Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/m1E8EyE50XrA6Ngkh9taS4d1Mk4.roa
File: m1E8EyE50XrA6Ngkh9taS4d1Mk4.roa (raw, json)
Hash identifier: I6ACrVQGRmaANBujLW5AcKfp5qSv4aC6bL87DVHU+2E=
Subject key identifier: 9B:51:3C:13:21:39:D1:7A:C0:E8:D8:24:87:DB:5A:4B:87:75:32:4E
Certificate issuer: /CN=893afecd711705c476b785d0c86ef54c2124354c
Certificate serial: 01856EA6AC2F8F7B4DB2053957FB47F82FAD
Authority key identifier: 89:3A:FE:CD:71:17:05:C4:76:B7:85:D0:C8:6E:F5:4C:21:24:35:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iTr-zXEXBcR2t4XQyG71TCEkNUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/m1E8EyE50XrA6Ngkh9taS4d1Mk4.roa
Signing time: Sun 01 Jan 2023 18:44:54 +0000
ROA not before: Sun 01 Jan 2023 18:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8767
IP address blocks: 2a01:4800::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:ac:2f:8f:7b:4d:b2:05:39:57:fb:47:f8:2f:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=893afecd711705c476b785d0c86ef54c2124354c
Validity
Not Before: Jan 1 18:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b513c132139d17ac0e8d82487db5a4b8775324e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:4b:d6:fa:46:47:24:ab:1d:ac:6d:5f:62:cb:
88:23:bb:b5:f6:b7:45:9d:97:d4:84:28:fb:c2:6f:
51:81:52:cb:c3:8b:d0:8a:17:1f:49:a9:07:a2:20:
92:8e:ed:f3:17:73:93:c4:6c:0d:db:db:c2:25:82:
67:c2:50:94:f8:29:a3:2f:00:cc:c6:4b:b1:3e:b7:
ed:e5:df:60:6b:e5:2f:d5:e0:78:72:a9:7c:10:04:
a4:71:7b:56:77:bc:78:70:23:b2:07:25:d0:4e:c4:
ea:dd:44:fa:62:6f:df:85:5e:93:3c:26:e3:22:b0:
9b:f1:2b:bf:5a:c9:31:fd:15:6d:10:bf:b9:75:f8:
33:9f:15:e8:1b:47:b7:98:57:e6:e1:e3:92:74:d3:
ab:bd:af:48:5c:92:b1:84:49:f6:87:a1:5f:51:0b:
2f:69:33:09:d8:05:b2:10:fd:5a:a3:57:05:1e:85:
1c:3d:50:64:d7:7d:4d:12:3a:31:14:0e:1e:0e:5c:
6b:be:a2:ee:ee:53:16:ad:fa:0c:c2:ff:b1:2e:fd:
d0:1e:9f:d4:30:69:1c:cd:62:00:a1:1a:5b:85:e3:
e3:4c:46:21:22:fd:1a:67:54:ae:b4:0d:15:89:29:
49:13:d7:71:30:d7:aa:1e:cc:25:61:bb:b9:14:70:
dd:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:51:3C:13:21:39:D1:7A:C0:E8:D8:24:87:DB:5A:4B:87:75:32:4E
X509v3 Authority Key Identifier:
keyid:89:3A:FE:CD:71:17:05:C4:76:B7:85:D0:C8:6E:F5:4C:21:24:35:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iTr-zXEXBcR2t4XQyG71TCEkNUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/m1E8EyE50XrA6Ngkh9taS4d1Mk4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/ca3b5f-0221-43ad-8abd-1c13206a8123/1/iTr-zXEXBcR2t4XQyG71TCEkNUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:4800::/32
Signature Algorithm: sha256WithRSAEncryption
