Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/c15e99-2965-476f-9aef-8a273f4ad15d/1/clZykxaHzQh5t7Eq6ySzF9PO_To.roa
File: clZykxaHzQh5t7Eq6ySzF9PO_To.roa (raw, json)
Hash identifier: OLGCmF0OaLjHzy4Uns09iH29cfpwt9+jCSEpaXoI/co=
Subject key identifier: 72:56:72:93:16:87:CD:08:79:B7:B1:2A:EB:24:B3:17:D3:CE:FD:3A
Certificate issuer: /CN=fa7eb1115130fac94091061e31462a565226885a
Certificate serial: 018B8BF07EB8FFA2BEEB62EDB95AB97F6726
Authority key identifier: FA:7E:B1:11:51:30:FA:C9:40:91:06:1E:31:46:2A:56:52:26:88:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-n6xEVEw-slAkQYeMUYqVlImiFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/c15e99-2965-476f-9aef-8a273f4ad15d/1/clZykxaHzQh5t7Eq6ySzF9PO_To.roa
Signing time: Wed 01 Nov 2023 17:31:15 +0000
ROA not before: Wed 01 Nov 2023 17:31:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57521
IP address blocks: 2a13:bc2:6::/48 maxlen: 48
2a13:bc2::/48 maxlen: 48
2a13:bc2:3::/48 maxlen: 48
2a13:bc2:2::/48 maxlen: 48
2a13:bc2:5::/48 maxlen: 48
2a13:bc2:4::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8b:f0:7e:b8:ff:a2:be:eb:62:ed:b9:5a:b9:7f:67:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa7eb1115130fac94091061e31462a565226885a
Validity
Not Before: Nov 1 17:31:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=725672931687cd0879b7b12aeb24b317d3cefd3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:65:79:d4:e7:5b:f3:12:94:65:5f:d7:76:1b:
7b:72:d2:35:78:f1:ea:7f:47:57:70:5d:2f:48:37:
12:1d:a3:12:8b:68:a3:54:fe:eb:33:40:f1:1b:4a:
eb:1a:ff:a5:b2:6a:73:cd:54:71:07:f8:96:45:d5:
55:28:d5:e2:47:bd:3d:b2:dc:3f:c9:d9:cf:b5:6c:
10:ab:2a:12:33:10:eb:ff:4a:a2:0a:b4:ae:b9:e8:
8a:54:91:dc:35:9d:eb:45:1b:ef:c6:51:1d:1f:d3:
11:df:e5:30:59:aa:66:c2:05:e7:5d:9e:ce:43:39:
42:91:df:d7:4c:4a:9e:66:41:02:9f:a5:c4:fe:dc:
62:7f:2b:3c:63:12:30:83:49:a9:42:a5:4f:41:60:
06:7b:cd:5f:6a:12:6d:e8:23:31:4f:29:97:fe:3d:
38:02:a8:f1:d3:ae:a0:e6:37:12:f2:00:18:39:10:
e1:3e:3b:39:54:00:1e:84:e7:d1:74:3a:0c:1f:00:
3d:72:e7:1c:6d:f6:a1:2c:70:ac:56:43:06:d7:a7:
e1:78:97:fd:e6:06:da:75:96:d4:3f:fe:be:5c:80:
32:a2:ab:38:82:d7:3c:ec:46:52:67:ec:c1:bb:8b:
24:a6:db:43:2e:c2:7f:1f:3c:51:a3:79:b5:93:00:
c3:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:56:72:93:16:87:CD:08:79:B7:B1:2A:EB:24:B3:17:D3:CE:FD:3A
X509v3 Authority Key Identifier:
keyid:FA:7E:B1:11:51:30:FA:C9:40:91:06:1E:31:46:2A:56:52:26:88:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-n6xEVEw-slAkQYeMUYqVlImiFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c15e99-2965-476f-9aef-8a273f4ad15d/1/clZykxaHzQh5t7Eq6ySzF9PO_To.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c15e99-2965-476f-9aef-8a273f4ad15d/1/1-n6xEVEw-slAkQYeMUYqVlImiFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:bc2::/48
