Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/AW1GsFJHpvMccMRcJu92ng4PK4U.roa
File: AW1GsFJHpvMccMRcJu92ng4PK4U.roa (raw, json)
Hash identifier: zi3hfpN58AsRMUEHdTbUQ2xlQe3erH3UidYhmDPpnN4=
Subject key identifier: 01:6D:46:B0:52:47:A6:F3:1C:70:C4:5C:26:EF:76:9E:0E:0F:2B:85
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 0187A8ED5F492FA06B4A75CFB718E5A8A4C4
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/AW1GsFJHpvMccMRcJu92ng4PK4U.roa
Signing time: Sat 22 Apr 2023 12:25:41 +0000
ROA not before: Sat 22 Apr 2023 12:25:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40676
IP address blocks: 2a09:ff00:200::/44 maxlen: 44
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a8:ed:5f:49:2f:a0:6b:4a:75:cf:b7:18:e5:a8:a4:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Apr 22 12:25:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=016d46b05247a6f31c70c45c26ef769e0e0f2b85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f0:14:1d:44:e2:8a:17:d8:5b:93:92:1f:1e:
da:de:09:c6:80:2d:be:68:e6:61:b3:ec:0a:7a:43:
b1:a6:fa:21:d6:34:55:4a:a0:9c:71:3c:f8:e4:45:
cd:e6:6a:17:ec:19:34:b1:2d:41:66:d8:87:1d:0b:
33:23:22:9f:05:38:49:84:a7:e9:22:81:8c:7a:dc:
ae:88:63:73:e6:ed:55:ec:00:07:87:fb:c2:a2:4f:
c3:12:f7:34:5d:9c:65:5f:30:db:2c:f0:7f:93:cc:
96:33:0b:92:fa:d3:c7:73:43:64:df:1e:b4:55:c2:
53:4d:fd:80:d4:aa:29:9b:17:ba:df:20:df:b5:40:
fa:52:64:dd:c5:a3:07:c2:49:aa:3a:ff:d4:55:81:
f6:b6:1d:34:a2:8d:87:64:65:9e:d9:37:df:70:52:
11:09:87:bd:56:46:9a:8a:df:ff:a0:ac:38:6e:8d:
b3:83:37:40:7c:26:6d:c5:47:56:3a:53:82:f5:f4:
2a:4e:b0:1b:f9:d5:35:22:b4:a7:6c:58:76:a3:4f:
0f:5b:49:5f:c3:89:e6:f5:ee:11:f6:04:de:aa:37:
fa:9e:d0:8b:03:a5:5b:ed:47:b1:78:f9:58:32:82:
8b:fe:70:65:8e:30:5b:67:eb:29:eb:d8:42:f3:10:
bd:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:6D:46:B0:52:47:A6:F3:1C:70:C4:5C:26:EF:76:9E:0E:0F:2B:85
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/AW1GsFJHpvMccMRcJu92ng4PK4U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:ff00:200::/44
Signature Algorithm: sha256WithRSAEncryption
7d:70:85:45:a3:44:cf:dc:fc:c0:98:72:38:ff:58:81:71:0e:
d3:38:85:5d:d1:18:97:22:5a:2f:a2:d2:39:1d:a2:cc:96:b4:
a5:f6:ef:51:96:ac:8b:f1:85:36:df:e1:e5:34:0d:14:cc:4c:
dc:db:d9:75:2d:54:46:32:ee:72:4e:a9:9a:2b:2f:4e:3e:5d:
59:e1:56:e7:d8:92:4c:82:eb:8a:8e:b0:81:58:8a:35:52:82:
ae:41:5c:7c:3b:03:b0:ae:8e:b2:a7:5b:00:4b:3d:35:5b:fb:
4b:e2:00:b7:28:6b:45:3d:73:45:e4:9e:39:04:08:b5:78:45:
93:09:b8:ed:f6:c4:03:f4:1b:66:21:e7:4f:8b:96:30:ef:7b:
2f:d8:62:b1:3f:d5:ba:57:7a:2b:32:0b:f1:2e:c5:0e:80:64:
7f:86:33:54:2d:e0:c5:40:9b:62:e2:20:c3:e3:e9:57:5b:fb:
fb:26:92:75:ce:3f:1c:05:8b:0f:f5:88:03:69:08:c5:64:01:
87:5f:3e:ab:08:f9:36:84:91:90:d0:24:9d:73:f8:1e:21:61:
47:5b:a1:7e:82:91:0f:16:62:65:06:52:cb:53:e3:77:3f:05:
c5:cd:29:9c:cf:f7:86:14:6f:17:55:77:cd:25:cd:8f:11:ef:
78:d7:03:cd
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYeo7V9JL6BrSnXPtxjlqKTEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmOGFlYTJmMDI1ZjQ5NWJlYWNlZTdjZTVhODgyMDUxOWRk
YTEzNzAwHhcNMjMwNDIyMTIyNTQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMTZkNDZiMDUyNDdhNmYzMWM3MGM0NWMyNmVmNzY5ZTBlMGYyYjg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq/AUHUTiihfYW5OSHx7a3gnGgC2+
aOZhs+wKekOxpvoh1jRVSqCccTz45EXN5moX7Bk0sS1BZtiHHQszIyKfBThJhKfp
IoGMetyuiGNz5u1V7AAHh/vCok/DEvc0XZxlXzDbLPB/k8yWMwuS+tPHc0Nk3x60
VcJTTf2A1Kopmxe63yDftUD6UmTdxaMHwkmqOv/UVYH2th00oo2HZGWe2TffcFIR
CYe9Vkaait//oKw4bo2zgzdAfCZtxUdWOlOC9fQqTrAb+dU1IrSnbFh2o08PW0lf
w4nm9e4R9gTeqjf6ntCLA6Vb7UexePlYMoKL/nBljjBbZ+sp69hC8xC9bwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFAFtRrBSR6bzHHDEXCbvdp4ODyuFMB8GA1UdIwQY
MBaAFE+K6i8CX0lb6s7nzlqIIFGd2hNwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDRycUx3SmZTVnZxenVmT1dvZ2dVWjNhRTNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS9lYjcwYTMtMTdlMS00ZDg2LThiOWUt
NjA4MDk1MmYwZTA0LzEvQVcxR3NGSkhwdk1jY01SY0p1OTJuZzRQSzRVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS9lYjcwYTMtMTdlMS00ZDg2LThiOWUtNjA4MDk1MmYwZTA0
LzEvVDRycUx3SmZTVnZxenVmT1dvZ2dVWjNhRTNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgn/AAIA
MA0GCSqGSIb3DQEBCwUAA4IBAQB9cIVFo0TP3PzAmHI4/1iBcQ7TOIVd0RiXIlov
otI5HaLMlrSl9u9RlqyL8YU23+HlNA0UzEzc29l1LVRGMu5yTqmaKy9OPl1Z4Vbn
2JJMguuKjrCBWIo1UoKuQVx8OwOwro6yp1sASz01W/tL4gC3KGtFPXNF5J45BAi1
eEWTCbjt9sQD9BtmIedPi5Yw73sv2GKxP9W6V3orMgvxLsUOgGR/hjNULeDFQJti
4iDD4+lXW/v7JpJ1zj8cBYsP9YgDaQjFZAGHXz6rCPk2hJGQ0CSdc/geIWFHW6F+
gpEPFmJlBlLLU+N3PwXFzSmcz/eGFG8XVXfNJc2PEe941wPN
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:27 2023 by rpki-client on console-ams.rpki-client.org