Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/sN9ewH29NqdsR7GUrOJW5yvEpJs.roa
File: sN9ewH29NqdsR7GUrOJW5yvEpJs.roa (raw, json)
Hash identifier: 5CWF8ddJZ4Xwb1ha7OVohplL9cL14hG+rOVL/sOAB80=
Subject key identifier: B0:DF:5E:C0:7D:BD:36:A7:6C:47:B1:94:AC:E2:56:E7:2B:C4:A4:9B
Certificate issuer: /CN=c38280c5300b74888ac7eb4bfa6417d9a2e7b0be
Certificate serial: 018AB8E3F8AC1489F2F0B1E0ABEFB247B768
Authority key identifier: C3:82:80:C5:30:0B:74:88:8A:C7:EB:4B:FA:64:17:D9:A2:E7:B0:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w4KAxTALdIiKx-tL-mQX2aLnsL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/sN9ewH29NqdsR7GUrOJW5yvEpJs.roa
Signing time: Thu 21 Sep 2023 17:57:42 +0000
ROA not before: Thu 21 Sep 2023 17:57:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213220
IP address blocks: 2a11:642:cf8a::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 05 Dec 2023 10:39:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b8:e3:f8:ac:14:89:f2:f0:b1:e0:ab:ef:b2:47:b7:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c38280c5300b74888ac7eb4bfa6417d9a2e7b0be
Validity
Not Before: Sep 21 17:57:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0df5ec07dbd36a76c47b194ace256e72bc4a49b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:56:78:98:ae:5d:f7:93:7f:4a:86:2f:d2:a9:
34:f2:b5:62:23:e1:cf:8b:9d:58:5b:51:1e:10:a9:
5f:a5:f2:21:67:03:46:57:3a:1c:4a:e3:09:02:13:
cd:fb:e5:49:2f:d1:ae:ce:69:46:81:3c:fe:61:7a:
99:0d:44:58:3b:bd:44:0b:07:cd:31:00:77:a5:1b:
c5:70:77:b4:9e:96:a7:92:30:c1:b4:83:a6:0b:d0:
7c:94:32:7d:c2:49:f9:4d:50:73:fc:5c:b1:57:7e:
b8:c0:df:11:de:08:2b:70:21:7d:49:4d:fe:34:54:
ce:a2:a8:e6:78:74:75:ed:d6:a3:17:d0:33:07:8a:
ab:58:b7:a9:0d:99:4f:5e:2c:4d:49:ad:6f:b3:02:
70:3e:04:c6:a1:27:83:be:58:0f:86:60:38:f7:26:
1d:45:a7:a3:89:e3:6e:8d:c7:d7:50:73:4f:ad:aa:
db:c9:2a:23:d0:cb:4b:e2:05:66:7e:3b:79:8a:a1:
26:e2:d9:d9:f9:e9:7e:3b:cf:1a:aa:ea:b0:0c:8d:
66:a2:78:e0:9b:04:cf:b1:ab:42:b3:ad:d6:ec:5e:
0c:dd:b7:1f:74:17:2b:a1:83:ef:31:f9:d6:64:ec:
bc:54:4b:d0:f2:d5:78:28:f2:09:1d:08:a3:6e:0a:
d5:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:DF:5E:C0:7D:BD:36:A7:6C:47:B1:94:AC:E2:56:E7:2B:C4:A4:9B
X509v3 Authority Key Identifier:
keyid:C3:82:80:C5:30:0B:74:88:8A:C7:EB:4B:FA:64:17:D9:A2:E7:B0:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w4KAxTALdIiKx-tL-mQX2aLnsL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/sN9ewH29NqdsR7GUrOJW5yvEpJs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/w4KAxTALdIiKx-tL-mQX2aLnsL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:642:cf8a::/48
