Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ac6c7b-d059-4014-a968-e46d8d16a15f/1/tEWYavnDt-bKlqIwxhfGkJHdmzk.roa
File: tEWYavnDt-bKlqIwxhfGkJHdmzk.roa (raw, json)
Hash identifier: x9QAXd5t5EgjSQ8xkYU5FFGSvr0woa0PsgtTZTmQLiM=
Subject key identifier: B4:45:98:6A:F9:C3:B7:E6:CA:96:A2:30:C6:17:C6:90:91:DD:9B:39
Certificate issuer: /CN=3e20c700d98d76a9c640173889f9367da9de8997
Certificate serial: 01862B766AD0332A91E54AE92BB60C941650
Authority key identifier: 3E:20:C7:00:D9:8D:76:A9:C6:40:17:38:89:F9:36:7D:A9:DE:89:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PiDHANmNdqnGQBc4ifk2faneiZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ac6c7b-d059-4014-a968-e46d8d16a15f/1/tEWYavnDt-bKlqIwxhfGkJHdmzk.roa
Signing time: Tue 07 Feb 2023 10:40:26 +0000
ROA not before: Tue 07 Feb 2023 10:40:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 140951
IP address blocks: 2a03:9d40::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:2b:76:6a:d0:33:2a:91:e5:4a:e9:2b:b6:0c:94:16:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e20c700d98d76a9c640173889f9367da9de8997
Validity
Not Before: Feb 7 10:40:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b445986af9c3b7e6ca96a230c617c69091dd9b39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:85:97:75:58:c5:e7:dc:8c:e0:dd:c0:8f:1a:
ba:63:e3:53:66:e2:25:fb:92:54:d8:6d:d5:d0:f3:
a4:14:4c:81:2a:69:f8:58:cd:19:1c:5d:83:88:4d:
09:aa:9a:9c:30:ec:bc:5e:d2:a1:06:1b:0a:3d:4d:
89:99:53:10:3d:06:0c:e2:6e:cc:c9:53:fe:50:e0:
41:70:f1:c6:e5:16:25:2c:22:ef:d7:20:28:14:1a:
04:80:54:1e:80:01:f6:b9:50:bd:79:db:e9:62:53:
34:64:ca:3f:4c:7e:69:75:4e:9b:9d:18:d9:ac:4f:
0c:d7:77:91:e0:7d:db:d7:87:d1:7f:b3:44:83:d2:
0f:34:f8:a7:bd:d5:d3:70:09:10:88:04:ec:78:52:
30:cc:b3:b7:a8:3f:fa:b7:94:e1:45:fa:37:75:60:
e5:9f:13:c1:42:a8:d5:df:18:4d:00:2d:63:a8:36:
d0:c4:19:e9:9a:26:d5:4f:69:45:ea:9b:97:b1:df:
20:38:3c:be:76:1d:5c:3d:e5:d2:c2:a1:0f:61:73:
a1:6c:c5:1c:fe:45:ca:4d:10:1e:16:64:26:09:4f:
2b:3f:36:a2:74:73:11:51:b6:14:a2:f2:24:b0:19:
b2:e2:51:e7:b0:c8:65:39:f9:61:22:03:9b:a2:59:
ac:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:45:98:6A:F9:C3:B7:E6:CA:96:A2:30:C6:17:C6:90:91:DD:9B:39
X509v3 Authority Key Identifier:
keyid:3E:20:C7:00:D9:8D:76:A9:C6:40:17:38:89:F9:36:7D:A9:DE:89:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PiDHANmNdqnGQBc4ifk2faneiZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac6c7b-d059-4014-a968-e46d8d16a15f/1/tEWYavnDt-bKlqIwxhfGkJHdmzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac6c7b-d059-4014-a968-e46d8d16a15f/1/PiDHANmNdqnGQBc4ifk2faneiZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:9d40::/32
