Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/481236-a06c-4903-9385-6b7d7e4ed701/1/C9PznAgUqkg6sgAO3M_Ggedv0nY.roa
File: C9PznAgUqkg6sgAO3M_Ggedv0nY.roa (raw, json)
Hash identifier: gy9RPKwSTbg1iS4TkTX3F/Ah1WDt9p87F/PSgGFN7vw=
Subject key identifier: 0B:D3:F3:9C:08:14:AA:48:3A:B2:00:0E:DC:CF:C6:81:E7:6F:D2:76
Certificate issuer: /CN=35d45f2ac5bce1569df6b2ad80d16f1b92fbd85c
Certificate serial: 01856D0AFB1A70166B44A0304ED089568A5D
Authority key identifier: 35:D4:5F:2A:C5:BC:E1:56:9D:F6:B2:AD:80:D1:6F:1B:92:FB:D8:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NdRfKsW84Vad9rKtgNFvG5L72Fw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/481236-a06c-4903-9385-6b7d7e4ed701/1/C9PznAgUqkg6sgAO3M_Ggedv0nY.roa
Signing time: Sun 01 Jan 2023 11:15:14 +0000
ROA not before: Sun 01 Jan 2023 11:15:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203600
IP address blocks: 2a06:e540::/29 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:fb:1a:70:16:6b:44:a0:30:4e:d0:89:56:8a:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35d45f2ac5bce1569df6b2ad80d16f1b92fbd85c
Validity
Not Before: Jan 1 11:15:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0bd3f39c0814aa483ab2000edccfc681e76fd276
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:89:55:46:88:15:e5:33:26:ec:59:9b:9d:f0:
d7:cc:7c:93:eb:47:f6:e6:0c:2c:75:65:44:66:f0:
be:f7:66:0a:8e:79:e3:49:57:17:f7:ed:52:70:89:
94:6c:8e:ef:f0:31:bb:28:5d:47:63:ce:1e:7a:e9:
e5:df:3e:46:cc:f7:27:65:fb:24:46:57:0d:1b:1d:
1e:05:d5:42:4f:e2:d6:56:68:04:34:cf:b5:c7:6b:
a5:e7:66:ce:f3:a1:0b:63:ad:2c:de:0e:84:28:70:
65:74:90:db:7a:5d:c7:c6:42:fb:2e:aa:ca:e3:6e:
de:21:79:32:f4:fb:80:17:27:f8:c2:c9:2c:62:63:
0e:79:2d:c2:1c:58:78:65:6a:af:08:7a:ba:d0:82:
b9:18:fb:f2:a2:fd:0b:60:80:05:77:d1:d6:ce:f1:
e9:d4:19:7e:25:3e:0c:51:68:5e:af:8a:f0:93:c1:
e2:95:fa:b0:be:02:3e:1f:f8:30:e8:38:8f:8b:8d:
0e:e6:a6:59:74:b3:5b:76:cf:7c:a2:21:60:39:67:
f9:8f:31:a7:a6:6b:88:56:c6:a5:68:6a:fd:e0:28:
56:42:00:96:06:77:f8:2a:a4:11:99:f8:a8:59:41:
bf:53:7e:84:52:42:40:9e:12:5a:d2:1f:4c:ca:c2:
2c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:D3:F3:9C:08:14:AA:48:3A:B2:00:0E:DC:CF:C6:81:E7:6F:D2:76
X509v3 Authority Key Identifier:
keyid:35:D4:5F:2A:C5:BC:E1:56:9D:F6:B2:AD:80:D1:6F:1B:92:FB:D8:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NdRfKsW84Vad9rKtgNFvG5L72Fw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/481236-a06c-4903-9385-6b7d7e4ed701/1/C9PznAgUqkg6sgAO3M_Ggedv0nY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/481236-a06c-4903-9385-6b7d7e4ed701/1/NdRfKsW84Vad9rKtgNFvG5L72Fw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e540::/29
