Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/825cce-0643-4b0b-94b8-b7273c8e3023/1/Hx7ocR9Feun3vbAFTYQqzZN7UUE.roa
File: Hx7ocR9Feun3vbAFTYQqzZN7UUE.roa (raw, json)
Hash identifier: Ve+EXN069s+ptbRM9ym9Lf3dK5Na+vgY3x7Fflje5rE=
Subject key identifier: 1F:1E:E8:71:1F:45:7A:E9:F7:BD:B0:05:4D:84:2A:CD:93:7B:51:41
Certificate issuer: /CN=9dd642fd4e35595b5fd458a43a3acac8b91395ce
Certificate serial: 01856C938C679FF0C9C6DC61C9B031151632
Authority key identifier: 9D:D6:42:FD:4E:35:59:5B:5F:D4:58:A4:3A:3A:CA:C8:B9:13:95:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ndZC_U41WVtf1FikOjrKyLkTlc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/825cce-0643-4b0b-94b8-b7273c8e3023/1/Hx7ocR9Feun3vbAFTYQqzZN7UUE.roa
Signing time: Sun 01 Jan 2023 09:04:47 +0000
ROA not before: Sun 01 Jan 2023 09:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203496
IP address blocks: 2001:67c:1948::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:93:8c:67:9f:f0:c9:c6:dc:61:c9:b0:31:15:16:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dd642fd4e35595b5fd458a43a3acac8b91395ce
Validity
Not Before: Jan 1 09:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f1ee8711f457ae9f7bdb0054d842acd937b5141
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:98:53:75:83:44:3b:1a:f0:e6:bb:44:f3:d5:
58:95:db:15:bb:a7:b5:fa:da:23:1a:c1:66:4d:66:
9b:63:5c:55:75:9c:29:ef:cd:1a:70:d0:d1:86:93:
4c:f3:f1:ce:f3:c6:df:95:86:4b:93:cb:9d:ca:1d:
16:9c:a2:99:19:f6:6a:18:a0:9b:ed:9e:6a:5a:a4:
e3:21:53:1d:6b:35:82:36:a9:75:93:7e:6e:15:d2:
92:20:98:0c:fb:5a:a7:b9:b4:30:25:89:c7:6a:53:
87:14:b4:ad:41:39:c3:f3:b5:fa:9e:de:39:ac:79:
a3:e9:a3:c8:bf:2e:3f:44:b5:cf:5b:4d:67:e6:1a:
fa:4b:e6:8a:33:80:ba:c8:bf:d8:d2:67:92:5d:db:
7d:8f:26:e4:b8:72:52:5f:6f:92:7b:f6:57:20:d7:
68:45:23:58:3e:b3:70:03:04:c4:3c:28:29:47:72:
b2:d3:4e:f6:ed:e8:bc:8b:57:b6:3f:6c:fd:a6:6d:
c1:42:57:08:21:46:ba:f8:3a:6a:5c:b0:7d:74:5f:
3f:a2:aa:08:71:f5:33:ca:2e:05:1b:07:8d:95:8a:
7a:cc:8a:af:ec:e1:3e:4f:c8:e3:5e:f0:4e:4e:f1:
6f:d2:cd:fa:e2:fa:ec:5f:8f:cf:fd:09:de:76:63:
67:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:1E:E8:71:1F:45:7A:E9:F7:BD:B0:05:4D:84:2A:CD:93:7B:51:41
X509v3 Authority Key Identifier:
keyid:9D:D6:42:FD:4E:35:59:5B:5F:D4:58:A4:3A:3A:CA:C8:B9:13:95:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ndZC_U41WVtf1FikOjrKyLkTlc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/825cce-0643-4b0b-94b8-b7273c8e3023/1/Hx7ocR9Feun3vbAFTYQqzZN7UUE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/825cce-0643-4b0b-94b8-b7273c8e3023/1/ndZC_U41WVtf1FikOjrKyLkTlc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1948::/48
