Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/9707c5-ac32-4905-a83c-5fd69018782f/1/2UrB4dP0gKMIz7Ekb4Deo_NNiv4.roa
File: 2UrB4dP0gKMIz7Ekb4Deo_NNiv4.roa (raw, json)
Hash identifier: kjDbU7oFDrP/YZNFxXWycSpPu5qCW3cNE0LJJoxforc=
Subject key identifier: D9:4A:C1:E1:D3:F4:80:A3:08:CF:B1:24:6F:80:DE:A3:F3:4D:8A:FE
Certificate issuer: /CN=2dcf6f361307095c283b0d89140568aa4ec8d4a8
Certificate serial: 0189927CC6D440E3FFA4BC19D0843410306A
Authority key identifier: 2D:CF:6F:36:13:07:09:5C:28:3B:0D:89:14:05:68:AA:4E:C8:D4:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lc9vNhMHCVwoOw2JFAVoqk7I1Kg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/9707c5-ac32-4905-a83c-5fd69018782f/1/2UrB4dP0gKMIz7Ekb4Deo_NNiv4.roa
Signing time: Wed 26 Jul 2023 13:56:38 +0000
ROA not before: Wed 26 Jul 2023 13:56:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197569
IP address blocks: 2001:67c:2f8c::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:92:7c:c6:d4:40:e3:ff:a4:bc:19:d0:84:34:10:30:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dcf6f361307095c283b0d89140568aa4ec8d4a8
Validity
Not Before: Jul 26 13:56:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d94ac1e1d3f480a308cfb1246f80dea3f34d8afe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ba:5e:ff:72:9b:22:05:84:29:d0:75:0d:0c:
a1:78:dc:eb:7b:f8:e1:f4:55:c1:a4:c3:46:53:23:
55:7b:72:4e:54:71:05:74:8f:0e:f1:e7:64:25:31:
fc:2e:fa:87:15:1f:3d:aa:e5:41:47:a4:bc:29:26:
b4:f4:3d:6b:c0:9d:b1:8b:80:99:5d:88:31:48:ef:
0d:94:d7:4e:dc:d6:d9:72:92:3a:a0:45:c3:f8:2f:
28:89:dc:97:db:ee:0a:fc:99:71:ee:ba:97:a7:32:
0f:ac:93:21:3c:ba:e5:a1:b7:c1:05:85:3d:7c:bf:
d7:f6:e1:19:bd:d1:bb:dc:64:78:33:a6:de:4e:da:
e3:51:6d:9b:88:de:34:b5:7a:3c:22:d0:a3:ac:4e:
71:a3:b0:94:10:65:9d:71:94:97:bd:20:73:8f:8d:
c0:67:45:a7:54:21:e5:b9:d0:3c:5e:fc:e9:94:1e:
a3:02:56:9f:90:e5:71:84:14:4d:d1:03:ed:cf:a8:
1d:85:f6:65:06:93:6d:da:c2:11:ce:7b:84:0a:a3:
d6:f5:f4:85:fd:d0:4c:90:ce:43:bc:da:03:da:15:
72:e8:39:55:e1:56:6f:b2:a0:42:f0:f4:98:f8:36:
10:c5:0e:8e:ef:ab:1e:8f:10:f4:57:a2:21:92:d9:
a2:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:4A:C1:E1:D3:F4:80:A3:08:CF:B1:24:6F:80:DE:A3:F3:4D:8A:FE
X509v3 Authority Key Identifier:
keyid:2D:CF:6F:36:13:07:09:5C:28:3B:0D:89:14:05:68:AA:4E:C8:D4:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lc9vNhMHCVwoOw2JFAVoqk7I1Kg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/9707c5-ac32-4905-a83c-5fd69018782f/1/2UrB4dP0gKMIz7Ekb4Deo_NNiv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/9707c5-ac32-4905-a83c-5fd69018782f/1/Lc9vNhMHCVwoOw2JFAVoqk7I1Kg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2f8c::/48
