Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/0301d4-4805-405c-a6e0-a42e1f1f4798/1/XU8m5lHZF08rIoCPXdlanddpFpQ.roa
File: XU8m5lHZF08rIoCPXdlanddpFpQ.roa (raw, json)
Hash identifier: 4Zas5724x1Vv/FwkujxCzZ4VrKrZgJUucxQfjN9NdMo=
Subject key identifier: 5D:4F:26:E6:51:D9:17:4F:2B:22:80:8F:5D:D9:5A:9D:D7:69:16:94
Certificate issuer: /CN=a9b5ffd24d2eb5d5c1e1cfe78b003c4bab5a2f13
Certificate serial: 01926783E02F5BF1B1D3375A722DCA281A91
Authority key identifier: A9:B5:FF:D2:4D:2E:B5:D5:C1:E1:CF:E7:8B:00:3C:4B:AB:5A:2F:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qbX_0k0utdXB4c_niwA8S6taLxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/0301d4-4805-405c-a6e0-a42e1f1f4798/1/XU8m5lHZF08rIoCPXdlanddpFpQ.roa
Signing time: Mon 07 Oct 2024 15:05:48 +0000
ROA not before: Mon 07 Oct 2024 15:05:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50907
IP address blocks: 2a12:bc0:6::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 08 Oct 2024 10:13:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:67:83:e0:2f:5b:f1:b1:d3:37:5a:72:2d:ca:28:1a:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9b5ffd24d2eb5d5c1e1cfe78b003c4bab5a2f13
Validity
Not Before: Oct 7 15:05:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5d4f26e651d9174f2b22808f5dd95a9dd7691694
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:81:87:b5:dd:0d:0a:b8:3b:58:d4:91:71:ce:
96:02:51:b4:cb:fa:bd:ac:d5:11:a6:3d:dd:6c:98:
e8:6e:12:48:10:7a:88:f0:97:8d:08:be:1d:c7:f4:
0e:06:1b:b3:6d:fa:ed:8f:4c:3e:af:f7:3f:b0:5b:
80:41:30:15:a0:cc:0d:de:c0:33:20:09:be:4a:58:
c8:56:b7:4d:5c:86:4b:bb:a1:15:f9:2b:e8:df:f9:
54:2c:9e:48:51:c7:3f:d4:35:ac:da:98:be:49:9f:
25:22:55:d3:77:2e:72:fe:6c:9f:bd:e3:7d:61:41:
8c:50:c8:0e:9a:9e:cd:14:33:fa:70:6b:d6:53:b0:
88:9d:ec:0b:16:02:6f:c3:4b:fb:12:d8:f4:fa:06:
9c:5f:40:21:d9:7e:9a:ac:94:20:23:9f:11:07:97:
b1:df:6c:e2:93:45:e5:74:01:8e:e3:4f:12:bb:4e:
41:24:b3:b3:ea:bb:31:f5:8a:02:67:32:2c:b8:7c:
fe:82:74:16:71:e5:9c:5b:2c:a2:04:d7:7b:27:ff:
1f:44:d8:bc:6c:53:39:a8:d0:29:01:16:e7:6b:69:
90:7b:4a:84:62:4d:4e:7e:d5:d0:5f:b7:5c:4d:1c:
e1:3d:c7:66:97:53:55:0e:12:a7:fc:df:05:81:42:
13:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:4F:26:E6:51:D9:17:4F:2B:22:80:8F:5D:D9:5A:9D:D7:69:16:94
X509v3 Authority Key Identifier:
keyid:A9:B5:FF:D2:4D:2E:B5:D5:C1:E1:CF:E7:8B:00:3C:4B:AB:5A:2F:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qbX_0k0utdXB4c_niwA8S6taLxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/0301d4-4805-405c-a6e0-a42e1f1f4798/1/XU8m5lHZF08rIoCPXdlanddpFpQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/0301d4-4805-405c-a6e0-a42e1f1f4798/1/qbX_0k0utdXB4c_niwA8S6taLxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bc0:6::/48
