Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/4dbd63-76b1-4b03-9dea-50c16bdd5c24/1/2UzXhnGu_Sd9NHVhIXTTISRce9o.roa
File: 2UzXhnGu_Sd9NHVhIXTTISRce9o.roa (raw, json)
Hash identifier: 1FCenVJplnYlAQQh0ebQa3jNN/5vT+qs/HqDwXvspmY=
Subject key identifier: D9:4C:D7:86:71:AE:FD:27:7D:34:75:61:21:74:D3:21:24:5C:7B:DA
Certificate issuer: /CN=49f7c1a4677eb7826dae69de01a699b6201d6244
Certificate serial: 0189493A67787FCA71C12084943DAD451ADA
Authority key identifier: 49:F7:C1:A4:67:7E:B7:82:6D:AE:69:DE:01:A6:99:B6:20:1D:62:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SffBpGd-t4JtrmneAaaZtiAdYkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/4dbd63-76b1-4b03-9dea-50c16bdd5c24/1/2UzXhnGu_Sd9NHVhIXTTISRce9o.roa
Signing time: Wed 12 Jul 2023 08:31:51 +0000
ROA not before: Wed 12 Jul 2023 08:31:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42873
IP address blocks: 2a02:d480:240::/42 maxlen: 42
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:49:3a:67:78:7f:ca:71:c1:20:84:94:3d:ad:45:1a:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49f7c1a4677eb7826dae69de01a699b6201d6244
Validity
Not Before: Jul 12 08:31:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d94cd78671aefd277d3475612174d321245c7bda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:7b:35:7b:78:dd:dd:4f:d2:44:9f:33:ec:7e:
12:17:32:83:49:28:8c:32:fc:35:4a:c4:67:cc:ba:
5c:20:ff:7f:42:ea:e5:7d:09:3b:4a:e9:b6:a1:c3:
19:be:ff:e6:e3:82:ef:00:fa:3e:94:82:00:41:21:
6c:bd:c7:2a:41:d0:7a:87:50:a4:8f:8d:4b:7d:cd:
d5:dc:e9:61:06:13:97:f0:2d:60:85:bb:2b:99:b6:
26:c8:4d:f9:8b:a3:91:87:12:ac:d6:5e:c7:0f:4f:
ea:b2:ec:18:ad:ef:23:ab:f1:84:09:23:2f:5f:69:
14:e3:b9:65:c4:34:ac:e0:b6:03:9e:0c:e3:b1:62:
e6:15:a7:bd:21:a7:36:60:16:5c:64:6b:be:2a:02:
bb:47:16:4c:27:d3:d4:4a:35:50:fb:b7:83:ea:67:
71:82:db:5b:cf:52:74:2e:d2:a7:fd:b7:dc:7c:a4:
e5:81:a2:ab:40:3a:5f:f8:ac:59:10:e2:bc:d4:9c:
c4:90:c5:5c:70:15:e5:bb:02:e0:6c:00:74:62:72:
81:e6:8e:83:a6:f2:dd:31:cf:4c:dd:a0:ce:43:51:
97:3a:23:d4:93:bb:29:db:5f:61:51:ab:10:43:8f:
45:c9:2e:80:e8:2a:b1:94:4d:22:ab:1d:aa:50:da:
a2:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:4C:D7:86:71:AE:FD:27:7D:34:75:61:21:74:D3:21:24:5C:7B:DA
X509v3 Authority Key Identifier:
keyid:49:F7:C1:A4:67:7E:B7:82:6D:AE:69:DE:01:A6:99:B6:20:1D:62:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SffBpGd-t4JtrmneAaaZtiAdYkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/4dbd63-76b1-4b03-9dea-50c16bdd5c24/1/2UzXhnGu_Sd9NHVhIXTTISRce9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/4dbd63-76b1-4b03-9dea-50c16bdd5c24/1/SffBpGd-t4JtrmneAaaZtiAdYkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:d480:240::/42
