Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/hvRE0mTH9q0SUicO-xI1qOsG03o.roa
File: hvRE0mTH9q0SUicO-xI1qOsG03o.roa (raw, json)
Hash identifier: MGfvJPekV/nCkVhk3svTZRrnOkTCgNExejcEr9bBHPs=
Subject key identifier: 86:F4:44:D2:64:C7:F6:AD:12:52:27:0E:FB:12:35:A8:EB:06:D3:7A
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 01856C4178A7BF1EB242721FF23CFF634DAE
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/hvRE0mTH9q0SUicO-xI1qOsG03o.roa
Signing time: Sun 01 Jan 2023 07:35:07 +0000
ROA not before: Sun 01 Jan 2023 07:35:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213316
IP address blocks: 2a0c:e643:8000::/33 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:78:a7:bf:1e:b2:42:72:1f:f2:3c:ff:63:4d:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 07:35:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86f444d264c7f6ad1252270efb1235a8eb06d37a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:61:e5:c0:ea:8a:27:b2:1d:d0:00:65:65:fc:
a9:a6:01:a6:25:4a:a2:72:95:f8:44:64:39:52:11:
c9:fb:18:3f:02:84:82:5c:ae:7c:0f:78:01:1a:74:
7e:9a:92:64:86:3a:f5:89:55:1b:8a:29:a6:0d:bf:
65:a7:97:b4:9c:fc:bb:71:ff:dc:d2:68:39:07:29:
33:d8:92:9a:44:4f:f4:8c:71:a8:41:d1:c0:d7:71:
fb:b2:20:a7:0c:1c:0b:3e:b5:9b:99:1c:b3:c9:58:
4e:9d:7f:d6:c5:ed:4b:c9:dd:a9:99:46:5a:d1:9e:
a9:a7:b1:74:d9:a9:7c:54:56:55:68:5d:69:a7:35:
08:04:1c:5e:a7:e8:72:96:f4:48:6e:cb:ba:3d:a7:
32:57:dd:db:da:1b:33:34:90:32:8a:3b:5b:a6:6c:
a5:43:5b:d7:aa:65:0f:8f:e7:80:81:26:66:ba:93:
78:22:1c:90:7b:7e:63:7f:af:df:e8:4d:a6:48:87:
ca:9c:25:23:77:19:fb:62:e8:53:9f:69:7f:29:5b:
1d:de:b2:c4:77:e1:4d:71:b0:89:68:bf:20:86:35:
ab:c0:b6:12:77:94:2a:f4:f9:6e:c1:99:4b:ec:b9:
bf:23:10:6e:8b:85:e5:ae:5a:93:10:a2:85:ed:9c:
74:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:F4:44:D2:64:C7:F6:AD:12:52:27:0E:FB:12:35:A8:EB:06:D3:7A
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/hvRE0mTH9q0SUicO-xI1qOsG03o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:e643:8000::/33
Signature Algorithm: sha256WithRSAEncryption
64:66:69:4e:6f:3a:24:39:db:80:5b:f1:93:9c:fb:3f:b8:df:
85:ee:c8:f7:ce:52:86:1a:04:f9:97:49:38:a6:cb:e7:24:b8:
05:a7:a1:f5:5b:44:73:0e:87:74:65:77:66:2d:df:0b:a4:0b:
f2:f4:83:70:36:73:e6:bd:99:9e:6f:94:34:15:41:cc:a9:07:
ec:bf:b0:36:c8:d9:be:83:58:1a:d1:6d:98:71:d7:25:69:09:
f7:86:c8:07:c5:0e:61:f3:5e:c2:48:e8:b1:dc:09:0c:9a:2d:
d1:e7:02:e5:6b:cd:b0:78:92:af:64:17:9c:f3:8f:d7:83:cd:
f3:f6:d4:73:68:82:a7:17:72:4f:d8:57:ef:c2:08:07:8d:ac:
65:dd:bf:2b:d6:e1:46:79:03:3b:bd:65:d4:4f:88:a2:71:3d:
83:60:ca:6c:5e:84:31:68:91:86:6f:88:d2:c0:73:76:1e:2c:
4f:ec:55:47:ce:f9:2b:bb:55:44:3a:c8:64:90:6d:8d:d3:84:
d4:79:a1:23:31:3d:c5:41:df:32:81:9e:df:90:54:4c:44:7f:
fc:c7:ee:de:03:6b:24:77:7b:ca:95:7c:88:ae:34:0d:62:f7:
4a:89:4f:90:5f:f5:7d:61:1e:2f:92:ed:7c:f3:51:f0:c2:2c:
16:29:bf:40
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVsQXinvx6yQnIf8jz/Y02uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczYzY5ZDA0NTgzNTAwYzVlZjgxMTM2ODMxMjM3NTkzZTBi
Yjg2Y2UwHhcNMjMwMTAxMDczNTA3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NmY0NDRkMjY0YzdmNmFkMTI1MjI3MGVmYjEyMzVhOGViMDZkMzdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtmHlwOqKJ7Id0ABlZfyppgGmJUqi
cpX4RGQ5UhHJ+xg/AoSCXK58D3gBGnR+mpJkhjr1iVUbiimmDb9lp5e0nPy7cf/c
0mg5Bykz2JKaRE/0jHGoQdHA13H7siCnDBwLPrWbmRyzyVhOnX/Wxe1Lyd2pmUZa
0Z6pp7F02al8VFZVaF1ppzUIBBxep+hylvRIbsu6PacyV93b2hszNJAyijtbpmyl
Q1vXqmUPj+eAgSZmupN4IhyQe35jf6/f6E2mSIfKnCUjdxn7YuhTn2l/KVsd3rLE
d+FNcbCJaL8ghjWrwLYSd5Qq9PluwZlL7Lm/IxBui4XlrlqTEKKF7Zx0oQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFIb0RNJkx/atElInDvsSNajrBtN6MB8GA1UdIwQY
MBaAFHPGnQRYNQDF74ETaDEjdZPgu4bOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQt
ZjljYjBhN2IyMDZjLzEvaHZSRTBtVEg5cTBTVWljTy14STFxT3NHMDNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQtZjljYjBhN2IyMDZj
LzEvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYHKgzmQ4Aw
DQYJKoZIhvcNAQELBQADggEBAGRmaU5vOiQ524Bb8ZOc+z+434XuyPfOUoYaBPmX
STimy+ckuAWnofVbRHMOh3Rld2Yt3wukC/L0g3A2c+a9mZ5vlDQVQcypB+y/sDbI
2b6DWBrRbZhx1yVpCfeGyAfFDmHzXsJI6LHcCQyaLdHnAuVrzbB4kq9kF5zzj9eD
zfP21HNogqcXck/YV+/CCAeNrGXdvyvW4UZ5Azu9ZdRPiKJxPYNgymxehDFokYZv
iNLAc3YeLE/sVUfO+Su7VUQ6yGSQbY3ThNR5oSMxPcVB3zKBnt+QVExEf/zH7t4D
ayR3e8qVfIiuNA1i90qJT5Bf9X1hHi+S7XzzUfDCLBYpv0A=
-----END CERTIFICATE-----
Generated at Mon Jan 1 06:16:35 2024 by rpki-client on console-ams.rpki-client.org