Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/01b0c0-1b87-4d6f-9e90-9281f0d23dbf/1/EaZVwZ_eUJAff6CkLjJsv3V3qMs.roa
File: EaZVwZ_eUJAff6CkLjJsv3V3qMs.roa (raw, json)
Hash identifier: KM+3HBN3h/IK0bnbkOf9385rZkuyQJJ0UxSTpeYRGT8=
Subject key identifier: 11:A6:55:C1:9F:DE:50:90:1F:7F:A0:A4:2E:32:6C:BF:75:77:A8:CB
Certificate issuer: /CN=7021d7528be713a4ba2cb4db5e58d64d882eb555
Certificate serial: 01909378EFC6DAEBD09B66CF115E91A1B51B
Authority key identifier: 70:21:D7:52:8B:E7:13:A4:BA:2C:B4:DB:5E:58:D6:4D:88:2E:B5:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cCHXUovnE6S6LLTbXljWTYgutVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/01b0c0-1b87-4d6f-9e90-9281f0d23dbf/1/EaZVwZ_eUJAff6CkLjJsv3V3qMs.roa
Signing time: Mon 08 Jul 2024 17:51:34 +0000
ROA not before: Mon 08 Jul 2024 17:51:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50225
IP address blocks: 2a0f:bf01::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 09 Jul 2024 13:54:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:93:78:ef:c6:da:eb:d0:9b:66:cf:11:5e:91:a1:b5:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7021d7528be713a4ba2cb4db5e58d64d882eb555
Validity
Not Before: Jul 8 17:51:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=11a655c19fde50901f7fa0a42e326cbf7577a8cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2f:de:a6:37:8d:88:38:17:ca:0f:1c:7c:72:
82:02:45:54:97:10:93:6c:9f:eb:b0:50:19:df:34:
61:7b:33:f3:0a:20:32:0d:82:fb:7a:41:14:33:98:
85:d9:6e:9e:fe:62:44:96:61:c1:fa:ad:24:66:a5:
13:03:28:f2:ef:33:f8:93:50:b9:58:ee:04:74:92:
8e:46:13:11:e7:cc:2b:33:a0:d8:be:d1:02:d0:09:
4a:fb:fa:d4:8b:7d:2f:36:56:87:30:c2:21:30:9d:
46:8c:e7:90:d8:0c:2a:95:0d:a4:14:47:cd:8d:9f:
b6:c9:b5:ca:01:15:ac:8c:5a:62:1d:c2:87:33:75:
40:3a:e4:da:82:73:ec:b3:7c:71:1c:4b:7c:cd:9b:
aa:73:3a:7f:e5:6e:54:74:2a:5e:79:20:c9:d0:ef:
ab:e5:50:82:1c:4b:0b:ae:2f:d3:7c:08:e8:ae:f2:
8c:ed:3f:4d:5a:f2:2e:74:37:e9:11:fe:8a:d8:60:
24:0e:cf:58:4e:69:64:03:66:95:79:d3:9c:51:3a:
5e:26:31:54:24:ea:1e:63:0e:a8:9f:46:46:87:e8:
86:53:ff:b5:95:57:c5:88:8b:0b:33:7b:71:cd:b1:
0f:54:cb:d9:7c:01:69:89:6c:cf:da:3b:76:31:db:
bc:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:A6:55:C1:9F:DE:50:90:1F:7F:A0:A4:2E:32:6C:BF:75:77:A8:CB
X509v3 Authority Key Identifier:
keyid:70:21:D7:52:8B:E7:13:A4:BA:2C:B4:DB:5E:58:D6:4D:88:2E:B5:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cCHXUovnE6S6LLTbXljWTYgutVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/01b0c0-1b87-4d6f-9e90-9281f0d23dbf/1/EaZVwZ_eUJAff6CkLjJsv3V3qMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/01b0c0-1b87-4d6f-9e90-9281f0d23dbf/1/cCHXUovnE6S6LLTbXljWTYgutVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:bf01::/32
