Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/2313b8-de02-4228-900a-09be9db11f66/1/giCq3cJ4qWJnTJikNN_86f-UPvM.roa
File: giCq3cJ4qWJnTJikNN_86f-UPvM.roa (raw, json)
Hash identifier: 5xJx00neIwX+cRKt6wvEEEciEtv8O4HE3NnK+cLlOCM=
Subject key identifier: 82:20:AA:DD:C2:78:A9:62:67:4C:98:A4:34:DF:FC:E9:FF:94:3E:F3
Certificate issuer: /CN=e5bf3a72cad6f4b3dc305b4cbe31087051d983f6
Certificate serial: 018B8F1D7D522FCC89A5AE02C28508C2F468
Authority key identifier: E5:BF:3A:72:CA:D6:F4:B3:DC:30:5B:4C:BE:31:08:70:51:D9:83:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b86csrW9LPcMFtMvjEIcFHZg_Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/2313b8-de02-4228-900a-09be9db11f66/1/giCq3cJ4qWJnTJikNN_86f-UPvM.roa
Signing time: Thu 02 Nov 2023 08:19:16 +0000
ROA not before: Thu 02 Nov 2023 08:19:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40028
IP address blocks: 2a0e:1c80:5::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8f:1d:7d:52:2f:cc:89:a5:ae:02:c2:85:08:c2:f4:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bf3a72cad6f4b3dc305b4cbe31087051d983f6
Validity
Not Before: Nov 2 08:19:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8220aaddc278a962674c98a434dffce9ff943ef3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:bf:63:56:06:e5:68:3e:e7:45:5b:05:a9:8f:
bd:72:66:f6:32:23:1e:48:f9:b3:f7:e7:8c:39:3f:
18:58:70:e2:ef:0a:0b:d4:45:86:82:fc:a3:b1:ed:
5b:2b:59:c0:5b:b0:cb:ea:f7:78:ee:52:16:82:40:
1d:57:45:be:09:ee:2e:d2:07:fe:45:64:4c:22:cb:
f4:7c:71:46:f2:d3:6e:22:77:37:98:9c:ce:d4:93:
72:0d:c1:0f:87:ef:7c:73:70:18:03:f9:5d:6b:aa:
6b:80:7f:4b:5c:3a:d7:06:68:0d:35:63:4e:4b:89:
0c:c2:fc:13:b9:da:ef:73:18:0e:7f:c8:d6:2e:26:
57:38:45:9a:0d:0e:57:7b:23:68:a9:80:27:7e:a2:
bf:13:36:19:34:02:49:9e:44:18:3f:85:18:4a:89:
32:66:51:2c:2b:19:15:c8:69:25:41:00:d4:ae:2c:
2b:c2:03:aa:53:3a:f6:15:a3:de:88:b4:4e:d5:12:
b2:35:64:55:ce:a5:bc:7d:7e:75:d4:1b:a2:ec:c0:
d9:4b:fd:64:6f:8b:56:fc:cc:eb:15:30:3b:98:a6:
15:c9:0f:cb:05:ee:21:86:c9:fc:91:58:12:93:48:
31:dc:ec:2f:8b:99:73:18:8e:dc:bb:ea:48:35:74:
18:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:20:AA:DD:C2:78:A9:62:67:4C:98:A4:34:DF:FC:E9:FF:94:3E:F3
X509v3 Authority Key Identifier:
keyid:E5:BF:3A:72:CA:D6:F4:B3:DC:30:5B:4C:BE:31:08:70:51:D9:83:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b86csrW9LPcMFtMvjEIcFHZg_Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/2313b8-de02-4228-900a-09be9db11f66/1/giCq3cJ4qWJnTJikNN_86f-UPvM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/2313b8-de02-4228-900a-09be9db11f66/1/5b86csrW9LPcMFtMvjEIcFHZg_Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:1c80:5::/48
