Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/dfbaa2-4a27-4f3c-b9fc-fb01436a695f/1/k41_nc9ZB0fV1vBJBiJGo0gjAgE.roa
File: k41_nc9ZB0fV1vBJBiJGo0gjAgE.roa (raw, json)
Hash identifier: zzFG++nE+AGCE0FSlYlfQ92wnNo4J/1aVMMLGULODvU=
Subject key identifier: 93:8D:7F:9D:CF:59:07:47:D5:D6:F0:49:06:22:46:A3:48:23:02:01
Certificate issuer: /CN=5262505b488581c2ecd7582a34ece52632e3ef96
Certificate serial: 018571554602189D0484E8680FDAA2B83623
Authority key identifier: 52:62:50:5B:48:85:81:C2:EC:D7:58:2A:34:EC:E5:26:32:E3:EF:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmJQW0iFgcLs11gqNOzlJjLj75Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/dfbaa2-4a27-4f3c-b9fc-fb01436a695f/1/k41_nc9ZB0fV1vBJBiJGo0gjAgE.roa
Signing time: Mon 02 Jan 2023 07:14:51 +0000
ROA not before: Mon 02 Jan 2023 07:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57199
IP address blocks: 2a0b:cbc0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:46:02:18:9d:04:84:e8:68:0f:da:a2:b8:36:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5262505b488581c2ecd7582a34ece52632e3ef96
Validity
Not Before: Jan 2 07:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=938d7f9dcf590747d5d6f049062246a348230201
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b3:0d:d4:71:62:52:26:9b:6c:ea:29:dd:37:
ec:c4:11:44:11:a4:b1:63:8b:d4:6d:8b:a3:3b:ad:
c1:84:77:e0:1e:29:12:cc:23:c5:da:d8:58:e6:d1:
64:77:3d:91:cb:13:98:d1:c8:0d:f0:b3:85:47:5a:
3e:32:45:31:8e:d5:b0:65:d9:2b:36:2e:be:97:5c:
59:4f:83:05:a6:84:91:76:58:ce:ac:d6:80:dc:c8:
9c:5a:a0:15:b4:65:c3:71:34:d2:20:02:7a:ec:a9:
15:09:fd:8b:b2:5e:c4:4f:1a:14:93:bf:d3:f3:e1:
32:d2:38:65:72:9b:f8:d5:98:44:82:35:d1:32:ca:
7f:38:72:ab:30:0b:32:f7:9c:bf:1c:1e:8d:ec:ba:
41:11:96:13:5a:0d:95:ec:3b:35:07:19:b3:a0:bc:
f4:18:f1:6a:47:08:bc:49:f7:be:fd:67:b0:ba:08:
c7:38:86:d3:e4:06:42:7a:2a:ee:dc:f5:2f:9f:0c:
04:1c:bb:4a:90:98:65:42:9a:61:ac:94:65:ee:fa:
ba:94:e1:68:11:ef:67:27:55:c4:56:cf:d0:a8:85:
20:31:68:cc:65:69:9e:64:68:8a:36:f0:c6:5a:e0:
fe:62:8a:8e:61:25:46:3e:cc:c3:a9:f7:c4:25:22:
78:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:8D:7F:9D:CF:59:07:47:D5:D6:F0:49:06:22:46:A3:48:23:02:01
X509v3 Authority Key Identifier:
keyid:52:62:50:5B:48:85:81:C2:EC:D7:58:2A:34:EC:E5:26:32:E3:EF:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmJQW0iFgcLs11gqNOzlJjLj75Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/dfbaa2-4a27-4f3c-b9fc-fb01436a695f/1/k41_nc9ZB0fV1vBJBiJGo0gjAgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/dfbaa2-4a27-4f3c-b9fc-fb01436a695f/1/UmJQW0iFgcLs11gqNOzlJjLj75Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:cbc0::/32
