Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/kiwoEfoCLYe21LovtEkhKiaICr0.roa
File: kiwoEfoCLYe21LovtEkhKiaICr0.roa (raw, json)
Hash identifier: UQ4q/3Zd6QeUW7sMdV8/qwpQX0H1/3s+Rt8MYmRM1/E=
Subject key identifier: 92:2C:28:11:FA:02:2D:87:B6:D4:BA:2F:B4:49:21:2A:26:88:0A:BD
Certificate issuer: /CN=a0df7f5b6618bda23c83bed11b442041f1fb456d
Certificate serial: 018887710A15689B996B58A97187A223FB7D
Authority key identifier: A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/kiwoEfoCLYe21LovtEkhKiaICr0.roa
Signing time: Sun 04 Jun 2023 17:25:12 +0000
ROA not before: Sun 04 Jun 2023 17:25:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9384
IP address blocks: 2a12:e100:100::/44 maxlen: 44
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:87:71:0a:15:68:9b:99:6b:58:a9:71:87:a2:23:fb:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0df7f5b6618bda23c83bed11b442041f1fb456d
Validity
Not Before: Jun 4 17:25:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=922c2811fa022d87b6d4ba2fb449212a26880abd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:03:f1:6f:8e:17:0e:81:ef:53:6e:bd:64:d0:
20:0d:5d:7b:da:3b:c2:00:5f:3d:a0:e2:2a:f7:54:
3e:76:f2:eb:05:cf:ee:9a:5b:83:32:7a:2c:50:a3:
e2:92:e4:85:82:4a:f8:30:8f:e5:17:af:0d:25:67:
89:4f:48:14:db:75:f4:be:32:2f:53:f0:5a:2e:db:
86:c3:42:4c:7f:92:ac:21:b8:07:91:12:f5:43:f7:
13:49:36:e6:38:83:5e:12:9b:5e:b1:42:93:85:85:
24:1d:ee:bf:12:ea:44:6b:7d:a5:ed:c4:0a:57:15:
e3:0a:d1:73:7c:1c:6e:7a:28:b1:af:35:3a:e7:7c:
da:df:55:a6:50:be:04:f8:44:e0:49:93:f4:64:ba:
00:99:40:fa:39:11:01:ab:f0:39:e5:d2:aa:78:3e:
a0:c7:ad:ab:7f:d9:fc:a5:84:0a:f4:3e:cf:e3:3d:
8d:46:60:1a:8c:15:18:96:ba:21:79:47:8a:06:14:
d3:25:b3:8e:ad:fe:ed:d3:06:98:dc:cc:c5:20:7d:
07:ac:93:77:b9:55:f3:c4:1d:69:2e:a8:b2:14:60:
b2:35:ac:6c:f2:b2:1b:d5:3f:ff:2d:90:d9:cc:48:
be:7f:6c:c1:a6:80:5a:7c:09:e3:8a:f2:be:05:e8:
0c:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:2C:28:11:FA:02:2D:87:B6:D4:BA:2F:B4:49:21:2A:26:88:0A:BD
X509v3 Authority Key Identifier:
keyid:A0:DF:7F:5B:66:18:BD:A2:3C:83:BE:D1:1B:44:20:41:F1:FB:45:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oN9_W2YYvaI8g77RG0QgQfH7RW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/kiwoEfoCLYe21LovtEkhKiaICr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a5728b-a36d-4fba-93aa-5f4bc900c03d/1/oN9_W2YYvaI8g77RG0QgQfH7RW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:e100:100::/44
Signature Algorithm: sha256WithRSAEncryption
8d:27:eb:6c:e8:73:7e:bc:bf:5a:ed:54:41:1f:e1:70:34:92:
