Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/6336d0-9494-46d3-9861-ed3e38f9577f/1/CATwxHebifYztMsckcJD17abYHA.roa
File: CATwxHebifYztMsckcJD17abYHA.roa (raw, json)
Hash identifier: TiDDwb2kZHvWkVczU7C0Sw+ag2fn5V0zsC6iFxGzglw=
Subject key identifier: 08:04:F0:C4:77:9B:89:F6:33:B4:CB:1C:91:C2:43:D7:B6:9B:60:70
Certificate issuer: /CN=25e4aed3ef72bee3141660d1149e16d079205f3c
Certificate serial: 01856EC2355A38BA898E1F0BDCCF57F8726F
Authority key identifier: 25:E4:AE:D3:EF:72:BE:E3:14:16:60:D1:14:9E:16:D0:79:20:5F:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JeSu0-9yvuMUFmDRFJ4W0HkgXzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/6336d0-9494-46d3-9861-ed3e38f9577f/1/CATwxHebifYztMsckcJD17abYHA.roa
Signing time: Sun 01 Jan 2023 19:14:59 +0000
ROA not before: Sun 01 Jan 2023 19:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51558
IP address blocks: 2a03:2100:1a::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:c2:35:5a:38:ba:89:8e:1f:0b:dc:cf:57:f8:72:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25e4aed3ef72bee3141660d1149e16d079205f3c
Validity
Not Before: Jan 1 19:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0804f0c4779b89f633b4cb1c91c243d7b69b6070
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:6f:d6:df:41:05:b5:91:ca:72:28:8f:61:2e:
8a:37:bb:52:06:e7:81:53:b0:d9:3d:06:ba:47:08:
e5:19:0d:d9:5c:ac:92:73:dd:e8:89:a0:56:b9:ce:
08:2e:91:84:8a:a5:74:86:d8:56:fe:4c:2d:1f:5a:
2e:1b:b4:bf:a9:c1:c4:d9:db:a5:08:e7:2b:6b:c7:
8d:9a:ff:b6:ba:72:0a:f8:11:a4:81:d7:92:63:e0:
66:8c:ca:bd:4b:67:76:ea:1b:1e:d7:b9:cd:42:e3:
f6:d4:62:ab:6a:99:c8:c4:fc:6e:65:48:63:ef:15:
e2:1e:ee:da:55:ab:f3:7c:e4:92:a1:49:1f:c6:ab:
89:b6:b8:39:0d:11:93:bd:7a:19:09:d9:69:c8:ec:
34:6a:2f:66:67:ee:f2:9e:14:62:87:1c:4a:3d:48:
a1:ea:68:b9:09:7a:95:2f:40:20:8a:c5:83:06:f5:
87:a7:ec:3d:e4:a2:d3:90:41:ee:ac:82:9d:e0:23:
21:44:ff:be:52:2b:6d:8f:66:39:eb:45:90:7d:08:
27:d8:38:a2:0d:60:97:ee:06:0c:20:57:77:89:00:
3d:59:ad:7b:8b:65:49:06:11:41:6d:9f:1b:dc:9f:
d2:57:4d:13:2b:9e:a5:8b:70:2b:bd:b1:5f:96:cb:
85:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:04:F0:C4:77:9B:89:F6:33:B4:CB:1C:91:C2:43:D7:B6:9B:60:70
X509v3 Authority Key Identifier:
keyid:25:E4:AE:D3:EF:72:BE:E3:14:16:60:D1:14:9E:16:D0:79:20:5F:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JeSu0-9yvuMUFmDRFJ4W0HkgXzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/6336d0-9494-46d3-9861-ed3e38f9577f/1/CATwxHebifYztMsckcJD17abYHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/6336d0-9494-46d3-9861-ed3e38f9577f/1/JeSu0-9yvuMUFmDRFJ4W0HkgXzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:2100:1a::/48
