Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/Bjw0zjLbDiC1jAUXFlJPjQxqmAo.roa
File: Bjw0zjLbDiC1jAUXFlJPjQxqmAo.roa (raw, json)
Hash identifier: IMb6bmqG01iH5duXc+oD94671TkR5TMAYh0E62JszU0=
Subject key identifier: 06:3C:34:CE:32:DB:0E:20:B5:8C:05:17:16:52:4F:8D:0C:6A:98:0A
Certificate issuer: /CN=57182aab5ad9efa380a6c6f06c016e158be977bc
Certificate serial: 018571D7B8BFEDDC2D16757982EFFD4632E1
Authority key identifier: 57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/Bjw0zjLbDiC1jAUXFlJPjQxqmAo.roa
Signing time: Mon 02 Jan 2023 09:37:20 +0000
ROA not before: Mon 02 Jan 2023 09:37:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61352
IP address blocks: 2a02:101c::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 20 Jul 2023 11:56:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:b8:bf:ed:dc:2d:16:75:79:82:ef:fd:46:32:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57182aab5ad9efa380a6c6f06c016e158be977bc
Validity
Not Before: Jan 2 09:37:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=063c34ce32db0e20b58c051716524f8d0c6a980a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3e:a1:44:30:3d:ce:3f:c0:8e:c6:24:34:33:
74:ac:3b:49:53:0a:e4:35:61:dc:f0:6e:3b:a6:5e:
c9:2f:01:af:34:2f:8f:fd:9f:16:f5:20:4d:ee:0f:
7c:ec:94:e9:99:aa:37:58:28:02:d5:c1:8a:1e:d0:
29:e6:6a:dd:c9:19:58:4c:f5:dc:a2:a4:2b:fc:b1:
b1:d2:1f:d3:0a:23:ea:80:70:bf:04:e3:54:7c:58:
93:44:91:ef:52:ae:c5:5c:ed:a2:72:88:8e:63:55:
b0:bc:04:cc:d7:09:bf:c3:89:8b:6a:b0:7d:b6:87:
53:ec:aa:61:31:d2:f9:d9:a6:b3:d9:6a:f4:50:74:
f5:94:55:54:ff:1c:7c:f0:38:e7:e7:4c:f2:42:20:
72:a7:ec:84:07:f3:50:55:35:3c:9c:47:00:39:f4:
1c:a2:cc:a0:73:10:b3:c1:6e:ba:39:ff:c8:e1:8d:
8e:3c:74:37:4c:f2:bf:ad:60:a9:0d:93:d6:4b:01:
1f:65:c3:28:56:ff:8c:5b:cb:e3:01:16:f3:43:49:
d4:aa:e8:1b:9d:8d:fb:eb:76:20:eb:2b:ab:4c:16:
50:66:45:58:05:36:63:52:a9:98:c2:12:70:17:db:
cf:73:47:09:0f:b6:88:3c:fb:34:c1:6f:02:63:23:
6e:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:3C:34:CE:32:DB:0E:20:B5:8C:05:17:16:52:4F:8D:0C:6A:98:0A
X509v3 Authority Key Identifier:
keyid:57:18:2A:AB:5A:D9:EF:A3:80:A6:C6:F0:6C:01:6E:15:8B:E9:77:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vxgqq1rZ76OApsbwbAFuFYvpd7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/Bjw0zjLbDiC1jAUXFlJPjQxqmAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/8c51cb-a3bd-476d-880f-a96c6266abdb/1/Vxgqq1rZ76OApsbwbAFuFYvpd7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:101c::/32
Signature Algorithm: sha256WithRSAEncryption
