Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/r2Tk_eBApY5svrsBLRBcTGXromE.roa
File: r2Tk_eBApY5svrsBLRBcTGXromE.roa (raw, json)
Hash identifier: NkPJYITYWcyXDMJkENAhwltCXAcPSEhhKR665qqytII=
Subject key identifier: AF:64:E4:FD:E0:40:A5:8E:6C:BE:BB:01:2D:10:5C:4C:65:EB:A2:61
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 0185720C51A0D49C8F14E1B33ABC73AC9519
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/r2Tk_eBApY5svrsBLRBcTGXromE.roa
Signing time: Mon 02 Jan 2023 10:34:48 +0000
ROA not before: Mon 02 Jan 2023 10:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209334
IP address blocks: 2a0d:f407:1001::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:51:a0:d4:9c:8f:14:e1:b3:3a:bc:73:ac:95:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jan 2 10:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af64e4fde040a58e6cbebb012d105c4c65eba261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d6:cd:a2:85:26:46:9b:ea:7b:6f:34:90:84:
50:9f:7f:7d:a6:f2:ac:41:62:98:ef:ab:fb:d5:04:
96:3f:07:18:c5:93:62:10:06:6b:e5:4d:12:8d:22:
1f:3e:91:5a:a9:f5:86:24:67:c0:a0:06:21:9a:9d:
c0:40:46:55:fd:fd:d5:6a:cb:bf:d8:55:fd:f2:0b:
00:62:0e:4c:f3:30:c8:74:b3:50:54:68:cd:df:e4:
12:e3:48:f7:d4:10:cb:8e:ba:08:72:11:a2:69:35:
b3:cd:31:a5:cc:91:f9:d6:bd:dd:7d:fb:b9:19:4a:
c8:54:cd:ed:bc:77:2d:d0:34:82:65:d6:d5:c8:1e:
e2:e4:c5:58:80:57:e6:f1:65:29:8b:6c:f2:08:e5:
6f:f8:df:0c:79:a7:d9:62:31:83:81:b3:51:0b:4c:
41:98:55:2b:50:2c:e5:18:7a:4c:0a:a7:0e:62:9a:
af:fb:da:23:a6:a4:ee:47:37:88:66:be:c8:78:2d:
52:d6:9d:9d:75:ef:ab:0a:6f:98:c0:d2:eb:c9:d5:
44:e6:b9:89:d5:44:ad:8c:30:17:b0:70:ef:f4:15:
68:3f:dc:54:c4:69:be:c2:14:e1:7b:7e:df:5f:64:
72:c8:ef:34:07:19:71:92:19:38:f1:0e:ad:a2:95:
6b:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:64:E4:FD:E0:40:A5:8E:6C:BE:BB:01:2D:10:5C:4C:65:EB:A2:61
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/r2Tk_eBApY5svrsBLRBcTGXromE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:f407:1001::/48
Signature Algorithm: sha256WithRSAEncryption
a2:eb:08:e1:cc:bc:ce:59:60:a8:43:97:bd:2d:bf:65:d5:b4:
d7:92:fd:28:b6:ad:28:4c:2b:df:50:3e:31:56:e7:d3:da:a8:
a3:6a:6e:15:61:8b:e2:b1:67:6c:d9:c3:cf:57:b2:22:47:72:
a6:d1:eb:f4:18:0e:46:8e:9f:e9:37:60:b1:34:aa:0d:d5:5d:
50:3f:d1:23:ec:d9:a0:72:13:f9:be:f7:6d:de:61:c5:7c:59:
3c:75:3f:28:35:7f:25:65:ef:db:68:84:a3:04:f7:44:44:b9:
eb:66:6f:5b:ad:c9:2f:c5:9d:eb:f2:94:97:a1:9f:6a:af:6a:
b3:39:09:47:de:e9:f2:c5:db:1b:fa:86:68:74:06:5f:a1:fa:
6a:b1:49:b3:1a:86:86:b2:2a:74:ff:8f:fc:bd:36:fa:f1:fe:
8a:c5:0a:53:f2:16:48:61:26:3c:73:ad:48:8d:c0:6b:c2:c2:
e2:66:eb:7c:72:d9:6b:e9:d3:b6:7b:84:3e:b7:4a:a4:19:09:
30:dd:29:e4:44:00:f2:30:b9:44:0d:af:65:e6:d4:4d:fa:49:
d0:e8:95:06:33:e6:d1:9b:2d:f0:d1:e7:65:46:ba:b3:45:18:
6a:85:1e:bd:a8:11:7a:6c:64:f9:d7:03:36:3a:16:d1:8d:45:
c3:6a:f6:d3
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVyDFGg1JyPFOGzOrxzrJUZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2NmQ5ZDUwYjNiODlkNTFjOGFhMjQ5M2U3ZWY0NzAxZDYy
NTFkYWQwHhcNMjMwMTAyMTAzNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZjY0ZTRmZGUwNDBhNThlNmNiZWJiMDEyZDEwNWM0YzY1ZWJhMjYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl9bNooUmRpvqe280kIRQn399pvKs
QWKY76v71QSWPwcYxZNiEAZr5U0SjSIfPpFaqfWGJGfAoAYhmp3AQEZV/f3Vasu/
2FX98gsAYg5M8zDIdLNQVGjN3+QS40j31BDLjroIchGiaTWzzTGlzJH51r3dffu5
GUrIVM3tvHct0DSCZdbVyB7i5MVYgFfm8WUpi2zyCOVv+N8MeafZYjGDgbNRC0xB
mFUrUCzlGHpMCqcOYpqv+9ojpqTuRzeIZr7IeC1S1p2dde+rCm+YwNLrydVE5rmJ
1UStjDAXsHDv9BVoP9xUxGm+whThe37fX2RyyO80Bxlxkhk48Q6topVrVQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFK9k5P3gQKWObL67AS0QXExl66JhMB8GA1UdIwQY
MBaAFMZtnVCzuJ1RyKokk+fvRwHWJR2tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveG0yZFVMTzRuVkhJcWlTVDUtOUhBZFlsSGEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS80YmI3NGItOGQ2ZC00NTE0LWEzOWMt
YjdjNTc4Yjc0ZTM1LzEvcjJUa19lQkFwWTVzdnJzQkxSQmNUR1hyb21FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS80YmI3NGItOGQ2ZC00NTE0LWEzOWMtYjdjNTc4Yjc0ZTM1
LzEveG0yZFVMTzRuVkhJcWlTVDUtOUhBZFlsSGEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg30BxAB
MA0GCSqGSIb3DQEBCwUAA4IBAQCi6wjhzLzOWWCoQ5e9Lb9l1bTXkv0otq0oTCvf
UD4xVufT2qijam4VYYvisWds2cPPV7IiR3Km0ev0GA5Gjp/pN2CxNKoN1V1QP9Ej
7NmgchP5vvdt3mHFfFk8dT8oNX8lZe/baISjBPdERLnrZm9brckvxZ3r8pSXoZ9q
r2qzOQlH3unyxdsb+oZodAZfofpqsUmzGoaGsip0/4/8vTb68f6KxQpT8hZIYSY8
c61IjcBrwsLiZut8ctlr6dO2e4Q+t0qkGQkw3SnkRADyMLlEDa9l5tRN+knQ6JUG
M+bRmy3w0edlRrqzRRhqhR69qBF6bGT51wM2OhbRjUXDavbT
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:36 2024 by rpki-client on console-ams.rpki-client.org