Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/e6ba81-b38e-4bb3-b005-56fde5e715b1/1/5cb3c2gPj8lHOJ0Hk_BhU0C1QBo.roa
File: 5cb3c2gPj8lHOJ0Hk_BhU0C1QBo.roa (raw, json)
Hash identifier: 8nHc1ntt1cJ4GVHlvBGbLeTFn8UDkJp/pl8GueUDh6E=
Subject key identifier: E5:C6:F7:73:68:0F:8F:C9:47:38:9D:07:93:F0:61:53:40:B5:40:1A
Certificate issuer: /CN=4721bf48e401660ee9611b35c04b5d1d1f3fabfa
Certificate serial: 0189DA3B7BC88D8D30EB836D0E1E4BC7F9AC
Authority key identifier: 47:21:BF:48:E4:01:66:0E:E9:61:1B:35:C0:4B:5D:1D:1F:3F:AB:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RyG_SOQBZg7pYRs1wEtdHR8_q_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/e6ba81-b38e-4bb3-b005-56fde5e715b1/1/5cb3c2gPj8lHOJ0Hk_BhU0C1QBo.roa
Signing time: Wed 09 Aug 2023 12:17:58 +0000
ROA not before: Wed 09 Aug 2023 12:17:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203350
IP address blocks: 2a05:4240::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:da:3b:7b:c8:8d:8d:30:eb:83:6d:0e:1e:4b:c7:f9:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4721bf48e401660ee9611b35c04b5d1d1f3fabfa
Validity
Not Before: Aug 9 12:17:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e5c6f773680f8fc947389d0793f0615340b5401a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:d2:01:4b:10:19:a1:b7:20:49:eb:86:fc:6a:
99:bf:01:6f:96:87:ff:1f:4d:96:ff:b0:81:04:ed:
26:4c:7b:9d:26:95:1f:43:26:bd:c0:69:85:bd:af:
8c:76:ac:cf:0b:5b:a4:71:18:66:ad:88:a0:81:cd:
d6:c9:fd:b5:d2:1c:9c:96:04:fd:d7:b7:25:ff:0e:
40:43:63:f6:bc:41:2d:e1:cb:90:e5:9e:24:2a:77:
7a:67:4c:aa:f9:10:36:9b:6e:e0:90:52:84:39:97:
35:ef:57:28:99:74:0f:de:2d:3a:ef:65:80:2d:0b:
6c:88:4c:67:1f:41:9c:6a:73:ac:3a:86:3c:f3:c6:
e9:95:33:d0:ce:ff:2b:95:fc:f4:72:89:2b:4a:4e:
36:04:ba:ba:64:10:d1:60:90:74:9d:3e:4f:ce:ea:
fa:e1:05:e4:82:47:d9:27:22:7e:70:62:24:aa:12:
cc:b2:de:31:54:00:23:24:f0:10:a7:0f:99:a8:e3:
9f:03:34:c6:86:21:d1:09:7e:cc:27:fd:7c:f1:f2:
5c:45:c0:a2:a4:32:c5:d9:02:2c:d0:12:4c:6f:d6:
2b:fb:2c:3d:27:4a:ba:87:bc:a1:84:a0:d5:27:ae:
7b:25:a8:45:99:ae:4b:05:f0:a1:8c:a3:9a:bc:ce:
ee:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:C6:F7:73:68:0F:8F:C9:47:38:9D:07:93:F0:61:53:40:B5:40:1A
X509v3 Authority Key Identifier:
keyid:47:21:BF:48:E4:01:66:0E:E9:61:1B:35:C0:4B:5D:1D:1F:3F:AB:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RyG_SOQBZg7pYRs1wEtdHR8_q_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e6ba81-b38e-4bb3-b005-56fde5e715b1/1/5cb3c2gPj8lHOJ0Hk_BhU0C1QBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e6ba81-b38e-4bb3-b005-56fde5e715b1/1/RyG_SOQBZg7pYRs1wEtdHR8_q_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:4240::/32
