0f:a2:b6:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Sep 13 09:27:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a10e1efafa6f4cdf6d4dd45389ec8a6e307f3164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3d:07:51:9d:59:07:5a:2a:d0:a7:ed:62:1f:
a7:69:e3:c2:87:c1:3e:56:30:2f:cb:a5:6e:87:8f:
c5:4f:d5:30:e5:57:f5:44:3b:3d:92:45:cd:b2:ff:
a6:fa:e8:89:06:92:16:e4:8c:93:2d:93:02:dd:39:
16:38:a0:d9:00:d9:bf:b8:ec:05:08:a8:05:13:dc:
76:53:35:a0:de:43:17:62:fb:bb:d2:64:af:a1:49:
0a:11:24:6b:f1:40:c7:c0:2d:56:c7:19:05:a2:a8:
10:85:5f:51:43:6d:79:2b:f5:08:76:0f:62:9d:53:
ba:85:01:7a:3d:8f:d6:db:b8:fe:6f:09:0b:ec:09:
e9:a5:96:1a:86:48:04:de:78:88:30:63:9b:7f:62:
93:5b:10:ae:45:87:39:13:94:0f:21:c6:6f:89:93:
5c:2f:17:c2:b5:58:e7:bb:cc:16:5c:a9:93:7d:82:
d2:89:ec:7d:c9:95:92:ef:2a:8e:28:6d:63:c2:7a:
49:d9:c4:a7:f9:e8:e8:e2:22:27:07:bf:13:0f:e5:
4b:27:6c:76:e9:4d:fb:7a:10:ef:b1:ea:91:0b:7e:
3e:68:51:7b:14:cc:d8:bb:46:c5:90:0c:ca:73:cd:
05:19:56:c7:17:d3:d6:c3:49:df:1a:4d:75:a1:d2:
1e:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:0E:1E:FA:FA:6F:4C:DF:6D:4D:D4:53:89:EC:8A:6E:30:7F:31:64
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/oQ4e-vpvTN9tTdRTieyKbjB_MWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec4:14f0::/44
Signature Algorithm: sha256WithRSAEncryption
1c:76:1b:c6:bc:bd:b2:17:d8:9a:4b:ac:03:7c:c8:4e:e9:c5:
52:3b:04:9a:d5:1f:7a:29:a8:ed:7a:55:72:d4:4b:a2:ef:33:
7e:c7:89:3e:97:92:dc:c3:d5:1e:e6:ca:3a:f0:31:ac:bd:36:
fa:a4:ce:a8:2b:28:c0:d9:47:72:6b:b0:19:5f:fc:fa:9f:b7:
d0:3a:80:c1:cb:13:74:7d:39:52:f5:86:bf:3d:47:90:78:23:
47:56:6d:24:30:20:0f:5e:1b:d3:07:19:00:ea:b3:14:d7:10:
3d:eb:eb:dd:47:8c:3c:a9:26:19:ea:e6:22:45:02:e3:b5:06:
0c:63:cb:2f:83:e7:f5:06:a8:fc:dc:73:26:21:dd:8b:69:d8:
de:35:d6:81:a9:f2:cf:9a:39:78:53:53:13:77:9e:fa:68:16:
d5:29:4f:c8:d0:7a:1d:fc:ad:e2:83:c1:c9:3c:f6:b3:8e:29:
fc:80:09:42:e2:2d:2b:c2:9f:4d:c1:15:6f:db:5a:d3:49:19:
bd:72:e8:80:5b:a8:87:85:ca:b6:35:18:dc:c2:92:d0:f5:b5:
ad:70:b9:77:97:8e:3e:45:93:52:52:88:d2:11:c8:59:f9:5e:
5d:4e:b2:b6:7b:43:ef:a7:e3:6b:ec:52:b0:af:f9:0d:8c:17:
30:e6:6a:a5
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZHqtc53jaXfNAd5Xw0PorYlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj
M2Q2NmYwHhcNMjQwOTEzMDkyNzQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMTBlMWVmYWZhNmY0Y2RmNmQ0ZGQ0NTM4OWVjOGE2ZTMwN2YzMTY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzT0HUZ1ZB1oq0KftYh+naePCh8E+
VjAvy6Vuh4/FT9Uw5Vf1RDs9kkXNsv+m+uiJBpIW5IyTLZMC3TkWOKDZANm/uOwF
CKgFE9x2UzWg3kMXYvu70mSvoUkKESRr8UDHwC1WxxkFoqgQhV9RQ215K/UIdg9i
nVO6hQF6PY/W27j+bwkL7AnppZYahkgE3niIMGObf2KTWxCuRYc5E5QPIcZviZNc
LxfCtVjnu8wWXKmTfYLSiex9yZWS7yqOKG1jwnpJ2cSn+ejo4iInB78TD+VLJ2x2
6U37ehDvseqRC34+aFF7FMzYu0bFkAzKc80FGVbHF9PWw0nfGk11odIeAwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFKEOHvr6b0zfbU3UU4nsim4wfzFkMB8GA1UdIwQY
MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt
NTUzNjljZjUwN2VlLzEvb1E0ZS12cHZUTjl0VGRSVGlleUtiakJfTVdRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl
LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhK+xBTw
MA0GCSqGSIb3DQEBCwUAA4IBAQAcdhvGvL2yF9iaS6wDfMhO6cVSOwSa1R96Kajt
elVy1Eui7zN+x4k+l5Lcw9Ue5so68DGsvTb6pM6oKyjA2Udya7AZX/z6n7fQOoDB
yxN0fTlS9Ya/PUeQeCNHVm0kMCAPXhvTBxkA6rMU1xA96+vdR4w8qSYZ6uYiRQLj
tQYMY8svg+f1Bqj83HMmId2LadjeNdaBqfLPmjl4U1MTd576aBbVKU/I0Hod/K3i
g8HJPPazjin8gAlC4i0rwp9NwRVv21rTSRm9cuiAW6iHhcq2NRjcwpLQ9bWtcLl3
l44+RZNSUojSEchZ+V5dTrK2e0Pvp+Nr7FKwr/kNjBcw5mql
-----END CERTIFICATE-----
Generated at Mon Sep 16 02:46:03 2024 by rpki-client on console-ams.rpki-client.org