Signature Algorithm: sha256WithRSAEncryption
89:5b:7a:35:bb:21:92:3b:d6:8d:36:f4:f1:c1:c4:22:07:2d:
0c:28:16:69:b0:82:9a:75:8a:03:e2:ec:89:4f:66:e3:00:95:
91:b9:44:b0:fc:0a:7d:15:e0:cc:50:20:bf:b7:0f:66:f3:f6:
75:25:a2:d7:35:63:60:ca:bb:1a:60:ef:e0:f2:44:7d:56:ce:
8c:94:c4:73:52:90:4d:d3:f7:bd:1e:67:9e:4b:f5:ef:84:a2:
39:6d:2d:27:93:83:bc:d7:0e:e4:78:c1:ae:ee:8d:81:66:c9:
17:dc:ab:a3:2c:2d:45:4b:c4:b3:de:3a:d3:bb:e2:16:e0:28:
ac:bf:45:b2:d7:db:84:e3:e6:28:df:f7:df:a8:3f:62:1d:42:
24:77:18:c0:2d:41:c3:11:bb:c8:5c:4e:37:b2:b0:f7:20:f4:
09:84:f0:d3:02:91:a6:a4:d3:70:a5:13:3d:26:1b:de:a4:e0:
b4:c4:3c:3c:6e:d6:bf:8b:c9:0c:57:de:8b:04:d8:a4:a2:5b:
2a:e6:7e:c4:48:92:8e:4e:74:08:86:64:a8:50:70:90:e6:5c:
e9:9c:f8:3a:62:49:71:61:70:9b:1a:fd:28:bf:69:69:6b:3f:
9e:fe:ad:50:b1:f7:98:a9:f6:b7:40:72:29:6d:c7:72:d8:8a:
12:55:2b:26
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVtCvsacBZrRKAwTtCJVopdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1ZDQ1ZjJhYzViY2UxNTY5ZGY2YjJhZDgwZDE2ZjFiOTJm
YmQ4NWMwHhcNMjMwMTAxMTExNTE0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYmQzZjM5YzA4MTRhYTQ4M2FiMjAwMGVkY2NmYzY4MWU3NmZkMjc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlolVRogV5TMm7FmbnfDXzHyT60f2
5gwsdWVEZvC+92YKjnnjSVcX9+1ScImUbI7v8DG7KF1HY84eeunl3z5GzPcnZfsk
RlcNGx0eBdVCT+LWVmgENM+1x2ul52bO86ELY60s3g6EKHBldJDbel3HxkL7LqrK
427eIXky9PuAFyf4wsksYmMOeS3CHFh4ZWqvCHq60IK5GPvyov0LYIAFd9HWzvHp
1Bl+JT4MUWher4rwk8HilfqwvgI+H/gw6DiPi40O5qZZdLNbds98oiFgOWf5jzGn
pmuIVsalaGr94ChWQgCWBnf4KqQRmfioWUG/U36EUkJAnhJa0h9MysIsVwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFAvT85wIFKpIOrIADtzPxoHnb9J2MB8GA1UdIwQY
MBaAFDXUXyrFvOFWnfayrYDRbxuS+9hcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTmRSZktzVzg0VmFkOXJLdGdORnZHNUw3MkZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS80ODEyMzYtYTA2Yy00OTAzLTkzODUt
NmI3ZDdlNGVkNzAxLzEvQzlQem5BZ1Vxa2c2c2dBTzNNX0dnZWR2MG5ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS80ODEyMzYtYTA2Yy00OTAzLTkzODUtNmI3ZDdlNGVkNzAx
LzEvTmRSZktzVzg0VmFkOXJLdGdORnZHNUw3MkZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgblQDAN
BgkqhkiG9w0BAQsFAAOCAQEAiVt6NbshkjvWjTb08cHEIgctDCgWabCCmnWKA+Ls
iU9m4wCVkblEsPwKfRXgzFAgv7cPZvP2dSWi1zVjYMq7GmDv4PJEfVbOjJTEc1KQ
TdP3vR5nnkv174SiOW0tJ5ODvNcO5HjBru6NgWbJF9yroywtRUvEs94607viFuAo
rL9FstfbhOPmKN/336g/Yh1CJHcYwC1BwxG7yFxON7Kw9yD0CYTw0wKRpqTTcKUT
PSYb3qTgtMQ8PG7Wv4vJDFfeiwTYpKJbKuZ+xEiSjk50CIZkqFBwkOZc6Zz4OmJJ
cWFwmxr9KL9paWs/nv6tULH3mKn2t0ByKW3HctiKElUrJg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:47 2024 by rpki-client on console-fra.rpki-client.org