Signature Algorithm: sha256WithRSAEncryption
28:00:42:86:79:80:3f:f2:69:b4:f2:10:91:9f:64:40:61:dd:
6f:cb:75:c6:8a:3e:a4:bd:01:44:01:d8:cf:aa:40:0d:22:5d:
14:ae:ec:2b:6f:27:a2:23:84:a7:41:c9:c6:09:1d:b9:c4:72:
5e:6a:31:80:b0:d7:07:69:82:95:7c:60:5e:f3:a4:38:6c:b2:
97:b5:77:53:93:94:f3:2f:d7:f6:ad:0b:73:f1:84:bb:29:03:
7c:5a:f9:82:04:89:56:1f:6f:31:3e:0b:d7:b4:6f:54:52:27:
53:02:e7:aa:b7:46:2e:70:e2:ac:09:72:58:3d:db:34:14:ed:
a0:bf:06:de:7b:13:ba:d3:ae:cc:16:88:30:23:d8:42:1d:27:
0d:34:7f:e5:65:96:92:bc:d3:42:cd:64:0f:32:13:37:f6:4d:
46:c9:d5:07:be:8c:34:2d:e9:e9:f9:f6:f6:b0:f7:2c:60:ca:
98:17:36:9e:41:f8:15:6b:23:21:ab:1a:07:71:db:d3:c1:f2:
07:5e:31:c7:fb:95:65:c9:59:da:00:68:1f:7b:09:ff:3c:cc:
a7:9b:1f:52:66:b3:ab:86:b4:0c:e2:33:dc:c5:08:75:45:b0:
ee:d7:d2:b9:59:a0:26:be:54:61:e7:7b:1e:c1:bd:fc:fa:f9:
e7:22:1d:ff
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYnaO3vIjY0w64NtDh5Lx/msMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ3MjFiZjQ4ZTQwMTY2MGVlOTYxMWIzNWMwNGI1ZDFkMWYz
ZmFiZmEwHhcNMjMwODA5MTIxNzU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNWM2Zjc3MzY4MGY4ZmM5NDczODlkMDc5M2YwNjE1MzQwYjU0MDFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhdIBSxAZobcgSeuG/GqZvwFvlof/
H02W/7CBBO0mTHudJpUfQya9wGmFva+MdqzPC1ukcRhmrYiggc3Wyf210hyclgT9
17cl/w5AQ2P2vEEt4cuQ5Z4kKnd6Z0yq+RA2m27gkFKEOZc171comXQP3i0672WA
LQtsiExnH0GcanOsOoY888bplTPQzv8rlfz0cokrSk42BLq6ZBDRYJB0nT5Pzur6
4QXkgkfZJyJ+cGIkqhLMst4xVAAjJPAQpw+ZqOOfAzTGhiHRCX7MJ/188fJcRcCi
pDLF2QIs0BJMb9Yr+yw9J0q6h7yhhKDVJ657JahFma5LBfChjKOavM7uDwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFOXG93NoD4/JRzidB5PwYVNAtUAaMB8GA1UdIwQY
MBaAFEchv0jkAWYO6WEbNcBLXR0fP6v6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUnlHX1NPUUJaZzdwWVJzMXdFdGRIUjhfcV9vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC9lNmJhODEtYjM4ZS00YmIzLWIwMDUt
NTZmZGU1ZTcxNWIxLzEvNWNiM2MyZ1BqOGxIT0owSGtfQmhVMEMxUUJvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC9lNmJhODEtYjM4ZS00YmIzLWIwMDUtNTZmZGU1ZTcxNWIx
LzEvUnlHX1NPUUJaZzdwWVJzMXdFdGRIUjhfcV9vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgVCQDAN
BgkqhkiG9w0BAQsFAAOCAQEAKABChnmAP/JptPIQkZ9kQGHdb8t1xoo+pL0BRAHY
z6pADSJdFK7sK28noiOEp0HJxgkducRyXmoxgLDXB2mClXxgXvOkOGyyl7V3U5OU
8y/X9q0Lc/GEuykDfFr5ggSJVh9vMT4L17RvVFInUwLnqrdGLnDirAlyWD3bNBTt
oL8G3nsTutOuzBaIMCPYQh0nDTR/5WWWkrzTQs1kDzITN/ZNRsnVB76MNC3p6fn2
9rD3LGDKmBc2nkH4FWsjIasaB3Hb08HyB14xx/uVZclZ2gBoH3sJ/zzMp5sfUmaz
q4a0DOIz3MUIdUWw7tfSuVmgJr5UYed7HsG9/Pr55yId/w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:55 2024 by rpki-client on console-fra.rpki-client.org