Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/5505e0-2e8a-4c75-8118-950ce39a977c/1/FBi7lq91lgfkLafY5Jo7stDrtaI.roa
File: FBi7lq91lgfkLafY5Jo7stDrtaI.roa (raw, json)
Hash identifier: mEpoL9XgN6vUlvtakJhDqhkdsU/DEUXO3UUY9UsZUm0=
Subject key identifier: 14:18:BB:96:AF:75:96:07:E4:2D:A7:D8:E4:9A:3B:B2:D0:EB:B5:A2
Certificate issuer: /CN=5fa386e97656d648ab5381b29666414081b00084
Certificate serial: 018DA21A7F669CCA9DCD59DD1E6C43C80FD2
Authority key identifier: 5F:A3:86:E9:76:56:D6:48:AB:53:81:B2:96:66:41:40:81:B0:00:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X6OG6XZW1kirU4GylmZBQIGwAIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/5505e0-2e8a-4c75-8118-950ce39a977c/1/FBi7lq91lgfkLafY5Jo7stDrtaI.roa
Signing time: Tue 13 Feb 2024 10:54:22 +0000
ROA not before: Tue 13 Feb 2024 10:54:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34254
IP address blocks: 2a04:400::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 19 Feb 2024 13:40:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a2:1a:7f:66:9c:ca:9d:cd:59:dd:1e:6c:43:c8:0f:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fa386e97656d648ab5381b29666414081b00084
Validity
Not Before: Feb 13 10:54:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1418bb96af759607e42da7d8e49a3bb2d0ebb5a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4b:ee:90:18:47:0e:18:cd:2c:41:ea:38:5d:
1a:75:d4:c5:21:c5:f7:58:61:60:76:0c:5a:89:94:
bd:bd:10:a6:f8:5d:e7:1a:d3:1c:8d:88:d2:e1:df:
9a:0d:78:3c:1f:70:46:3a:17:89:82:99:f6:18:81:
e9:1c:db:36:49:8c:12:8a:ef:ca:c0:24:e9:cd:06:
f5:16:af:55:bc:2a:a3:84:4b:eb:6c:e0:94:e8:f4:
a0:7d:28:f7:b5:80:a0:8d:9b:c5:c7:35:35:06:d8:
37:fb:6b:a4:f5:16:e8:a5:4c:ed:3b:a6:14:b4:28:
66:d7:51:c4:87:66:54:ae:8d:8e:a2:b5:72:a2:92:
60:38:46:e3:cf:18:dc:00:36:70:b2:09:b6:71:bd:
0c:b2:f9:46:48:44:c7:82:e4:d6:d2:23:5d:77:b5:
ed:f5:0a:46:2f:ba:f2:6c:36:3b:a0:fc:3c:c4:06:
9e:00:87:13:c9:82:41:11:b6:9c:b4:32:54:01:2d:
7e:56:1e:5d:56:d1:c1:5e:28:8b:e9:4a:0e:9a:e0:
1c:67:a5:e5:c0:e7:13:22:47:b1:03:92:29:17:bf:
fd:21:d1:35:81:64:49:8e:fb:85:6d:b5:fb:74:8b:
d4:df:ff:7f:10:97:12:e2:db:ea:14:bf:07:7e:3c:
b9:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:18:BB:96:AF:75:96:07:E4:2D:A7:D8:E4:9A:3B:B2:D0:EB:B5:A2
X509v3 Authority Key Identifier:
keyid:5F:A3:86:E9:76:56:D6:48:AB:53:81:B2:96:66:41:40:81:B0:00:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X6OG6XZW1kirU4GylmZBQIGwAIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/5505e0-2e8a-4c75-8118-950ce39a977c/1/FBi7lq91lgfkLafY5Jo7stDrtaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/5505e0-2e8a-4c75-8118-950ce39a977c/1/X6OG6XZW1kirU4GylmZBQIGwAIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:400::/29
