Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/73e52f-42e3-4a31-9736-a6b7600871a6/1/zvF0hSkbTAdprbKPGGyblv3dt6Q.roa
File: zvF0hSkbTAdprbKPGGyblv3dt6Q.roa (raw, json)
Hash identifier: r8EniWTeVU3ACHJDlrF3l0fPxrH/GRSjU/qpk8XReXE=
Subject key identifier: CE:F1:74:85:29:1B:4C:07:69:AD:B2:8F:18:6C:9B:96:FD:DD:B7:A4
Certificate issuer: /CN=9c28a6ed0f5cfce772d5ce5b03bb42932c8a64d0
Certificate serial: 018C4FE472565AAFC2D8A152A8081CAB0032
Authority key identifier: 9C:28:A6:ED:0F:5C:FC:E7:72:D5:CE:5B:03:BB:42:93:2C:8A:64:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nCim7Q9c_Ody1c5bA7tCkyyKZNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/73e52f-42e3-4a31-9736-a6b7600871a6/1/zvF0hSkbTAdprbKPGGyblv3dt6Q.roa
Signing time: Sat 09 Dec 2023 18:43:40 +0000
ROA not before: Sat 09 Dec 2023 18:43:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215960
IP address blocks: 2a07:e043::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:4f:e4:72:56:5a:af:c2:d8:a1:52:a8:08:1c:ab:00:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c28a6ed0f5cfce772d5ce5b03bb42932c8a64d0
Validity
Not Before: Dec 9 18:43:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cef17485291b4c0769adb28f186c9b96fdddb7a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:68:cb:76:4c:4f:39:09:fd:ed:7c:4d:79:88:
c1:bc:1a:7a:06:b1:f9:6d:6a:32:b1:99:b7:c0:53:
48:5d:86:f3:39:58:26:ec:2c:df:f1:9c:16:ca:b6:
3f:a8:9f:f9:b3:93:31:11:9e:f3:a8:d5:5f:26:fe:
45:c5:98:3c:d3:9e:23:07:ee:23:32:66:fa:ca:0c:
ee:f3:a9:ad:6d:63:04:84:fd:d6:a9:a1:3b:34:ce:
d3:0a:12:06:84:18:79:cc:f8:1f:9f:61:35:d9:84:
6d:db:8b:1a:b7:17:3b:cb:05:e9:85:4a:50:c0:5a:
33:83:d4:03:2d:0e:90:4a:3a:41:a9:72:a7:15:22:
8f:94:ad:42:3e:7b:e2:8b:b6:74:91:11:b7:7c:f0:
ce:29:37:00:33:f9:2e:f3:df:7a:be:44:ed:f7:96:
4b:eb:88:6b:f8:ac:18:ff:8e:30:61:7d:20:03:b2:
ea:80:71:b3:ce:cf:49:0e:ac:54:ce:9a:56:15:b3:
f9:e7:41:b8:d7:93:c6:7a:79:f8:3d:88:19:6e:d0:
ed:cf:53:ac:59:41:08:e9:f3:ae:41:08:af:db:1e:
cd:cd:47:80:df:18:fa:f3:d9:3c:61:ed:46:e5:7b:
9c:47:02:d9:5b:b6:85:76:e3:71:05:07:e2:54:e3:
7e:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:F1:74:85:29:1B:4C:07:69:AD:B2:8F:18:6C:9B:96:FD:DD:B7:A4
X509v3 Authority Key Identifier:
keyid:9C:28:A6:ED:0F:5C:FC:E7:72:D5:CE:5B:03:BB:42:93:2C:8A:64:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nCim7Q9c_Ody1c5bA7tCkyyKZNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/73e52f-42e3-4a31-9736-a6b7600871a6/1/zvF0hSkbTAdprbKPGGyblv3dt6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/73e52f-42e3-4a31-9736-a6b7600871a6/1/nCim7Q9c_Ody1c5bA7tCkyyKZNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:e043::/32