2a13:bc2:2::-2a13:bc2:6:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
8f:d9:96:80:30:5e:7e:09:6c:c1:0d:9b:48:06:70:69:1f:04:
ae:8d:4b:38:6a:9f:8e:76:2c:6f:55:5c:55:9d:9e:33:07:58:
e0:4c:86:06:e9:58:e6:64:fc:f1:d4:35:78:23:44:6b:8c:1e:
29:02:9d:b7:3f:2e:42:f9:a7:9a:4b:ef:b0:9e:c9:fb:2f:3c:
7a:aa:43:92:f6:b4:a1:e6:da:dc:b2:b1:60:b3:7c:5a:c3:b3:
9c:96:31:c9:99:62:d5:0c:3f:3c:f7:b8:7c:80:34:df:6a:a7:
72:92:d5:cb:b4:5b:d9:90:de:66:f5:1f:67:4c:a0:fd:50:57:
7f:eb:81:f0:92:c2:10:54:4a:66:47:9d:d5:aa:9e:42:8e:e6:
af:0b:98:3d:03:6f:2e:ba:65:99:a7:7f:62:5e:03:61:a1:53:
89:47:69:3f:a5:c3:55:09:4a:1b:16:e6:f0:91:49:85:a5:0c:
8c:fa:f1:80:da:b3:bd:39:b0:22:eb:13:1d:0a:8e:cc:2d:13:
81:e4:20:cd:d5:63:fc:22:c4:5d:5d:93:14:92:2f:ea:40:db:
49:ce:fd:e8:e6:8b:b4:92:b5:04:af:96:97:ac:59:47:09:2d:
32:17:6b:8b:46:24:f8:6f:5c:4f:c0:57:ce:18:a0:6b:ec:31:
64:4c:b5:1d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAYuL8H64/6K+62LtuVq5f2cmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhN2ViMTExNTEzMGZhYzk0MDkxMDYxZTMxNDYyYTU2NTIy
Njg4NWEwHhcNMjMxMTAxMTczMTE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MjU2NzI5MzE2ODdjZDA4NzliN2IxMmFlYjI0YjMxN2QzY2VmZDNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk2V51Odb8xKUZV/Xdht7ctI1ePHq
f0dXcF0vSDcSHaMSi2ijVP7rM0DxG0rrGv+lsmpzzVRxB/iWRdVVKNXiR709stw/
ydnPtWwQqyoSMxDr/0qiCrSuueiKVJHcNZ3rRRvvxlEdH9MR3+UwWapmwgXnXZ7O
QzlCkd/XTEqeZkECn6XE/txifys8YxIwg0mpQqVPQWAGe81fahJt6CMxTymX/j04
Aqjx066g5jcS8gAYORDhPjs5VAAehOfRdDoMHwA9cuccbfahLHCsVkMG16fheJf9
5gbadZbUP/6+XIAyoqs4gtc87EZSZ+zBu4skpttDLsJ/HzxRo3m1kwDDPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHJWcpMWh80IebexKusksxfTzv06MB8GA1UdIwQY
MBaAFPp+sRFRMPrJQJEGHjFGKlZSJohaMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1uNnhFVkV3LXNsQWtRWWVNVVlxVmxJbWlGby5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmMvYzE1ZTk5LTI5NjUtNDc2Zi05YWVm
LThhMjczZjRhZDE1ZC8xL2NsWnlreGFIelFoNXQ3RXE2eVN6RjlQT19Uby5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvYmMvYzE1ZTk5LTI5NjUtNDc2Zi05YWVmLThhMjczZjRhZDE1
ZC8xLzEtbjZ4RVZFdy1zbEFrUVllTVVZcVZsSW1pRm8uY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwNgYIKwYBBQUHAQcBAf8EJzAlMCMEAgACMB0DBwAqEwvC
AAAwEgMHASoTC8IAAgMHACoTC8IABjANBgkqhkiG9w0BAQsFAAOCAQEAj9mWgDBe
fglswQ2bSAZwaR8Ero1LOGqfjnYsb1VcVZ2eMwdY4EyGBulY5mT88dQ1eCNEa4we
KQKdtz8uQvmnmkvvsJ7J+y88eqpDkva0oeba3LKxYLN8WsOznJYxyZli1Qw/PPe4
fIA032qncpLVy7Rb2ZDeZvUfZ0yg/VBXf+uB8JLCEFRKZked1aqeQo7mrwuYPQNv
Lrplmad/Yl4DYaFTiUdpP6XDVQlKGxbm8JFJhaUMjPrxgNqzvTmwIusTHQqOzC0T
geQgzdVj/CLEXV2TFJIv6kDbSc796OaLtJK1BK+Wl6xZRwktMhdri0Yk+G9cT8BX
zhiga+wxZEy1HQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:50 2024 by rpki-client on console-fra.rpki-client.org