Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/fddf47-ff64-447a-b98f-55104173b180/1/XmY8GpzuxuX4uxwA4cozKhKhEbY.roa
File: XmY8GpzuxuX4uxwA4cozKhKhEbY.roa (raw, json)
Hash identifier: 042f6zGV1HFYGvXdmKv4CO8IqunGyUrjdUtjYMWAZXA=
Subject key identifier: 5E:66:3C:1A:9C:EE:C6:E5:F8:BB:1C:00:E1:CA:33:2A:12:A1:11:B6
Certificate issuer: /CN=632cd87feabe407522e06553f2eb05a0c1602fbf
Certificate serial: 01915B75F564C60F537AE8D118DF8CC87778
Authority key identifier: 63:2C:D8:7F:EA:BE:40:75:22:E0:65:53:F2:EB:05:A0:C1:60:2F:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YyzYf-q-QHUi4GVT8usFoMFgL78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/fddf47-ff64-447a-b98f-55104173b180/1/XmY8GpzuxuX4uxwA4cozKhKhEbY.roa
Signing time: Fri 16 Aug 2024 13:52:22 +0000
ROA not before: Fri 16 Aug 2024 13:52:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216157
IP address blocks: 2a12:4240::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 19 Aug 2024 21:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:5b:75:f5:64:c6:0f:53:7a:e8:d1:18:df:8c:c8:77:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=632cd87feabe407522e06553f2eb05a0c1602fbf
Validity
Not Before: Aug 16 13:52:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5e663c1a9ceec6e5f8bb1c00e1ca332a12a111b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:28:cf:3c:35:4c:b2:cd:c8:21:63:ae:70:7d:
bf:d5:b2:11:b2:54:43:97:f3:5e:5d:f9:83:75:15:
a8:15:47:20:6a:2a:db:da:88:dc:3f:af:ce:3b:88:
7f:17:26:0a:f2:d9:86:80:b6:48:9f:64:05:d3:36:
58:34:54:a1:ef:25:c9:74:a5:12:9e:5a:5a:72:8a:
e4:0f:0d:ca:cb:07:ed:a7:4e:4b:94:83:40:37:1b:
90:24:42:59:7b:7a:1f:39:0c:77:74:42:11:9d:ef:
00:44:3f:59:e3:3e:12:74:ab:2e:98:e5:49:75:36:
4f:53:c6:28:f0:e9:34:fd:29:37:b7:70:e5:b4:38:
02:df:c7:c5:ab:f4:b6:01:1a:07:1d:47:00:d4:ad:
91:ef:7d:75:d4:ab:0c:7b:47:64:11:27:8b:bd:4e:
e2:87:e9:95:5d:1f:d8:99:da:77:15:14:ea:1b:d9:
a3:b6:51:d5:68:ea:98:de:65:a6:6e:91:96:b8:4b:
1a:6a:be:f0:ca:cd:98:29:1c:37:30:84:5f:89:8e:
0b:8f:55:97:39:c7:80:cc:8a:6c:cd:68:e7:97:2c:
08:16:28:22:b7:b4:30:12:b6:4e:64:8b:80:9d:6b:
6a:58:e3:6a:58:c9:03:60:41:93:b1:7b:e8:b7:ba:
66:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:66:3C:1A:9C:EE:C6:E5:F8:BB:1C:00:E1:CA:33:2A:12:A1:11:B6
X509v3 Authority Key Identifier:
keyid:63:2C:D8:7F:EA:BE:40:75:22:E0:65:53:F2:EB:05:A0:C1:60:2F:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YyzYf-q-QHUi4GVT8usFoMFgL78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/fddf47-ff64-447a-b98f-55104173b180/1/XmY8GpzuxuX4uxwA4cozKhKhEbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/fddf47-ff64-447a-b98f-55104173b180/1/YyzYf-q-QHUi4GVT8usFoMFgL78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:4240::/29
