Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/9844cd-24f8-4e52-b42b-c7bf021ee664/1/RolJ5c94Z0Pqc-tPBAKctonthUI.roa
File: RolJ5c94Z0Pqc-tPBAKctonthUI.roa (raw, json)
Hash identifier: yElcwdKgD8FCgkMG3djCkDqX+IjG/foDkoYOe4qjd/0=
Subject key identifier: 46:89:49:E5:CF:78:67:43:EA:73:EB:4F:04:02:9C:B6:89:ED:85:42
Certificate issuer: /CN=7632c90ef19d2bd6f668a4826e2d0d15635e947d
Certificate serial: 01856C813EA2AEB15CC075BBE4755B8E7FAA
Authority key identifier: 76:32:C9:0E:F1:9D:2B:D6:F6:68:A4:82:6E:2D:0D:15:63:5E:94:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/djLJDvGdK9b2aKSCbi0NFWNelH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/9844cd-24f8-4e52-b42b-c7bf021ee664/1/RolJ5c94Z0Pqc-tPBAKctonthUI.roa
Signing time: Sun 01 Jan 2023 08:44:47 +0000
ROA not before: Sun 01 Jan 2023 08:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207388
IP address blocks: 2a02:f5c0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:81:3e:a2:ae:b1:5c:c0:75:bb:e4:75:5b:8e:7f:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7632c90ef19d2bd6f668a4826e2d0d15635e947d
Validity
Not Before: Jan 1 08:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=468949e5cf786743ea73eb4f04029cb689ed8542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ed:ff:64:a8:48:62:2a:d8:c7:d7:2b:4d:4a:
35:8a:2d:da:ac:60:04:f1:6d:48:43:28:29:ca:7a:
3b:84:87:b5:66:30:d0:61:db:df:b5:0d:c6:a7:ec:
cc:b7:65:e0:bd:29:53:48:92:80:23:66:aa:0f:04:
4a:fa:41:a1:29:1e:16:4b:0c:4a:55:42:cb:6b:f2:
df:c5:36:34:91:17:d6:e1:51:d4:59:57:8d:e4:5d:
36:c7:37:0a:a4:99:3d:c3:e0:42:63:23:2c:c5:3b:
44:cb:95:2b:3c:68:50:91:ee:03:1a:3a:b2:98:8b:
8a:ef:db:88:6f:08:6e:28:a3:04:1b:5c:04:82:9c:
b6:69:23:6e:26:6e:9e:06:fd:3d:5e:aa:ac:e1:c2:
49:f1:27:7d:47:14:c2:db:b5:b0:1e:36:85:0b:90:
8d:73:33:fa:7e:00:5b:01:cf:b4:1e:27:53:64:e4:
f2:4d:d3:66:5d:f3:1b:9c:d5:84:aa:b9:71:ad:39:
df:39:ca:6e:3b:7f:08:47:1b:88:c5:50:dd:53:d2:
57:0d:d7:3d:c7:61:9a:3a:9d:d3:46:e0:16:c5:e8:
3e:71:60:11:74:e6:63:f8:ad:b2:08:70:ae:31:fa:
05:d8:90:3d:8e:4e:2d:61:ed:40:6b:36:5f:64:78:
f9:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:89:49:E5:CF:78:67:43:EA:73:EB:4F:04:02:9C:B6:89:ED:85:42
X509v3 Authority Key Identifier:
keyid:76:32:C9:0E:F1:9D:2B:D6:F6:68:A4:82:6E:2D:0D:15:63:5E:94:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/djLJDvGdK9b2aKSCbi0NFWNelH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/9844cd-24f8-4e52-b42b-c7bf021ee664/1/RolJ5c94Z0Pqc-tPBAKctonthUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/9844cd-24f8-4e52-b42b-c7bf021ee664/1/djLJDvGdK9b2aKSCbi0NFWNelH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:f5c0::/32