Signature Algorithm: sha256WithRSAEncryption
64:fc:12:8f:90:f6:03:8a:3e:84:e3:16:f9:9e:89:dd:a4:16:
76:13:06:42:1e:03:48:9e:8f:1d:41:f1:ec:79:d4:f0:0b:8e:
a7:52:75:a1:00:30:ad:3d:c6:69:45:ab:28:46:90:fa:c1:d9:
4e:a5:59:d1:de:68:9e:a1:43:b4:78:c9:d2:ec:d3:7d:85:26:
8e:6d:d8:b6:90:0f:e1:2e:8e:35:50:44:85:93:23:55:c0:25:
83:28:af:7f:01:52:c5:73:1b:0e:9c:50:70:12:44:23:a6:87:
d3:d0:04:98:70:ef:5c:09:55:2f:28:63:52:57:63:cb:01:37:
3f:05:93:4d:2e:5d:c7:7b:00:4b:a5:ad:c0:48:61:65:68:01:
8b:5d:14:1d:97:9b:13:a6:f7:5d:ed:73:51:75:e5:8e:64:23:
64:fd:bc:61:7b:17:94:00:75:b2:ab:3d:4d:4f:44:7e:b3:f5:
30:99:ea:c7:85:97:b7:c8:d9:54:86:ed:0d:9f:30:c4:c2:8a:
fe:cf:7a:b3:41:68:30:47:d9:af:f3:2e:da:ec:43:c5:14:e5:
62:da:a1:29:98:cc:82:5b:52:ba:2c:9a:cb:05:1a:17:6e:3c:
87:26:ee:12:cd:09:95:e7:cc:44:f4:fc:f4:d5:b2:e9:37:9f:
5b:58:4a:4c
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVxVUYCGJ0EhOhoD9qiuDYjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyNjI1MDViNDg4NTgxYzJlY2Q3NTgyYTM0ZWNlNTI2MzJl
M2VmOTYwHhcNMjMwMTAyMDcxNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MzhkN2Y5ZGNmNTkwNzQ3ZDVkNmYwNDkwNjIyNDZhMzQ4MjMwMjAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl7MN1HFiUiabbOop3TfsxBFEEaSx
Y4vUbYujO63BhHfgHikSzCPF2thY5tFkdz2RyxOY0cgN8LOFR1o+MkUxjtWwZdkr
Ni6+l1xZT4MFpoSRdljOrNaA3MicWqAVtGXDcTTSIAJ67KkVCf2Lsl7ETxoUk7/T
8+Ey0jhlcpv41ZhEgjXRMsp/OHKrMAsy95y/HB6N7LpBEZYTWg2V7Ds1BxmzoLz0
GPFqRwi8Sfe+/WewugjHOIbT5AZCeiru3PUvnwwEHLtKkJhlQpphrJRl7vq6lOFo
Ee9nJ1XEVs/QqIUgMWjMZWmeZGiKNvDGWuD+YoqOYSVGPszDqffEJSJ4fwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFJONf53PWQdH1dbwSQYiRqNIIwIBMB8GA1UdIwQY
MBaAFFJiUFtIhYHC7NdYKjTs5SYy4++WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVW1KUVcwaUZnY0xzMTFncU5PemxKakxqNzVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS9kZmJhYTItNGEyNy00ZjNjLWI5ZmMt
ZmIwMTQzNmE2OTVmLzEvazQxX25jOVpCMGZWMXZCSkJpSkdvMGdqQWdFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZS9kZmJhYTItNGEyNy00ZjNjLWI5ZmMtZmIwMTQzNmE2OTVm
LzEvVW1KUVcwaUZnY0xzMTFncU5PemxKakxqNzVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgvLwDAN
BgkqhkiG9w0BAQsFAAOCAQEAZPwSj5D2A4o+hOMW+Z6J3aQWdhMGQh4DSJ6PHUHx
7HnU8AuOp1J1oQAwrT3GaUWrKEaQ+sHZTqVZ0d5onqFDtHjJ0uzTfYUmjm3YtpAP
4S6ONVBEhZMjVcAlgyivfwFSxXMbDpxQcBJEI6aH09AEmHDvXAlVLyhjUldjywE3
PwWTTS5dx3sAS6WtwEhhZWgBi10UHZebE6b3Xe1zUXXljmQjZP28YXsXlAB1sqs9
TU9EfrP1MJnqx4WXt8jZVIbtDZ8wxMKK/s96s0FoMEfZr/Mu2uxDxRTlYtqhKZjM
gltSuiyaywUaF248hybuEs0JlefMRPT89NWy6TefW1hKTA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:54 2024 by rpki-client on console-fra.rpki-client.org