89:53:b6:f7:cf:5c:c5:a6:0a:67:48:c4:6b:d1:e7:4f:80:fb:
65:51:fe:74:f6:41:51:b0:eb:4d:a8:8d:d6:37:57:2d:bc:d1:
19:5b:e4:86:2a:b5:f9:82:2d:1d:55:28:3b:04:bd:00:da:e7:
50:cf:4e:3d:bd:f7:73:90:b2:ab:1a:9e:d1:59:bf:11:7b:30:
df:95:4b:8a:1a:ab:f4:d5:1e:a0:03:0b:dc:3c:0c:c8:90:b2:
f4:6f:a9:72:21:8e:f1:1a:4c:cc:32:d8:41:82:ff:f8:3d:fb:
3f:57:77:1e:49:45:40:66:73:83:f6:04:71:cb:76:70:d0:9b:
7f:5a:63:f6:95:54:61:61:a0:00:f0:de:75:54:37:76:f1:38:
72:37:ec:03:ee:08:82:15:72:3f:ac:c5:b6:c2:3b:e4:bc:e8:
72:20:80:e3:95:3f:88:bd:54:bb:8c:00:8d:65:fb:9e:82:d4:
31:cf:e0:39:56:4b:34:34:72:2f:0a:5d:21:65:1d:09:ad:eb:
f1:0b:63:86:68:76:0a:19:c6:c9:2d:2a:a4:00:5d:a7:41:97:
59:2c:4e:39:94:30:52:97:82:7e:0e:e0:b3:02:a0:67:58:a3:
0d:a6:86:6a:14:b3:59:b8:cf:80:48:19:6d:07:bd:b5:71:f9:
a4:85:ea:fb
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVupqwvj3tNsgU5V/tH+C+tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5M2FmZWNkNzExNzA1YzQ3NmI3ODVkMGM4NmVmNTRjMjEy
NDM1NGMwHhcNMjMwMTAxMTg0NDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YjUxM2MxMzIxMzlkMTdhYzBlOGQ4MjQ4N2RiNWE0Yjg3NzUzMjRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkUvW+kZHJKsdrG1fYsuII7u19rdF
nZfUhCj7wm9RgVLLw4vQihcfSakHoiCSju3zF3OTxGwN29vCJYJnwlCU+CmjLwDM
xkuxPrft5d9ga+Uv1eB4cql8EASkcXtWd7x4cCOyByXQTsTq3UT6Ym/fhV6TPCbj
IrCb8Su/Wskx/RVtEL+5dfgznxXoG0e3mFfm4eOSdNOrva9IXJKxhEn2h6FfUQsv
aTMJ2AWyEP1ao1cFHoUcPVBk131NEjoxFA4eDlxrvqLu7lMWrfoMwv+xLv3QHp/U
MGkczWIAoRpbhePjTEYhIv0aZ1SutA0ViSlJE9dxMNeqHswlYbu5FHDd8wIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFJtRPBMhOdF6wOjYJIfbWkuHdTJOMB8GA1UdIwQY
MBaAFIk6/s1xFwXEdreF0Mhu9UwhJDVMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVRyLXpYRVhCY1IydDRYUXlHNzFUQ0VrTlV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9jYTNiNWYtMDIyMS00M2FkLThhYmQt
MWMxMzIwNmE4MTIzLzEvbTFFOEV5RTUwWHJBNk5na2g5dGFTNGQxTWs0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy9jYTNiNWYtMDIyMS00M2FkLThhYmQtMWMxMzIwNmE4MTIz
LzEvaVRyLXpYRVhCY1IydDRYUXlHNzFUQ0VrTlV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgFIADAN
BgkqhkiG9w0BAQsFAAOCAQEAiVO2989cxaYKZ0jEa9HnT4D7ZVH+dPZBUbDrTaiN
1jdXLbzRGVvkhiq1+YItHVUoOwS9ANrnUM9OPb33c5Cyqxqe0Vm/EXsw35VLihqr
9NUeoAML3DwMyJCy9G+pciGO8RpMzDLYQYL/+D37P1d3HklFQGZzg/YEcct2cNCb
f1pj9pVUYWGgAPDedVQ3dvE4cjfsA+4IghVyP6zFtsI75LzociCA45U/iL1Uu4wA
jWX7noLUMc/gOVZLNDRyLwpdIWUdCa3r8Qtjhmh2ChnGyS0qpABdp0GXWSxOOZQw
UpeCfg7gswKgZ1ijDaaGahSzWbjPgEgZbQe9tXH5pIXq+w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:17 2024 by rpki-client on console-ams.rpki-client.org