Signature Algorithm: sha256WithRSAEncryption
a6:28:51:01:ef:41:75:f2:0b:c9:b3:b7:2f:88:d5:61:e8:57:
6b:3f:39:20:b6:0f:25:28:35:c7:31:6d:81:d7:8a:37:32:6f:
a5:32:57:a9:cc:c3:ee:ff:05:57:27:b5:7a:03:06:1b:65:7b:
95:8c:56:93:32:c9:17:8d:68:21:78:5d:84:b9:ea:ba:c8:f0:
a8:72:26:63:7f:28:46:c3:fd:d2:b4:77:15:da:fe:27:6b:ae:
18:f6:b9:8d:a7:26:2f:1f:b4:ed:29:37:98:02:a8:51:27:08:
22:6c:5c:ee:8f:75:c7:ce:ba:e0:e7:7b:05:d2:87:7b:33:ca:
75:bd:a9:fc:04:21:e1:1a:f4:16:a9:f6:3f:99:7d:8d:c5:2f:
f9:ee:f4:62:bd:aa:26:ea:3a:9e:98:a4:5f:10:40:ab:0c:9f:
ab:6a:3a:89:66:b4:e3:77:09:36:f5:8a:2b:40:68:a4:5f:7f:
70:22:81:50:05:9a:44:de:d1:eb:49:53:d2:42:f6:90:23:06:
34:f6:fb:38:46:e8:1a:03:ef:39:6f:d0:43:0c:46:0e:51:e2:
8c:a1:ad:ab:2a:69:67:3a:89:78:a3:ab:02:cf:7f:e0:0a:88:
35:26:b8:d7:55:60:fe:7f:5e:67:86:56:16:f7:1e:51:67:54:
c7:90:7c:5a
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVuwjVaOLqJjh8L3M9X+HJvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI1ZTRhZWQzZWY3MmJlZTMxNDE2NjBkMTE0OWUxNmQwNzky
MDVmM2MwHhcNMjMwMTAxMTkxNDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwODA0ZjBjNDc3OWI4OWY2MzNiNGNiMWM5MWMyNDNkN2I2OWI2MDcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw2/W30EFtZHKciiPYS6KN7tSBueB
U7DZPQa6RwjlGQ3ZXKySc93oiaBWuc4ILpGEiqV0hthW/kwtH1ouG7S/qcHE2dul
COcra8eNmv+2unIK+BGkgdeSY+BmjMq9S2d26hse17nNQuP21GKrapnIxPxuZUhj
7xXiHu7aVavzfOSSoUkfxquJtrg5DRGTvXoZCdlpyOw0ai9mZ+7ynhRihxxKPUih
6mi5CXqVL0AgisWDBvWHp+w95KLTkEHurIKd4CMhRP++Uittj2Y560WQfQgn2Dii
DWCX7gYMIFd3iQA9Wa17i2VJBhFBbZ8b3J/SV00TK56li3ArvbFflsuFqwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFAgE8MR3m4n2M7TLHJHCQ9e2m2BwMB8GA1UdIwQY
MBaAFCXkrtPvcr7jFBZg0RSeFtB5IF88MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSmVTdTAtOXl2dU1VRm1EUkZKNFcwSGtnWHp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82MzM2ZDAtOTQ5NC00NmQzLTk4NjEt
ZWQzZTM4Zjk1NzdmLzEvQ0FUd3hIZWJpZll6dE1zY2tjSkQxN2FiWUhBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS82MzM2ZDAtOTQ5NC00NmQzLTk4NjEtZWQzZTM4Zjk1Nzdm
LzEvSmVTdTAtOXl2dU1VRm1EUkZKNFcwSGtnWHp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgMhAAAa
MA0GCSqGSIb3DQEBCwUAA4IBAQCmKFEB70F18gvJs7cviNVh6FdrPzkgtg8lKDXH
MW2B14o3Mm+lMlepzMPu/wVXJ7V6AwYbZXuVjFaTMskXjWgheF2Eueq6yPCociZj
fyhGw/3StHcV2v4na64Y9rmNpyYvH7TtKTeYAqhRJwgibFzuj3XHzrrg53sF0od7
M8p1van8BCHhGvQWqfY/mX2NxS/57vRivaom6jqemKRfEECrDJ+rajqJZrTjdwk2
9YorQGikX39wIoFQBZpE3tHrSVPSQvaQIwY09vs4RugaA+85b9BDDEYOUeKMoa2r
KmlnOol4o6sCz3/gCog1JrjXVWD+f15nhlYW9x5RZ1THkHxa
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:08 2024 by rpki-client on console-ams.rpki-client.org