Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/pVKRUXwpFdLC1x5d5KOs4XUDEyw.roa
File: pVKRUXwpFdLC1x5d5KOs4XUDEyw.roa (raw, json)
Hash identifier: 7H30a57DFtZARj8vr7dLrXXqTpeVZOuIkDob0GbjKwM=
Subject key identifier: A5:52:91:51:7C:29:15:D2:C2:D7:1E:5D:E4:A3:AC:E1:75:03:13:2C
Certificate issuer: /CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Certificate serial: 01856F42A3DAFCB4CBC1D7A7B70B4D6FEA32
Authority key identifier: BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/pVKRUXwpFdLC1x5d5KOs4XUDEyw.roa
Signing time: Sun 01 Jan 2023 21:35:16 +0000
ROA not before: Sun 01 Jan 2023 21:35:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397518
IP address blocks: 2a01:488:bb17::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:a3:da:fc:b4:cb:c1:d7:a7:b7:0b:4d:6f:ea:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba6ed0fb7b320832ac1580534c7b263f304e981b
Validity
Not Before: Jan 1 21:35:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a55291517c2915d2c2d71e5de4a3ace17503132c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:6e:0d:2f:60:66:67:7a:85:09:37:a2:a8:c3:
92:2d:47:05:12:5b:a7:d4:fc:ce:6a:4e:3a:89:ef:
c6:16:c2:ba:39:48:49:6a:4c:08:52:3b:e7:c9:92:
f0:9f:9e:bc:24:d3:57:21:13:55:73:6e:15:a4:00:
0b:80:44:2b:73:9a:26:e5:da:91:af:38:87:11:2a:
5a:29:6e:60:5a:7c:eb:a3:7a:8f:43:88:e3:a4:6d:
d9:cb:50:84:aa:76:30:c8:da:e1:4d:de:c5:79:97:
90:73:62:a9:3e:0b:2c:51:78:96:58:f3:c6:d3:5b:
9a:65:10:d3:60:4f:44:e0:71:c0:ee:2d:96:e8:16:
4d:98:30:4c:76:bb:45:8b:4c:43:db:af:0d:fa:95:
25:63:2d:5c:68:c7:03:53:14:a0:61:1c:43:98:6d:
8b:b3:ba:5e:3c:ce:66:d4:13:11:6f:2f:31:06:c9:
89:36:2b:27:1c:d9:32:b3:65:77:a2:ab:15:46:e0:
f7:9c:e1:fd:0a:39:22:71:d9:61:d9:9c:06:af:e1:
6f:fe:4a:6b:6b:7b:79:4c:d6:ce:f7:32:8f:75:1b:
d2:86:1f:a0:91:30:63:89:6a:53:cd:42:db:3c:45:
91:f3:6e:f8:ba:b7:c4:c1:cb:3f:32:a6:04:19:00:
a5:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:52:91:51:7C:29:15:D2:C2:D7:1E:5D:E4:A3:AC:E1:75:03:13:2C
X509v3 Authority Key Identifier:
keyid:BA:6E:D0:FB:7B:32:08:32:AC:15:80:53:4C:7B:26:3F:30:4E:98:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/um7Q-3syCDKsFYBTTHsmPzBOmBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/pVKRUXwpFdLC1x5d5KOs4XUDEyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/42041d-5931-4824-9254-161f342387d1/1/um7Q-3syCDKsFYBTTHsmPzBOmBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:488:bb17::/48
Signature Algorithm: sha256WithRSAEncryption
6b:c7:c5:33:3c:81:90:4e:bb:b6:d2:e2:f5:da:08:27:d3:1e:
