Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/5XZWNkqGhPjp247yh_ItVm74_qs.roa
File: 5XZWNkqGhPjp247yh_ItVm74_qs.roa (raw, json)
Hash identifier: 7q18XH0dwgW4C8zPP88UNrENJnY/nJpZaUPKKvKPpvA=
Subject key identifier: E5:76:56:36:4A:86:84:F8:E9:DB:8E:F2:87:F2:2D:56:6E:F8:FE:AB
Certificate issuer: /CN=037b48449ba1cae15bde2c2f086d94218e0720bb
Certificate serial: 01891D860A7D0A25CA84704E320367BAA85C
Authority key identifier: 03:7B:48:44:9B:A1:CA:E1:5B:DE:2C:2F:08:6D:94:21:8E:07:20:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A3tIRJuhyuFb3iwvCG2UIY4HILs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/5XZWNkqGhPjp247yh_ItVm74_qs.roa
Signing time: Mon 03 Jul 2023 20:51:10 +0000
ROA not before: Mon 03 Jul 2023 20:51:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197962
IP address blocks: 2a10:500::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 04 Dec 2023 13:30:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1d:86:0a:7d:0a:25:ca:84:70:4e:32:03:67:ba:a8:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=037b48449ba1cae15bde2c2f086d94218e0720bb
Validity
Not Before: Jul 3 20:51:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e57656364a8684f8e9db8ef287f22d566ef8feab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:9d:1e:c5:f5:8e:7c:30:84:df:de:67:d5:b0:
da:9c:57:4f:68:b6:61:9e:b8:c4:71:90:42:4b:30:
44:ce:2f:dd:a9:90:74:2b:ef:84:b8:ef:08:f4:f4:
d7:44:3d:84:93:f0:7b:88:de:e5:9b:31:47:e3:03:
79:62:23:74:ad:4d:c6:be:0c:5f:94:d0:c0:43:b4:
e6:a5:48:8c:86:d9:8d:9c:ce:fb:ef:1b:53:b5:7c:
87:a8:76:cd:30:0d:c0:dd:e6:6f:80:66:9c:33:8f:
77:25:6d:09:9d:19:86:f7:90:b4:a5:a2:20:41:89:
b3:dc:e2:83:19:99:6c:8d:78:3d:ca:83:d8:60:dc:
27:f3:04:66:ac:4a:31:27:be:2b:a3:fe:b7:aa:52:
a3:3c:b3:f5:33:1c:9c:fb:4a:a7:51:bf:51:78:3a:
bc:19:23:d8:bc:5f:c7:cc:70:2c:07:18:88:f0:33:
15:e2:d8:b3:84:90:92:ca:a3:61:62:88:ac:b2:3c:
d7:b2:35:38:2c:62:a9:8d:38:30:51:03:6f:eb:8b:
96:1d:30:6a:74:c5:0a:c5:c9:16:98:16:9e:a9:ec:
ba:e7:09:df:63:7e:11:c5:d6:b5:aa:2a:91:28:82:
0f:59:da:99:4c:1c:1e:3e:7d:e1:3c:63:2c:97:5a:
ef:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:76:56:36:4A:86:84:F8:E9:DB:8E:F2:87:F2:2D:56:6E:F8:FE:AB
X509v3 Authority Key Identifier:
keyid:03:7B:48:44:9B:A1:CA:E1:5B:DE:2C:2F:08:6D:94:21:8E:07:20:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A3tIRJuhyuFb3iwvCG2UIY4HILs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/5XZWNkqGhPjp247yh_ItVm74_qs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/A3tIRJuhyuFb3iwvCG2UIY4HILs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:500::/32
