Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/ES3byZXynSyXflsE-UK7pq7mHmI.roa
File: ES3byZXynSyXflsE-UK7pq7mHmI.roa (raw, json)
Hash identifier: WPMAC8IlMhhwHsRXL8QtaDeLmNcs4/SGl8S/Tpo1GaA=
Subject key identifier: 11:2D:DB:C9:95:F2:9D:2C:97:7E:5B:04:F9:42:BB:A6:AE:E6:1E:62
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 018572BA6E44ADD77305E9341D48AEC431F2
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/ES3byZXynSyXflsE-UK7pq7mHmI.roa
Signing time: Mon 02 Jan 2023 13:44:58 +0000
ROA not before: Mon 02 Jan 2023 13:44:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50840
IP address blocks: 2a0f:5701:3200::/40 maxlen: 48
Validation: Failed, certificate revoked on Fri 15 Sep 2023 04:11:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:6e:44:ad:d7:73:05:e9:34:1d:48:ae:c4:31:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 2 13:44:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=112ddbc995f29d2c977e5b04f942bba6aee61e62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:2e:c9:2b:77:0f:9d:35:d3:66:a3:4f:20:8b:
49:56:fd:84:18:bb:2f:84:ff:93:28:6b:04:dc:68:
cf:b5:83:3b:0c:6e:a2:87:28:00:80:37:11:0e:1f:
1e:f5:52:b5:d0:8e:4e:6b:9e:17:7f:70:7d:ce:96:
81:15:42:61:ab:8d:f9:0d:c6:ee:28:cb:fb:ae:ac:
85:78:85:89:2c:3d:0e:60:54:2b:89:4e:77:ad:26:
77:62:ba:b8:32:b3:de:33:77:d2:06:e1:f7:05:73:
2e:7c:22:0d:48:fb:b6:de:c9:93:3a:e1:53:12:15:
4f:4f:ad:b0:93:6c:75:19:6d:ff:eb:5f:4b:0e:b9:
cb:eb:6a:9d:bc:1e:a2:c4:31:6f:e6:e7:dc:22:c9:
eb:20:93:f6:c3:9c:20:fb:45:a1:e4:1c:91:43:3f:
65:5d:e2:13:51:66:4c:61:20:2b:46:f7:9e:de:06:
60:51:2a:81:87:0a:92:2d:b2:82:c1:00:ee:aa:ef:
f0:94:e0:25:8c:d3:94:33:8a:0b:74:25:8c:43:79:
e2:44:13:fe:29:78:10:ff:62:25:c9:fc:59:ae:80:
d2:21:7e:23:e2:81:a3:03:f0:d1:99:f5:05:59:4e:
71:51:7b:a3:95:43:b2:a7:67:07:c4:15:a3:db:7b:
ad:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:2D:DB:C9:95:F2:9D:2C:97:7E:5B:04:F9:42:BB:A6:AE:E6:1E:62
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/ES3byZXynSyXflsE-UK7pq7mHmI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:5701:3200::/40
Signature Algorithm: sha256WithRSAEncryption
27:c2:cd:ca:72:b4:96:94:cb:6c:93:03:06:e7:b7:c3:46:cd:
ec:9f:b7:4f:62:e8:79:89:cc:cf:b8:53:5f:e3:03:9c:d9:b9:
cb:fe:60:fa:6b:4c:94:14:6e:50:29:83:22:5f:e8:5a:69:5a:
f9:cd:5c:c6:e8:9d:59:f7:05:a1:fc:ae:c1:53:d3:d5:ca:d1:
e1:c2:60:d4:52:d7:85:01:80:05:58:c3:40:9d:4f:dd:65:a4:
33:d5:2d:2b:90:cd:84:fb:2b:8f:ac:d9:62:18:3f:c1:b6:36:
3c:f0:a2:f5:2e:20:0e:cc:d7:22:31:a5:d5:84:b4:f9:b9:c8:
48:91:cf:be:70:fd:1a:ad:fd:0d:56:e2:94:97:40:ef:42:4e:
69:e8:b9:28:96:a7:99:36:13:5a:79:44:04:b1:15:1c:31:40:
82:08:e9:cd:2a:51:dd:9d:9c:5e:7b:15:77:90:be:ad:66:ff:
81:b2:25:e7:dc:89:70:96:a9:f7:9b:e6:80:b9:cc:1a:91:e1:
62:02:ae:83:1d:cd:dc:98:f1:bd:07:6e:16:b6:4a:70:23:2a:
10:48:90:7c:9e:a9:27:ec:94:0b:ff:86:4a:44:70:6f:1b:c9:
c7:49:de:a9:18:38:f3:19:1a:5e:a1:1e:93:07:a1:9b:1d:59:
88:49:10:77
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVyum5ErddzBek0HUiuxDHyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhNjQ0YzExNTY4NTE4MDNmMzdhZGVlYzA4NzZjY2Y5ODlk
NWFlZjAwHhcNMjMwMTAyMTM0NDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMTJkZGJjOTk1ZjI5ZDJjOTc3ZTViMDRmOTQyYmJhNmFlZTYxZTYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgS7JK3cPnTXTZqNPIItJVv2EGLsv
hP+TKGsE3GjPtYM7DG6ihygAgDcRDh8e9VK10I5Oa54Xf3B9zpaBFUJhq435Dcbu
KMv7rqyFeIWJLD0OYFQriU53rSZ3Yrq4MrPeM3fSBuH3BXMufCINSPu23smTOuFT
EhVPT62wk2x1GW3/619LDrnL62qdvB6ixDFv5ufcIsnrIJP2w5wg+0Wh5ByRQz9l
XeITUWZMYSArRvee3gZgUSqBhwqSLbKCwQDuqu/wlOAljNOUM4oLdCWMQ3niRBP+
KXgQ/2IlyfxZroDSIX4j4oGjA/DRmfUFWU5xUXujlUOyp2cHxBWj23utvQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFBEt28mV8p0sl35bBPlCu6au5h5iMB8GA1UdIwQY
MBaAFEpkTBFWhRgD83re7Ah2zPmJ1a7wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU21STUVWYUZHQVB6ZXQ3c0NIYk0tWW5WcnZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS82YjA3OTgtM2Q0Zi00MGU2LWI3Mzkt
Y2MxYzliNWY2NjQwLzEvRVMzYnlaWHluU3lYZmxzRS1VSzdwcTdtSG1JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS82YjA3OTgtM2Q0Zi00MGU2LWI3MzktY2MxYzliNWY2NjQw
LzEvU21STUVWYUZHQVB6ZXQ3c0NIYk0tWW5WcnZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKg9XATIw
DQYJKoZIhvcNAQELBQADggEBACfCzcpytJaUy2yTAwbnt8NGzeyft09i6HmJzM+4
U1/jA5zZucv+YPprTJQUblApgyJf6FppWvnNXMbonVn3BaH8rsFT09XK0eHCYNRS
14UBgAVYw0CdT91lpDPVLSuQzYT7K4+s2WIYP8G2NjzwovUuIA7M1yIxpdWEtPm5
yEiRz75w/Rqt/Q1W4pSXQO9CTmnouSiWp5k2E1p5RASxFRwxQIII6c0qUd2dnF57
FXeQvq1m/4GyJefciXCWqfeb5oC5zBqR4WICroMdzdyY8b0Hbha2SnAjKhBIkHye
qSfslAv/hkpEcG8bycdJ3qkYOPMZGl6hHpMHoZsdWYhJEHc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:22 2024 by rpki-client on console-ams.rpki-client.org