Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/8ce609-db1d-4997-9d8a-96ddd5a0239d/1/5EkCBzPS0zjZ-sGsw2HjX2P4Xfc.roa
File: 5EkCBzPS0zjZ-sGsw2HjX2P4Xfc.roa (raw, json)
Hash identifier: dtp2YLj+CXJqvfBtVkDBhN/dfrihyPWF6udZUCVp1kU=
Subject key identifier: E4:49:02:07:33:D2:D3:38:D9:FA:C1:AC:C3:61:E3:5F:63:F8:5D:F7
Certificate issuer: /CN=d9d0318f2685e32d2dba923f6662771427359738
Certificate serial: 01856E8211D86FF094D8FE5562C52FEA61A9
Authority key identifier: D9:D0:31:8F:26:85:E3:2D:2D:BA:92:3F:66:62:77:14:27:35:97:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2dAxjyaF4y0tupI_ZmJ3FCc1lzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/8ce609-db1d-4997-9d8a-96ddd5a0239d/1/5EkCBzPS0zjZ-sGsw2HjX2P4Xfc.roa
Signing time: Sun 01 Jan 2023 18:04:55 +0000
ROA not before: Sun 01 Jan 2023 18:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51103
IP address blocks: 2001:1b28:405::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:82:11:d8:6f:f0:94:d8:fe:55:62:c5:2f:ea:61:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d9d0318f2685e32d2dba923f6662771427359738
Validity
Not Before: Jan 1 18:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e449020733d2d338d9fac1acc361e35f63f85df7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:06:3e:b5:8b:01:1d:bd:26:fa:32:40:21:26:
ac:01:e0:63:ba:63:4b:02:f1:18:6a:97:18:d5:7f:
59:ff:c6:be:8c:4d:56:f8:12:df:ba:8f:95:ee:9a:
4c:ce:45:b6:74:cd:53:78:04:21:cc:92:b9:44:3d:
f5:b8:b9:22:7b:ae:61:44:fa:95:44:6b:79:ad:96:
93:ab:26:f2:60:3f:9d:65:19:b2:1b:d2:e7:50:a2:
1e:71:b2:ff:3e:94:93:1f:8e:4e:ca:e3:37:db:b7:
88:65:dd:01:8a:94:f9:19:6c:2a:c6:48:d9:2c:34:
b9:4f:73:b3:d8:f2:51:54:d7:37:f2:2d:b8:52:a0:
31:46:6a:ae:21:c3:75:57:fa:58:2c:52:c9:f4:98:
fb:4f:11:a5:47:b3:60:f2:9f:ce:d3:63:0f:d1:37:
18:62:72:4b:f9:80:7c:b6:15:21:3a:3e:fb:4c:9f:
cd:f7:23:a9:43:31:3e:1c:e0:df:d6:74:af:12:c7:
2d:ee:2b:88:73:de:e8:f1:fe:c0:e1:33:5c:1e:e9:
2c:02:02:96:c5:e1:cf:77:64:5a:d1:dd:6f:b3:48:
04:b5:f1:1e:8e:5c:e3:6f:b3:15:92:b9:33:2e:7b:
61:25:69:6a:e3:49:70:9f:8d:10:c4:9a:6b:99:eb:
8c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:49:02:07:33:D2:D3:38:D9:FA:C1:AC:C3:61:E3:5F:63:F8:5D:F7
X509v3 Authority Key Identifier:
keyid:D9:D0:31:8F:26:85:E3:2D:2D:BA:92:3F:66:62:77:14:27:35:97:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2dAxjyaF4y0tupI_ZmJ3FCc1lzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/8ce609-db1d-4997-9d8a-96ddd5a0239d/1/5EkCBzPS0zjZ-sGsw2HjX2P4Xfc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/8ce609-db1d-4997-9d8a-96ddd5a0239d/1/2dAxjyaF4y0tupI_ZmJ3FCc1lzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:1b28:405::/48
