Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/2313b8-de02-4228-900a-09be9db11f66/1/y70r8BnCJlqVWcm9p4kQWKwkHeI.roa
File: y70r8BnCJlqVWcm9p4kQWKwkHeI.roa (raw, json)
Hash identifier: wPUZ27x/DcbdAFoJ31hJcxncNCXgBUsUoIIMe1zjbdY=
Subject key identifier: CB:BD:2B:F0:19:C2:26:5A:95:59:C9:BD:A7:89:10:58:AC:24:1D:E2
Certificate issuer: /CN=e5bf3a72cad6f4b3dc305b4cbe31087051d983f6
Certificate serial: 018B8F1D7D038D6CD0F30BFB7B33AFA9E205
Authority key identifier: E5:BF:3A:72:CA:D6:F4:B3:DC:30:5B:4C:BE:31:08:70:51:D9:83:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b86csrW9LPcMFtMvjEIcFHZg_Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/2313b8-de02-4228-900a-09be9db11f66/1/y70r8BnCJlqVWcm9p4kQWKwkHeI.roa
Signing time: Thu 02 Nov 2023 08:19:16 +0000
ROA not before: Thu 02 Nov 2023 08:19:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 32748
IP address blocks: 2a0e:1c80:b::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8f:1d:7d:03:8d:6c:d0:f3:0b:fb:7b:33:af:a9:e2:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bf3a72cad6f4b3dc305b4cbe31087051d983f6
Validity
Not Before: Nov 2 08:19:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cbbd2bf019c2265a9559c9bda7891058ac241de2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:11:27:02:da:9b:c4:89:b0:80:e0:b1:50:c9:
ea:a4:4d:fe:be:49:58:b1:70:8d:da:b5:3c:31:9b:
9d:c1:1d:b5:57:77:4b:d1:9a:0b:94:ed:ff:67:49:
04:fb:99:07:a0:9d:9e:11:5b:de:e8:ec:49:d7:f1:
12:3a:9a:82:e5:9a:cc:5a:c4:fe:f9:2d:ae:f0:f6:
a0:ea:ea:06:06:39:cd:ed:83:6a:b2:01:14:64:00:
73:20:dc:4c:32:69:65:96:fb:bc:fb:d6:9a:1c:15:
93:b0:01:93:4c:f2:ec:be:81:ac:5f:37:44:94:86:
ce:b3:37:1c:55:a8:50:c7:08:02:ea:6e:da:ca:55:
62:e6:b7:43:ef:b1:63:8e:7c:89:a7:3d:0c:dd:56:
39:7f:21:c6:cc:01:d8:92:13:2e:db:1f:6b:d7:d3:
f5:b4:95:3b:cc:9b:39:6a:6d:03:df:d2:45:6c:9e:
4f:6b:1b:4f:ef:12:e9:61:12:00:81:33:8a:8d:48:
4a:b9:b0:81:d0:f1:b5:ab:e0:ca:f6:db:de:f8:41:
83:a1:ef:1b:2f:17:c5:a6:50:c3:d9:ae:b5:7a:f8:
59:ed:7a:80:f8:ca:fb:75:e6:88:53:40:6b:9c:4b:
c3:df:59:4f:1c:3a:f0:e0:a8:7e:db:1c:17:07:64:
41:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:BD:2B:F0:19:C2:26:5A:95:59:C9:BD:A7:89:10:58:AC:24:1D:E2
X509v3 Authority Key Identifier:
keyid:E5:BF:3A:72:CA:D6:F4:B3:DC:30:5B:4C:BE:31:08:70:51:D9:83:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b86csrW9LPcMFtMvjEIcFHZg_Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/2313b8-de02-4228-900a-09be9db11f66/1/y70r8BnCJlqVWcm9p4kQWKwkHeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/2313b8-de02-4228-900a-09be9db11f66/1/5b86csrW9LPcMFtMvjEIcFHZg_Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:1c80:b::/48
