Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/8ad2e0-e3f0-4abe-bcb6-2f5c74c69ae1/1/HG3kVa6BMBj5mfYJHSzSIC2g6FY.roa
File: HG3kVa6BMBj5mfYJHSzSIC2g6FY.roa (raw, json)
Hash identifier: 1P1Z8ZOj8n3Ac1yYaHlBrBjV58+AXg22DdIP1k7SDjI=
Subject key identifier: 1C:6D:E4:55:AE:81:30:18:F9:99:F6:09:1D:2C:D2:20:2D:A0:E8:56
Certificate issuer: /CN=abd87bbef5943546b2a83d31ec2b99ad883d51d7
Certificate serial: 018CC56E05A57152DF68827884FB9C47E311
Authority key identifier: AB:D8:7B:BE:F5:94:35:46:B2:A8:3D:31:EC:2B:99:AD:88:3D:51:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q9h7vvWUNUayqD0x7CuZrYg9Udc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/8ad2e0-e3f0-4abe-bcb6-2f5c74c69ae1/1/HG3kVa6BMBj5mfYJHSzSIC2g6FY.roa
Signing time: Mon 01 Jan 2024 14:29:31 +0000
ROA not before: Mon 01 Jan 2024 14:29:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215837
IP address blocks: 2a13:5682:400::/44 maxlen: 48
Validation: Failed, certificate revoked on Fri 10 May 2024 09:52:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:05:a5:71:52:df:68:82:78:84:fb:9c:47:e3:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abd87bbef5943546b2a83d31ec2b99ad883d51d7
Validity
Not Before: Jan 1 14:29:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1c6de455ae813018f999f6091d2cd2202da0e856
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:d5:b8:4c:6c:9b:43:cd:54:e0:6a:64:97:08:
71:95:24:5d:d5:90:c5:8b:a4:bf:93:84:96:74:6e:
05:0a:39:a0:3e:b9:da:7b:9e:b5:3c:4e:02:88:23:
9f:6c:95:ce:de:70:70:0c:04:fe:47:6b:0d:67:d2:
b1:7d:f0:2c:dd:37:d5:f5:9d:b9:e8:c2:ba:cd:89:
d2:e5:25:23:b9:b2:81:b9:50:32:1c:60:2f:3f:ab:
6e:aa:f4:77:bb:4d:04:c7:22:7b:25:30:de:48:24:
79:b7:55:cd:9a:84:23:3f:62:40:38:42:31:fe:67:
b0:3f:3d:1b:c1:84:c3:86:b8:26:3e:44:dc:db:d7:
6d:46:a0:ff:fa:d1:bf:fc:e6:ed:ce:b2:4f:cc:62:
bc:9f:8e:58:f7:14:40:2e:8c:0d:52:e6:a0:4c:d9:
08:da:10:be:e2:b8:39:56:f0:bc:f3:19:49:6b:1b:
a4:34:b6:38:11:44:39:02:ba:bd:2d:06:ca:73:38:
ac:6e:cc:6e:16:f5:08:c1:fe:bc:2b:7b:ff:29:38:
02:3a:a9:8b:92:87:da:68:a0:83:e6:56:72:16:ab:
ef:b8:89:9e:01:85:de:5c:e5:46:79:de:74:33:15:
1a:c3:4b:b8:df:82:74:76:7a:cf:05:be:15:73:74:
4d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:6D:E4:55:AE:81:30:18:F9:99:F6:09:1D:2C:D2:20:2D:A0:E8:56
X509v3 Authority Key Identifier:
keyid:AB:D8:7B:BE:F5:94:35:46:B2:A8:3D:31:EC:2B:99:AD:88:3D:51:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q9h7vvWUNUayqD0x7CuZrYg9Udc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8ad2e0-e3f0-4abe-bcb6-2f5c74c69ae1/1/HG3kVa6BMBj5mfYJHSzSIC2g6FY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8ad2e0-e3f0-4abe-bcb6-2f5c74c69ae1/1/q9h7vvWUNUayqD0x7CuZrYg9Udc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:5682:400::/44