2f:cd:6c:34:ac:24:ab:ad:d7:5c:cc:e2:64:a7:98:71:3d:85:
c7:ea:be:dd:28:2e:6c:50:8a:46:94:c6:24:9c:c1:f4:64:88:
40:b0:3e:41:11:7e:ec:d9:51:b5:0b:88:fa:f5:38:44:ab:85:
ca:78:c5:90:e1:35:2d:c8:11:c1:da:4f:ca:2b:f9:86:b3:b6:
62:3e:94:ad:50:b9:7d:d9:83:c8:c2:8b:45:e0:3d:e4:43:db:
5e:77:96:6b:11:c3:ab:bb:44:d6:a7:e7:42:5f:c6:ac:4e:6b:
6f:ea:ff:62:30:6b:87:ac:ab:0a:71:4c:9c:b2:fa:2c:54:62:
9f:ea:ac:8e:d1:d0:3d:07:24:bb:50:16:ad:51:81:8e:0d:19:
24:90:a6:c9:37:2b:12:0f:6e:b6:90:7e:12:73:b0:c0:f6:62:
32:f0:d6:5b:18:2c:c5:a4:86:8c:45:25:7c:d3:d8:97:55:37:
df:fc:34:d1:d5:85:ce:53:86:d1:93:86:4a:aa:7e:65:09:06:
98:da:21:46:ef:22:d7:a1:28:80:42:8f:d6:4d:99:18:91:f7:
89:eb:96:86:6a:a4:ff:cf:82:7b:47:83:67:c4:09:38:e4:8a:
d0:81:74:15:bd:df:ad:cd:ad:40:1c:46:c9:2a:70:d3:68:63:
d1:a8:d1:d2
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVx17i/7dwtFnV5gu/9RjLhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU3MTgyYWFiNWFkOWVmYTM4MGE2YzZmMDZjMDE2ZTE1OGJl
OTc3YmMwHhcNMjMwMTAyMDkzNzIwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNjNjMzRjZTMyZGIwZTIwYjU4YzA1MTcxNjUyNGY4ZDBjNmE5ODBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnz6hRDA9zj/AjsYkNDN0rDtJUwrk
NWHc8G47pl7JLwGvNC+P/Z8W9SBN7g987JTpmao3WCgC1cGKHtAp5mrdyRlYTPXc
oqQr/LGx0h/TCiPqgHC/BONUfFiTRJHvUq7FXO2icoiOY1WwvATM1wm/w4mLarB9
todT7KphMdL52aaz2Wr0UHT1lFVU/xx88Djn50zyQiByp+yEB/NQVTU8nEcAOfQc
osygcxCzwW66Of/I4Y2OPHQ3TPK/rWCpDZPWSwEfZcMoVv+MW8vjARbzQ0nUqugb
nY3763Yg6yurTBZQZkVYBTZjUqmYwhJwF9vPc0cJD7aIPPs0wW8CYyNuvQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFAY8NM4y2w4gtYwFFxZST40MapgKMB8GA1UdIwQY
MBaAFFcYKqta2e+jgKbG8GwBbhWL6Xe8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVnhncXExclo3Nk9BcHNid2JBRnVGWXZwZDd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni84YzUxY2ItYTNiZC00NzZkLTg4MGYt
YTk2YzYyNjZhYmRiLzEvQmp3MHpqTGJEaUMxakFVWEZsSlBqUXhxbUFvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni84YzUxY2ItYTNiZC00NzZkLTg4MGYtYTk2YzYyNjZhYmRi
LzEvVnhncXExclo3Nk9BcHNid2JBRnVGWXZwZDd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgIQHDAN
BgkqhkiG9w0BAQsFAAOCAQEAL81sNKwkq63XXMziZKeYcT2Fx+q+3SgubFCKRpTG
JJzB9GSIQLA+QRF+7NlRtQuI+vU4RKuFynjFkOE1LcgRwdpPyiv5hrO2Yj6UrVC5
fdmDyMKLReA95EPbXneWaxHDq7tE1qfnQl/GrE5rb+r/YjBrh6yrCnFMnLL6LFRi
n+qsjtHQPQcku1AWrVGBjg0ZJJCmyTcrEg9utpB+EnOwwPZiMvDWWxgsxaSGjEUl
fNPYl1U33/w00dWFzlOG0ZOGSqp+ZQkGmNohRu8i16EogEKP1k2ZGJH3ieuWhmqk
/8+Ce0eDZ8QJOOSK0IF0Fb3frc2tQBxGySpw02hj0ajR0g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:30 2024 by rpki-client on console-ams.rpki-client.org