Signature Algorithm: sha256WithRSAEncryption
dd:6f:93:99:24:d3:bb:7d:2c:90:cf:22:7e:c3:9b:75:5a:11:
1f:46:42:fb:ce:3f:78:8c:f0:3b:35:10:b1:d0:d4:aa:a8:e1:
24:f4:72:b3:e4:60:ea:eb:25:cf:9b:af:a9:72:03:a3:05:e0:
49:40:fc:00:04:a5:01:a0:78:98:64:97:8e:ac:82:ee:73:83:
fe:62:54:22:24:c4:13:70:ed:03:4e:d9:70:c9:ff:d9:a0:62:
c3:77:e8:7a:75:03:63:dd:49:9c:86:3c:d1:08:ba:5d:c1:12:
06:18:ed:65:f3:f2:80:77:f7:b5:b8:fb:9a:d2:8c:23:85:a6:
1b:de:0d:5e:0c:ee:48:5f:36:14:6c:dc:91:58:58:45:2e:56:
f4:38:1e:05:7b:85:d9:a1:b7:ce:87:33:c5:2d:85:b9:e8:26:
f0:fa:31:a1:02:95:ed:3e:0b:a7:ba:5b:07:81:cd:c9:be:ac:
a9:3d:1d:60:e5:b8:81:16:26:5e:c7:10:0b:00:64:88:9a:f7:
2d:81:a0:20:d0:6b:3b:e7:cd:8c:fd:06:f9:96:cf:c8:79:a0:
71:9e:5b:92:8f:0e:e0:c2:b3:c2:0f:9f:75:4d:a7:02:6f:83:
24:23:d0:36:d6:83:1b:bf:03:4f:b7:2c:11:ce:9b:bd:06:4f:
d2:91:6c:ce
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZFbdfVkxg9TeujRGN+MyHd4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzMmNkODdmZWFiZTQwNzUyMmUwNjU1M2YyZWIwNWEwYzE2
MDJmYmYwHhcNMjQwODE2MTM1MjIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZTY2M2MxYTljZWVjNmU1ZjhiYjFjMDBlMWNhMzMyYTEyYTExMWI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmCjPPDVMss3IIWOucH2/1bIRslRD
l/NeXfmDdRWoFUcgairb2ojcP6/OO4h/FyYK8tmGgLZIn2QF0zZYNFSh7yXJdKUS
nlpacorkDw3Kywftp05LlINANxuQJEJZe3ofOQx3dEIRne8ARD9Z4z4SdKsumOVJ
dTZPU8Yo8Ok0/Sk3t3DltDgC38fFq/S2ARoHHUcA1K2R73111KsMe0dkESeLvU7i
h+mVXR/Ymdp3FRTqG9mjtlHVaOqY3mWmbpGWuEsaar7wys2YKRw3MIRfiY4Lj1WX
OceAzIpszWjnlywIFigit7QwErZOZIuAnWtqWONqWMkDYEGTsXvot7pmhwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFF5mPBqc7sbl+LscAOHKMyoSoRG2MB8GA1UdIwQY
MBaAFGMs2H/qvkB1IuBlU/LrBaDBYC+/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXl6WWYtcS1RSFVpNEdWVDh1c0ZvTUZnTDc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9mZGRmNDctZmY2NC00NDdhLWI5OGYt
NTUxMDQxNzNiMTgwLzEvWG1ZOEdwenV4dVg0dXh3QTRjb3pLaEtoRWJZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi9mZGRmNDctZmY2NC00NDdhLWI5OGYtNTUxMDQxNzNiMTgw
LzEvWXl6WWYtcS1RSFVpNEdWVDh1c0ZvTUZnTDc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhJCQDAN
BgkqhkiG9w0BAQsFAAOCAQEA3W+TmSTTu30skM8ifsObdVoRH0ZC+84/eIzwOzUQ
sdDUqqjhJPRys+Rg6uslz5uvqXIDowXgSUD8AASlAaB4mGSXjqyC7nOD/mJUIiTE
E3DtA07ZcMn/2aBiw3foenUDY91JnIY80Qi6XcESBhjtZfPygHf3tbj7mtKMI4Wm
G94NXgzuSF82FGzckVhYRS5W9DgeBXuF2aG3zoczxS2Fuegm8PoxoQKV7T4Lp7pb
B4HNyb6sqT0dYOW4gRYmXscQCwBkiJr3LYGgINBrO+fNjP0G+ZbPyHmgcZ5bko8O
4MKzwg+fdU2nAm+DJCPQNtaDG78DT7csEc6bvQZP0pFszg==
-----END CERTIFICATE-----
Generated at Mon Aug 19 23:51:29 2024 by rpki-client on console-ams.rpki-client.org