Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/9f63ac-b1e4-4dbd-9996-5a19afdb06a7/1/auToQN1PvEiwjTGxzaBjsPUz9cs.roa
File: auToQN1PvEiwjTGxzaBjsPUz9cs.roa (raw, json)
Hash identifier: 3U+snTMoFbildDXg+GfuFCygBr5jnBrKu4sIB/Ogfkc=
Subject key identifier: 6A:E4:E8:40:DD:4F:BC:48:B0:8D:31:B1:CD:A0:63:B0:F5:33:F5:CB
Certificate issuer: /CN=7365ec12014f911f7205eecbc2fc818b9b35723c
Certificate serial: 019302068307C1B6A783D3AC56102324A659
Authority key identifier: 73:65:EC:12:01:4F:91:1F:72:05:EE:CB:C2:FC:81:8B:9B:35:72:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c2XsEgFPkR9yBe7LwvyBi5s1cjw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/9f63ac-b1e4-4dbd-9996-5a19afdb06a7/1/auToQN1PvEiwjTGxzaBjsPUz9cs.roa
Signing time: Wed 06 Nov 2024 15:10:01 +0000
ROA not before: Wed 06 Nov 2024 15:10:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 2001:3300::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 06 Nov 2024 18:10:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:02:06:83:07:c1:b6:a7:83:d3:ac:56:10:23:24:a6:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7365ec12014f911f7205eecbc2fc818b9b35723c
Validity
Not Before: Nov 6 15:10:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6ae4e840dd4fbc48b08d31b1cda063b0f533f5cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:2f:c3:f6:ad:9c:1c:a6:15:69:75:6b:4b:59:
93:ac:b2:fd:50:59:ce:94:ac:4e:aa:4e:7c:68:37:
82:1f:f9:3b:f5:22:d5:33:fc:a4:ff:cb:4f:7c:aa:
b1:95:e4:6c:09:06:07:ae:be:48:4b:03:d5:60:e9:
b1:8a:ef:c9:d3:e6:63:f0:34:b5:39:fd:f0:8c:37:
64:77:1a:4d:00:ec:74:ae:0f:62:71:ab:3e:44:78:
8e:77:69:09:ff:0e:e1:1e:43:2c:b2:89:ee:eb:80:
ea:5f:84:0a:0d:d4:94:87:5e:3a:b4:31:98:14:0d:
c9:4a:b3:0e:ad:b9:07:ae:33:b2:c1:7b:34:ea:8b:
57:7e:40:5f:50:d8:a1:de:7c:89:41:cb:f2:22:71:
84:6b:72:d8:48:df:2e:da:c0:fb:f0:30:96:30:ae:
0f:26:39:8f:dd:23:ec:fc:f0:78:eb:01:75:4a:74:
52:97:fe:c0:95:52:f0:e2:22:c6:5b:ea:b5:ed:f7:
2a:30:aa:69:84:81:0b:0d:db:d1:4a:26:c5:76:c0:
6c:c6:0b:1b:96:ae:6c:b5:02:0d:c3:ee:c2:e9:a5:
0e:e5:62:2c:0e:11:3f:81:3f:63:4b:c2:a9:0c:cd:
b9:a4:f4:f7:1f:ef:26:5c:82:67:a8:07:73:0e:0c:
f1:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:E4:E8:40:DD:4F:BC:48:B0:8D:31:B1:CD:A0:63:B0:F5:33:F5:CB
X509v3 Authority Key Identifier:
keyid:73:65:EC:12:01:4F:91:1F:72:05:EE:CB:C2:FC:81:8B:9B:35:72:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2XsEgFPkR9yBe7LwvyBi5s1cjw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f63ac-b1e4-4dbd-9996-5a19afdb06a7/1/auToQN1PvEiwjTGxzaBjsPUz9cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9f63ac-b1e4-4dbd-9996-5a19afdb06a7/1/c2XsEgFPkR9yBe7LwvyBi5s1cjw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:3300::/32