Signature Algorithm: sha256WithRSAEncryption
16:5b:ac:3d:a5:b0:45:0e:f5:f7:28:0e:9c:3f:ce:a3:f5:95:
2c:d7:ac:9b:f0:a9:c5:0f:42:25:33:0e:c4:a0:64:78:a3:95:
34:b9:e4:e8:4c:03:79:cf:17:1d:f2:ba:b8:a6:72:04:8e:3d:
7c:46:2c:c8:36:d3:7f:96:89:a5:8e:3f:2a:1d:df:f3:b6:bd:
84:cf:f0:04:2a:f8:b1:e7:e6:5a:76:75:86:d1:02:05:53:68:
df:16:4d:aa:11:81:b9:05:5c:e5:f7:38:98:08:51:a4:a7:60:
71:c3:60:d5:37:87:57:aa:e3:39:a9:a2:10:4e:c4:81:03:46:
4f:ae:0e:12:aa:80:d0:c2:37:c5:13:50:24:78:30:cb:61:1c:
9b:48:db:4d:93:8e:09:c9:cb:0b:7b:20:33:25:f8:5f:c2:bc:
71:ec:17:a5:cd:fa:09:64:63:b7:6d:40:e1:5f:ae:36:85:c6:
af:9e:66:12:75:ec:78:39:86:5d:25:fd:c1:98:4c:87:28:ef:
14:6d:0b:f1:39:86:47:da:18:70:3b:8e:de:b8:2b:94:72:8d:
a2:51:e7:51:b8:a4:d8:a9:f8:bf:17:c7:44:10:fb:c1:41:be:
d7:b9:00:10:f6:be:30:d3:f5:40:31:8f:0c:cd:16:de:0e:e5:
e2:20:66:e9
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYlJOmd4f8pxwSCElD2tRRraMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZjdjMWE0Njc3ZWI3ODI2ZGFlNjlkZTAxYTY5OWI2MjAx
ZDYyNDQwHhcNMjMwNzEyMDgzMTUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkOTRjZDc4NjcxYWVmZDI3N2QzNDc1NjEyMTc0ZDMyMTI0NWM3YmRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkns1e3jd3U/SRJ8z7H4SFzKDSSiM
Mvw1SsRnzLpcIP9/QurlfQk7Sum2ocMZvv/m44LvAPo+lIIAQSFsvccqQdB6h1Ck
j41Lfc3V3OlhBhOX8C1ghbsrmbYmyE35i6ORhxKs1l7HD0/qsuwYre8jq/GECSMv
X2kU47llxDSs4LYDngzjsWLmFae9Iac2YBZcZGu+KgK7RxZMJ9PUSjVQ+7eD6mdx
gttbz1J0LtKn/bfcfKTlgaKrQDpf+KxZEOK81JzEkMVccBXluwLgbAB0YnKB5o6D
pvLdMc9M3aDOQ1GXOiPUk7sp219hUasQQ49FyS6A6CqxlE0iqx2qUNqiSQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFNlM14Zxrv0nfTR1YSF00yEkXHvaMB8GA1UdIwQY
MBaAFEn3waRnfreCba5p3gGmmbYgHWJEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2ZmQnBHZC10NEp0cm1uZUFhYVp0aUFkWWtRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZS80ZGJkNjMtNzZiMS00YjAzLTlkZWEt
NTBjMTZiZGQ1YzI0LzEvMlV6WGhuR3VfU2Q5TkhWaElYVFRJU1JjZTlvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZS80ZGJkNjMtNzZiMS00YjAzLTlkZWEtNTBjMTZiZGQ1YzI0
LzEvU2ZmQnBHZC10NEp0cm1uZUFhYVp0aUFkWWtRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcGKgLUgAJA
MA0GCSqGSIb3DQEBCwUAA4IBAQAWW6w9pbBFDvX3KA6cP86j9ZUs16yb8KnFD0Il
Mw7EoGR4o5U0ueToTAN5zxcd8rq4pnIEjj18RizINtN/lomljj8qHd/ztr2Ez/AE
Kvix5+ZadnWG0QIFU2jfFk2qEYG5BVzl9ziYCFGkp2Bxw2DVN4dXquM5qaIQTsSB
A0ZPrg4SqoDQwjfFE1AkeDDLYRybSNtNk44JycsLeyAzJfhfwrxx7BelzfoJZGO3
bUDhX642hcavnmYSdex4OYZdJf3BmEyHKO8UbQvxOYZH2hhwO47euCuUco2iUedR
uKTYqfi/F8dEEPvBQb7XuQAQ9r4w0/VAMY8MzRbeDuXiIGbp
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:43 2024 by rpki-client on console-fra.rpki-client.org