Signature Algorithm: sha256WithRSAEncryption
7c:35:63:2d:4c:7d:cd:eb:ce:1d:06:53:df:51:8b:9b:fd:58:
f0:64:20:86:74:36:9c:6b:3a:4a:0d:46:9f:ed:0a:be:4b:33:
18:95:73:41:c6:35:ab:a3:3a:60:03:96:de:87:9e:73:c5:e1:
61:0d:92:02:79:c9:43:b8:ab:f8:7f:8a:e8:09:6b:aa:f6:06:
72:bd:60:33:bb:3b:80:3f:16:bc:e3:0c:76:3f:6a:0b:5c:af:
2b:bf:89:70:dc:80:ef:24:6e:b4:f1:4e:0e:94:bc:8d:05:53:
20:f4:84:fe:13:ad:02:4c:ae:4f:63:80:2f:b4:6a:7e:04:1e:
c3:03:fe:a8:0e:38:38:00:d4:64:cc:4c:5e:55:c1:f5:3f:12:
22:ea:2d:80:31:49:72:8c:23:f9:fd:f6:4a:d9:83:57:58:5b:
c5:91:07:10:d6:f6:f7:0b:f7:96:44:51:f1:35:0e:93:c7:13:
f3:f8:68:a8:0f:95:aa:e9:2a:c0:d4:f4:7c:bf:85:60:23:1e:
c7:e6:80:fc:c1:df:5b:58:0f:0b:be:00:ee:d2:8c:03:dc:a0:
20:22:76:66:61:92:06:f3:ea:6a:1f:dc:26:07:9f:e5:16:83:
62:20:fd:15:07:60:be:ba:e0:25:85:24:e3:52:f9:ab:45:c1:
e0:46:e6:9a
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYYrdmrQMyqR5UrpK7YMlBZQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlMjBjNzAwZDk4ZDc2YTljNjQwMTczODg5ZjkzNjdkYTlk
ZTg5OTcwHhcNMjMwMjA3MTA0MDI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNDQ1OTg2YWY5YzNiN2U2Y2E5NmEyMzBjNjE3YzY5MDkxZGQ5YjM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl4WXdVjF59yM4N3Ajxq6Y+NTZuIl
+5JU2G3V0POkFEyBKmn4WM0ZHF2DiE0JqpqcMOy8XtKhBhsKPU2JmVMQPQYM4m7M
yVP+UOBBcPHG5RYlLCLv1yAoFBoEgFQegAH2uVC9edvpYlM0ZMo/TH5pdU6bnRjZ
rE8M13eR4H3b14fRf7NEg9IPNPinvdXTcAkQiATseFIwzLO3qD/6t5ThRfo3dWDl
nxPBQqjV3xhNAC1jqDbQxBnpmibVT2lF6puXsd8gODy+dh1cPeXSwqEPYXOhbMUc
/kXKTRAeFmQmCU8rPzaidHMRUbYUovIksBmy4lHnsMhlOflhIgObolmsSQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFLRFmGr5w7fmypaiMMYXxpCR3Zs5MB8GA1UdIwQY
MBaAFD4gxwDZjXapxkAXOIn5Nn2p3omXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUGlESEFObU5kcW5HUUJjNGlmazJmYW5laVpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy9hYzZjN2ItZDA1OS00MDE0LWE5Njgt
ZTQ2ZDhkMTZhMTVmLzEvdEVXWWF2bkR0LWJLbHFJd3hoZkdrSkhkbXprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy9hYzZjN2ItZDA1OS00MDE0LWE5NjgtZTQ2ZDhkMTZhMTVm
LzEvUGlESEFObU5kcW5HUUJjNGlmazJmYW5laVpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgOdQDAN
BgkqhkiG9w0BAQsFAAOCAQEAfDVjLUx9zevOHQZT31GLm/1Y8GQghnQ2nGs6Sg1G
n+0KvkszGJVzQcY1q6M6YAOW3oeec8XhYQ2SAnnJQ7ir+H+K6AlrqvYGcr1gM7s7
gD8WvOMMdj9qC1yvK7+JcNyA7yRutPFODpS8jQVTIPSE/hOtAkyuT2OAL7RqfgQe
wwP+qA44OADUZMxMXlXB9T8SIuotgDFJcowj+f32StmDV1hbxZEHENb29wv3lkRR
8TUOk8cT8/hoqA+VqukqwNT0fL+FYCMex+aA/MHfW1gPC74A7tKMA9ygICJ2ZmGS
BvPqah/cJgef5RaDYiD9FQdgvrrgJYUk41L5q0XB4Ebmmg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:34 2024 by rpki-client on console-fra.rpki-client.org