Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/77096f-bb89-411e-90e0-30c7f39d8e1c/1/ijoMs5za0TAnpjQXdxUeMOu_VoA.roa
File: ijoMs5za0TAnpjQXdxUeMOu_VoA.roa (raw, json)
Hash identifier: 0gk5nYV2OlflqQKNgb4j29dYvBA7DF8q2yglXPHu7s0=
Subject key identifier: 8A:3A:0C:B3:9C:DA:D1:30:27:A6:34:17:77:15:1E:30:EB:BF:56:80
Certificate issuer: /CN=5b0329066138bb5564571fc3c29ee953e5c1c7a3
Certificate serial: 019104BD0F678729C6A4CEDD55FFBABF3127
Authority key identifier: 5B:03:29:06:61:38:BB:55:64:57:1F:C3:C2:9E:E9:53:E5:C1:C7:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WwMpBmE4u1VkVx_Dwp7pU-XBx6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/77096f-bb89-411e-90e0-30c7f39d8e1c/1/ijoMs5za0TAnpjQXdxUeMOu_VoA.roa
Signing time: Tue 30 Jul 2024 17:43:04 +0000
ROA not before: Tue 30 Jul 2024 17:43:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64286
IP address blocks: 2a0a:7740::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 31 Aug 2024 18:15:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:04:bd:0f:67:87:29:c6:a4:ce:dd:55:ff:ba:bf:31:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b0329066138bb5564571fc3c29ee953e5c1c7a3
Validity
Not Before: Jul 30 17:43:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8a3a0cb39cdad13027a6341777151e30ebbf5680
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:12:da:7d:1c:c6:6f:10:d6:09:05:03:31:f4:
8e:5b:47:15:da:56:2c:5d:79:f5:36:8d:8e:a1:8c:
53:4a:a8:dd:f1:62:83:4b:e4:25:79:28:3e:a2:2b:
76:d0:05:bc:ea:46:4e:15:94:50:ab:06:78:dd:9f:
69:91:20:9b:ca:b3:13:58:87:38:12:12:82:99:eb:
94:fd:c5:25:8c:b6:64:6a:e6:05:67:ea:ff:81:e5:
f6:db:93:a9:c2:fc:07:75:c0:0c:a0:8a:b9:85:ea:
58:2e:16:99:bd:14:40:b6:c5:49:74:2a:92:29:b7:
f7:71:69:79:fb:26:7e:b0:6d:7d:c7:3e:73:dd:d8:
86:cb:64:23:a1:52:10:55:49:4a:17:ca:a4:db:ae:
6b:23:ad:3e:5d:56:9e:73:bb:14:53:c8:bd:2b:64:
5e:19:44:af:b1:4a:e3:c4:76:3f:2e:d3:0d:01:fa:
a4:6b:1d:7e:f5:d3:bf:51:82:8f:3f:92:dd:c4:5c:
2d:8c:fc:b0:5f:41:da:45:5d:b6:f2:cb:43:c3:44:
2e:9e:b0:6b:30:39:b3:01:b7:ec:58:35:8c:91:3c:
a6:f3:55:7f:fc:91:60:28:91:e2:aa:e3:74:14:3c:
c3:31:ab:8b:15:20:8a:89:ad:30:57:a4:ae:00:3a:
78:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:3A:0C:B3:9C:DA:D1:30:27:A6:34:17:77:15:1E:30:EB:BF:56:80
X509v3 Authority Key Identifier:
keyid:5B:03:29:06:61:38:BB:55:64:57:1F:C3:C2:9E:E9:53:E5:C1:C7:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WwMpBmE4u1VkVx_Dwp7pU-XBx6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/77096f-bb89-411e-90e0-30c7f39d8e1c/1/ijoMs5za0TAnpjQXdxUeMOu_VoA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/77096f-bb89-411e-90e0-30c7f39d8e1c/1/WwMpBmE4u1VkVx_Dwp7pU-XBx6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:7740::/32
