Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/VjckxyZpgjhpwIwuYTaGBxdF1fc.roa
File: VjckxyZpgjhpwIwuYTaGBxdF1fc.roa (raw, json)
Hash identifier: l2icSpUZvc4EFiwN18NC+GCPJ2RK3CHS/hgGuviYmVw=
Subject key identifier: 56:37:24:C7:26:69:82:38:69:C0:8C:2E:61:36:86:07:17:45:D5:F7
Certificate issuer: /CN=206f1c32bc0a9006081d552fede67d6842921ec3
Certificate serial: 018A65CD9BA873DEB2C4E35F70203CB58959
Authority key identifier: 20:6F:1C:32:BC:0A:90:06:08:1D:55:2F:ED:E6:7D:68:42:92:1E:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/VjckxyZpgjhpwIwuYTaGBxdF1fc.roa
Signing time: Tue 05 Sep 2023 14:44:48 +0000
ROA not before: Tue 05 Sep 2023 14:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208914
IP address blocks: 2a10:4741:35::/48 maxlen: 48
2a10:4741:32::/48 maxlen: 48
2a10:4741:33::/48 maxlen: 48
2a10:4741:36::/48 maxlen: 48
2a10:4741:37::/48 maxlen: 48
2a10:4741:34::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:65:cd:9b:a8:73:de:b2:c4:e3:5f:70:20:3c:b5:89:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=206f1c32bc0a9006081d552fede67d6842921ec3
Validity
Not Before: Sep 5 14:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=563724c72669823869c08c2e613686071745d5f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:11:8e:39:d6:3d:b4:f5:ea:22:20:f1:88:2c:
a4:7c:d1:56:2b:2a:e4:91:68:c0:db:d3:02:e5:d9:
4a:28:83:73:b0:69:f5:c7:af:32:a9:cb:7f:c9:df:
5a:17:8e:f7:6c:40:84:42:9e:7c:77:5f:2b:fb:49:
54:4c:58:a8:ed:af:57:46:b6:7a:3f:85:ad:64:a8:
56:78:a5:2d:2d:92:40:96:b9:cc:38:19:ac:50:87:
b1:6e:3c:76:c0:d1:c7:c2:8c:f2:cd:99:d8:c5:27:
ef:79:14:69:f6:23:53:f2:36:5a:16:6e:fd:0f:7b:
4a:52:63:71:46:2b:75:b3:8f:df:48:a3:3a:d1:9c:
05:c2:15:82:ea:a5:08:3f:85:7d:7d:d3:b5:56:e3:
2f:25:9f:9a:6f:f1:95:d7:14:b6:13:32:19:f5:84:
3d:5c:23:91:96:e5:e9:9d:a9:c8:a1:b3:57:e6:9c:
94:d9:41:fe:f6:32:fb:54:8d:30:12:a0:04:9a:5f:
52:53:77:37:b8:fa:c9:57:4a:83:0e:14:c4:d7:f8:
b7:5d:21:ea:16:de:c1:ae:f4:39:a8:bb:de:aa:f9:
e1:e2:25:a1:c7:39:80:8a:25:f3:6f:df:e0:83:83:
e8:85:29:d3:ce:33:8c:96:6b:67:d9:b3:d5:79:4c:
67:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:37:24:C7:26:69:82:38:69:C0:8C:2E:61:36:86:07:17:45:D5:F7
X509v3 Authority Key Identifier:
keyid:20:6F:1C:32:BC:0A:90:06:08:1D:55:2F:ED:E6:7D:68:42:92:1E:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/VjckxyZpgjhpwIwuYTaGBxdF1fc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/a91884-6f58-4ddd-8932-bba860b26c02/1/IG8cMrwKkAYIHVUv7eZ9aEKSHsM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:4741:32::-2a10:4741:37:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