Signature Algorithm: sha256WithRSAEncryption
07:68:d0:f7:4c:33:ee:27:25:e0:6f:2d:8a:03:1f:5e:24:52:
d5:5f:3c:8f:ab:e3:ff:ae:47:6f:39:81:42:39:32:14:6a:2e:
b4:da:74:3b:ec:d4:83:70:22:1a:c1:ac:df:dc:2e:7d:22:00:
a2:60:fe:49:9e:4b:3d:8d:f5:e1:06:92:e1:94:41:ce:aa:9e:
52:7b:17:84:1d:44:94:45:61:b4:20:e1:e0:c5:29:a7:74:47:
02:0d:f6:00:c2:4a:71:4f:77:81:0f:93:61:d8:82:83:90:9c:
90:0e:45:b3:07:cf:b0:4d:a0:29:22:eb:d1:a5:7b:f0:e0:04:
92:a2:40:bb:bd:51:9f:00:92:65:fd:14:b9:7f:97:91:a8:63:
de:7f:36:d7:40:d7:ca:a4:c9:34:3d:6e:d4:4b:00:21:b6:59:
4f:7c:3f:b3:19:fc:58:04:cc:e4:43:5d:1e:fa:70:8a:1f:f1:
2b:c2:d5:d5:7c:ca:f3:e3:e1:ec:ef:54:8b:c1:f8:07:38:ce:
b9:9e:4e:79:0d:f1:dd:26:74:ac:d8:87:1e:4c:f1:a7:12:35:
55:d1:f9:5f:5f:a4:3d:3e:ea:7e:d8:c3:a1:60:45:90:92:13:
9e:ac:2e:6f:47:17:b0:43:fb:91:9c:74:1d:6f:8e:8e:23:91:
dd:31:dc:a7
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYuPHX1SL8yJpa4CwoUIwvRoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1YmYzYTcyY2FkNmY0YjNkYzMwNWI0Y2JlMzEwODcwNTFk
OTgzZjYwHhcNMjMxMTAyMDgxOTE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MjIwYWFkZGMyNzhhOTYyNjc0Yzk4YTQzNGRmZmNlOWZmOTQzZWYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnr9jVgblaD7nRVsFqY+9cmb2MiMe
SPmz9+eMOT8YWHDi7woL1EWGgvyjse1bK1nAW7DL6vd47lIWgkAdV0W+Ce4u0gf+
RWRMIsv0fHFG8tNuInc3mJzO1JNyDcEPh+98c3AYA/lda6prgH9LXDrXBmgNNWNO
S4kMwvwTudrvcxgOf8jWLiZXOEWaDQ5XeyNoqYAnfqK/EzYZNAJJnkQYP4UYSoky
ZlEsKxkVyGklQQDUriwrwgOqUzr2FaPeiLRO1RKyNWRVzqW8fX511Bui7MDZS/1k
b4tW/MzrFTA7mKYVyQ/LBe4hhsn8kVgSk0gx3Owvi5lzGI7cu+pINXQYfwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFIIgqt3CeKliZ0yYpDTf/On/lD7zMB8GA1UdIwQY
MBaAFOW/OnLK1vSz3DBbTL4xCHBR2YP2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWI4NmNzclc5TFBjTUZ0TXZqRUljRkhaZ19ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC8yMzEzYjgtZGUwMi00MjI4LTkwMGEt
MDliZTlkYjExZjY2LzEvZ2lDcTNjSjRxV0puVEppa05OXzg2Zi1VUHZNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC8yMzEzYjgtZGUwMi00MjI4LTkwMGEtMDliZTlkYjExZjY2
LzEvNWI4NmNzclc5TFBjTUZ0TXZqRUljRkhaZ19ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg4cgAAF
MA0GCSqGSIb3DQEBCwUAA4IBAQAHaND3TDPuJyXgby2KAx9eJFLVXzyPq+P/rkdv
OYFCOTIUai602nQ77NSDcCIawazf3C59IgCiYP5Jnks9jfXhBpLhlEHOqp5SexeE
HUSURWG0IOHgxSmndEcCDfYAwkpxT3eBD5Nh2IKDkJyQDkWzB8+wTaApIuvRpXvw
4ASSokC7vVGfAJJl/RS5f5eRqGPefzbXQNfKpMk0PW7USwAhtllPfD+zGfxYBMzk
Q10e+nCKH/ErwtXVfMrz4+Hs71SLwfgHOM65nk55DfHdJnSs2IceTPGnEjVV0flf
X6Q9Pup+2MOhYEWQkhOerC5vRxewQ/uRnHQdb46OI5HdMdyn
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:01 2024 by rpki-client on console-ams.rpki-client.org