Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/720e5f-7f33-4d9d-8cde-22dd0f3928d5/1/UDE3MwJ2GjWx0Zm9NKalyGri7aU.roa
File: UDE3MwJ2GjWx0Zm9NKalyGri7aU.roa (raw, json)
Hash identifier: LdrSLROiXptL46owuj6MrGNmPMqkNZDU23sWjAiPROE=
Subject key identifier: 50:31:37:33:02:76:1A:35:B1:D1:99:BD:34:A6:A5:C8:6A:E2:ED:A5
Certificate issuer: /CN=a81297b1d36a42de38e8480bb929b45bc9030c9d
Certificate serial: 018F44DBF4CF8A6D66335DE4CD649BAF3280
Authority key identifier: A8:12:97:B1:D3:6A:42:DE:38:E8:48:0B:B9:29:B4:5B:C9:03:0C:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qBKXsdNqQt446EgLuSm0W8kDDJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/720e5f-7f33-4d9d-8cde-22dd0f3928d5/1/UDE3MwJ2GjWx0Zm9NKalyGri7aU.roa
Signing time: Sat 04 May 2024 18:26:56 +0000
ROA not before: Sat 04 May 2024 18:26:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215004
IP address blocks: 2a14:3244:beef::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 09 May 2024 14:31:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:44:db:f4:cf:8a:6d:66:33:5d:e4:cd:64:9b:af:32:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a81297b1d36a42de38e8480bb929b45bc9030c9d
Validity
Not Before: May 4 18:26:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5031373302761a35b1d199bd34a6a5c86ae2eda5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:74:1f:08:d6:87:e2:28:ca:71:c7:38:c8:83:
8c:4a:6d:f2:52:a1:70:e8:74:a2:1c:51:1b:63:7b:
f4:14:59:13:74:db:e1:c9:ae:78:f7:83:76:4f:3b:
a9:98:5d:0d:de:7b:f9:64:31:32:96:10:48:61:1b:
7f:25:cd:47:2f:de:ab:75:56:a2:64:db:ca:64:4f:
1e:ed:f4:8c:10:cd:56:26:e2:c9:49:5f:81:c8:3d:
18:04:73:bd:0e:28:b0:31:60:58:12:6a:ea:6c:17:
b0:24:57:40:90:1d:35:0a:16:a3:45:94:3b:db:01:
33:de:12:df:a3:db:35:97:c7:ca:48:99:62:93:36:
e2:d2:e0:96:21:c3:63:c7:8c:b8:9e:31:e7:2b:ab:
e0:01:7b:37:50:da:c1:51:73:3c:4a:32:9b:5c:d7:
b0:65:7e:50:25:ce:7c:c7:46:2b:e0:1e:0c:b8:87:
0b:60:66:74:57:7c:34:f8:1f:ec:87:27:59:75:a4:
c2:a9:3e:c1:78:3b:d4:65:ed:ff:82:1a:6d:0f:9c:
2d:36:f9:1a:1c:d8:76:69:57:ce:28:d2:f6:aa:c4:
d8:76:40:d2:b5:fb:1d:8a:f3:b9:0c:ab:c0:68:f6:
e8:47:aa:e4:5a:e8:0a:9a:96:28:a5:0b:06:07:d5:
61:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:31:37:33:02:76:1A:35:B1:D1:99:BD:34:A6:A5:C8:6A:E2:ED:A5
X509v3 Authority Key Identifier:
keyid:A8:12:97:B1:D3:6A:42:DE:38:E8:48:0B:B9:29:B4:5B:C9:03:0C:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qBKXsdNqQt446EgLuSm0W8kDDJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/720e5f-7f33-4d9d-8cde-22dd0f3928d5/1/UDE3MwJ2GjWx0Zm9NKalyGri7aU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/720e5f-7f33-4d9d-8cde-22dd0f3928d5/1/qBKXsdNqQt446EgLuSm0W8kDDJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a14:3244:beef::/48