Signature Algorithm: sha256WithRSAEncryption
1e:9e:03:21:50:f5:3f:d3:ca:ea:e7:0c:6f:97:ee:a9:87:0d:
1c:30:65:04:08:4b:8f:2e:cf:56:da:a3:a9:30:72:fa:00:78:
16:55:6c:99:cb:44:0e:5a:e2:1d:59:a2:e1:fc:7c:71:a6:6e:
d2:3a:95:a3:e5:c2:79:8d:0d:37:6c:8f:1d:2b:d5:cc:cb:8a:
93:f7:dd:68:4c:8b:ad:26:4d:25:4b:5a:47:34:22:d3:bb:cb:
4e:6b:48:d1:1c:c2:52:1d:85:27:dd:c9:cc:bb:05:17:fb:4a:
41:24:f4:0f:a0:96:74:6b:02:30:42:1f:98:64:51:10:1a:8e:
cd:9e:14:45:62:f5:63:0a:f2:65:58:38:21:83:ea:f2:78:49:
9d:be:f1:b4:f7:bf:07:04:50:29:85:04:2f:8b:f4:2d:f2:88:
1a:6e:66:7d:f7:07:f1:50:ef:57:0a:1c:ab:04:6a:bd:4f:15:
ed:26:45:7f:13:a0:98:c0:92:08:d6:6f:c7:d8:a1:c5:e3:a7:
d6:21:a9:ee:a1:50:0d:14:c5:c3:31:9d:9c:bf:f7:a6:20:4e:
ef:29:45:c5:e7:7e:1a:f2:ab:c7:9a:74:00:60:d8:00:4f:ff:
3b:bc:f2:69:9c:ca:06:0a:a0:68:f2:f6:3b:e6:70:26:09:75:
fc:c2:c1:b1
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYxP5HJWWq/C2KFSqAgcqwAyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljMjhhNmVkMGY1Y2ZjZTc3MmQ1Y2U1YjAzYmI0MjkzMmM4
YTY0ZDAwHhcNMjMxMjA5MTg0MzQwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZWYxNzQ4NTI5MWI0YzA3NjlhZGIyOGYxODZjOWI5NmZkZGRiN2E0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjmjLdkxPOQn97XxNeYjBvBp6BrH5
bWoysZm3wFNIXYbzOVgm7Czf8ZwWyrY/qJ/5s5MxEZ7zqNVfJv5FxZg8054jB+4j
Mmb6ygzu86mtbWMEhP3WqaE7NM7TChIGhBh5zPgfn2E12YRt24satxc7ywXphUpQ
wFozg9QDLQ6QSjpBqXKnFSKPlK1CPnvii7Z0kRG3fPDOKTcAM/ku8996vkTt95ZL
64hr+KwY/44wYX0gA7LqgHGzzs9JDqxUzppWFbP550G415PGenn4PYgZbtDtz1Os
WUEI6fOuQQiv2x7NzUeA3xj689k8Ye1G5XucRwLZW7aFduNxBQfiVON+cwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFM7xdIUpG0wHaa2yjxhsm5b93bekMB8GA1UdIwQY
MBaAFJwopu0PXPznctXOWwO7QpMsimTQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbkNpbTdROWNfT2R5MWM1YkE3dENreXlLWk5BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy83M2U1MmYtNDJlMy00YTMxLTk3MzYt
YTZiNzYwMDg3MWE2LzEvenZGMGhTa2JUQWRwcmJLUEdHeWJsdjNkdDZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy83M2U1MmYtNDJlMy00YTMxLTk3MzYtYTZiNzYwMDg3MWE2
LzEvbkNpbTdROWNfT2R5MWM1YkE3dENreXlLWk5BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgfgQzAN
BgkqhkiG9w0BAQsFAAOCAQEAHp4DIVD1P9PK6ucMb5fuqYcNHDBlBAhLjy7PVtqj
qTBy+gB4FlVsmctEDlriHVmi4fx8caZu0jqVo+XCeY0NN2yPHSvVzMuKk/fdaEyL
rSZNJUtaRzQi07vLTmtI0RzCUh2FJ93JzLsFF/tKQST0D6CWdGsCMEIfmGRREBqO
zZ4URWL1YwryZVg4IYPq8nhJnb7xtPe/BwRQKYUEL4v0LfKIGm5mffcH8VDvVwoc
qwRqvU8V7SZFfxOgmMCSCNZvx9ihxeOn1iGp7qFQDRTFwzGdnL/3piBO7ylFxed+
GvKrx5p0AGDYAE//O7zyaZzKBgqgaPL2O+ZwJgl1/MLBsQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:31 2024 by rpki-client on console-ams.rpki-client.org