Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/KEtgAtzC_tGMzYeMhpi0_0dXGwg.roa
File: KEtgAtzC_tGMzYeMhpi0_0dXGwg.roa (raw, json)
Hash identifier: t+/OeWV8qRCgL/Sm1j5AvLel7CElnAoyaq4iKepCUv8=
Subject key identifier: 28:4B:60:02:DC:C2:FE:D1:8C:CD:87:8C:86:98:B4:FF:47:57:1B:08
Certificate issuer: /CN=24147c8b3f37850e9f9074993845c4e069f8efe2
Certificate serial: 018570675028CE1C446467F2D0085D539969
Authority key identifier: 24:14:7C:8B:3F:37:85:0E:9F:90:74:99:38:45:C4:E0:69:F8:EF:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JBR8iz83hQ6fkHSZOEXE4Gn47-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/KEtgAtzC_tGMzYeMhpi0_0dXGwg.roa
Signing time: Mon 02 Jan 2023 02:54:57 +0000
ROA not before: Mon 02 Jan 2023 02:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41860
IP address blocks: 2a03:8880::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:50:28:ce:1c:44:64:67:f2:d0:08:5d:53:99:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24147c8b3f37850e9f9074993845c4e069f8efe2
Validity
Not Before: Jan 2 02:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=284b6002dcc2fed18ccd878c8698b4ff47571b08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:74:9c:d3:0d:e6:33:77:28:b4:36:86:fb:12:
84:10:0e:be:85:b9:23:47:f1:6d:92:34:aa:70:2e:
7b:1e:e1:8f:01:28:0c:dc:15:8d:47:25:5f:b1:35:
58:13:b1:79:a4:7a:5f:03:2f:b2:96:91:7a:63:3a:
81:84:a5:19:91:b8:11:82:69:fc:b4:c2:70:73:fb:
ac:08:90:f4:d0:63:b6:62:ba:1b:70:1d:d6:5f:ab:
96:78:ce:75:ca:72:a5:7b:41:c0:06:cb:88:eb:20:
e3:ea:25:02:ea:8b:1a:9f:9d:e9:c9:5d:d0:93:1f:
23:2d:b0:a8:52:7c:29:26:5a:c1:4c:68:37:9c:6d:
08:f9:b5:6e:46:b3:c6:a8:fd:b5:a5:d8:66:47:23:
9f:04:65:90:55:75:f0:e1:7a:e0:71:43:b0:90:6e:
69:e4:1f:83:e4:78:de:e4:0b:60:cf:b5:5c:a2:60:
4d:06:04:8d:90:94:76:d6:70:77:a9:cd:1f:8a:cb:
7f:29:2c:e2:4f:0a:a3:70:4c:b6:90:79:4b:b1:34:
50:ca:2a:17:70:dd:d0:4a:0f:a1:bf:db:4a:41:5b:
98:88:fd:72:94:cb:57:4f:88:ea:21:b6:72:f7:69:
bd:30:94:5d:af:7b:55:04:14:80:a7:b9:ce:5d:9c:
4f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:4B:60:02:DC:C2:FE:D1:8C:CD:87:8C:86:98:B4:FF:47:57:1B:08
X509v3 Authority Key Identifier:
keyid:24:14:7C:8B:3F:37:85:0E:9F:90:74:99:38:45:C4:E0:69:F8:EF:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JBR8iz83hQ6fkHSZOEXE4Gn47-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/KEtgAtzC_tGMzYeMhpi0_0dXGwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/8da5fe-f405-4ce0-b2d1-b3535b4ca50f/1/JBR8iz83hQ6fkHSZOEXE4Gn47-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:8880::/32
Signature Algorithm: sha256WithRSAEncryption
