Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/W2h063-Kvu-YfiaUL2vnTlbAeEs.roa
File: W2h063-Kvu-YfiaUL2vnTlbAeEs.roa (raw, json)
Hash identifier: pU+JQOUUVDPz3UEBb+kn71DhMrd1RgBdgYmiaur554M=
Subject key identifier: 5B:68:74:EB:7F:8A:BE:EF:98:7E:26:94:2F:6B:E7:4E:56:C0:78:4B
Certificate issuer: /CN=9076f77da841b7b94215b6fac2d41a71c2151601
Certificate serial: 01856E8B286654F7E3E3E7819D0D5A8CAC8F
Authority key identifier: 90:76:F7:7D:A8:41:B7:B9:42:15:B6:FA:C2:D4:1A:71:C2:15:16:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/W2h063-Kvu-YfiaUL2vnTlbAeEs.roa
Signing time: Sun 01 Jan 2023 18:14:51 +0000
ROA not before: Sun 01 Jan 2023 18:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210776
IP address blocks: 2a13:1200:10::/44 maxlen: 44
2a13:1200::/44 maxlen: 44
2a13:1200:20::/44 maxlen: 44
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:28:66:54:f7:e3:e3:e7:81:9d:0d:5a:8c:ac:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9076f77da841b7b94215b6fac2d41a71c2151601
Validity
Not Before: Jan 1 18:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5b6874eb7f8abeef987e26942f6be74e56c0784b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:91:fb:ff:70:80:7b:84:d7:8c:bc:43:23:2b:
37:7b:95:d8:e9:af:7e:4b:24:0c:64:03:1c:76:dd:
a3:e7:48:4c:67:67:71:39:f6:48:9b:ac:87:f4:b3:
45:bb:1c:5a:2a:e6:ca:34:8b:b6:ab:99:7d:cc:f0:
60:2f:db:96:ce:1a:4f:54:5c:f4:f5:6d:23:e0:e2:
41:3b:08:4a:6e:a2:df:7f:bc:02:07:ff:98:e1:dd:
95:35:1a:da:d9:56:f0:c5:89:8f:43:1f:f7:9b:90:
fc:d2:a2:bb:53:7a:d4:ae:80:a3:e9:f4:99:ef:bc:
49:76:7b:d1:d4:c1:e6:e2:2e:36:1d:57:cb:ba:08:
12:5c:f2:e8:95:f2:d5:d9:dd:28:dc:47:5a:24:a6:
59:a8:b9:cd:b4:20:b7:7b:97:00:51:97:98:7d:ee:
5c:b5:c4:c4:e1:85:ef:95:1c:e3:82:b8:56:46:cb:
47:1f:65:98:c9:2b:6e:89:c0:6b:3f:2d:59:6d:35:
65:b8:97:bd:e4:d8:bb:25:a3:d5:55:02:f1:75:14:
38:1f:41:fa:ce:9e:e0:b9:58:f6:b7:63:2e:3e:bb:
e1:d1:8d:1e:55:4a:36:b7:94:c6:4e:0e:c5:e3:b9:
81:ec:67:de:7d:25:73:9a:c4:c1:fe:d5:41:b3:da:
ee:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:68:74:EB:7F:8A:BE:EF:98:7E:26:94:2F:6B:E7:4E:56:C0:78:4B
X509v3 Authority Key Identifier:
keyid:90:76:F7:7D:A8:41:B7:B9:42:15:B6:FA:C2:D4:1A:71:C2:15:16:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/W2h063-Kvu-YfiaUL2vnTlbAeEs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:1200::-2a13:1200:2f:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
46:ee:ee:ed:1f:82:4f:89:1b:68:9a:42:14:97:d6:e3:ce:5c:
7a:5b:39:92:60:a4:48:f9:dc:22:0e:58:84:6f:ed:7f:80:55:
