Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/dbb22b-2a1a-4762-a0f7-32f5a9507731/1/RGD97u_0hBwuUHkMsHbsmo9VSo0.roa
File: RGD97u_0hBwuUHkMsHbsmo9VSo0.roa (raw, json)
Hash identifier: wIQ5D0sfJ8Nv4Yq+D9SIaA55QEgKCW0chS9x7kG9mfg=
Subject key identifier: 44:60:FD:EE:EF:F4:84:1C:2E:50:79:0C:B0:76:EC:9A:8F:55:4A:8D
Certificate issuer: /CN=7d965ea6b39c22aec2ad2d4d4c0a3a313df1defa
Certificate serial: 018CCA29F8F6BB9FC02E07E7538C20DD46D5
Authority key identifier: 7D:96:5E:A6:B3:9C:22:AE:C2:AD:2D:4D:4C:0A:3A:31:3D:F1:DE:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fZZeprOcIq7CrS1NTAo6MT3x3vo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/dbb22b-2a1a-4762-a0f7-32f5a9507731/1/RGD97u_0hBwuUHkMsHbsmo9VSo0.roa
Signing time: Tue 02 Jan 2024 12:33:17 +0000
ROA not before: Tue 02 Jan 2024 12:33:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200235
IP address blocks: 2a13:79c0:100::/40 maxlen: 40
Validation: Failed, certificate revoked on Mon 06 May 2024 12:43:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:f8:f6:bb:9f:c0:2e:07:e7:53:8c:20:dd:46:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d965ea6b39c22aec2ad2d4d4c0a3a313df1defa
Validity
Not Before: Jan 2 12:33:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4460fdeeeff4841c2e50790cb076ec9a8f554a8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e1:a0:3b:0c:8d:52:2b:d9:74:a1:73:92:4c:
f5:db:e6:02:62:77:ad:26:f5:87:be:f8:16:c2:54:
fe:8f:55:da:4d:e4:04:9d:9d:21:d9:d2:0f:78:44:
bb:60:7a:49:9d:90:25:1b:88:c4:78:25:04:fd:d6:
2b:96:bf:04:1a:e0:79:9f:99:98:d6:64:ba:45:1a:
94:a2:09:c5:50:ed:13:1e:b9:27:9b:23:0f:cc:53:
5d:00:57:c4:de:e9:a0:be:af:e7:1c:7a:ed:1c:ca:
17:72:4e:69:d5:ca:e0:92:18:af:70:1a:d6:23:32:
09:53:0e:d4:86:61:6e:78:f4:c2:61:68:93:c7:64:
1d:72:e4:35:7e:ff:57:56:b8:14:24:b8:56:0e:1c:
f8:16:72:1e:15:44:9c:ae:5b:fc:b2:f9:b8:02:b8:
3d:00:c1:6d:32:61:b2:6a:cd:4a:34:0e:5e:36:2b:
04:74:79:76:c8:d9:bf:65:7b:03:08:62:f0:8b:f3:
96:5d:cc:2e:9b:df:15:fa:f4:3a:3b:b7:3e:33:cc:
c1:6e:69:5f:50:0d:3e:0e:a6:e7:c3:e6:83:08:e5:
aa:de:ca:5d:e8:4d:09:33:38:04:76:9f:9f:3d:50:
04:72:0a:79:5d:db:ca:f1:a2:03:2b:12:ed:dc:b4:
de:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:60:FD:EE:EF:F4:84:1C:2E:50:79:0C:B0:76:EC:9A:8F:55:4A:8D
X509v3 Authority Key Identifier:
keyid:7D:96:5E:A6:B3:9C:22:AE:C2:AD:2D:4D:4C:0A:3A:31:3D:F1:DE:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fZZeprOcIq7CrS1NTAo6MT3x3vo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/dbb22b-2a1a-4762-a0f7-32f5a9507731/1/RGD97u_0hBwuUHkMsHbsmo9VSo0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/dbb22b-2a1a-4762-a0f7-32f5a9507731/1/fZZeprOcIq7CrS1NTAo6MT3x3vo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:79c0:100::/40