Signature Algorithm: sha256WithRSAEncryption
ae:3c:32:22:6b:19:2a:36:a0:7d:c2:00:12:9d:66:9c:a7:2e:
43:1d:13:e1:7b:41:b7:ea:f0:16:ba:db:b2:77:0c:73:c3:1d:
6e:bc:ff:4e:ed:c9:0c:1c:e4:17:67:8a:57:13:ac:e3:9a:f3:
54:8d:c2:f3:98:2c:a5:a0:fa:a8:c8:47:7e:a3:67:c1:bc:27:
4c:7a:09:fa:fa:b6:33:6a:22:26:79:ac:5a:33:47:88:6a:cd:
8a:7f:46:25:9c:18:73:8d:f1:96:1c:aa:bb:9d:56:cd:ee:60:
7e:ef:6f:83:8e:5a:46:ab:af:1a:cd:04:13:61:30:bf:d1:11:
03:f2:07:3a:42:df:d8:21:14:71:22:bc:dc:c9:cd:da:a9:bd:
57:a4:0e:e6:c6:80:04:50:f8:15:bb:3c:16:71:e7:cf:d9:63:
86:49:8a:3f:4e:96:bc:37:26:d0:de:09:36:d1:03:de:c7:ff:
8e:51:5d:c9:16:a6:3b:43:7a:ae:e7:cb:99:a8:26:65:95:1f:
f4:04:39:dc:44:cb:f7:9a:b9:9d:14:62:ca:16:dd:87:e3:e8:
4b:30:78:df:d0:70:cf:45:dc:af:d7:1e:ec:67:b9:49:f4:ec:
d1:d0:d8:1e:66:84:b5:7e:b0:17:03:bf:3f:3a:aa:10:20:77:
8c:77:2a:c6
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZCTeO/G2uvQm2bPEV6RobUbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwMjFkNzUyOGJlNzEzYTRiYTJjYjRkYjVlNThkNjRkODgy
ZWI1NTUwHhcNMjQwNzA4MTc1MTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMWE2NTVjMTlmZGU1MDkwMWY3ZmEwYTQyZTMyNmNiZjc1NzdhOGNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtS/epjeNiDgXyg8cfHKCAkVUlxCT
bJ/rsFAZ3zRhezPzCiAyDYL7ekEUM5iF2W6e/mJElmHB+q0kZqUTAyjy7zP4k1C5
WO4EdJKORhMR58wrM6DYvtEC0AlK+/rUi30vNlaHMMIhMJ1GjOeQ2AwqlQ2kFEfN
jZ+2ybXKARWsjFpiHcKHM3VAOuTagnPss3xxHEt8zZuqczp/5W5UdCpeeSDJ0O+r
5VCCHEsLri/TfAjorvKM7T9NWvIudDfpEf6K2GAkDs9YTmlkA2aVedOcUTpeJjFU
JOoeYw6on0ZGh+iGU/+1lVfFiIsLM3txzbEPVMvZfAFpiWzP2jt2Mdu8WwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFBGmVcGf3lCQH3+gpC4ybL91d6jLMB8GA1UdIwQY
MBaAFHAh11KL5xOkuiy0215Y1k2ILrVVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY0NIWFVvdm5FNlM2TExUYlhsaldUWWd1dFZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS8wMWIwYzAtMWI4Ny00ZDZmLTllOTAt
OTI4MWYwZDIzZGJmLzEvRWFaVndaX2VVSkFmZjZDa0xqSnN2M1YzcU1zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS8wMWIwYzAtMWI4Ny00ZDZmLTllOTAtOTI4MWYwZDIzZGJm
LzEvY0NIWFVvdm5FNlM2TExUYlhsaldUWWd1dFZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKg+/ATAN
BgkqhkiG9w0BAQsFAAOCAQEArjwyImsZKjagfcIAEp1mnKcuQx0T4XtBt+rwFrrb
sncMc8Mdbrz/Tu3JDBzkF2eKVxOs45rzVI3C85gspaD6qMhHfqNnwbwnTHoJ+vq2
M2oiJnmsWjNHiGrNin9GJZwYc43xlhyqu51Wze5gfu9vg45aRquvGs0EE2Ewv9ER
A/IHOkLf2CEUcSK83MnN2qm9V6QO5saABFD4Fbs8FnHnz9ljhkmKP06WvDcm0N4J
NtED3sf/jlFdyRamO0N6rufLmagmZZUf9AQ53ETL95q5nRRiyhbdh+PoSzB439Bw
z0Xcr9ce7Ge5SfTs0dDYHmaEtX6wFwO/PzqqECB3jHcqxg==
-----END CERTIFICATE-----
Generated at Tue Jul 9 16:56:59 2024 by rpki-client on console-fra.rpki-client.org