Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/8ad2e0-e3f0-4abe-bcb6-2f5c74c69ae1/1/rWHZmfWhp1525nDVQUlkB6h1hMY.roa
File: rWHZmfWhp1525nDVQUlkB6h1hMY.roa (raw, json)
Hash identifier: +CYWK0cSdvuxZ2V4TPjerJUpd62WfulHzmf3b9yY5wM=
Subject key identifier: AD:61:D9:99:F5:A1:A7:5E:76:E6:70:D5:41:49:64:07:A8:75:84:C6
Certificate issuer: /CN=abd87bbef5943546b2a83d31ec2b99ad883d51d7
Certificate serial: 018CC56E0503A39E8B37665505B02FA54596
Authority key identifier: AB:D8:7B:BE:F5:94:35:46:B2:A8:3D:31:EC:2B:99:AD:88:3D:51:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q9h7vvWUNUayqD0x7CuZrYg9Udc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/8ad2e0-e3f0-4abe-bcb6-2f5c74c69ae1/1/rWHZmfWhp1525nDVQUlkB6h1hMY.roa
Signing time: Mon 01 Jan 2024 14:29:30 +0000
ROA not before: Mon 01 Jan 2024 14:29:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202278
IP address blocks: 2a13:5680::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 09 Jan 2024 18:17:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:05:03:a3:9e:8b:37:66:55:05:b0:2f:a5:45:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abd87bbef5943546b2a83d31ec2b99ad883d51d7
Validity
Not Before: Jan 1 14:29:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ad61d999f5a1a75e76e670d541496407a87584c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:e5:9b:d2:22:6d:c8:f3:18:9d:1d:e7:5c:2c:
6a:54:80:a1:d7:15:73:09:07:d5:2b:4d:e7:2d:75:
71:06:61:7b:f1:54:3f:f7:e9:e7:fe:10:47:c0:77:
f4:78:d6:f5:3e:c4:13:6f:36:f3:a9:48:39:56:6d:
c2:cd:e3:8b:b0:03:ec:2c:a7:cd:54:79:dd:bb:0f:
c5:0c:d4:8b:5f:a9:51:c8:c0:58:50:7b:74:95:c8:
c4:23:9a:ae:cb:8c:7f:31:e7:91:7f:4d:ea:bb:3d:
2b:18:c2:1c:d7:f9:0a:d6:b6:de:28:49:fe:4f:94:
d8:ce:56:ff:7d:87:0a:e6:45:2a:42:99:d9:05:e8:
21:94:8a:3d:7f:42:1f:69:5e:da:63:32:bf:7d:23:
30:2f:a7:ad:12:8b:52:a8:7a:f7:01:6b:45:fb:4c:
60:a8:57:b9:1b:0f:ed:8b:67:63:ab:4b:f4:9f:3c:
a2:e2:8f:90:ba:4e:b0:ae:74:93:8a:61:51:94:46:
31:1b:7a:18:02:bc:1d:ab:aa:1e:09:79:f0:4e:d9:
ec:70:1c:69:99:15:30:1e:ad:7a:34:ac:e0:b3:0c:
b5:08:cf:09:93:c6:f0:b2:87:21:1b:56:7b:ae:07:
d8:be:1d:d9:82:c9:8a:70:32:47:7f:3c:2c:d7:c3:
e3:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:61:D9:99:F5:A1:A7:5E:76:E6:70:D5:41:49:64:07:A8:75:84:C6
X509v3 Authority Key Identifier:
keyid:AB:D8:7B:BE:F5:94:35:46:B2:A8:3D:31:EC:2B:99:AD:88:3D:51:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q9h7vvWUNUayqD0x7CuZrYg9Udc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8ad2e0-e3f0-4abe-bcb6-2f5c74c69ae1/1/rWHZmfWhp1525nDVQUlkB6h1hMY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8ad2e0-e3f0-4abe-bcb6-2f5c74c69ae1/1/q9h7vvWUNUayqD0x7CuZrYg9Udc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:5680::/32
