Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/9398b0-2fbb-4bd3-b9bc-1e89f9695d1b/1/6c0aNhlS4PeZfB9tyOyy9dz4Izg.roa
File: 6c0aNhlS4PeZfB9tyOyy9dz4Izg.roa (raw, json)
Hash identifier: qKGxeqZWLgCuRF6KBJvDELGkMjksAufBz4givBJscjg=
Subject key identifier: E9:CD:1A:36:19:52:E0:F7:99:7C:1F:6D:C8:EC:B2:F5:DC:F8:23:38
Certificate issuer: /CN=54041941b1450d6b95b58ca3f077ce208dfdfb4b
Certificate serial: 018B857CE24E1ADC4BF72FBA6A6F26161A01
Authority key identifier: 54:04:19:41:B1:45:0D:6B:95:B5:8C:A3:F0:77:CE:20:8D:FD:FB:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VAQZQbFFDWuVtYyj8HfOII39-0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/9398b0-2fbb-4bd3-b9bc-1e89f9695d1b/1/6c0aNhlS4PeZfB9tyOyy9dz4Izg.roa
Signing time: Tue 31 Oct 2023 11:27:15 +0000
ROA not before: Tue 31 Oct 2023 11:27:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211432
IP address blocks: 2a13:b580::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:85:7c:e2:4e:1a:dc:4b:f7:2f:ba:6a:6f:26:16:1a:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54041941b1450d6b95b58ca3f077ce208dfdfb4b
Validity
Not Before: Oct 31 11:27:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e9cd1a361952e0f7997c1f6dc8ecb2f5dcf82338
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:55:0c:ab:4d:22:a9:d0:08:42:93:44:2b:dc:
fa:51:88:5c:46:91:7b:c4:c0:83:60:2e:cd:aa:0b:
66:4c:c8:8f:54:68:f7:fd:f9:a5:91:4a:8e:cd:fb:
04:62:7f:86:9b:a1:0a:44:c4:a1:13:98:50:1d:d6:
77:11:a1:a6:a0:7e:86:22:61:31:8f:40:90:75:a4:
17:f5:07:c6:98:0f:59:d4:18:c9:7a:1f:ed:67:36:
56:6a:4e:c6:11:27:f8:db:60:3e:29:45:7a:52:7c:
df:e4:26:25:99:32:66:ad:9c:2b:44:fb:03:aa:91:
f7:5c:24:a7:26:69:ca:11:a4:c0:f2:89:dc:b2:a2:
eb:af:7f:08:1c:68:da:c1:64:93:9a:a4:6d:dd:cd:
6c:c4:a5:5c:6e:26:a6:50:d3:3b:17:de:7a:d4:b4:
c8:29:a9:4f:c5:51:fa:d4:cc:b0:a1:8c:94:63:f6:
4d:d1:a2:26:a3:8b:46:94:a2:17:7f:06:74:6b:2a:
9f:06:ce:93:bd:65:39:b1:44:78:4e:b1:50:a9:02:
1b:f7:b3:e8:c6:f9:6a:b7:04:58:02:48:d6:2c:27:
b7:3b:2b:d0:56:17:ec:81:ef:6e:b0:f1:c0:bc:e5:
07:a7:b1:83:b2:c5:cb:a2:36:af:08:e6:1e:60:6b:
de:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:CD:1A:36:19:52:E0:F7:99:7C:1F:6D:C8:EC:B2:F5:DC:F8:23:38
X509v3 Authority Key Identifier:
keyid:54:04:19:41:B1:45:0D:6B:95:B5:8C:A3:F0:77:CE:20:8D:FD:FB:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VAQZQbFFDWuVtYyj8HfOII39-0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/9398b0-2fbb-4bd3-b9bc-1e89f9695d1b/1/6c0aNhlS4PeZfB9tyOyy9dz4Izg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/9398b0-2fbb-4bd3-b9bc-1e89f9695d1b/1/VAQZQbFFDWuVtYyj8HfOII39-0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:b580::/29
