Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/JTXLifG_mbfTHQXNa4fWj7icTuU.roa
File: JTXLifG_mbfTHQXNa4fWj7icTuU.roa (raw, json)
Hash identifier: K3vI/5+79tSVFh46Lf1V2Wp++Xn/8rtRxPkgJtKnMgY=
Subject key identifier: 25:35:CB:89:F1:BF:99:B7:D3:1D:05:CD:6B:87:D6:8F:B8:9C:4E:E5
Certificate issuer: /CN=037b48449ba1cae15bde2c2f086d94218e0720bb
Certificate serial: 018C351F0613FCAE5973897447752C68B786
Authority key identifier: 03:7B:48:44:9B:A1:CA:E1:5B:DE:2C:2F:08:6D:94:21:8E:07:20:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A3tIRJuhyuFb3iwvCG2UIY4HILs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/JTXLifG_mbfTHQXNa4fWj7icTuU.roa
Signing time: Mon 04 Dec 2023 13:57:54 +0000
ROA not before: Mon 04 Dec 2023 13:57:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216435
IP address blocks: 2a10:500::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 04 Dec 2023 18:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:35:1f:06:13:fc:ae:59:73:89:74:47:75:2c:68:b7:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=037b48449ba1cae15bde2c2f086d94218e0720bb
Validity
Not Before: Dec 4 13:57:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2535cb89f1bf99b7d31d05cd6b87d68fb89c4ee5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:9d:cc:f4:d7:14:c4:44:0e:b8:31:70:d6:7a:
3c:2f:21:91:52:f0:c2:11:f4:31:0c:d0:27:c2:73:
80:ae:30:99:7b:65:7c:48:fc:8a:27:38:52:a4:b3:
f8:2e:4f:b3:42:ec:e4:eb:c5:b0:ae:84:9c:7f:85:
74:64:f8:f2:a6:08:9a:f0:a6:a3:a4:75:51:45:36:
47:8f:f6:fb:64:2d:47:43:f8:a7:ba:06:41:72:c4:
f0:6c:4f:4a:99:a2:e0:97:23:a9:47:ee:84:29:ae:
0e:cb:a2:b1:f3:ea:4b:d7:b9:92:e0:6f:24:9a:a0:
1c:44:42:e3:0d:d5:72:f8:af:31:c8:63:b4:9e:96:
99:7f:08:af:86:24:a6:98:9a:db:01:3d:3b:e1:47:
6b:94:08:c8:0d:16:42:bb:4b:98:05:a0:3e:e4:ef:
be:76:ad:06:e4:08:05:a3:8b:89:e8:10:eb:97:46:
88:86:f5:b4:e0:3e:56:e1:76:81:48:23:6c:38:f0:
66:07:a8:94:9a:17:f0:1d:97:86:d1:22:74:b1:f0:
10:c9:45:21:af:e9:53:f0:ec:28:0c:a4:41:b4:4c:
c3:52:5b:f9:af:30:e5:2e:bb:25:ec:70:06:2c:91:
a1:03:1c:58:b6:9d:7e:ca:32:b6:45:20:5e:3f:66:
13:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:35:CB:89:F1:BF:99:B7:D3:1D:05:CD:6B:87:D6:8F:B8:9C:4E:E5
X509v3 Authority Key Identifier:
keyid:03:7B:48:44:9B:A1:CA:E1:5B:DE:2C:2F:08:6D:94:21:8E:07:20:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A3tIRJuhyuFb3iwvCG2UIY4HILs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/JTXLifG_mbfTHQXNa4fWj7icTuU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/5ff78e-db14-4b05-9cc6-7403e13675ab/1/A3tIRJuhyuFb3iwvCG2UIY4HILs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:500::/32