Signature Algorithm: sha256WithRSAEncryption
a6:ed:54:5b:08:27:51:98:2b:fa:29:02:5b:81:0e:2c:40:a7:
ad:d8:b9:25:a2:93:c6:fb:6a:5a:32:1b:0a:7e:60:74:a9:a9:
10:a5:d3:44:3e:4c:d4:a2:ef:b8:f7:37:20:a8:8f:17:7a:66:
76:4f:e3:8c:46:b9:33:d2:a1:c1:f2:11:2d:4c:14:61:0d:f2:
1d:fa:b3:86:c6:5c:e9:94:9c:39:1a:d5:7f:e7:4d:e2:24:37:
41:c0:78:ea:80:53:49:cd:e5:cf:01:35:61:54:51:ac:0b:23:
95:72:49:e0:2b:0c:22:b1:0b:ad:fa:75:0e:3d:8f:15:10:b4:
77:2d:80:14:90:24:63:e1:80:e1:78:37:e9:ca:cb:dd:9d:8f:
22:bf:e6:a6:75:33:08:16:71:ab:e7:f4:1e:8a:e8:01:96:31:
be:e9:cf:87:99:98:f1:a6:f6:a7:10:68:bf:b6:74:51:e7:ca:
32:4e:18:9e:db:c5:49:90:4c:dc:40:be:65:5b:3f:35:ce:97:
4a:b5:fd:bf:7e:24:ca:0f:49:68:ad:bf:28:2a:d0:c8:e0:b9:
d6:ce:89:06:02:7c:ab:ae:33:9e:d4:ae:ba:e3:09:20:eb:bb:
cb:2a:f6:8c:37:aa:fc:04:23:85:8a:6f:2d:b8:27:d7:9d:88:
01:c9:89:2d
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYzFbgUDo56LN2ZVBbAvpUWWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiZDg3YmJlZjU5NDM1NDZiMmE4M2QzMWVjMmI5OWFkODgz
ZDUxZDcwHhcNMjQwMTAxMTQyOTMwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZDYxZDk5OWY1YTFhNzVlNzZlNjcwZDU0MTQ5NjQwN2E4NzU4NGM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi+Wb0iJtyPMYnR3nXCxqVICh1xVz
CQfVK03nLXVxBmF78VQ/9+nn/hBHwHf0eNb1PsQTbzbzqUg5Vm3CzeOLsAPsLKfN
VHnduw/FDNSLX6lRyMBYUHt0lcjEI5quy4x/MeeRf03quz0rGMIc1/kK1rbeKEn+
T5TYzlb/fYcK5kUqQpnZBeghlIo9f0IfaV7aYzK/fSMwL6etEotSqHr3AWtF+0xg
qFe5Gw/ti2djq0v0nzyi4o+Quk6wrnSTimFRlEYxG3oYArwdq6oeCXnwTtnscBxp
mRUwHq16NKzgswy1CM8Jk8bwsochG1Z7rgfYvh3ZgsmKcDJHfzws18Pj1wIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFK1h2Zn1oadeduZw1UFJZAeodYTGMB8GA1UdIwQY
MBaAFKvYe771lDVGsqg9Mewrma2IPVHXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTloN3Z2V1VOVWF5cUQweDdDdVpyWWc5VWRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC84YWQyZTAtZTNmMC00YWJlLWJjYjYt
MmY1Yzc0YzY5YWUxLzEvcldIWm1mV2hwMTUyNW5EVlFVbGtCNmgxaE1ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC84YWQyZTAtZTNmMC00YWJlLWJjYjYtMmY1Yzc0YzY5YWUx
LzEvcTloN3Z2V1VOVWF5cUQweDdDdVpyWWc5VWRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhNWgDAN
BgkqhkiG9w0BAQsFAAOCAQEApu1UWwgnUZgr+ikCW4EOLECnrdi5JaKTxvtqWjIb
Cn5gdKmpEKXTRD5M1KLvuPc3IKiPF3pmdk/jjEa5M9KhwfIRLUwUYQ3yHfqzhsZc
6ZScORrVf+dN4iQ3QcB46oBTSc3lzwE1YVRRrAsjlXJJ4CsMIrELrfp1Dj2PFRC0
dy2AFJAkY+GA4Xg36crL3Z2PIr/mpnUzCBZxq+f0HoroAZYxvunPh5mY8ab2pxBo
v7Z0UefKMk4YntvFSZBM3EC+ZVs/Nc6XSrX9v34kyg9JaK2/KCrQyOC51s6JBgJ8
q64zntSuuuMJIOu7yyr2jDeq/AQjhYpvLbgn152IAcmJLQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:18 2024 by rpki-client on console-fra.rpki-client.org