a6:68:ad:e0:ec:ca:35:01:ec:05:a0:89:cf:43:12:40:78:10:
2e:73:11:31:63:90:33:e5:2f:b8:93:f3:0a:eb:85:e3:48:01:
1c:f7:0a:fa:14:45:25:73:dc:f8:ab:5c:72:9a:18:be:55:97:
db:74:91:5f:d6:00:58:c0:b9:4e:86:8a:7e:d0:eb:50:9b:f5:
b5:38:84:ed:bd:75:76:aa:ed:f0:7d:fa:e1:af:fb:c9:6e:ec:
b6:9a:e5:55:27:91:c7:93:a6:9e:8f:68:08:6b:a3:7a:01:f1:
20:eb:7b:f4:aa:f5:36:fc:11:ce:33:e4:5a:69:af:a6:d0:ce:
bc:8e:4f:4a:97:29:15:db:7a:c1:8c:48:8c:3d:dc:8e:c1:37:
d8:80:69:77:76:66:0c:dd:00:84:ea:70:a5:44:a0:74:d1:c6:
42:c6:eb:6c:f7:04:91:d4:69:0d:b6:bf:da:71:09:45:bf:b9:
cd:dc:be:11:d4:6b:d4:b0:c0:88:9f:5b:ad:48:3a:ba:33:1e:
f4:cf:a4:07:e5:28:99:37:f4:3b:1f:06:d3:e3:a7:b1:da:dc:
21:d7:f3:34:87:f4:26:fe:82:a8:c4:58:6d:d4:82:95:f7:c6:
f6:4a:f0:4b:d6:e9:5c:05:21:b5:75:00:4d:69:7d:1c:2f:52:
8f:e8:41:57
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAYplzZuoc96yxONfcCA8tYlZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwNmYxYzMyYmMwYTkwMDYwODFkNTUyZmVkZTY3ZDY4NDI5
MjFlYzMwHhcNMjMwOTA1MTQ0NDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NjM3MjRjNzI2Njk4MjM4NjljMDhjMmU2MTM2ODYwNzE3NDVkNWY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjRGOOdY9tPXqIiDxiCykfNFWKyrk
kWjA29MC5dlKKINzsGn1x68yqct/yd9aF473bECEQp58d18r+0lUTFio7a9XRrZ6
P4WtZKhWeKUtLZJAlrnMOBmsUIexbjx2wNHHwozyzZnYxSfveRRp9iNT8jZaFm79
D3tKUmNxRit1s4/fSKM60ZwFwhWC6qUIP4V9fdO1VuMvJZ+ab/GV1xS2EzIZ9YQ9
XCORluXpnanIobNX5pyU2UH+9jL7VI0wEqAEml9SU3c3uPrJV0qDDhTE1/i3XSHq
Ft7BrvQ5qLveqvnh4iWhxzmAiiXzb9/gg4PohSnTzjOMlmtn2bPVeUxn8QIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFFY3JMcmaYI4acCMLmE2hgcXRdX3MB8GA1UdIwQY
MBaAFCBvHDK8CpAGCB1VL+3mfWhCkh7DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUc4Y01yd0trQVlJSFZVdjdlWjlhRUtTSHNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9hOTE4ODQtNmY1OC00ZGRkLTg5MzIt
YmJhODYwYjI2YzAyLzEvVmpja3h5WnBnamhwd0l3dVlUYUdCeGRGMWZjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9hOTE4ODQtNmY1OC00ZGRkLTg5MzItYmJhODYwYjI2YzAy
LzEvSUc4Y01yd0trQVlJSFZVdjdlWjlhRUtTSHNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwEqEEdB
ADIDBwMqEEdBADAwDQYJKoZIhvcNAQELBQADggEBAKZoreDsyjUB7AWgic9DEkB4
EC5zETFjkDPlL7iT8wrrheNIARz3CvoURSVz3PirXHKaGL5Vl9t0kV/WAFjAuU6G
in7Q61Cb9bU4hO29dXaq7fB9+uGv+8lu7Laa5VUnkceTpp6PaAhro3oB8SDre/Sq
9Tb8Ec4z5Fppr6bQzryOT0qXKRXbesGMSIw93I7BN9iAaXd2ZgzdAITqcKVEoHTR
xkLG62z3BJHUaQ22v9pxCUW/uc3cvhHUa9SwwIifW61IOrozHvTPpAflKJk39Dsf
BtPjp7Ha3CHX8zSH9Cb+gqjEWG3UgpX3xvZK8EvW6VwFIbV1AE1pfRwvUo/oQVc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:06 2024 by rpki-client on console-ams.rpki-client.org