Signature Algorithm: sha256WithRSAEncryption
15:77:60:1b:b3:f6:37:fe:3d:2d:88:93:26:b6:27:01:5c:e9:
9a:29:a2:70:21:dd:3f:bc:85:f7:63:98:a6:ba:49:29:3b:18:
3b:8d:fa:15:e0:52:b4:d7:66:21:13:2b:58:c1:1a:18:6c:b1:
26:88:4a:6d:03:22:99:e7:1a:5f:5f:34:75:0e:87:a4:64:66:
da:ba:5c:e5:cd:e6:1c:7e:ac:c9:52:37:1f:ba:35:d1:72:57:
55:15:04:6e:39:84:3c:e7:95:c8:f4:de:c5:72:3c:ac:63:5b:
34:c8:50:9c:39:e3:47:e1:22:31:16:d1:05:9d:76:dd:b9:04:
35:d2:cd:98:d3:06:67:d6:0d:59:1c:3c:d6:84:e8:14:9a:9b:
2d:84:48:0d:87:9b:f7:05:8c:ce:cf:af:7e:4e:9e:27:6a:21:
8c:98:f0:03:28:74:86:45:2a:66:79:b0:5f:4d:1d:a3:48:7d:
b8:e0:09:20:d0:dd:97:b0:05:56:92:2d:04:47:a1:1e:57:1d:
46:e8:37:17:f4:91:13:26:75:3e:51:cb:c2:33:04:49:02:ae:
9c:79:dd:f6:8c:74:68:98:06:b2:f4:bd:96:41:cf:f0:bf:fc:
69:83:21:af:21:c1:a2:de:c2:e2:34:08:d6:65:f3:a4:12:ee:
10:26:fc:bb
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYuFfOJOGtxL9y+6am8mFhoBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0MDQxOTQxYjE0NTBkNmI5NWI1OGNhM2YwNzdjZTIwOGRm
ZGZiNGIwHhcNMjMxMDMxMTEyNzE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOWNkMWEzNjE5NTJlMGY3OTk3YzFmNmRjOGVjYjJmNWRjZjgyMzM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo1UMq00iqdAIQpNEK9z6UYhcRpF7
xMCDYC7NqgtmTMiPVGj3/fmlkUqOzfsEYn+Gm6EKRMShE5hQHdZ3EaGmoH6GImEx
j0CQdaQX9QfGmA9Z1BjJeh/tZzZWak7GESf422A+KUV6Unzf5CYlmTJmrZwrRPsD
qpH3XCSnJmnKEaTA8oncsqLrr38IHGjawWSTmqRt3c1sxKVcbiamUNM7F9561LTI
KalPxVH61MywoYyUY/ZN0aImo4tGlKIXfwZ0ayqfBs6TvWU5sUR4TrFQqQIb97Po
xvlqtwRYAkjWLCe3OyvQVhfsge9usPHAvOUHp7GDssXLojavCOYeYGveBwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFOnNGjYZUuD3mXwfbcjssvXc+CM4MB8GA1UdIwQY
MBaAFFQEGUGxRQ1rlbWMo/B3ziCN/ftLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkFRWlFiRkZEV3VWdFl5ajhIZk9JSTM5LTBzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi85Mzk4YjAtMmZiYi00YmQzLWI5YmMt
MWU4OWY5Njk1ZDFiLzEvNmMwYU5obFM0UGVaZkI5dHlPeXk5ZHo0SXpnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi85Mzk4YjAtMmZiYi00YmQzLWI5YmMtMWU4OWY5Njk1ZDFi
LzEvVkFRWlFiRkZEV3VWdFl5ajhIZk9JSTM5LTBzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhO1gDAN
BgkqhkiG9w0BAQsFAAOCAQEAFXdgG7P2N/49LYiTJrYnAVzpmimicCHdP7yF92OY
prpJKTsYO436FeBStNdmIRMrWMEaGGyxJohKbQMimecaX180dQ6HpGRm2rpc5c3m
HH6syVI3H7o10XJXVRUEbjmEPOeVyPTexXI8rGNbNMhQnDnjR+EiMRbRBZ123bkE
NdLNmNMGZ9YNWRw81oToFJqbLYRIDYeb9wWMzs+vfk6eJ2ohjJjwAyh0hkUqZnmw
X00do0h9uOAJINDdl7AFVpItBEehHlcdRug3F/SREyZ1PlHLwjMESQKunHnd9ox0
aJgGsvS9lkHP8L/8aYMhryHBot7C4jQI1mXzpBLuECb8uw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:26 2024 by rpki-client on console-fra.rpki-client.org