Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/87ca91-6fb8-4038-890c-4915fe7f92ce/1/Pdcwt9uSxA-2YMxhBDjC7ms9l24.roa
File: Pdcwt9uSxA-2YMxhBDjC7ms9l24.roa (raw, json)
Hash identifier: TWnxRO8h+7teXeGnje4R5oilQ+7D4gN8zNkzkkbdFss=
Subject key identifier: 3D:D7:30:B7:DB:92:C4:0F:B6:60:CC:61:04:38:C2:EE:6B:3D:97:6E
Certificate issuer: /CN=644f033f782eaf32ab09088775d64ac4b94b5b11
Certificate serial: 0186E578D7B8A8EBA0A984907B4D4EB8488E
Authority key identifier: 64:4F:03:3F:78:2E:AF:32:AB:09:08:87:75:D6:4A:C4:B9:4B:5B:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZE8DP3gurzKrCQiHddZKxLlLWxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/87ca91-6fb8-4038-890c-4915fe7f92ce/1/Pdcwt9uSxA-2YMxhBDjC7ms9l24.roa
Signing time: Wed 15 Mar 2023 13:32:27 +0000
ROA not before: Wed 15 Mar 2023 13:32:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56687
IP address blocks: 2a05:2584::/30 maxlen: 30
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e5:78:d7:b8:a8:eb:a0:a9:84:90:7b:4d:4e:b8:48:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=644f033f782eaf32ab09088775d64ac4b94b5b11
Validity
Not Before: Mar 15 13:32:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3dd730b7db92c40fb660cc610438c2ee6b3d976e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:86:8a:cc:89:5a:05:c3:80:02:b2:6f:53:57:
6a:54:db:4f:94:ab:1e:76:e5:73:a3:35:dc:72:dd:
f8:ba:ee:02:04:8b:58:0e:f5:3a:f5:23:3d:36:13:
fb:87:cd:de:b4:8e:d2:49:de:d3:2d:fe:7c:c5:62:
ca:44:c8:92:05:80:57:ce:b1:dd:c5:33:9f:b5:a6:
54:9f:47:c9:2f:bd:e9:65:10:0b:6d:29:f1:60:ed:
89:d9:68:93:11:ae:31:75:80:e7:5d:99:dc:a2:15:
47:3d:b6:88:8b:0b:71:8e:14:27:ec:e5:24:62:a7:
cb:cb:3a:8f:0e:0a:e4:27:54:89:a5:52:f2:bb:95:
cc:00:33:c5:af:42:08:9f:8f:5c:ff:da:8a:3a:cb:
67:08:23:ca:c7:aa:80:b9:a9:31:4d:8d:8b:87:2e:
fa:b8:3e:1c:27:19:68:14:56:89:c1:3b:31:14:0a:
84:51:1c:08:2e:d9:f4:2f:2c:a2:46:1e:87:60:02:
32:8d:8b:c8:95:f9:02:8b:02:78:80:fc:49:f4:c5:
b2:69:a9:3f:d1:3e:44:88:55:45:56:e3:96:08:18:
11:14:60:8a:6f:b9:d1:5f:67:23:2e:29:40:de:61:
c5:4e:38:03:43:f5:64:dd:b4:50:38:22:18:fc:87:
2f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:D7:30:B7:DB:92:C4:0F:B6:60:CC:61:04:38:C2:EE:6B:3D:97:6E
X509v3 Authority Key Identifier:
keyid:64:4F:03:3F:78:2E:AF:32:AB:09:08:87:75:D6:4A:C4:B9:4B:5B:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZE8DP3gurzKrCQiHddZKxLlLWxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/87ca91-6fb8-4038-890c-4915fe7f92ce/1/Pdcwt9uSxA-2YMxhBDjC7ms9l24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/87ca91-6fb8-4038-890c-4915fe7f92ce/1/ZE8DP3gurzKrCQiHddZKxLlLWxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:2584::/30
