Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/40W0wiQkhaqJ4z6oGKU2pEj7c3U.roa
File: 40W0wiQkhaqJ4z6oGKU2pEj7c3U.roa (raw, json)
Hash identifier: tBpZhDb2X3X+mnYBDwzsZep8549bwk4b67qbfAFEoI8=
Subject key identifier: E3:45:B4:C2:24:24:85:AA:89:E3:3E:A8:18:A5:36:A4:48:FB:73:75
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 0189310701947A98D4F9C4FB64F29B0A37CA
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/40W0wiQkhaqJ4z6oGKU2pEj7c3U.roa
Signing time: Fri 07 Jul 2023 15:44:49 +0000
ROA not before: Fri 07 Jul 2023 15:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49575
IP address blocks: 2a0f:5707:fe00::/40 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:31:07:01:94:7a:98:d4:f9:c4:fb:64:f2:9b:0a:37:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jul 7 15:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e345b4c2242485aa89e33ea818a536a448fb7375
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c5:27:60:89:9d:03:a5:31:1f:e6:c7:4b:c1:
92:ff:92:ff:75:2e:08:44:43:b3:4f:28:cb:b4:73:
43:e2:4a:f2:ce:30:72:ce:30:fe:2f:c4:ee:4f:10:
b9:e4:a0:94:cc:e6:2f:42:94:ff:55:ab:b1:9e:54:
d2:6d:a2:76:d1:ea:84:10:07:e0:29:7a:2a:7a:f5:
85:72:49:48:48:ea:61:40:85:4c:cd:86:d3:3c:5f:
c3:59:41:39:b8:2a:f4:19:93:4c:5a:f8:bf:29:ed:
fb:74:bc:e9:03:b2:af:5b:70:40:e3:ad:b6:8d:32:
8d:53:a2:62:f1:ab:60:c3:1d:c4:46:d8:fa:78:63:
6d:f9:f8:c4:8a:bd:67:04:7a:7c:db:dc:95:aa:94:
71:dc:d2:2b:c5:35:04:0d:1f:be:39:bb:63:98:dc:
9b:7f:e4:f7:a1:bd:e4:33:a3:2d:8f:10:6f:d7:1f:
1b:2a:cd:d8:33:9a:84:59:25:12:56:87:83:c2:8f:
2b:ac:ea:4d:c7:dc:04:55:ef:d4:0f:9a:03:8f:a7:
74:ac:7f:f9:75:e1:3b:2d:7a:42:2b:cc:ed:90:35:
29:4d:d8:f6:d8:0b:5c:19:37:6c:1f:c4:69:cf:d1:
43:77:76:6d:59:c9:94:d7:a9:f4:12:6a:2f:de:f3:
83:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:45:B4:C2:24:24:85:AA:89:E3:3E:A8:18:A5:36:A4:48:FB:73:75
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/40W0wiQkhaqJ4z6oGKU2pEj7c3U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5707:fe00::/40
Signature Algorithm: sha256WithRSAEncryption
55:b2:6a:1e:85:a9:d8:f3:00:69:a5:13:2d:4a:02:65:46:66:
51:59:98:a7:fb:19:f9:aa:a2:ee:fc:a1:c4:84:95:9e:3c:99:
d3:41:a3:7a:f7:51:cf:75:e5:4e:ec:a8:6d:f1:c5:a0:e1:d8:
76:d9:17:10:91:4e:a2:7c:75:3e:b5:72:8c:b2:87:39:ab:fe:
e2:95:1f:0c:4d:a0:5b:c1:04:79:9b:3d:a8:9d:6b:fb:fa:5c:
ed:b6:b9:6a:ab:c6:11:6e:00:7b:a7:e6:e5:f8:60:1c:1d:a6:
75:17:b8:95:52:3d:93:a8:46:49:82:24:e6:bb:61:b2:f8:81:
8d:4d:f9:f6:ff:9c:04:81:20:5e:9d:74:30:f3:a4:2f:42:2a:
21:1d:f8:44:38:c1:8c:97:df:59:88:94:d3:53:b3:d3:d0:d8:
c7:f5:02:d8:f4:dc:0a:30:df:b4:36:00:90:f6:0a:c5:52:57:
bc:cf:0e:37:7d:b7:23:1d:fd:26:0c:30:be:7d:a8:2f:6a:c8:
38:65:55:3e:1e:30:c4:df:75:74:7e:a8:4b:4d:cb:12:28:04:
9b:8a:f8:f1:0f:fb:bc:fc:6f:79:05:ed:cd:e2:d8:4e:ce:13:
9e:6a:87:2c:94:76:56:dd:3f:57:7c:93:3c:bb:de:1c:4c:5b:
0e:15:9f:5a
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYkxBwGUepjU+cT7ZPKbCjfKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhNjQ0YzExNTY4NTE4MDNmMzdhZGVlYzA4NzZjY2Y5ODlk
NWFlZjAwHhcNMjMwNzA3MTU0NDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMzQ1YjRjMjI0MjQ4NWFhODllMzNlYTgxOGE1MzZhNDQ4ZmI3Mzc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmsUnYImdA6UxH+bHS8GS/5L/dS4I
REOzTyjLtHND4kryzjByzjD+L8TuTxC55KCUzOYvQpT/VauxnlTSbaJ20eqEEAfg
KXoqevWFcklISOphQIVMzYbTPF/DWUE5uCr0GZNMWvi/Ke37dLzpA7KvW3BA4622
jTKNU6Ji8atgwx3ERtj6eGNt+fjEir1nBHp829yVqpRx3NIrxTUEDR++ObtjmNyb
f+T3ob3kM6MtjxBv1x8bKs3YM5qEWSUSVoeDwo8rrOpNx9wEVe/UD5oDj6d0rH/5
deE7LXpCK8ztkDUpTdj22AtcGTdsH8Rpz9FDd3ZtWcmU16n0Emov3vODXQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFONFtMIkJIWqieM+qBilNqRI+3N1MB8GA1UdIwQY
MBaAFEpkTBFWhRgD83re7Ah2zPmJ1a7wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU21STUVWYUZHQVB6ZXQ3c0NIYk0tWW5WcnZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS82YjA3OTgtM2Q0Zi00MGU2LWI3Mzkt
Y2MxYzliNWY2NjQwLzEvNDBXMHdpUWtoYXFKNHo2b0dLVTJwRWo3YzNVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS82YjA3OTgtM2Q0Zi00MGU2LWI3MzktY2MxYzliNWY2NjQw
LzEvU21STUVWYUZHQVB6ZXQ3c0NIYk0tWW5WcnZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKg9XB/4w
DQYJKoZIhvcNAQELBQADggEBAFWyah6FqdjzAGmlEy1KAmVGZlFZmKf7Gfmqou78
ocSElZ48mdNBo3r3Uc915U7sqG3xxaDh2HbZFxCRTqJ8dT61coyyhzmr/uKVHwxN
oFvBBHmbPaida/v6XO22uWqrxhFuAHun5uX4YBwdpnUXuJVSPZOoRkmCJOa7YbL4
gY1N+fb/nASBIF6ddDDzpC9CKiEd+EQ4wYyX31mIlNNTs9PQ2Mf1Atj03Aow37Q2
AJD2CsVSV7zPDjd9tyMd/SYMML59qC9qyDhlVT4eMMTfdXR+qEtNyxIoBJuK+PEP
+7z8b3kF7c3i2E7OE55qhyyUdlbdP1d8kzy73hxMWw4Vn1o=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:59 2024 by rpki-client on console-fra.rpki-client.org