Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/rDz7jE2UTSHw_Yoos91NLOX75Jc.roa
File: rDz7jE2UTSHw_Yoos91NLOX75Jc.roa (raw, json)
Hash identifier: 3B3h9J32LYMuOvnLimx921t/vrDjEYnJVVNTZXgBEcw=
Subject key identifier: AC:3C:FB:8C:4D:94:4D:21:F0:FD:8A:28:B3:DD:4D:2C:E5:FB:E4:97
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 018AE8568B5555C8C5FA41365C100F53C1B7
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/rDz7jE2UTSHw_Yoos91NLOX75Jc.roa
Signing time: Sat 30 Sep 2023 23:05:00 +0000
ROA not before: Sat 30 Sep 2023 23:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 2a12:bec0:36a::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 02 Oct 2023 20:57:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:e8:56:8b:55:55:c8:c5:fa:41:36:5c:10:0f:53:c1:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Sep 30 23:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac3cfb8c4d944d21f0fd8a28b3dd4d2ce5fbe497
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:75:dc:82:d1:0c:38:f4:43:d5:d1:2f:6d:d7:
2b:52:f3:50:ea:45:48:a7:1c:98:2d:74:8f:77:78:
ac:78:f3:de:99:33:64:ef:61:48:0c:33:fb:cf:cf:
e7:94:f1:4d:62:96:12:ba:d8:b8:ce:7b:c2:2f:5e:
6b:cf:8e:8d:65:88:df:76:38:44:5f:d5:7b:97:17:
9a:21:c6:49:fb:2f:b5:61:80:68:6a:c1:a6:11:ba:
37:e9:c3:29:b0:b7:2e:78:e8:ae:13:e5:cf:5e:9c:
62:17:98:55:d3:50:e7:13:d8:34:a0:d4:4f:c2:2c:
20:38:1e:d2:78:33:94:31:ed:4c:99:c5:7b:d0:f8:
56:67:90:1f:b8:fc:78:5b:5d:ed:01:5d:8c:36:a1:
3b:87:1b:50:c3:e9:eb:62:d2:eb:a5:98:c9:4f:f7:
3d:20:46:26:78:f6:d0:ba:0a:16:25:2c:df:e7:0b:
2b:dc:d2:ad:74:ad:eb:81:d9:34:af:0e:93:49:a9:
23:12:b5:c3:ce:62:83:b0:0a:df:bc:74:f8:49:71:
62:b0:ce:f4:f3:34:f0:d2:f4:83:73:57:53:c3:22:
6c:09:d2:fe:fa:4c:f5:7f:1e:c5:18:59:a8:2c:bc:
35:e1:ee:19:ea:70:03:92:ff:e2:14:03:60:d3:5c:
9f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:3C:FB:8C:4D:94:4D:21:F0:FD:8A:28:B3:DD:4D:2C:E5:FB:E4:97
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/rDz7jE2UTSHw_Yoos91NLOX75Jc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:36a::/48
Signature Algorithm: sha256WithRSAEncryption
a4:3e:3e:4a:50:e5:38:86:28:f9:c8:29:de:c4:e1:48:00:c5:
3a:a9:f8:0d:0c:4f:3d:bd:bc:cd:1e:86:82:d0:ff:6d:d5:e7:
07:5e:46:b1:61:14:89:16:d6:a5:7c:f4:47:a7:ea:41:da:3e:
12:85:d4:f7:45:a3:d1:7f:dd:69:f3:f7:78:7a:a5:72:c3:06:
e5:1a:31:a2:b3:62:40:3b:ff:1d:8a:5f:47:d9:46:0c:c0:59:
1c:eb:6a:a5:ec:4e:a0:21:2f:9e:f8:32:a6:a7:d1:79:68:ea:
3f:31:9b:31:d6:a6:fd:6f:12:10:cf:66:89:b4:96:b9:2c:6e:
5c:0b:49:21:5f:e9:8b:1e:b9:89:fc:aa:6f:9b:36:a5:b2:e1:
98:8d:04:d2:5d:b5:e0:b9:ab:31:59:c6:80:d5:48:09:fe:b3:
b0:36:78:c9:81:d3:0b:bf:9b:71:82:ae:5e:1d:d4:a2:3e:7a:
57:7b:94:0b:cc:20:02:df:48:a9:1c:68:75:b3:7b:d6:45:5e:
dc:d4:65:b4:50:45:2e:a9:af:97:88:f8:32:50:c6:93:f1:8e:
87:31:5f:d7:be:d4:8a:5e:10:e0:e3:b3:89:45:da:cd:d2:c9:
46:b7:7f:c8:0c:51:bf:f9:6f:7e:33:a2:85:b3:92:c7:90:05:
30:20:18:26
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYroVotVVcjF+kE2XBAPU8G3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj
M2Q2NmYwHhcNMjMwOTMwMjMwNTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYzNjZmI4YzRkOTQ0ZDIxZjBmZDhhMjhiM2RkNGQyY2U1ZmJlNDk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhHXcgtEMOPRD1dEvbdcrUvNQ6kVI
pxyYLXSPd3isePPemTNk72FIDDP7z8/nlPFNYpYSuti4znvCL15rz46NZYjfdjhE
X9V7lxeaIcZJ+y+1YYBoasGmEbo36cMpsLcueOiuE+XPXpxiF5hV01DnE9g0oNRP
wiwgOB7SeDOUMe1MmcV70PhWZ5AfuPx4W13tAV2MNqE7hxtQw+nrYtLrpZjJT/c9
IEYmePbQugoWJSzf5wsr3NKtdK3rgdk0rw6TSakjErXDzmKDsArfvHT4SXFisM70
8zTw0vSDc1dTwyJsCdL++kz1fx7FGFmoLLw14e4Z6nADkv/iFANg01yfBwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFKw8+4xNlE0h8P2KKLPdTSzl++SXMB8GA1UdIwQY
MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt
NTUzNjljZjUwN2VlLzEvckR6N2pFMlVUU0h3X1lvb3M5MU5MT1g3NUpjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl
LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhK+wANq
MA0GCSqGSIb3DQEBCwUAA4IBAQCkPj5KUOU4hij5yCnexOFIAMU6qfgNDE89vbzN
HoaC0P9t1ecHXkaxYRSJFtalfPRHp+pB2j4ShdT3RaPRf91p8/d4eqVywwblGjGi
s2JAO/8dil9H2UYMwFkc62ql7E6gIS+e+DKmp9F5aOo/MZsx1qb9bxIQz2aJtJa5
LG5cC0khX+mLHrmJ/KpvmzalsuGYjQTSXbXguasxWcaA1UgJ/rOwNnjJgdMLv5tx
gq5eHdSiPnpXe5QLzCAC30ipHGh1s3vWRV7c1GW0UEUuqa+XiPgyUMaT8Y6HMV/X
vtSKXhDg47OJRdrN0slGt3/IDFG/+W9+M6KFs5LHkAUwIBgm
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org