Signature Algorithm: sha256WithRSAEncryption
23:e4:22:49:c4:e0:d8:77:19:06:76:05:86:90:88:bb:20:92:
c0:08:3a:01:4a:2b:db:82:dc:34:8d:e8:97:c2:64:26:7b:3e:
a8:58:7d:13:53:f6:bc:26:f1:d9:7f:5c:0f:01:b4:31:8e:18:
40:a9:7b:03:d3:28:21:99:cd:e2:81:91:d2:0f:c1:69:ff:be:
e8:90:b0:c6:14:19:76:c6:5e:74:fb:67:a7:5d:6b:d2:8c:e8:
5a:ee:54:c3:77:64:8d:b4:91:f1:c9:ea:70:27:e2:95:43:d2:
62:92:21:8e:e6:a8:07:50:47:b7:30:5d:a6:d0:87:db:97:67:
81:ff:5f:91:a9:ad:8e:26:da:61:c3:f9:78:f6:9c:27:b2:d1:
99:ad:92:5b:3c:aa:ca:80:ab:0b:a1:77:e6:9c:d0:4e:95:e3:
b7:70:1a:e5:97:70:ea:cb:a9:a8:9d:73:f1:34:21:3d:df:af:
41:f2:13:9f:0c:85:25:a2:0e:4b:de:3c:ea:25:81:e5:35:eb:
e9:9e:3c:fe:83:b5:d6:0f:18:f2:f0:8b:36:e6:6c:80:e3:c5:
48:5d:3c:b2:b6:dd:e7:fc:ce:8c:48:a2:d1:8a:4f:9b:db:ef:
a6:68:a1:59:c4:85:d0:1a:75:04:93:e6:b7:f8:8f:cd:6b:1e:
a7:f6:a1:8b
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYmSfMbUQOP/pLwZ0IQ0EDBqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJkY2Y2ZjM2MTMwNzA5NWMyODNiMGQ4OTE0MDU2OGFhNGVj
OGQ0YTgwHhcNMjMwNzI2MTM1NjM4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkOTRhYzFlMWQzZjQ4MGEzMDhjZmIxMjQ2ZjgwZGVhM2YzNGQ4YWZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAprpe/3KbIgWEKdB1DQyheNzre/jh
9FXBpMNGUyNVe3JOVHEFdI8O8edkJTH8LvqHFR89quVBR6S8KSa09D1rwJ2xi4CZ
XYgxSO8NlNdO3NbZcpI6oEXD+C8oidyX2+4K/Jlx7rqXpzIPrJMhPLrlobfBBYU9
fL/X9uEZvdG73GR4M6beTtrjUW2biN40tXo8ItCjrE5xo7CUEGWdcZSXvSBzj43A
Z0WnVCHludA8XvzplB6jAlafkOVxhBRN0QPtz6gdhfZlBpNt2sIRznuECqPW9fSF
/dBMkM5DvNoD2hVy6DlV4VZvsqBC8PSY+DYQxQ6O76sejxD0V6IhktmiWwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFNlKweHT9ICjCM+xJG+A3qPzTYr+MB8GA1UdIwQY
MBaAFC3PbzYTBwlcKDsNiRQFaKpOyNSoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTGM5dk5oTUhDVndvT3cySkZBVm9xazdJMUtnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC85NzA3YzUtYWMzMi00OTA1LWE4M2Mt
NWZkNjkwMTg3ODJmLzEvMlVyQjRkUDBnS01JejdFa2I0RGVvX05OaXY0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC85NzA3YzUtYWMzMi00OTA1LWE4M2MtNWZkNjkwMTg3ODJm
LzEvTGM5dk5oTUhDVndvT3cySkZBVm9xazdJMUtnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfC+M
MA0GCSqGSIb3DQEBCwUAA4IBAQAj5CJJxODYdxkGdgWGkIi7IJLACDoBSivbgtw0
jeiXwmQmez6oWH0TU/a8JvHZf1wPAbQxjhhAqXsD0yghmc3igZHSD8Fp/77okLDG
FBl2xl50+2enXWvSjOha7lTDd2SNtJHxyepwJ+KVQ9JikiGO5qgHUEe3MF2m0Ifb
l2eB/1+Rqa2OJtphw/l49pwnstGZrZJbPKrKgKsLoXfmnNBOleO3cBrll3Dqy6mo
nXPxNCE9369B8hOfDIUlog5L3jzqJYHlNevpnjz+g7XWDxjy8Is25myA48VIXTyy
tt3n/M6MSKLRik+b2++maKFZxIXQGnUEk+a3+I/Nax6n9qGL
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:27 2024 by rpki-client on console-ams.rpki-client.org