Signature Algorithm: sha256WithRSAEncryption
4c:2b:de:08:2c:9b:74:c5:06:aa:6a:3c:59:53:67:5f:36:98:
9b:ea:63:fe:f2:94:a0:9d:13:9f:76:90:73:00:cc:60:a6:c3:
31:a7:aa:55:85:e3:99:86:87:15:b1:00:4e:42:dc:ad:f5:ec:
c4:d2:c8:09:34:80:97:a4:82:9c:03:a9:3a:84:26:75:8b:80:
bf:d8:5b:3d:77:ef:5f:6e:d7:65:98:7b:d1:7a:a8:5d:52:f0:
5e:c6:d3:65:32:33:25:99:22:51:64:a4:fa:da:da:c7:65:c7:
6e:57:4c:b2:92:61:7f:5e:5c:ae:78:b0:d7:0d:67:44:48:ae:
5e:53:ed:db:32:af:ac:49:2a:2b:0b:e1:3f:49:1b:3e:3f:f3:
d1:b4:5a:84:12:97:c2:a8:69:12:30:fa:84:56:c9:58:56:5d:
b9:16:42:02:03:f7:06:78:68:19:1a:da:7b:48:30:98:02:5a:
f2:23:24:c3:a4:09:be:75:ec:7e:de:11:cf:56:40:a1:da:46:
74:6b:29:6e:7a:ff:dc:ff:5f:b4:1a:1b:94:40:9e:69:3b:b9:
74:a7:84:b2:67:e0:e5:d9:b0:b5:ab:49:92:66:27:6f:d7:13:
91:e4:48:d8:50:62:92:c4:38:a1:75:28:e9:a2:dd:6c:49:37:
1c:36:3c:ba
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYzKKfj2u5/ALgfnU4wg3UbVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkOTY1ZWE2YjM5YzIyYWVjMmFkMmQ0ZDRjMGEzYTMxM2Rm
MWRlZmEwHhcNMjQwMTAyMTIzMzE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NDYwZmRlZWVmZjQ4NDFjMmU1MDc5MGNiMDc2ZWM5YThmNTU0YThkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxeGgOwyNUivZdKFzkkz12+YCYnet
JvWHvvgWwlT+j1XaTeQEnZ0h2dIPeES7YHpJnZAlG4jEeCUE/dYrlr8EGuB5n5mY
1mS6RRqUognFUO0THrknmyMPzFNdAFfE3umgvq/nHHrtHMoXck5p1crgkhivcBrW
IzIJUw7UhmFuePTCYWiTx2QdcuQ1fv9XVrgUJLhWDhz4FnIeFUScrlv8svm4Arg9
AMFtMmGyas1KNA5eNisEdHl2yNm/ZXsDCGLwi/OWXcwum98V+vQ6O7c+M8zBbmlf
UA0+Dqbnw+aDCOWq3spd6E0JMzgEdp+fPVAEcgp5XdvK8aIDKxLt3LTeMQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFERg/e7v9IQcLlB5DLB27JqPVUqNMB8GA1UdIwQY
MBaAFH2WXqaznCKuwq0tTUwKOjE98d76MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZlpaZXByT2NJcTdDclMxTlRBbzZNVDN4M3ZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9kYmIyMmItMmExYS00NzYyLWEwZjct
MzJmNWE5NTA3NzMxLzEvUkdEOTd1XzBoQnd1VUhrTXNIYnNtbzlWU28wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS9kYmIyMmItMmExYS00NzYyLWEwZjctMzJmNWE5NTA3NzMx
LzEvZlpaZXByT2NJcTdDclMxTlRBbzZNVDN4M3ZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKhN5wAEw
DQYJKoZIhvcNAQELBQADggEBAEwr3ggsm3TFBqpqPFlTZ182mJvqY/7ylKCdE592
kHMAzGCmwzGnqlWF45mGhxWxAE5C3K317MTSyAk0gJekgpwDqTqEJnWLgL/YWz13
719u12WYe9F6qF1S8F7G02UyMyWZIlFkpPra2sdlx25XTLKSYX9eXK54sNcNZ0RI
rl5T7dsyr6xJKisL4T9JGz4/89G0WoQSl8KoaRIw+oRWyVhWXbkWQgID9wZ4aBka
2ntIMJgCWvIjJMOkCb517H7eEc9WQKHaRnRrKW56/9z/X7QaG5RAnmk7uXSnhLJn
4OXZsLWrSZJmJ2/XE5HkSNhQYpLEOKF1KOmi3WxJNxw2PLo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:37 2024 by rpki-client on console-fra.rpki-client.org