Signature Algorithm: sha256WithRSAEncryption
2f:59:6e:0b:45:e0:42:e7:c4:f5:b8:78:b1:af:45:a0:fe:5b:
bb:7d:22:a5:db:d7:ba:0c:80:d9:67:9e:f2:11:d3:4a:7a:2d:
3c:dd:3f:82:25:93:fb:7b:ca:35:96:93:00:10:fb:44:b7:2c:
99:e5:2d:4e:b3:c8:86:5b:3d:a0:58:47:de:c2:49:3e:c4:80:
7c:24:7d:78:22:c2:30:87:f2:71:ce:a7:2f:07:4c:64:cb:a5:
c6:50:b7:e7:cf:29:d4:ec:a1:94:8d:3f:d9:92:da:8c:1f:05:
c7:93:48:6b:cf:68:c8:1c:f6:1d:64:f6:5c:be:70:a6:60:3b:
41:3e:d1:46:d2:52:d0:ea:a6:ca:07:d2:ba:70:36:d2:1b:4f:
7d:93:12:c3:96:b1:e3:ad:49:d7:ae:e0:cb:38:0c:8c:d5:e0:
2f:bb:1e:8a:6c:77:16:25:c2:92:d3:84:6f:65:5c:4f:55:36:
d3:69:5b:1c:f4:1f:b3:39:b6:00:97:5b:1f:29:63:05:f7:9b:
58:a7:d3:da:15:5f:ff:02:14:5f:6d:9c:de:3e:b3:64:54:da:
51:aa:41:f9:1c:c0:f9:1c:3d:c6:d2:7e:6e:9d:43:66:a6:ac:
1c:ee:26:aa:1f:32:e4:2d:74:bb:0f:b1:f6:f0:15:5c:87:75:
9c:f3:a8:00
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYkdhgp9CiXKhHBOMgNnuqhcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzN2I0ODQ0OWJhMWNhZTE1YmRlMmMyZjA4NmQ5NDIxOGUw
NzIwYmIwHhcNMjMwNzAzMjA1MTEwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNTc2NTYzNjRhODY4NGY4ZTlkYjhlZjI4N2YyMmQ1NjZlZjhmZWFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgZ0exfWOfDCE395n1bDanFdPaLZh
nrjEcZBCSzBEzi/dqZB0K++EuO8I9PTXRD2Ek/B7iN7lmzFH4wN5YiN0rU3Gvgxf
lNDAQ7TmpUiMhtmNnM777xtTtXyHqHbNMA3A3eZvgGacM493JW0JnRmG95C0paIg
QYmz3OKDGZlsjXg9yoPYYNwn8wRmrEoxJ74ro/63qlKjPLP1Mxyc+0qnUb9ReDq8
GSPYvF/HzHAsBxiI8DMV4tizhJCSyqNhYoissjzXsjU4LGKpjTgwUQNv64uWHTBq
dMUKxckWmBaeqey65wnfY34Rxda1qiqRKIIPWdqZTBwePn3hPGMsl1rv0wIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFOV2VjZKhoT46duO8ofyLVZu+P6rMB8GA1UdIwQY
MBaAFAN7SESbocrhW94sLwhtlCGOByC7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQTN0SVJKdWh5dUZiM2l3dkNHMlVJWTRISUxzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS81ZmY3OGUtZGIxNC00YjA1LTljYzYt
NzQwM2UxMzY3NWFiLzEvNVhaV05rcUdoUGpwMjQ3eWhfSXRWbTc0X3FzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS81ZmY3OGUtZGIxNC00YjA1LTljYzYtNzQwM2UxMzY3NWFi
LzEvQTN0SVJKdWh5dUZiM2l3dkNHMlVJWTRISUxzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhAFADAN
BgkqhkiG9w0BAQsFAAOCAQEAL1luC0XgQufE9bh4sa9FoP5bu30ipdvXugyA2Wee
8hHTSnotPN0/giWT+3vKNZaTABD7RLcsmeUtTrPIhls9oFhH3sJJPsSAfCR9eCLC
MIfycc6nLwdMZMulxlC3588p1OyhlI0/2ZLajB8Fx5NIa89oyBz2HWT2XL5wpmA7
QT7RRtJS0OqmygfSunA20htPfZMSw5ax461J167gyzgMjNXgL7seimx3FiXCktOE
b2VcT1U202lbHPQfszm2AJdbHyljBfebWKfT2hVf/wIUX22c3j6zZFTaUapB+RzA
+Rw9xtJ+bp1DZqasHO4mqh8y5C10uw+x9vAVXId1nPOoAA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:26 2024 by rpki-client on console-fra.rpki-client.org