Signature Algorithm: sha256WithRSAEncryption
71:26:4b:8c:34:29:9d:59:c3:03:14:bf:d4:71:4d:6b:05:e1:
52:e5:44:42:b2:81:44:97:5d:99:42:80:48:25:7a:11:46:36:
51:26:73:2f:21:4f:f9:20:3a:97:85:11:b2:81:c2:9b:bb:d6:
09:a5:82:ba:40:1f:83:d9:2a:68:15:df:0f:fc:20:21:27:63:
6a:f3:61:f7:c8:07:e1:12:a4:31:f8:eb:9d:6c:41:bb:d1:8e:
a9:3c:7a:4c:7b:eb:78:77:a9:ea:46:5e:a4:1b:60:1b:88:cd:
9d:28:68:39:0e:4a:a5:33:09:8e:78:cc:66:57:3c:1b:10:10:
9a:8d:8e:40:ce:69:06:d2:c2:b9:e5:9b:77:c8:3d:82:7c:97:
e3:98:5f:7c:95:f0:da:36:db:e5:0f:77:1c:a4:16:50:00:e2:
47:06:a2:09:f7:29:32:21:36:77:4e:3f:58:42:d0:e5:22:84:
26:a1:10:fd:a8:46:f2:cc:85:37:92:0c:83:31:d5:1a:a2:52:
21:91:dc:2d:cc:f2:eb:81:2e:86:4d:08:3d:ed:70:95:c5:fe:
06:ac:7e:48:61:8f:c0:2c:db:47:75:c1:f5:42:c6:38:71:d4:
7b:7e:3d:34:d1:9e:19:2e:3f:00:34:bd:40:f2:5d:b2:e2:b7:
6b:58:b9:5a
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY9E2/TPim1mM13kzWSbrzKAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE4MTI5N2IxZDM2YTQyZGUzOGU4NDgwYmI5MjliNDViYzkw
MzBjOWQwHhcNMjQwNTA0MTgyNjU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MDMxMzczMzAyNzYxYTM1YjFkMTk5YmQzNGE2YTVjODZhZTJlZGE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvHQfCNaH4ijKccc4yIOMSm3yUqFw
6HSiHFEbY3v0FFkTdNvhya5494N2TzupmF0N3nv5ZDEylhBIYRt/Jc1HL96rdVai
ZNvKZE8e7fSMEM1WJuLJSV+ByD0YBHO9DiiwMWBYEmrqbBewJFdAkB01ChajRZQ7
2wEz3hLfo9s1l8fKSJlikzbi0uCWIcNjx4y4njHnK6vgAXs3UNrBUXM8SjKbXNew
ZX5QJc58x0Yr4B4MuIcLYGZ0V3w0+B/shydZdaTCqT7BeDvUZe3/ghptD5wtNvka
HNh2aVfOKNL2qsTYdkDStfsdivO5DKvAaPboR6rkWugKmpYopQsGB9VhkwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFAxNzMCdho1sdGZvTSmpchq4u2lMB8GA1UdIwQY
MBaAFKgSl7HTakLeOOhIC7kptFvJAwydMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcUJLWHNkTnFRdDQ0NkVnTHVTbTBXOGtEREowLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi83MjBlNWYtN2YzMy00ZDlkLThjZGUt
MjJkZDBmMzkyOGQ1LzEvVURFM013SjJHald4MFptOU5LYWx5R3JpN2FVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi83MjBlNWYtN2YzMy00ZDlkLThjZGUtMjJkZDBmMzkyOGQ1
LzEvcUJLWHNkTnFRdDQ0NkVnTHVTbTBXOGtEREowLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhQyRL7v
MA0GCSqGSIb3DQEBCwUAA4IBAQBxJkuMNCmdWcMDFL/UcU1rBeFS5URCsoFEl12Z
QoBIJXoRRjZRJnMvIU/5IDqXhRGygcKbu9YJpYK6QB+D2SpoFd8P/CAhJ2Nq82H3
yAfhEqQx+OudbEG70Y6pPHpMe+t4d6nqRl6kG2AbiM2dKGg5DkqlMwmOeMxmVzwb
EBCajY5AzmkG0sK55Zt3yD2CfJfjmF98lfDaNtvlD3ccpBZQAOJHBqIJ9ykyITZ3
Tj9YQtDlIoQmoRD9qEbyzIU3kgyDMdUaolIhkdwtzPLrgS6GTQg97XCVxf4GrH5I
YY/ALNtHdcH1QsY4cdR7fj000Z4ZLj8ANL1A8l2y4rdrWLla
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:11 2024 by rpki-client on console-fra.rpki-client.org