Signature Algorithm: sha256WithRSAEncryption
06:bb:7f:39:24:88:cb:c3:0c:d4:d4:49:21:7d:7a:c0:33:b3:
a0:e7:da:d0:29:e6:9b:c9:8f:f1:ca:a0:c5:4c:6c:da:8e:fe:
5a:ef:47:76:51:d7:98:b9:7b:12:19:b5:52:f8:54:93:36:54:
92:d6:5e:e4:29:4e:c5:67:b0:c2:0a:2f:71:e9:c2:01:ea:2c:
5a:2e:17:1c:8e:5d:cb:d8:d0:39:08:d4:a1:23:1f:35:d7:3c:
e0:d8:4e:07:af:2c:f3:07:c7:a0:be:3b:0c:6a:4c:91:5b:a0:
fe:83:6f:fe:e4:81:7d:23:11:8f:8b:3d:bd:d9:a1:c6:f9:fd:
6f:77:64:86:8c:f7:a9:9e:4f:2a:6a:36:2c:fc:d3:bd:13:e4:
1e:f1:47:ed:09:b9:a0:86:c0:02:65:00:54:80:79:50:4f:06:
19:2b:a0:b8:58:e2:91:bd:63:dc:ca:94:63:c3:f8:e0:61:32:
16:d8:f1:df:a8:df:79:7c:a7:fb:71:a4:3a:a7:69:3d:ec:eb:
e4:7d:36:1c:16:d3:ca:52:9f:11:04:1a:c7:61:a5:bc:7d:ab:
9a:28:2a:d4:c1:4e:59:24:63:72:62:71:93:c5:a1:56:ab:2c:
6b:79:ef:d1:a5:16:ca:2d:5e:47:81:e3:09:a9:f4:2b:d1:ec:
c5:a8:62:b9
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZEEvQ9nhynGpM7dVf+6vzEnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViMDMyOTA2NjEzOGJiNTU2NDU3MWZjM2MyOWVlOTUzZTVj
MWM3YTMwHhcNMjQwNzMwMTc0MzA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YTNhMGNiMzljZGFkMTMwMjdhNjM0MTc3NzE1MWUzMGViYmY1NjgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoRLafRzGbxDWCQUDMfSOW0cV2lYs
XXn1No2OoYxTSqjd8WKDS+QleSg+oit20AW86kZOFZRQqwZ43Z9pkSCbyrMTWIc4
EhKCmeuU/cUljLZkauYFZ+r/geX225OpwvwHdcAMoIq5hepYLhaZvRRAtsVJdCqS
Kbf3cWl5+yZ+sG19xz5z3diGy2QjoVIQVUlKF8qk265rI60+XVaec7sUU8i9K2Re
GUSvsUrjxHY/LtMNAfqkax1+9dO/UYKPP5LdxFwtjPywX0HaRV228stDw0QunrBr
MDmzAbfsWDWMkTym81V//JFgKJHiquN0FDzDMauLFSCKia0wV6SuADp4YQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFIo6DLOc2tEwJ6Y0F3cVHjDrv1aAMB8GA1UdIwQY
MBaAFFsDKQZhOLtVZFcfw8Ke6VPlwcejMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV3dNcEJtRTR1MVZrVnhfRHdwN3BVLVhCeDZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC83NzA5NmYtYmI4OS00MTFlLTkwZTAt
MzBjN2YzOWQ4ZTFjLzEvaWpvTXM1emEwVEFucGpRWGR4VWVNT3VfVm9BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC83NzA5NmYtYmI4OS00MTFlLTkwZTAtMzBjN2YzOWQ4ZTFj
LzEvV3dNcEJtRTR1MVZrVnhfRHdwN3BVLVhCeDZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgp3QDAN
BgkqhkiG9w0BAQsFAAOCAQEABrt/OSSIy8MM1NRJIX16wDOzoOfa0Cnmm8mP8cqg
xUxs2o7+Wu9HdlHXmLl7Ehm1UvhUkzZUktZe5ClOxWewwgovcenCAeosWi4XHI5d
y9jQOQjUoSMfNdc84NhOB68s8wfHoL47DGpMkVug/oNv/uSBfSMRj4s9vdmhxvn9
b3dkhoz3qZ5PKmo2LPzTvRPkHvFH7Qm5oIbAAmUAVIB5UE8GGSuguFjikb1j3MqU
Y8P44GEyFtjx36jfeXyn+3GkOqdpPezr5H02HBbTylKfEQQax2GlvH2rmigq1MFO
WSRjcmJxk8WhVqssa3nv0aUWyi1eR4HjCan0K9HsxahiuQ==
Generated at Sat Aug 31 18:52:39 2024 by rpki-client on console-fra.rpki-client.org