Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/4af7c1-50cb-479d-a377-007b447d4b39/1/AAARu9P6WWAJN1MxyVAyrVRTRCc.roa
File: AAARu9P6WWAJN1MxyVAyrVRTRCc.roa (raw, json)
Hash identifier: 1D+ypBrhBPxaJJyizY58Y93sVpLMWdikeve3bi6Gac4=
Subject key identifier: 00:00:11:BB:D3:FA:59:60:09:37:53:31:C9:50:32:AD:54:53:44:27
Certificate issuer: /CN=c18de4f2af8c7050e6e70e08a152573edd42e678
Certificate serial: 0186CFDDEC05B7C617675DE8F02EAA18A436
Authority key identifier: C1:8D:E4:F2:AF:8C:70:50:E6:E7:0E:08:A1:52:57:3E:DD:42:E6:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wY3k8q-McFDm5w4IoVJXPt1C5ng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/4af7c1-50cb-479d-a377-007b447d4b39/1/AAARu9P6WWAJN1MxyVAyrVRTRCc.roa
Signing time: Sat 11 Mar 2023 08:51:12 +0000
ROA not before: Sat 11 Mar 2023 08:51:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205740
IP address blocks: 2001:67c:c18::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:cf:dd:ec:05:b7:c6:17:67:5d:e8:f0:2e:aa:18:a4:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c18de4f2af8c7050e6e70e08a152573edd42e678
Validity
Not Before: Mar 11 08:51:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=000011bbd3fa596009375331c95032ad54534427
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:d7:1a:f2:0c:86:f9:ce:5d:7a:51:b6:b9:fc:
a6:82:cd:71:1c:bc:c3:ba:4f:ff:47:64:b9:b7:43:
17:50:43:9f:14:ad:7d:1c:8e:6a:be:89:31:38:08:
e4:50:fd:35:ca:55:75:d8:5e:d1:08:30:4b:da:fb:
e6:84:96:66:f9:ed:14:04:42:65:9e:99:7d:d5:20:
20:0d:9e:d0:96:3f:82:cb:a0:5b:8c:cf:77:fd:45:
dd:47:44:77:42:f1:02:8a:63:69:6c:52:96:84:46:
35:4e:17:a9:62:14:b0:98:de:99:58:b0:85:a5:0d:
c9:9c:59:79:3a:1d:35:49:48:a4:b5:2c:ca:05:49:
2c:7c:59:1c:be:49:82:28:fc:e3:a4:20:33:42:89:
55:6f:91:5f:72:e9:86:7f:e5:37:1a:19:64:bf:e4:
0e:c9:c0:70:0a:64:c0:35:8a:b8:b7:93:9b:91:65:
d2:2c:a0:7b:ad:f0:83:99:78:0b:50:61:38:e8:f3:
d6:07:f7:d4:7b:ad:e9:4c:e5:02:de:8e:38:ef:c8:
0d:94:7d:52:e5:c8:e9:2f:fa:09:eb:6d:b0:6e:49:
15:3b:aa:26:c3:9f:ee:d0:52:0d:eb:ad:f8:fe:a5:
e3:ac:7b:c3:d9:62:8a:38:af:01:ba:b1:93:68:bb:
81:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:00:11:BB:D3:FA:59:60:09:37:53:31:C9:50:32:AD:54:53:44:27
X509v3 Authority Key Identifier:
keyid:C1:8D:E4:F2:AF:8C:70:50:E6:E7:0E:08:A1:52:57:3E:DD:42:E6:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wY3k8q-McFDm5w4IoVJXPt1C5ng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/4af7c1-50cb-479d-a377-007b447d4b39/1/AAARu9P6WWAJN1MxyVAyrVRTRCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/4af7c1-50cb-479d-a377-007b447d4b39/1/wY3k8q-McFDm5w4IoVJXPt1C5ng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:c18::/48