Signature Algorithm: sha256WithRSAEncryption
39:ee:08:b8:fb:6b:4a:31:ee:2a:76:55:f4:5a:da:ae:ab:4b:
3d:65:38:d2:64:bc:a5:b0:63:50:05:ee:53:93:39:22:1e:03:
9c:70:d2:53:3b:b6:98:39:43:b0:3b:cf:17:24:2b:64:93:cf:
8c:df:e1:45:40:e6:09:af:8b:f2:5c:b4:3c:f8:ff:28:e1:86:
8b:73:40:3f:79:4e:64:a8:de:95:b5:9c:e2:3b:95:bd:a0:02:
91:78:81:2d:32:11:02:1b:f3:e7:01:7d:b1:c4:6b:68:f1:49:
40:7b:cf:13:28:b0:f0:94:a3:40:0c:8e:8b:4b:37:a7:cd:88:
43:9d:e3:14:6a:95:c1:00:b9:f8:fc:2d:b0:21:ef:9f:57:8d:
82:25:1f:ee:79:f0:45:a5:2c:fc:4a:4b:03:fd:b4:73:74:4c:
60:03:00:95:e4:c8:f2:6b:75:7b:b9:1c:d8:85:f3:89:fe:d7:
18:3d:2f:47:f6:4a:e2:79:f1:5f:87:9b:33:3e:25:9b:21:be:
8b:27:36:8a:9d:8b:dd:0f:3a:60:b0:12:0a:b3:b0:f9:91:b6:
7e:64:bd:05:db:e5:46:b2:a7:f5:23:fa:e0:c1:c4:d1:dd:ed:
66:4a:f3:a4:95:b5:31:b5:bd:48:b9:80:ea:83:65:9e:ed:03:
ee:8e:a7:6e
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYuPHX0DjWzQ8wv7ezOvqeIFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1YmYzYTcyY2FkNmY0YjNkYzMwNWI0Y2JlMzEwODcwNTFk
OTgzZjYwHhcNMjMxMTAyMDgxOTE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYmJkMmJmMDE5YzIyNjVhOTU1OWM5YmRhNzg5MTA1OGFjMjQxZGUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzREnAtqbxImwgOCxUMnqpE3+vklY
sXCN2rU8MZudwR21V3dL0ZoLlO3/Z0kE+5kHoJ2eEVve6OxJ1/ESOpqC5ZrMWsT+
+S2u8Pag6uoGBjnN7YNqsgEUZABzINxMMmlllvu8+9aaHBWTsAGTTPLsvoGsXzdE
lIbOszccVahQxwgC6m7aylVi5rdD77FjjnyJpz0M3VY5fyHGzAHYkhMu2x9r19P1
tJU7zJs5am0D39JFbJ5PaxtP7xLpYRIAgTOKjUhKubCB0PG1q+DK9tve+EGDoe8b
LxfFplDD2a61evhZ7XqA+Mr7deaIU0BrnEvD31lPHDrw4Kh+2xwXB2RB4wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFMu9K/AZwiZalVnJvaeJEFisJB3iMB8GA1UdIwQY
MBaAFOW/OnLK1vSz3DBbTL4xCHBR2YP2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNWI4NmNzclc5TFBjTUZ0TXZqRUljRkhaZ19ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC8yMzEzYjgtZGUwMi00MjI4LTkwMGEt
MDliZTlkYjExZjY2LzEveTcwcjhCbkNKbHFWV2NtOXA0a1FXS3drSGVJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC8yMzEzYjgtZGUwMi00MjI4LTkwMGEtMDliZTlkYjExZjY2
LzEvNWI4NmNzclc5TFBjTUZ0TXZqRUljRkhaZ19ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg4cgAAL
MA0GCSqGSIb3DQEBCwUAA4IBAQA57gi4+2tKMe4qdlX0Wtquq0s9ZTjSZLylsGNQ
Be5TkzkiHgOccNJTO7aYOUOwO88XJCtkk8+M3+FFQOYJr4vyXLQ8+P8o4YaLc0A/
eU5kqN6VtZziO5W9oAKReIEtMhECG/PnAX2xxGto8UlAe88TKLDwlKNADI6LSzen
zYhDneMUapXBALn4/C2wIe+fV42CJR/uefBFpSz8SksD/bRzdExgAwCV5Mjya3V7
uRzYhfOJ/tcYPS9H9kriefFfh5szPiWbIb6LJzaKnYvdDzpgsBIKs7D5kbZ+ZL0F
2+VGsqf1I/rgwcTR3e1mSvOklbUxtb1IuYDqg2We7QPujqdu
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:01 2024 by rpki-client on console-ams.rpki-client.org