Signature Algorithm: sha256WithRSAEncryption
29:2b:87:7d:a1:7f:20:bb:78:dc:9c:0a:5e:d9:67:04:ba:f0:
f5:51:78:81:15:00:84:eb:8f:d7:9e:7e:85:92:9f:79:0d:5a:
80:aa:14:43:94:5c:2e:32:fc:4f:f5:21:30:2c:54:4b:40:5f:
83:53:71:88:bf:25:a6:f3:a3:aa:7b:a0:7d:6e:3b:ca:e5:63:
6e:7e:da:35:b4:3a:ac:2b:14:c7:b1:8d:34:bb:05:f2:38:0c:
c7:6a:d6:ab:73:8b:41:b4:13:b4:6b:ae:3d:0a:92:f4:13:8f:
42:c5:99:53:53:49:33:eb:2e:db:43:bd:96:41:9b:23:eb:12:
48:b9:94:e9:72:df:3b:82:d9:78:37:78:d0:0c:67:f8:83:99:
5e:fb:68:14:8f:78:83:7a:aa:fd:64:d5:e6:be:55:55:27:63:
9a:05:2a:cb:5d:44:3c:f9:f9:9f:13:bf:4f:f5:0b:f0:f7:63:
0f:d7:dd:a7:c0:f3:cd:29:ed:1b:2f:8e:04:fe:f1:f1:5b:db:
ed:e1:82:5f:ee:2b:70:98:7d:0c:6e:4d:76:5d:74:84:c6:21:
6c:a8:a3:63:c6:ce:9c:53:b9:56:d3:ed:92:ce:17:1c:1d:bd:
06:89:f8:b0:b5:a5:9c:ad:22:1d:09:1d:99:c6:49:fa:72:50:
7f:a0:e4:0c
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYw1HwYT/K5Zc4l0R3UsaLeGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzN2I0ODQ0OWJhMWNhZTE1YmRlMmMyZjA4NmQ5NDIxOGUw
NzIwYmIwHhcNMjMxMjA0MTM1NzU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNTM1Y2I4OWYxYmY5OWI3ZDMxZDA1Y2Q2Yjg3ZDY4ZmI4OWM0ZWU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlp3M9NcUxEQOuDFw1no8LyGRUvDC
EfQxDNAnwnOArjCZe2V8SPyKJzhSpLP4Lk+zQuzk68WwroScf4V0ZPjypgia8Kaj
pHVRRTZHj/b7ZC1HQ/inugZBcsTwbE9KmaLglyOpR+6EKa4Oy6Kx8+pL17mS4G8k
mqAcRELjDdVy+K8xyGO0npaZfwivhiSmmJrbAT074UdrlAjIDRZCu0uYBaA+5O++
dq0G5AgFo4uJ6BDrl0aIhvW04D5W4XaBSCNsOPBmB6iUmhfwHZeG0SJ0sfAQyUUh
r+lT8OwoDKRBtEzDUlv5rzDlLrsl7HAGLJGhAxxYtp1+yjK2RSBeP2YTHQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFCU1y4nxv5m30x0FzWuH1o+4nE7lMB8GA1UdIwQY
MBaAFAN7SESbocrhW94sLwhtlCGOByC7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQTN0SVJKdWh5dUZiM2l3dkNHMlVJWTRISUxzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS81ZmY3OGUtZGIxNC00YjA1LTljYzYt
NzQwM2UxMzY3NWFiLzEvSlRYTGlmR19tYmZUSFFYTmE0ZldqN2ljVHVVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS81ZmY3OGUtZGIxNC00YjA1LTljYzYtNzQwM2UxMzY3NWFi
LzEvQTN0SVJKdWh5dUZiM2l3dkNHMlVJWTRISUxzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhAFADAN
BgkqhkiG9w0BAQsFAAOCAQEAKSuHfaF/ILt43JwKXtlnBLrw9VF4gRUAhOuP155+
hZKfeQ1agKoUQ5RcLjL8T/UhMCxUS0Bfg1NxiL8lpvOjqnugfW47yuVjbn7aNbQ6
rCsUx7GNNLsF8jgMx2rWq3OLQbQTtGuuPQqS9BOPQsWZU1NJM+su20O9lkGbI+sS
SLmU6XLfO4LZeDd40Axn+IOZXvtoFI94g3qq/WTV5r5VVSdjmgUqy11EPPn5nxO/
T/UL8PdjD9fdp8DzzSntGy+OBP7x8Vvb7eGCX+4rcJh9DG5Ndl10hMYhbKijY8bO
nFO5VtPtks4XHB29Bon4sLWlnK0iHQkdmcZJ+nJQf6DkDA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:26 2024 by rpki-client on console-fra.rpki-client.org