Signature Algorithm: sha256WithRSAEncryption
80:97:93:2a:3f:dd:0a:88:9d:5e:c3:8d:ab:c2:1c:d1:f4:30:
d1:c4:fb:aa:0f:8b:0b:ab:3f:c7:b1:93:df:83:07:2d:5c:c8:
59:29:1b:04:90:ec:02:5e:36:32:25:f1:54:6f:c2:76:f8:71:
b1:2e:b0:10:c5:bd:fa:f1:39:05:ff:bb:53:9e:8d:67:f0:85:
19:dd:da:cf:4a:ce:52:1b:63:0e:36:04:75:be:b3:ba:b8:61:
ea:e3:1d:f1:61:e8:6f:22:1d:34:3d:14:b6:f2:b5:42:92:96:
68:24:6c:e1:7a:9a:97:25:bf:c9:43:da:01:19:b1:1e:31:63:
81:18:01:97:b6:56:9f:18:22:42:6e:b9:6c:97:35:84:57:75:
cb:e9:e6:93:66:59:f9:2b:fe:4f:75:ec:68:69:f9:a2:e9:5d:
16:c3:48:be:93:87:0b:5d:d7:76:b4:e5:df:cd:e9:9f:28:1f:
8d:35:4c:27:4d:38:34:09:10:f5:6b:86:98:a1:62:e4:e6:4f:
79:eb:f1:1c:0d:bf:27:4d:14:75:75:db:8c:88:c2:6f:3c:54:
ed:8d:8b:79:3c:4c:b3:4e:1d:29:4e:24:be:96:12:c7:b2:da:
f8:cc:d6:27:f5:40:18:7a:46:10:80:5f:90:40:ed:01:9f:fe:
8d:bf:9c:8b
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZMCBoMHwbang9OsVhAjJKZZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczNjVlYzEyMDE0ZjkxMWY3MjA1ZWVjYmMyZmM4MThiOWIz
NTcyM2MwHhcNMjQxMTA2MTUxMDAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YWU0ZTg0MGRkNGZiYzQ4YjA4ZDMxYjFjZGEwNjNiMGY1MzNmNWNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1S/D9q2cHKYVaXVrS1mTrLL9UFnO
lKxOqk58aDeCH/k79SLVM/yk/8tPfKqxleRsCQYHrr5ISwPVYOmxiu/J0+Zj8DS1
Of3wjDdkdxpNAOx0rg9icas+RHiOd2kJ/w7hHkMssonu64DqX4QKDdSUh146tDGY
FA3JSrMOrbkHrjOywXs06otXfkBfUNih3nyJQcvyInGEa3LYSN8u2sD78DCWMK4P
JjmP3SPs/PB46wF1SnRSl/7AlVLw4iLGW+q17fcqMKpphIELDdvRSibFdsBsxgsb
lq5stQINw+7C6aUO5WIsDhE/gT9jS8KpDM25pPT3H+8mXIJnqAdzDgzxGQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFGrk6EDdT7xIsI0xsc2gY7D1M/XLMB8GA1UdIwQY
MBaAFHNl7BIBT5EfcgXuy8L8gYubNXI8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYzJYc0VnRlBrUjl5QmU3THd2eUJpNXMxY2p3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS85ZjYzYWMtYjFlNC00ZGJkLTk5OTYt
NWExOWFmZGIwNmE3LzEvYXVUb1FOMVB2RWl3alRHeHphQmpzUFV6OWNzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS85ZjYzYWMtYjFlNC00ZGJkLTk5OTYtNWExOWFmZGIwNmE3
LzEvYzJYc0VnRlBrUjl5QmU3THd2eUJpNXMxY2p3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAIAEzADAN
BgkqhkiG9w0BAQsFAAOCAQEAgJeTKj/dCoidXsONq8Ic0fQw0cT7qg+LC6s/x7GT
34MHLVzIWSkbBJDsAl42MiXxVG/CdvhxsS6wEMW9+vE5Bf+7U56NZ/CFGd3az0rO
UhtjDjYEdb6zurhh6uMd8WHobyIdND0UtvK1QpKWaCRs4XqalyW/yUPaARmxHjFj
gRgBl7ZWnxgiQm65bJc1hFd1y+nmk2ZZ+Sv+T3XsaGn5ouldFsNIvpOHC13XdrTl
383pnygfjTVMJ004NAkQ9WuGmKFi5OZPeevxHA2/J00UdXXbjIjCbzxU7Y2LeTxM
s04dKU4kvpYSx7La+MzWJ/VAGHpGEIBfkEDtAZ/+jb+ciw==
-----END CERTIFICATE-----
Generated at Tue Apr 29 22:55:32 2025 by rpki-client