16:56:76:20:73:3e:5e:c9:93:cc:fb:8b:08:61:f0:7e:37:3c:
ed:ec:90:58:ee:99:fe:92:f0:a7:b3:88:19:30:83:14:21:37:
59:be:36:5f:0f:a3:4d:aa:d8:89:18:0b:62:6d:13:cf:6a:03:
3e:67:29:b7:19:2f:67:4e:bd:85:8e:d3:06:51:b5:35:cb:cf:
4f:ef:d6:00:f6:7d:48:fa:ff:f3:37:28:5e:5a:4f:e2:1e:7d:
26:13:64:e5:5a:9b:6e:96:36:5b:4c:97:7b:9e:ad:9a:f0:3c:
fc:59:f1:84:40:26:c5:a3:b3:c8:9f:d4:a8:d7:b3:db:2b:62:
68:df:47:c4:4a:89:75:01:d0:9a:42:36:46:30:d9:fb:8c:9d:
73:51:8a:72:67:23:7f:3a:60:49:43:ea:76:6a:e2:94:57:0c:
af:4e:5c:25:0d:3d:9a:92:53:34:2a:4c:be:07:72:3c:9b:78:
17:81:48:25:a6:a0:b7:88:24:2e:5c:36:d0:ce:a2:05:26:f8:
27:a7:ff:69:ca:2b:05:3e:e1:74:b7:76:e1:0a:3a:0c:ec:04:
9b:e1:e8:56:f3:81:c9:44:e4:a6:f9:42:bb:ad:b0:f7:60:97:
08:84:f8:da
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYiHcQoVaJuZa1ipcYeiI/t9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwZGY3ZjViNjYxOGJkYTIzYzgzYmVkMTFiNDQyMDQxZjFm
YjQ1NmQwHhcNMjMwNjA0MTcyNTEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MjJjMjgxMWZhMDIyZDg3YjZkNGJhMmZiNDQ5MjEyYTI2ODgwYWJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlgPxb44XDoHvU269ZNAgDV172jvC
AF89oOIq91Q+dvLrBc/umluDMnosUKPikuSFgkr4MI/lF68NJWeJT0gU23X0vjIv
U/BaLtuGw0JMf5KsIbgHkRL1Q/cTSTbmOINeEptesUKThYUkHe6/EupEa32l7cQK
VxXjCtFzfBxueiixrzU653za31WmUL4E+ETgSZP0ZLoAmUD6OREBq/A55dKqeD6g
x62rf9n8pYQK9D7P4z2NRmAajBUYlroheUeKBhTTJbOOrf7t0waY3MzFIH0HrJN3
uVXzxB1pLqiyFGCyNaxs8rIb1T//LZDZzEi+f2zBpoBafAnjivK+BegMQQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFJIsKBH6Ai2HttS6L7RJISomiAq9MB8GA1UdIwQY
MBaAFKDff1tmGL2iPIO+0RtEIEHx+0VtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb045X1cyWVl2YUk4Zzc3UkcwUWdRZkg3UlcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi9hNTcyOGItYTM2ZC00ZmJhLTkzYWEt
NWY0YmM5MDBjMDNkLzEva2l3b0Vmb0NMWWUyMUxvdnRFa2hLaWFJQ3IwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi9hNTcyOGItYTM2ZC00ZmJhLTkzYWEtNWY0YmM5MDBjMDNk
LzEvb045X1cyWVl2YUk4Zzc3UkcwUWdRZkg3UlcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhLhAAEA
MA0GCSqGSIb3DQEBCwUAA4IBAQCNJ+ts6HN+vL9a7VRBH+FwNJIWVnYgcz5eyZPM
+4sIYfB+Nzzt7JBY7pn+kvCns4gZMIMUITdZvjZfD6NNqtiJGAtibRPPagM+Zym3
GS9nTr2FjtMGUbU1y89P79YA9n1I+v/zNyheWk/iHn0mE2TlWptuljZbTJd7nq2a
8Dz8WfGEQCbFo7PIn9So17PbK2Jo30fESol1AdCaQjZGMNn7jJ1zUYpyZyN/OmBJ
Q+p2auKUVwyvTlwlDT2aklM0Kky+B3I8m3gXgUglpqC3iCQuXDbQzqIFJvgnp/9p
yisFPuF0t3bhCjoM7ASb4ehW84HJROSm+UK7rbD3YJcIhPja
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:12 2024 by rpki-client on console-fra.rpki-client.org