40:d1:33:2e:b4:b5:a9:df:42:d9:3d:d0:21:da:6f:e2:69:83:
af:b5:a3:f7:5b:bb:12:1d:9b:82:de:e5:a4:ab:3d:42:e4:55:
b0:02:18:7a:4c:1b:0e:6c:cc:e3:88:fe:34:33:21:d4:c6:6c:
af:95:5b:0b:fc:26:bf:de:a0:f9:35:d0:31:81:e5:53:ba:68:
be:24:f4:da:55:2c:50:7f:98:1c:82:c4:64:53:87:a4:6c:3a:
37:f3:85:ff:ba:be:f5:88:17:55:4a:ad:bc:fb:79:5b:99:43:
70:7f:f4:43:22:e0:e8:a3:0d:52:12:fd:81:33:18:f2:34:22:
54:a6:e7:65:b0:51:87:3c:2c:7d:f9:87:a9:92:0e:00:2f:34:
71:db:06:02:be:06:fd:83:9d:d4:e4:95:cd:5c:ac:16:77:2a:
91:26:02:32:6e:46:b5:5d:c6:28:5c:b4:c9:13:dd:5a:04:47:
5c:6b:fd:ea:94:68:ca:4e:9f:ec:9a:7f:21:3a:d7:01:8b:72:
d7:16:6c:13:ee:50:da:54:94:65:56:67:16:8a:10:c2:0b:7e:
de:b8:85:d3:8b:47:06:e9:8f:d3:27:32:ff:9e:70:2c:e6:f7:
a8:90:d6:38:fc:de:54:70:ad:5d:06:50:f8:12:5d:6c:27:f4:
a6:e7:f6:af
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVwZ1AozhxEZGfy0AhdU5lpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI0MTQ3YzhiM2YzNzg1MGU5ZjkwNzQ5OTM4NDVjNGUwNjlm
OGVmZTIwHhcNMjMwMTAyMDI1NDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyODRiNjAwMmRjYzJmZWQxOGNjZDg3OGM4Njk4YjRmZjQ3NTcxYjA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg3Sc0w3mM3cotDaG+xKEEA6+hbkj
R/FtkjSqcC57HuGPASgM3BWNRyVfsTVYE7F5pHpfAy+ylpF6YzqBhKUZkbgRgmn8
tMJwc/usCJD00GO2YrobcB3WX6uWeM51ynKle0HABsuI6yDj6iUC6osan53pyV3Q
kx8jLbCoUnwpJlrBTGg3nG0I+bVuRrPGqP21pdhmRyOfBGWQVXXw4XrgcUOwkG5p
5B+D5Hje5Atgz7VcomBNBgSNkJR21nB3qc0fist/KSziTwqjcEy2kHlLsTRQyioX
cN3QSg+hv9tKQVuYiP1ylMtXT4jqIbZy92m9MJRdr3tVBBSAp7nOXZxP9QIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFChLYALcwv7RjM2HjIaYtP9HVxsIMB8GA1UdIwQY
MBaAFCQUfIs/N4UOn5B0mThFxOBp+O/iMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSkJSOGl6ODNoUTZma0hTWk9FWEU0R240Ny1JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS84ZGE1ZmUtZjQwNS00Y2UwLWIyZDEt
YjM1MzViNGNhNTBmLzEvS0V0Z0F0ekNfdEdNelllTWhwaTBfMGRYR3dnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS84ZGE1ZmUtZjQwNS00Y2UwLWIyZDEtYjM1MzViNGNhNTBm
LzEvSkJSOGl6ODNoUTZma0hTWk9FWEU0R240Ny1JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgOIgDAN
BgkqhkiG9w0BAQsFAAOCAQEAQNEzLrS1qd9C2T3QIdpv4mmDr7Wj91u7Eh2bgt7l
pKs9QuRVsAIYekwbDmzM44j+NDMh1MZsr5VbC/wmv96g+TXQMYHlU7poviT02lUs
UH+YHILEZFOHpGw6N/OF/7q+9YgXVUqtvPt5W5lDcH/0QyLg6KMNUhL9gTMY8jQi
VKbnZbBRhzwsffmHqZIOAC80cdsGAr4G/YOd1OSVzVysFncqkSYCMm5GtV3GKFy0
yRPdWgRHXGv96pRoyk6f7Jp/ITrXAYty1xZsE+5Q2lSUZVZnFooQwgt+3riF04tH
BumP0ycy/55wLOb3qJDWOPzeVHCtXQZQ+BJdbCf0puf2rw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:03 2024 by rpki-client on console-ams.rpki-client.org