Signature Algorithm: sha256WithRSAEncryption
3c:07:94:73:d0:70:00:db:bb:7d:bc:2e:fd:cc:6d:82:7d:58:
dc:5d:b8:99:4e:b1:f6:74:bf:3c:2c:be:11:3d:43:fe:b4:4e:
d1:34:f6:ed:46:5c:ab:b1:a3:1f:90:2b:f0:a9:b2:f8:af:8f:
a8:be:89:f4:2c:e1:74:ee:c9:a1:41:11:58:37:26:58:1c:43:
69:0f:f0:03:e7:6c:60:8a:dc:87:50:4a:e8:46:ba:bc:9e:38:
a7:ad:5c:48:c7:60:26:9a:cb:9d:7c:ad:1c:2b:ec:b3:e8:3a:
19:12:32:61:1a:74:93:ec:13:83:e4:e0:73:33:04:5b:04:ec:
43:13:d1:ec:55:92:63:8e:9b:61:a8:c6:77:73:dd:21:84:6f:
3c:3e:46:f1:d0:b6:3e:63:6b:35:57:f4:47:16:be:40:55:4f:
3f:5e:1b:d3:76:a8:c1:72:1c:22:21:54:fd:3d:2d:ef:62:6e:
63:4a:87:b3:cc:78:f6:67:fd:71:a3:49:f8:01:e1:4a:10:00:
91:e0:a0:33:fa:7c:fe:3d:86:bd:18:a3:eb:dd:85:47:81:8c:
98:74:6d:26:fc:ab:42:0a:44:0e:7a:7e:3c:34:e1:61:45:e8:
fd:d6:45:ae:cf:18:99:fe:da:3b:24:fc:bb:a4:07:33:95:15:
d5:74:ba:3e
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYbleNe4qOugqYSQe01OuEiOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY0NGYwMzNmNzgyZWFmMzJhYjA5MDg4Nzc1ZDY0YWM0Yjk0
YjViMTEwHhcNMjMwMzE1MTMzMjI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZGQ3MzBiN2RiOTJjNDBmYjY2MGNjNjEwNDM4YzJlZTZiM2Q5NzZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnYaKzIlaBcOAArJvU1dqVNtPlKse
duVzozXcct34uu4CBItYDvU69SM9NhP7h83etI7SSd7TLf58xWLKRMiSBYBXzrHd
xTOftaZUn0fJL73pZRALbSnxYO2J2WiTEa4xdYDnXZncohVHPbaIiwtxjhQn7OUk
YqfLyzqPDgrkJ1SJpVLyu5XMADPFr0IIn49c/9qKOstnCCPKx6qAuakxTY2Lhy76
uD4cJxloFFaJwTsxFAqEURwILtn0LyyiRh6HYAIyjYvIlfkCiwJ4gPxJ9MWyaak/
0T5EiFVFVuOWCBgRFGCKb7nRX2cjLilA3mHFTjgDQ/Vk3bRQOCIY/IcvUQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFD3XMLfbksQPtmDMYQQ4wu5rPZduMB8GA1UdIwQY
MBaAFGRPAz94Lq8yqwkIh3XWSsS5S1sRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWkU4RFAzZ3VyektyQ1FpSGRkWkt4TGxMV3hFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS84N2NhOTEtNmZiOC00MDM4LTg5MGMt
NDkxNWZlN2Y5MmNlLzEvUGRjd3Q5dVN4QS0yWU14aEJEakM3bXM5bDI0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS84N2NhOTEtNmZiOC00MDM4LTg5MGMtNDkxNWZlN2Y5MmNl
LzEvWkU4RFAzZ3VyektyQ1FpSGRkWkt4TGxMV3hFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUCKgUlhDAN
BgkqhkiG9w0BAQsFAAOCAQEAPAeUc9BwANu7fbwu/cxtgn1Y3F24mU6x9nS/PCy+
ET1D/rRO0TT27UZcq7GjH5Ar8Kmy+K+PqL6J9CzhdO7JoUERWDcmWBxDaQ/wA+ds
YIrch1BK6Ea6vJ44p61cSMdgJprLnXytHCvss+g6GRIyYRp0k+wTg+TgczMEWwTs
QxPR7FWSY46bYajGd3PdIYRvPD5G8dC2PmNrNVf0Rxa+QFVPP14b03aowXIcIiFU
/T0t72JuY0qHs8x49mf9caNJ+AHhShAAkeCgM/p8/j2GvRij692FR4GMmHRtJvyr
QgpEDnp+PDThYUXo/dZFrs8Ymf7aOyT8u6QHM5UV1XS6Pg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org