Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/Z9PyUAdBpsHtAu_ytZ0-dhI8EGw.roa
File: Z9PyUAdBpsHtAu_ytZ0-dhI8EGw.roa (raw, json)
Hash identifier: KHzVIv5mPzhl5xXC+3WeOQqdI0MHgFIGO9KZa5IJ904=
Subject key identifier: 67:D3:F2:50:07:41:A6:C1:ED:02:EF:F2:B5:9D:3E:76:12:3C:10:6C
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 018CC9BC6D9E6194BB5F53BD070233A13C9B
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/Z9PyUAdBpsHtAu_ytZ0-dhI8EGw.roa
Signing time: Tue 02 Jan 2024 10:33:38 +0000
ROA not before: Tue 02 Jan 2024 10:33:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60742
IP address blocks: 2a0e:8100::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 17 May 2024 07:19:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:6d:9e:61:94:bb:5f:53:bd:07:02:33:a1:3c:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jan 2 10:33:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=67d3f2500741a6c1ed02eff2b59d3e76123c106c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f6:f9:bf:07:74:5c:b1:20:cb:11:b3:61:fe:
03:c3:0d:c0:08:fb:b8:fd:94:66:68:9e:99:1d:f0:
64:55:00:b5:fa:8f:85:eb:82:6d:81:86:d6:89:bd:
56:f9:ef:71:eb:47:57:06:b9:82:76:17:f4:0c:2c:
96:db:3a:13:56:9c:fa:33:c8:d6:ae:23:18:40:de:
94:89:2b:62:16:23:36:0c:0c:0b:21:e2:d6:93:6d:
dd:eb:f2:0a:ae:3d:0b:bc:31:fa:4f:4b:ed:71:66:
27:fb:fc:8b:29:ec:70:45:14:83:51:01:3c:f9:e5:
ec:63:1a:d4:4b:44:6c:f1:17:32:8f:42:a3:c7:83:
53:1f:a9:28:ea:e9:7a:b4:ef:7c:81:b0:c7:81:56:
06:55:0b:07:7e:b6:dd:f1:00:34:ed:e7:df:6a:e0:
68:1f:04:55:0f:e2:f6:e5:10:da:86:6d:55:b9:56:
c7:7f:b7:c1:63:ee:60:a7:af:a9:92:1c:1c:8d:98:
81:99:7f:cb:a7:ac:03:c2:63:8a:ef:10:46:4f:13:
ce:43:a9:6d:e2:b7:cf:93:58:2a:8f:3d:af:40:d1:
f9:b2:67:c3:70:85:63:e1:59:7b:07:f7:75:d7:cf:
e8:3c:42:61:93:77:95:e2:3f:0a:0c:3d:cc:ce:6a:
50:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:D3:F2:50:07:41:A6:C1:ED:02:EF:F2:B5:9D:3E:76:12:3C:10:6C
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/Z9PyUAdBpsHtAu_ytZ0-dhI8EGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8100::/32
Signature Algorithm: sha256WithRSAEncryption
50:d2:f4:5d:ce:8f:5a:33:66:58:e9:e5:3e:21:c5:ec:c5:61:
69:f3:76:4f:5d:6d:80:4b:50:b0:5a:11:fd:a7:e5:20:7d:d4:
3d:35:04:f9:9c:92:b4:ec:9f:a1:cc:b1:2b:ce:6b:a4:45:c5:
53:9a:7c:ed:22:5d:53:52:ca:98:f4:d1:50:f2:3f:2a:5f:f9:
cc:63:0f:d3:ba:be:78:8b:86:c8:c2:71:79:f0:a0:1c:ca:62:
3f:52:f8:82:7d:76:57:61:dc:f0:6a:30:c5:9d:7c:fd:35:0b:
19:02:ea:6a:1a:a1:85:9c:8d:aa:9f:94:7d:7a:c3:92:11:99:
a2:57:6f:5c:f2:fd:f8:8e:98:13:0c:b2:df:5d:1b:a8:5a:1b:
a3:d7:1b:15:d5:09:2f:b1:bb:fd:26:9c:73:ac:05:f7:7e:55:
aa:49:59:40:e6:3b:13:e9:e6:fe:ed:2c:72:4e:62:ef:85:bb:
da:9c:c9:1c:5a:af:82:07:22:20:7b:dd:94:5c:9c:d3:20:bd:
71:0a:81:de:59:f7:ad:df:c6:81:4c:6a:1c:98:45:8e:e1:3c:
b3:cc:e0:5e:44:84:41:c3:ea:4d:ec:53:03:92:3f:21:0b:c9:
9b:42:d4:49:58:36:28:c7:97:09:0d:6e:23:7f:d9:55:42:ae:
4d:39:07:02
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYzJvG2eYZS7X1O9BwIzoTybMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2NmQ5ZDUwYjNiODlkNTFjOGFhMjQ5M2U3ZWY0NzAxZDYy
NTFkYWQwHhcNMjQwMTAyMTAzMzM4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2N2QzZjI1MDA3NDFhNmMxZWQwMmVmZjJiNTlkM2U3NjEyM2MxMDZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqPb5vwd0XLEgyxGzYf4Dww3ACPu4
/ZRmaJ6ZHfBkVQC1+o+F64JtgYbWib1W+e9x60dXBrmCdhf0DCyW2zoTVpz6M8jW
riMYQN6UiStiFiM2DAwLIeLWk23d6/IKrj0LvDH6T0vtcWYn+/yLKexwRRSDUQE8
+eXsYxrUS0Rs8Rcyj0Kjx4NTH6ko6ul6tO98gbDHgVYGVQsHfrbd8QA07effauBo
HwRVD+L25RDahm1VuVbHf7fBY+5gp6+pkhwcjZiBmX/Lp6wDwmOK7xBGTxPOQ6lt
4rfPk1gqjz2vQNH5smfDcIVj4Vl7B/d118/oPEJhk3eV4j8KDD3MzmpQaQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFGfT8lAHQabB7QLv8rWdPnYSPBBsMB8GA1UdIwQY
MBaAFMZtnVCzuJ1RyKokk+fvRwHWJR2tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveG0yZFVMTzRuVkhJcWlTVDUtOUhBZFlsSGEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS80YmI3NGItOGQ2ZC00NTE0LWEzOWMt
YjdjNTc4Yjc0ZTM1LzEvWjlQeVVBZEJwc0h0QXVfeXRaMC1kaEk4RUd3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS80YmI3NGItOGQ2ZC00NTE0LWEzOWMtYjdjNTc4Yjc0ZTM1
LzEveG0yZFVMTzRuVkhJcWlTVDUtOUhBZFlsSGEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKg6BADAN
BgkqhkiG9w0BAQsFAAOCAQEAUNL0Xc6PWjNmWOnlPiHF7MVhafN2T11tgEtQsFoR
/aflIH3UPTUE+ZyStOyfocyxK85rpEXFU5p87SJdU1LKmPTRUPI/Kl/5zGMP07q+
eIuGyMJxefCgHMpiP1L4gn12V2Hc8GowxZ18/TULGQLqahqhhZyNqp+UfXrDkhGZ
oldvXPL9+I6YEwyy310bqFobo9cbFdUJL7G7/Sacc6wF935VqklZQOY7E+nm/u0s
ck5i74W72pzJHFqvggciIHvdlFyc0yC9cQqB3ln3rd/GgUxqHJhFjuE8s8zgXkSE
QcPqTexTA5I/IQvJm0LUSVg2KMeXCQ1uI3/ZVUKuTTkHAg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:25 2024 by rpki-client on console-fra.rpki-client.org