Signature Algorithm: sha256WithRSAEncryption
01:30:6f:7b:4a:61:f1:04:d7:34:ee:9a:d7:f7:7a:b2:fa:ef:
0d:db:7d:2b:25:06:ae:43:4f:5d:af:08:ff:77:22:3d:6e:31:
d7:37:68:4c:3e:3f:58:84:4f:c7:3c:9f:3c:ad:96:9d:d2:3f:
05:35:b7:7e:45:ed:80:93:20:1d:11:d3:fe:d5:ea:a6:04:94:
6d:db:b2:e0:e2:3d:b3:3f:0c:72:d2:a6:1b:40:7b:de:c1:9e:
db:f6:52:9e:10:ab:4f:ce:46:f8:6e:94:5c:d5:8f:26:11:28:
46:ee:99:24:16:c9:3f:ca:a4:59:d5:2d:02:b5:98:e3:ec:4b:
f0:d2:1f:17:53:b4:e0:c0:f1:c8:79:10:4c:e5:4b:ef:f7:2b:
c2:3d:18:43:15:bc:7e:03:04:e0:df:f8:dd:92:f7:73:55:a7:
fb:8b:50:c3:66:0c:7c:95:31:f2:d5:36:a2:e4:27:68:54:5a:
9d:67:97:09:88:21:1f:3e:d5:f7:a3:aa:42:b3:1a:fa:42:eb:
f1:c9:0d:65:e7:86:3e:07:63:6c:ab:67:37:3d:0f:a2:2a:2c:
49:32:08:83:37:c0:8f:b7:ea:1b:0d:d3:0e:ee:24:18:86:36:
78:9c:3a:c3:fd:26:1b:2a:00:f4:15:ff:80:2e:c6:96:2c:2e:
33:18:c7:f1
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVsk4xnn/DJxtxhybAxFRYyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkZDY0MmZkNGUzNTU5NWI1ZmQ0NThhNDNhM2FjYWM4Yjkx
Mzk1Y2UwHhcNMjMwMTAxMDkwNDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZjFlZTg3MTFmNDU3YWU5ZjdiZGIwMDU0ZDg0MmFjZDkzN2I1MTQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh5hTdYNEOxrw5rtE89VYldsVu6e1
+tojGsFmTWabY1xVdZwp780acNDRhpNM8/HO88bflYZLk8udyh0WnKKZGfZqGKCb
7Z5qWqTjIVMdazWCNql1k35uFdKSIJgM+1qnubQwJYnHalOHFLStQTnD87X6nt45
rHmj6aPIvy4/RLXPW01n5hr6S+aKM4C6yL/Y0meSXdt9jybkuHJSX2+Se/ZXINdo
RSNYPrNwAwTEPCgpR3Ky00727ei8i1e2P2z9pm3BQlcIIUa6+DpqXLB9dF8/oqoI
cfUzyi4FGweNlYp6zIqv7OE+T8jjXvBOTvFv0s364vrsX4/P/QnedmNnIQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFB8e6HEfRXrp972wBU2EKs2Te1FBMB8GA1UdIwQY
MBaAFJ3WQv1ONVlbX9RYpDo6ysi5E5XOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbmRaQ19VNDFXVnRmMUZpa09qckt5TGtUbGM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS84MjVjY2UtMDY0My00YjBiLTk0Yjgt
YjcyNzNjOGUzMDIzLzEvSHg3b2NSOUZldW4zdmJBRlRZUXF6Wk43VVVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS84MjVjY2UtMDY0My00YjBiLTk0YjgtYjcyNzNjOGUzMDIz
LzEvbmRaQ19VNDFXVnRmMUZpa09qckt5TGtUbGM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfBlI
MA0GCSqGSIb3DQEBCwUAA4IBAQABMG97SmHxBNc07prX93qy+u8N230rJQauQ09d
rwj/dyI9bjHXN2hMPj9YhE/HPJ88rZad0j8FNbd+Re2AkyAdEdP+1eqmBJRt27Lg
4j2zPwxy0qYbQHvewZ7b9lKeEKtPzkb4bpRc1Y8mEShG7pkkFsk/yqRZ1S0CtZjj
7Evw0h8XU7TgwPHIeRBM5Uvv9yvCPRhDFbx+AwTg3/jdkvdzVaf7i1DDZgx8lTHy
1Tai5CdoVFqdZ5cJiCEfPtX3o6pCsxr6QuvxyQ1l54Y+B2Nsq2c3PQ+iKixJMgiD
N8CPt+obDdMO7iQYhjZ4nDrD/SYbKgD0Ff+ALsaWLC4zGMfx
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:00 2024 by rpki-client on console-fra.rpki-client.org