Signature Algorithm: sha256WithRSAEncryption
87:8a:a9:ba:cd:6d:f6:b3:59:60:82:ed:cd:ae:27:9d:9a:7e:
9c:56:7a:d4:81:c0:b4:73:3d:b1:dd:86:1c:c7:61:4b:e2:1f:
aa:da:43:7d:3e:81:2f:61:25:f5:ee:b8:16:49:d4:dd:8d:c2:
e1:06:16:08:e6:19:c5:74:0d:44:22:0f:5c:d3:53:47:02:71:
4d:87:f6:3d:07:34:29:ae:17:b6:41:28:c8:6e:86:3c:ab:91:
e8:1f:f0:b0:7b:ce:48:51:97:87:9c:5e:c2:5d:aa:8d:eb:3f:
ad:59:8d:14:79:d9:fe:b8:5d:94:18:81:89:c1:f4:ec:5b:38:
ce:46:05:44:2a:27:83:fa:2f:9f:6c:48:6a:5e:b3:9a:80:07:
be:6c:7b:f6:c4:6f:06:29:0f:6e:13:0c:c5:29:41:18:23:64:
65:d1:d7:bc:6a:4b:2a:2d:a3:7e:2d:99:29:66:7e:c1:09:89:
17:0d:4a:c0:d4:97:14:c5:14:25:5e:62:15:80:f1:6a:ce:86:
cf:3e:57:d1:b5:61:00:52:56:c5:ab:c4:9f:2d:28:7f:2b:a4:
e7:c2:e8:1b:ee:d8:7c:33:64:3e:1a:47:10:d5:75:90:19:0a:
3e:11:51:7e:c7:db:f1:d2:49:a9:09:91:48:b7:17:5e:23:0c:
b8:09:bf:8d
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVsgT6irrFcwHW75HVbjn+qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2MzJjOTBlZjE5ZDJiZDZmNjY4YTQ4MjZlMmQwZDE1NjM1
ZTk0N2QwHhcNMjMwMTAxMDg0NDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0Njg5NDllNWNmNzg2NzQzZWE3M2ViNGYwNDAyOWNiNjg5ZWQ4NTQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsu3/ZKhIYirYx9crTUo1ii3arGAE
8W1IQygpyno7hIe1ZjDQYdvftQ3Gp+zMt2XgvSlTSJKAI2aqDwRK+kGhKR4WSwxK
VULLa/LfxTY0kRfW4VHUWVeN5F02xzcKpJk9w+BCYyMsxTtEy5UrPGhQke4DGjqy
mIuK79uIbwhuKKMEG1wEgpy2aSNuJm6eBv09Xqqs4cJJ8Sd9RxTC27WwHjaFC5CN
czP6fgBbAc+0HidTZOTyTdNmXfMbnNWEqrlxrTnfOcpuO38IRxuIxVDdU9JXDdc9
x2GaOp3TRuAWxeg+cWARdOZj+K2yCHCuMfoF2JA9jk4tYe1AazZfZHj5fwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFEaJSeXPeGdD6nPrTwQCnLaJ7YVCMB8GA1UdIwQY
MBaAFHYyyQ7xnSvW9mikgm4tDRVjXpR9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGpMSkR2R2RLOWIyYUtTQ2JpME5GV05lbEgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC85ODQ0Y2QtMjRmOC00ZTUyLWI0MmIt
YzdiZjAyMWVlNjY0LzEvUm9sSjVjOTRaMFBxYy10UEJBS2N0b250aFVJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC85ODQ0Y2QtMjRmOC00ZTUyLWI0MmItYzdiZjAyMWVlNjY0
LzEvZGpMSkR2R2RLOWIyYUtTQ2JpME5GV05lbEgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgL1wDAN
BgkqhkiG9w0BAQsFAAOCAQEAh4qpus1t9rNZYILtza4nnZp+nFZ61IHAtHM9sd2G
HMdhS+IfqtpDfT6BL2El9e64FknU3Y3C4QYWCOYZxXQNRCIPXNNTRwJxTYf2PQc0
Ka4XtkEoyG6GPKuR6B/wsHvOSFGXh5xewl2qjes/rVmNFHnZ/rhdlBiBicH07Fs4
zkYFRCong/ovn2xIal6zmoAHvmx79sRvBikPbhMMxSlBGCNkZdHXvGpLKi2jfi2Z
KWZ+wQmJFw1KwNSXFMUUJV5iFYDxas6Gzz5X0bVhAFJWxavEny0ofyuk58LoG+7Y
fDNkPhpHENV1kBkKPhFRfsfb8dJJqQmRSLcXXiMMuAm/jQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:21 2024 by rpki-client on console-ams.rpki-client.org