Signature Algorithm: sha256WithRSAEncryption
12:9d:e9:1b:ef:2a:2a:57:5a:da:c0:c6:8f:9a:d1:ea:e7:c8:
8a:f9:ac:a2:44:07:a2:95:d8:a8:f2:d6:ac:a0:fe:df:ca:8c:
82:64:3d:5c:07:ad:36:67:7b:85:96:71:95:93:56:3c:c2:6a:
00:7b:b6:c2:9d:a6:2b:28:09:52:1c:70:7a:6b:4f:31:f7:75:
7e:b7:2a:3f:f8:3e:de:cc:30:0c:65:cc:ec:59:fa:ad:5a:a0:
a0:51:1d:00:8c:ed:89:46:bb:97:2b:68:71:b7:7b:43:a8:3a:
0c:f2:98:01:b7:5c:68:ea:00:95:91:99:c0:9f:9c:2f:83:66:
a5:5b:30:1d:85:fb:fa:19:5e:fd:c2:98:39:4f:49:f3:34:35:
fe:c2:7e:c8:e8:9a:64:b2:d0:90:26:1a:74:e3:d0:34:71:7b:
82:de:79:47:f7:df:c4:bd:2e:65:6d:34:b9:ee:42:0c:3b:c0:
65:d5:67:75:9b:ac:2b:c0:a2:c3:43:6e:df:4e:a4:4a:d6:84:
13:66:5a:55:28:83:26:85:a1:a7:4e:3e:75:42:cb:9f:7f:bd:
e2:a2:1c:a0:36:40:e2:c2:88:1c:8d:1c:4a:cc:04:37:b4:49:
92:e4:ae:29:1d:5b:6a:6b:8d:a6:78:0c:5b:77:4e:b1:ba:4e:
18:ad:20:86
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYq44/isFIny8LHgq++yR7doMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzODI4MGM1MzAwYjc0ODg4YWM3ZWI0YmZhNjQxN2Q5YTJl
N2IwYmUwHhcNMjMwOTIxMTc1NzQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMGRmNWVjMDdkYmQzNmE3NmM0N2IxOTRhY2UyNTZlNzJiYzRhNDliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhFZ4mK5d95N/SoYv0qk08rViI+HP
i51YW1EeEKlfpfIhZwNGVzocSuMJAhPN++VJL9GuzmlGgTz+YXqZDURYO71ECwfN
MQB3pRvFcHe0npankjDBtIOmC9B8lDJ9wkn5TVBz/FyxV364wN8R3ggrcCF9SU3+
NFTOoqjmeHR17dajF9AzB4qrWLepDZlPXixNSa1vswJwPgTGoSeDvlgPhmA49yYd
RaejieNujcfXUHNPrarbySoj0MtL4gVmfjt5iqEm4tnZ+el+O88aquqwDI1monjg
mwTPsatCs63W7F4M3bcfdBcroYPvMfnWZOy8VEvQ8tV4KPIJHQijbgrV6QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFLDfXsB9vTanbEexlKziVucrxKSbMB8GA1UdIwQY
MBaAFMOCgMUwC3SIisfrS/pkF9mi57C+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzRLQXhUQUxkSWlLeC10TC1tUVgyYUxuc0w0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy84OTc0NDktZTljZi00YTc5LTg5Y2Yt
NDFiYjIxYWMyODAxLzEvc045ZXdIMjlOcWRzUjdHVXJPSlc1eXZFcEpzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy84OTc0NDktZTljZi00YTc5LTg5Y2YtNDFiYjIxYWMyODAx
LzEvdzRLQXhUQUxkSWlLeC10TC1tUVgyYUxuc0w0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhEGQs+K
MA0GCSqGSIb3DQEBCwUAA4IBAQASnekb7yoqV1rawMaPmtHq58iK+ayiRAeildio
8tasoP7fyoyCZD1cB602Z3uFlnGVk1Y8wmoAe7bCnaYrKAlSHHB6a08x93V+tyo/
+D7ezDAMZczsWfqtWqCgUR0AjO2JRruXK2hxt3tDqDoM8pgBt1xo6gCVkZnAn5wv
g2alWzAdhfv6GV79wpg5T0nzNDX+wn7I6JpkstCQJhp049A0cXuC3nlH99/EvS5l
bTS57kIMO8Bl1Wd1m6wrwKLDQ27fTqRK1oQTZlpVKIMmhaGnTj51Qsuff73iohyg
NkDiwogcjRxKzAQ3tEmS5K4pHVtqa42meAxbd06xuk4YrSCG
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:31 2024 by rpki-client on console-fra.rpki-client.org