Signature Algorithm: sha256WithRSAEncryption
6a:42:52:9f:2c:b0:db:b7:97:f9:c9:2c:13:2b:7f:5b:ec:d7:
3e:98:fb:a0:1c:56:5e:bf:4a:01:0a:c6:81:e9:ef:27:68:f4:
46:f1:39:ce:05:ae:2c:45:cb:19:ad:c9:3f:f8:e0:03:70:a2:
86:a1:f9:d3:2f:28:87:f7:52:d0:99:ab:9c:54:00:0f:6a:4a:
04:d2:06:33:03:7b:a6:c4:92:2a:98:b6:59:77:c9:01:e8:bc:
9c:5c:f8:a2:08:f4:8b:02:97:28:78:40:8b:58:b9:cf:59:8b:
4c:e7:39:5e:79:1c:94:49:45:cf:59:52:8b:f9:6d:95:36:c4:
dc:fc:f7:2e:e5:e4:a4:1b:65:67:a2:6d:c9:cc:f5:df:41:36:
ca:d0:aa:82:68:8f:ce:2a:61:e9:f7:63:5d:ee:69:dd:05:69:
90:4e:2e:78:d0:07:22:b1:c3:11:9d:14:62:79:d8:a0:99:ac:
3f:cf:2a:e7:f8:9c:e8:8f:3e:b4:fc:9a:51:a8:30:7c:5f:3a:
aa:f3:05:d0:99:ba:a2:ff:37:57:88:f6:14:87:70:8c:31:a3:
ed:1e:3e:fa:c3:6a:66:db:e1:59:77:0b:f2:74:36:7c:cb:75:
a5:09:ad:48:6a:c3:03:54:85:1d:e7:f6:2f:c9:df:28:d2:1a:
fe:4f:7b:61
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYzFbgWlcVLfaIJ4hPucR+MRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiZDg3YmJlZjU5NDM1NDZiMmE4M2QzMWVjMmI5OWFkODgz
ZDUxZDcwHhcNMjQwMTAxMTQyOTMxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYzZkZTQ1NWFlODEzMDE4Zjk5OWY2MDkxZDJjZDIyMDJkYTBlODU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA49W4TGybQ81U4GpklwhxlSRd1ZDF
i6S/k4SWdG4FCjmgPrnae561PE4CiCOfbJXO3nBwDAT+R2sNZ9KxffAs3TfV9Z25
6MK6zYnS5SUjubKBuVAyHGAvP6tuqvR3u00ExyJ7JTDeSCR5t1XNmoQjP2JAOEIx
/mewPz0bwYTDhrgmPkTc29dtRqD/+tG//ObtzrJPzGK8n45Y9xRALowNUuagTNkI
2hC+4rg5VvC88xlJaxukNLY4EUQ5Arq9LQbKczisbsxuFvUIwf68K3v/KTgCOqmL
kofaaKCD5lZyFqvvuImeAYXeXOVGed50MxUaw0u434J0dnrPBb4Vc3RN4wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFBxt5FWugTAY+Zn2CR0s0iAtoOhWMB8GA1UdIwQY
MBaAFKvYe771lDVGsqg9Mewrma2IPVHXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTloN3Z2V1VOVWF5cUQweDdDdVpyWWc5VWRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC84YWQyZTAtZTNmMC00YWJlLWJjYjYt
MmY1Yzc0YzY5YWUxLzEvSEcza1ZhNkJNQmo1bWZZSkhTelNJQzJnNkZZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC84YWQyZTAtZTNmMC00YWJlLWJjYjYtMmY1Yzc0YzY5YWUx
LzEvcTloN3Z2V1VOVWF5cUQweDdDdVpyWWc5VWRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhNWggQA
MA0GCSqGSIb3DQEBCwUAA4IBAQBqQlKfLLDbt5f5ySwTK39b7Nc+mPugHFZev0oB
CsaB6e8naPRG8TnOBa4sRcsZrck/+OADcKKGofnTLyiH91LQmaucVAAPakoE0gYz
A3umxJIqmLZZd8kB6LycXPiiCPSLApcoeECLWLnPWYtM5zleeRyUSUXPWVKL+W2V
NsTc/Pcu5eSkG2Vnom3JzPXfQTbK0KqCaI/OKmHp92Nd7mndBWmQTi540AciscMR
nRRiedigmaw/zyrn+Jzojz60/JpRqDB8Xzqq8wXQmbqi/zdXiPYUh3CMMaPtHj76
w2pm2+FZdwvydDZ8y3WlCa1IasMDVIUd5/Yvyd8o0hr+T3th
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:18 2024 by rpki-client on console-fra.rpki-client.org