Signature Algorithm: sha256WithRSAEncryption
87:7a:33:6b:a1:67:d6:b7:1f:58:73:82:de:e6:3b:1e:33:74:
e7:98:aa:6b:dd:13:f5:d9:83:39:3d:6d:b5:27:51:cf:5e:68:
c6:75:57:99:03:0d:74:b5:c6:0f:01:bf:ee:45:e5:ad:d1:97:
5e:8f:fc:02:9a:3e:2c:7b:84:1c:e6:9f:47:d3:3d:1f:a6:91:
1e:24:37:73:54:cf:93:81:a3:b5:73:bd:37:24:8b:a5:c2:70:
3f:93:2c:c0:8d:8b:16:4c:d6:6e:7c:2a:c7:bd:ae:8a:3f:a7:
00:2f:a3:d1:16:eb:af:d3:15:f5:50:18:ea:3a:ff:54:c5:e2:
9b:f6:ef:2b:a3:38:f3:77:84:1a:62:96:c6:6c:d7:4a:90:1d:
93:de:41:55:49:f1:31:58:de:43:f2:db:34:42:a0:b5:62:7f:
d9:2d:e7:3d:53:73:43:2a:3d:48:07:e0:a9:6e:96:95:17:d6:
2b:d0:6d:84:e8:a3:9b:1f:a8:59:4e:ba:3f:0c:bb:12:47:64:
48:ed:09:76:e4:8d:6d:17:df:2f:a1:85:9f:f5:76:ad:06:32:
8c:33:ac:7c:ab:6d:81:00:05:70:b0:4d:5b:a2:7c:e0:a6:5c:
1e:29:d6:65:b6:68:05:e2:6d:18:24:52:c5:78:a2:d8:ff:08:
74:35:0e:98
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAZJng+AvW/Gx0zdaci3KKBqRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE5YjVmZmQyNGQyZWI1ZDVjMWUxY2ZlNzhiMDAzYzRiYWI1
YTJmMTMwHhcNMjQxMDA3MTUwNTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZDRmMjZlNjUxZDkxNzRmMmIyMjgwOGY1ZGQ5NWE5ZGQ3NjkxNjk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwYGHtd0NCrg7WNSRcc6WAlG0y/q9
rNURpj3dbJjobhJIEHqI8JeNCL4dx/QOBhuzbfrtj0w+r/c/sFuAQTAVoMwN3sAz
IAm+SljIVrdNXIZLu6EV+Svo3/lULJ5IUcc/1DWs2pi+SZ8lIlXTdy5y/myfveN9
YUGMUMgOmp7NFDP6cGvWU7CInewLFgJvw0v7Etj0+gacX0Ah2X6arJQgI58RB5ex
32zik0XldAGO408Su05BJLOz6rsx9YoCZzIsuHz+gnQWceWcWyyiBNd7J/8fRNi8
bFM5qNApARbna2mQe0qEYk1OftXQX7dcTRzhPcdml1NVDhKn/N8FgUITjQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFF1PJuZR2RdPKyKAj13ZWp3XaRaUMB8GA1UdIwQY
MBaAFKm1/9JNLrXVweHP54sAPEurWi8TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcWJYXzBrMHV0ZFhCNGNfbml3QThTNnRhTHhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi8wMzAxZDQtNDgwNS00MDVjLWE2ZTAt
YTQyZTFmMWY0Nzk4LzEvWFU4bTVsSFpGMDhySW9DUFhkbGFuZGRwRnBRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi8wMzAxZDQtNDgwNS00MDVjLWE2ZTAtYTQyZTFmMWY0Nzk4
LzEvcWJYXzBrMHV0ZFhCNGNfbml3QThTNnRhTHhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhILwAAG
MA0GCSqGSIb3DQEBCwUAA4IBAQCHejNroWfWtx9Yc4Le5jseM3TnmKpr3RP12YM5
PW21J1HPXmjGdVeZAw10tcYPAb/uReWt0Zdej/wCmj4se4Qc5p9H0z0fppEeJDdz
VM+TgaO1c703JIulwnA/kyzAjYsWTNZufCrHva6KP6cAL6PRFuuv0xX1UBjqOv9U
xeKb9u8rozjzd4QaYpbGbNdKkB2T3kFVSfExWN5D8ts0QqC1Yn/ZLec9U3NDKj1I
B+CpbpaVF9Yr0G2E6KObH6hZTro/DLsSR2RI7Ql25I1tF98voYWf9XatBjKMM6x8
q22BAAVwsE1bonzgplweKdZltmgF4m0YJFLFeKLY/wh0NQ6Y
-----END CERTIFICATE-----
Generated at Tue Oct 8 13:32:52 2024 by rpki-client on console-fra.rpki-client.org