86:3f:0c:f9:66:32:d9:b9:06:85:4b:b8:67:33:4e:c4:56:7a:
66:b0:bf:98:47:cc:a6:df:d4:b2:7d:c1:fa:36:24:1b:b8:12:
c0:24:c9:d3:41:e7:5e:f2:f6:28:a6:87:02:af:53:d6:9b:ef:
e4:95:a4:27:c6:86:80:30:fd:7f:bd:96:0f:1b:50:00:28:44:
93:11:21:f4:39:e3:e6:ee:55:0c:52:66:a0:2e:e8:8b:0e:cf:
ac:09:7c:e7:60:6f:fd:29:b8:6b:0b:29:18:33:4c:43:a7:84:
db:56:4b:3f:1a:49:ef:49:19:67:95:2a:9e:7b:ba:7e:21:14:
73:c5:2a:1e:ae:f1:d5:53:74:84:18:b9:ab:cd:88:ab:80:44:
ec:dc:f1:d3:8f:59:69:54:57:e0:d6:a8:9b:c0:d2:c1:67:a2:
e1:e5:c9:7f:44:ac:4d:a2:df:05:48:bc:3f:75:36:97:74:b5:
68:28:7b:fc:e9:55:63:59:19:7c:9b:e3:77:e8:47:7b:25:61:
5a:c6:85:4b:5a:8f:29:3c:2f:d0:cf:f6:0c:d5:25:5c:93:80:
51:4f:64:b7:69:ab:1b:a5:cb:48:02:0b:b5:d4:a6:77:19:03:
75:c4:2e:ea
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVvQqPa/LTLwdentwtNb+oyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhNmVkMGZiN2IzMjA4MzJhYzE1ODA1MzRjN2IyNjNmMzA0
ZTk4MWIwHhcNMjMwMTAxMjEzNTE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNTUyOTE1MTdjMjkxNWQyYzJkNzFlNWRlNGEzYWNlMTc1MDMxMzJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5W4NL2BmZ3qFCTeiqMOSLUcFElun
1PzOak46ie/GFsK6OUhJakwIUjvnyZLwn568JNNXIRNVc24VpAALgEQrc5om5dqR
rziHESpaKW5gWnzro3qPQ4jjpG3Zy1CEqnYwyNrhTd7FeZeQc2KpPgssUXiWWPPG
01uaZRDTYE9E4HHA7i2W6BZNmDBMdrtFi0xD268N+pUlYy1caMcDUxSgYRxDmG2L
s7pePM5m1BMRby8xBsmJNisnHNkys2V3oqsVRuD3nOH9Cjkicdlh2ZwGr+Fv/kpr
a3t5TNbO9zKPdRvShh+gkTBjiWpTzULbPEWR8274urfEwcs/MqYEGQCl7wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFKVSkVF8KRXSwtceXeSjrOF1AxMsMB8GA1UdIwQY
MBaAFLpu0Pt7MggyrBWAU0x7Jj8wTpgbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdW03US0zc3lDREtzRllCVFRIc21QekJPbUJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC80MjA0MWQtNTkzMS00ODI0LTkyNTQt
MTYxZjM0MjM4N2QxLzEvcFZLUlVYd3BGZExDMXg1ZDVLT3M0WFVERXl3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC80MjA0MWQtNTkzMS00ODI0LTkyNTQtMTYxZjM0MjM4N2Qx
LzEvdW03US0zc3lDREtzRllCVFRIc21QekJPbUJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgEEiLsX
MA0GCSqGSIb3DQEBCwUAA4IBAQBrx8UzPIGQTru20uL12ggn0x6GPwz5ZjLZuQaF
S7hnM07EVnpmsL+YR8ym39SyfcH6NiQbuBLAJMnTQede8vYopocCr1PWm+/klaQn
xoaAMP1/vZYPG1AAKESTESH0OePm7lUMUmagLuiLDs+sCXznYG/9KbhrCykYM0xD
p4TbVks/GknvSRlnlSqee7p+IRRzxSoervHVU3SEGLmrzYirgETs3PHTj1lpVFfg
1qibwNLBZ6Lh5cl/RKxNot8FSLw/dTaXdLVoKHv86VVjWRl8m+N36Ed7JWFaxoVL
Wo8pPC/Qz/YM1SVck4BRT2S3aasbpctIAgu11KZ3GQN1xC7q
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:40 2024 by rpki-client on console-ams.rpki-client.org