d9:c0:12:5b:ea:2c:97:b7:45:29:39:2f:eb:60:8a:c7:4f:a4:
01:a1:26:a0:46:f6:d5:07:72:eb:d6:87:ec:15:27:f5:fc:18:
0a:c7:f3:8d:5e:b5:3a:fd:29:5e:26:54:6d:cc:41:73:06:cc:
7a:eb:04:c8:cf:d1:e7:83:02:78:41:d7:d8:fa:a5:ea:39:34:
45:10:4f:eb:af:dd:48:b0:9e:e4:02:0d:47:ff:81:a4:73:96:
10:a5:0e:3c:3a:3a:c8:53:c8:3c:fe:ce:77:56:5a:f0:d6:e9:
fa:59:23:69:4f:d7:33:b9:33:b2:20:80:2b:89:f4:df:35:60:
b5:2f:b1:82:cb:da:b1:b9:04:e6:40:03:e0:e9:61:dc:02:11:
94:db:a5:08:b8:02:78:5a:3f:fa:37:6a:c1:b9:04:56:47:db:
38:4c:8d:86:c8:e5:81:89:95:4c:dd:e2:e8:f0:98:88:e8:e9:
7e:de:c0:c9:94:01:d2:ac:f3:70:9c:9b:a4:e8:c4:fc:f8:d2:
68:a8:0f:d6:e4:fb:84:3c:b0:38:ac:fd:6c:a2:b7:1e:26:e0:
63:3e:df:c2
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgISAYVuiyhmVPfj4+eBnQ1ajKyPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwNzZmNzdkYTg0MWI3Yjk0MjE1YjZmYWMyZDQxYTcxYzIx
NTE2MDEwHhcNMjMwMTAxMTgxNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YjY4NzRlYjdmOGFiZWVmOTg3ZTI2OTQyZjZiZTc0ZTU2YzA3ODRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvpH7/3CAe4TXjLxDIys3e5XY6a9+
SyQMZAMcdt2j50hMZ2dxOfZIm6yH9LNFuxxaKubKNIu2q5l9zPBgL9uWzhpPVFz0
9W0j4OJBOwhKbqLff7wCB/+Y4d2VNRra2VbwxYmPQx/3m5D80qK7U3rUroCj6fSZ
77xJdnvR1MHm4i42HVfLuggSXPLolfLV2d0o3EdaJKZZqLnNtCC3e5cAUZeYfe5c
tcTE4YXvlRzjgrhWRstHH2WYyStuicBrPy1ZbTVluJe95Ni7JaPVVQLxdRQ4H0H6
zp7guVj2t2MuPrvh0Y0eVUo2t5TGTg7F47mB7GfefSVzmsTB/tVBs9ru7QIDAQAB
o4ICFDCCAhAwHQYDVR0OBBYEFFtodOt/ir7vmH4mlC9r505WwHhLMB8GA1UdIwQY
MBaAFJB2932oQbe5QhW2+sLUGnHCFRYBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva0hiM2ZhaEJ0N2xDRmJiNnd0UWFjY0lWRmdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9lMWQ2YjctNTU1Yy00ZDliLWFmZTEt
ZTYzY2U1NTM3MGViLzEvVzJoMDYzLUt2dS1ZZmlhVUwydm5UbGJBZUVzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS9lMWQ2YjctNTU1Yy00ZDliLWFmZTEtZTYzY2U1NTM3MGVi
LzEva0hiM2ZhaEJ0N2xDRmJiNnd0UWFjY0lWRmdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCoGCCsGAQUFBwEHAQH/BBswGTAXBAIAAjARMA8DBAEqExID
BwQqExIAACAwDQYJKoZIhvcNAQELBQADggEBAEbu7u0fgk+JG2iaQhSX1uPOXHpb
OZJgpEj53CIOWIRv7X+AVdnAElvqLJe3RSk5L+tgisdPpAGhJqBG9tUHcuvWh+wV
J/X8GArH841etTr9KV4mVG3MQXMGzHrrBMjP0eeDAnhB19j6peo5NEUQT+uv3Uiw
nuQCDUf/gaRzlhClDjw6OshTyDz+zndWWvDW6fpZI2lP1zO5M7IggCuJ9N81YLUv
sYLL2rG5BOZAA+DpYdwCEZTbpQi4AnhaP/o3asG5BFZH2zhMjYbI5YGJlUzd4ujw
mIjo6X7ewMmUAdKs83Ccm6ToxPz40mioD9bk+4Q8sDis/Wyitx4m4GM+38I=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:01 2024 by rpki-client on console-ams.rpki-client.org