Signature Algorithm: sha256WithRSAEncryption
11:1d:bc:da:5b:29:3e:f0:a6:be:38:0d:2a:54:95:2b:e8:93:
43:db:d7:ed:be:7e:0d:c0:c1:71:49:0c:f4:23:de:47:54:9f:
ad:ce:55:04:f5:b2:ef:a1:32:1f:57:67:af:c5:21:5b:89:80:
b1:31:fd:84:67:f3:2b:51:17:87:2f:ea:a5:76:92:a6:55:f5:
4b:c2:02:b5:74:aa:37:14:9e:37:c7:a2:aa:1d:b9:e8:e1:bd:
28:11:f1:c6:6d:b0:61:a8:81:e0:52:83:65:7d:2d:c9:c3:01:
b0:ca:49:96:28:57:26:94:59:80:74:b8:72:92:17:7d:a7:21:
21:40:76:83:7c:4a:d1:72:cb:07:1a:3b:37:a3:2a:11:a0:03:
82:ff:6d:16:d0:5b:49:cd:07:a7:f5:3a:d8:98:ec:98:25:bd:
00:3b:cf:db:1c:eb:ec:22:0d:e9:48:1b:38:bd:5d:63:3a:b7:
e8:d5:06:23:ef:51:7a:a2:b0:a7:9b:53:a9:e3:e5:ec:ab:32:
51:f2:18:e1:51:00:88:b4:44:ec:4e:4a:70:b3:7c:44:57:1f:
da:c2:ae:0b:d6:01:d5:e3:0f:a6:e7:da:45:ab:55:57:c7:18:
c3:d4:92:76:a2:64:df:ad:19:da:40:a0:b6:dc:3e:d0:66:ac:
f5:80:03:6e
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYbP3ewFt8YXZ13o8C6qGKQ2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMxOGRlNGYyYWY4YzcwNTBlNmU3MGUwOGExNTI1NzNlZGQ0
MmU2NzgwHhcNMjMwMzExMDg1MTEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMDAwMTFiYmQzZmE1OTYwMDkzNzUzMzFjOTUwMzJhZDU0NTM0NDI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAidca8gyG+c5delG2ufymgs1xHLzD
uk//R2S5t0MXUEOfFK19HI5qvokxOAjkUP01ylV12F7RCDBL2vvmhJZm+e0UBEJl
npl91SAgDZ7Qlj+Cy6BbjM93/UXdR0R3QvECimNpbFKWhEY1ThepYhSwmN6ZWLCF
pQ3JnFl5Oh01SUiktSzKBUksfFkcvkmCKPzjpCAzQolVb5FfcumGf+U3Ghlkv+QO
ycBwCmTANYq4t5ObkWXSLKB7rfCDmXgLUGE46PPWB/fUe63pTOUC3o4478gNlH1S
5cjpL/oJ622wbkkVO6omw5/u0FIN6634/qXjrHvD2WKKOK8BurGTaLuBGQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFAAAEbvT+llgCTdTMclQMq1UU0QnMB8GA1UdIwQY
MBaAFMGN5PKvjHBQ5ucOCKFSVz7dQuZ4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd1kzazhxLU1jRkRtNXc0SW9WSlhQdDFDNW5nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni80YWY3YzEtNTBjYi00NzlkLWEzNzct
MDA3YjQ0N2Q0YjM5LzEvQUFBUnU5UDZXV0FKTjFNeHlWQXlyVlJUUkNjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ni80YWY3YzEtNTBjYi00NzlkLWEzNzctMDA3YjQ0N2Q0YjM5
LzEvd1kzazhxLU1jRkRtNXc0SW9WSlhQdDFDNW5nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAwY
MA0GCSqGSIb3DQEBCwUAA4IBAQARHbzaWyk+8Ka+OA0qVJUr6JND29ftvn4NwMFx
SQz0I95HVJ+tzlUE9bLvoTIfV2evxSFbiYCxMf2EZ/MrUReHL+qldpKmVfVLwgK1
dKo3FJ43x6KqHbno4b0oEfHGbbBhqIHgUoNlfS3JwwGwykmWKFcmlFmAdLhykhd9
pyEhQHaDfErRcssHGjs3oyoRoAOC/20W0FtJzQen9TrYmOyYJb0AO8/bHOvsIg3p
SBs4vV1jOrfo1QYj71F6orCnm1Op4+XsqzJR8hjhUQCItETsTkpws3xEVx/awq4L
1gHV4w+m59pFq1VXxxjD1JJ2omTfrRnaQKC23D7QZqz1gANu
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:25 2024 by rpki-client on console-ams.rpki-client.org