Signature Algorithm: sha256WithRSAEncryption
ae:73:87:c2:f4:33:d2:e1:b2:ad:56:c6:c1:5c:82:3b:8b:39:
71:3f:7b:a7:33:08:88:20:df:0d:7f:89:30:ec:88:db:31:70:
e1:13:a0:45:d8:f2:52:a0:5f:4a:da:f3:20:dd:8b:f8:cb:d1:
f0:09:8f:b3:60:2d:4b:e9:25:85:b0:be:90:ed:bf:b7:32:9e:
89:f5:25:0e:1d:a5:72:67:61:1e:35:ee:63:91:79:c6:c3:d0:
23:a0:9b:a4:56:df:11:ea:74:0f:84:88:3f:42:5c:70:1d:67:
57:fa:ae:90:84:49:d6:ca:a7:71:e0:65:83:2e:d5:6b:f5:5d:
ea:95:e3:a0:84:14:dc:27:ce:52:42:d5:3d:88:e2:68:bf:d1:
24:e3:b2:d0:1b:12:1d:44:61:d1:8b:6a:03:e9:ca:6a:d0:4c:
12:18:21:41:2e:75:1d:38:50:c2:ab:a7:1b:81:52:91:3b:9c:
b8:52:55:43:1e:46:33:bf:b6:49:f0:5a:b1:ed:ff:e2:52:cf:
50:1b:e8:5b:90:cc:dd:09:fe:a3:e4:c0:5a:ac:4a:ae:d9:1c:
4d:18:e8:81:16:cf:77:32:2c:9f:49:e8:75:ac:26:77:be:b7:
9e:df:c2:83:39:3e:d8:7e:cf:6a:bd:37:41:55:20:bc:6c:c4:
35:52:e2:4d
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVughHYb/CU2P5VYsUv6mGpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5ZDAzMThmMjY4NWUzMmQyZGJhOTIzZjY2NjI3NzE0Mjcz
NTk3MzgwHhcNMjMwMTAxMTgwNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNDQ5MDIwNzMzZDJkMzM4ZDlmYWMxYWNjMzYxZTM1ZjYzZjg1ZGY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkgY+tYsBHb0m+jJAISasAeBjumNL
AvEYapcY1X9Z/8a+jE1W+BLfuo+V7ppMzkW2dM1TeAQhzJK5RD31uLkie65hRPqV
RGt5rZaTqybyYD+dZRmyG9LnUKIecbL/PpSTH45OyuM327eIZd0BipT5GWwqxkjZ
LDS5T3Oz2PJRVNc38i24UqAxRmquIcN1V/pYLFLJ9Jj7TxGlR7Ng8p/O02MP0TcY
YnJL+YB8thUhOj77TJ/N9yOpQzE+HODf1nSvEsct7iuIc97o8f7A4TNcHuksAgKW
xeHPd2Ra0d1vs0gEtfEejlzjb7MVkrkzLnthJWlq40lwn40QxJprmeuMpwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFORJAgcz0tM42frBrMNh419j+F33MB8GA1UdIwQY
MBaAFNnQMY8mheMtLbqSP2ZidxQnNZc4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmRBeGp5YUY0eTB0dXBJX1ptSjNGQ2MxbHpnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi84Y2U2MDktZGIxZC00OTk3LTlkOGEt
OTZkZGQ1YTAyMzlkLzEvNUVrQ0J6UFMwempaLXNHc3cySGpYMlA0WGZjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi84Y2U2MDktZGIxZC00OTk3LTlkOGEtOTZkZGQ1YTAyMzlk
LzEvMmRBeGp5YUY0eTB0dXBJX1ptSjNGQ2MxbHpnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEbKAQF
MA0GCSqGSIb3DQEBCwUAA4IBAQCuc4fC9DPS4bKtVsbBXII7izlxP3unMwiIIN8N
f4kw7IjbMXDhE6BF2PJSoF9K2vMg3Yv4y9HwCY+zYC1L6SWFsL6Q7b+3Mp6J9SUO
HaVyZ2EeNe5jkXnGw9AjoJukVt8R6nQPhIg/QlxwHWdX+q6QhEnWyqdx4GWDLtVr
9V3qleOghBTcJ85SQtU9iOJov9Ek47LQGxIdRGHRi2oD6cpq0EwSGCFBLnUdOFDC
q6cbgVKRO5y4UlVDHkYzv7ZJ8Fqx7f/iUs9QG+hbkMzdCf6j5MBarEqu2RxNGOiB
Fs93MiyfSeh1rCZ3vree38KDOT7Yfs9qvTdBVSC8bMQ1UuJN
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:34 2024 by rpki-client on console-ams.rpki-client.org