Signature Algorithm: sha256WithRSAEncryption
1f:ef:62:76:3d:7a:c9:12:01:c6:01:86:9f:44:bf:d1:fc:cb:
e5:4d:7e:32:53:54:5e:e2:de:e8:ec:2e:3a:f6:25:77:89:49:
3c:45:bd:f9:70:65:1b:5d:b8:75:c8:89:c2:f9:46:14:b4:f5:
b4:de:16:00:41:a9:c7:d5:ba:c8:0a:9d:75:e9:33:74:7d:c9:
6d:29:29:12:66:48:66:e3:6e:9d:ba:d8:24:79:2d:58:ef:da:
17:46:6c:69:0a:6b:41:5a:e5:3f:36:9c:ea:d3:44:6d:ba:35:
4e:42:1e:9b:76:87:7a:32:d7:9f:48:40:4c:1f:6a:f0:d4:32:
b0:23:81:8d:f2:ea:69:ba:8f:06:2f:a0:69:bf:a5:5d:a6:76:
b7:89:52:aa:f8:10:c8:a0:ca:02:4d:09:7b:74:bc:90:ce:98:
6f:91:1e:bf:58:76:d8:95:be:f4:d3:57:de:32:5e:ed:2c:80:
8b:71:f7:5a:02:6c:0f:32:2f:82:9c:2e:20:1d:16:74:b5:dd:
60:1a:99:b3:6c:25:ae:11:28:f2:58:52:8c:c5:37:d6:83:3b:
5a:6e:39:c6:30:06:46:25:0a:29:85:85:08:ae:26:82:b0:e5:
5b:00:75:a2:1c:f4:7e:d1:66:f7:c5:b6:d4:81:19:6a:ea:8b:
23:01:e5:28
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAY2iGn9mnMqdzVndHmxDyA/SMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVmYTM4NmU5NzY1NmQ2NDhhYjUzODFiMjk2NjY0MTQwODFi
MDAwODQwHhcNMjQwMjEzMTA1NDIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNDE4YmI5NmFmNzU5NjA3ZTQyZGE3ZDhlNDlhM2JiMmQwZWJiNWEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp0vukBhHDhjNLEHqOF0addTFIcX3
WGFgdgxaiZS9vRCm+F3nGtMcjYjS4d+aDXg8H3BGOheJgpn2GIHpHNs2SYwSiu/K
wCTpzQb1Fq9VvCqjhEvrbOCU6PSgfSj3tYCgjZvFxzU1Btg3+2uk9RbopUztO6YU
tChm11HEh2ZUro2OorVyopJgOEbjzxjcADZwsgm2cb0MsvlGSETHguTW0iNdd7Xt
9QpGL7rybDY7oPw8xAaeAIcTyYJBEbactDJUAS1+Vh5dVtHBXiiL6UoOmuAcZ6Xl
wOcTIkexA5IpF7/9IdE1gWRJjvuFbbX7dIvU3/9/EJcS4tvqFL8Hfjy5kQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFBQYu5avdZYH5C2n2OSaO7LQ67WiMB8GA1UdIwQY
MBaAFF+jhul2VtZIq1OBspZmQUCBsACEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWDZPRzZYWlcxa2lyVTRHeWxtWkJRSUd3QUlRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy81NTA1ZTAtMmU4YS00Yzc1LTgxMTgt
OTUwY2UzOWE5NzdjLzEvRkJpN2xxOTFsZ2ZrTGFmWTVKbzdzdERydGFJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMy81NTA1ZTAtMmU4YS00Yzc1LTgxMTgtOTUwY2UzOWE5Nzdj
LzEvWDZPRzZYWlcxa2lyVTRHeWxtWkJRSUd3QUlRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgQEADAN
BgkqhkiG9w0BAQsFAAOCAQEAH+9idj16yRIBxgGGn0S/0fzL5U1+MlNUXuLe6Owu
OvYld4lJPEW9+XBlG124dciJwvlGFLT1tN4WAEGpx9W6yAqddekzdH3JbSkpEmZI
ZuNunbrYJHktWO/aF0ZsaQprQVrlPzac6tNEbbo1TkIem3aHejLXn0hATB9q8NQy
sCOBjfLqabqPBi+gab+lXaZ2t4lSqvgQyKDKAk0Je3S8kM6Yb5Eev1h22JW+9NNX
3jJe7SyAi3H3WgJsDzIvgpwuIB0WdLXdYBqZs2wlrhEo8lhSjMU31oM7Wm45xjAG
RiUKKYWFCK4mgrDlWwB1ohz0ftFm98W21IEZauqLIwHlKA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:17 2024 by rpki-client on console-ams.rpki-client.org