Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/URNIdQu0Tl1N8StfYzm_sFwVbDo.roa
File: URNIdQu0Tl1N8StfYzm_sFwVbDo.roa (raw, json)
Hash identifier: Y4+zjvVPx2x7oODckhpw/mSa0QQdqIPxMRy+NuFDU8Y=
Subject key identifier: 51:13:48:75:0B:B4:4E:5D:4D:F1:2B:5F:63:39:BF:B0:5C:15:6C:3A
Certificate issuer: /CN=6dfecfa0e6692595cfbea5266076e8e53efd9461
Certificate serial: 0185730C9E37EF39AA1AB2F145D5E51AC935
Authority key identifier: 6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/URNIdQu0Tl1N8StfYzm_sFwVbDo.roa
Signing time: Mon 02 Jan 2023 15:14:44 +0000
ROA not before: Mon 02 Jan 2023 15:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208529
IP address blocks: 2a0c:e304:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:0c:9e:37:ef:39:aa:1a:b2:f1:45:d5:e5:1a:c9:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dfecfa0e6692595cfbea5266076e8e53efd9461
Validity
Not Before: Jan 2 15:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=511348750bb44e5d4df12b5f6339bfb05c156c3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c4:fe:6d:0c:cd:6e:77:92:be:e3:b4:55:f0:
14:8c:2c:46:5e:90:c9:21:11:a2:c2:ac:f2:2e:f3:
17:50:74:56:15:eb:36:3d:82:d3:98:a7:3d:c8:a7:
4a:76:d4:4b:6f:2d:c0:b3:bb:74:13:9f:be:0b:98:
4f:d6:8a:bd:31:72:3d:cf:01:d8:e3:08:6c:4b:94:
da:d8:b5:49:d3:d0:2e:fd:e2:e2:e3:02:3d:92:7f:
ac:2c:62:7e:82:03:56:92:be:74:8b:21:88:1d:58:
46:78:97:1b:0c:4d:0b:25:36:9a:ae:80:5c:d8:1e:
5e:67:40:ea:2c:45:3a:0e:a8:57:35:69:33:11:f6:
bb:aa:4d:c7:7a:9f:0d:10:8c:6a:4d:2c:e2:59:78:
ed:4b:cf:68:73:17:15:7f:98:98:f7:aa:56:a6:cb:
49:32:bd:72:b8:79:08:3a:b3:de:0c:0f:f0:2e:16:
1a:cf:3d:02:66:46:bb:f2:04:dd:53:01:c2:26:df:
15:dd:f3:e4:37:50:62:cc:bf:f0:03:ab:e7:05:c5:
25:11:78:eb:47:53:58:59:e4:3d:30:87:3d:5c:34:
24:03:00:c0:2a:a2:a6:d6:bd:f2:9f:58:9e:84:a5:
2a:46:b0:59:08:ff:f1:bc:f4:bc:e1:bd:e9:81:d6:
65:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:13:48:75:0B:B4:4E:5D:4D:F1:2B:5F:63:39:BF:B0:5C:15:6C:3A
X509v3 Authority Key Identifier:
keyid:6D:FE:CF:A0:E6:69:25:95:CF:BE:A5:26:60:76:E8:E5:3E:FD:94:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf7PoOZpJZXPvqUmYHbo5T79lGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/URNIdQu0Tl1N8StfYzm_sFwVbDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fcfec7-d6c3-4b40-ba2c-f988d48e51e8/1/bf7PoOZpJZXPvqUmYHbo5T79lGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:e304:1::/48
Signature Algorithm: sha256WithRSAEncryption
b7:30:47:ac:4a:61:08:69:65:b5:e9:44:a9:45:95:e4:47:4b:
b6:c0:dc:b2:43:7c:33:37:3a:72:a8:ac:d4:5c:46:54:3a:b2:
e4:0f:91:8b:3f:88:5e:4d:e3:9b:b5:d4:eb:57:7f:60:71:87:
e1:33:c7:40:1d:4c:7a:83:ff:7d:62:f4:38:a3:37:0e:da:6f:
77:67:1e:69:bd:15:66:32:b2:e8:f9:1f:e8:ec:6e:87:d1:1e:
b6:6d:c0:50:35:83:78:9d:27:72:a2:55:44:e7:6f:e6:86:60:
55:12:3e:be:77:2f:31:0e:96:25:3f:ce:b3:29:c7:0d:de:74:
e7:9a:05:f6:1b:b4:e3:2a:99:fd:1b:58:1b:0c:7d:80:22:f4:
28:c8:63:2f:ce:fc:dc:24:83:ae:00:ea:40:28:8b:f0:d1:38:
5a:80:c1:da:3d:16:f4:c0:a7:3d:8d:40:59:39:73:55:26:c2:
cd:c8:a6:10:eb:24:76:18:f2:8e:f4:d3:4c:31:0f:d5:17:7b:
f8:e6:3c:74:80:8d:87:26:85:57:2b:8f:a2:7d:eb:bd:c6:c8:
94:bc:b3:82:39:44:e5:11:0d:28:02:b9:78:b7:80:ed:c1:2b:
da:5c:bf:9c:7a:c7:66:af:1c:d6:1a:73:63:51:da:4c:60:0a:
8c:78:f7:c3
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVzDJ437zmqGrLxRdXlGsk1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZmVjZmEwZTY2OTI1OTVjZmJlYTUyNjYwNzZlOGU1M2Vm
ZDk0NjEwHhcNMjMwMTAyMTUxNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MTEzNDg3NTBiYjQ0ZTVkNGRmMTJiNWY2MzM5YmZiMDVjMTU2YzNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtsT+bQzNbneSvuO0VfAUjCxGXpDJ
IRGiwqzyLvMXUHRWFes2PYLTmKc9yKdKdtRLby3As7t0E5++C5hP1oq9MXI9zwHY
4whsS5Ta2LVJ09Au/eLi4wI9kn+sLGJ+ggNWkr50iyGIHVhGeJcbDE0LJTaaroBc
2B5eZ0DqLEU6DqhXNWkzEfa7qk3Hep8NEIxqTSziWXjtS89ocxcVf5iY96pWpstJ
Mr1yuHkIOrPeDA/wLhYazz0CZka78gTdUwHCJt8V3fPkN1BizL/wA6vnBcUlEXjr
R1NYWeQ9MIc9XDQkAwDAKqKm1r3yn1iehKUqRrBZCP/xvPS84b3pgdZlEQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFETSHULtE5dTfErX2M5v7BcFWw6MB8GA1UdIwQY
MBaAFG3+z6DmaSWVz76lJmB26OU+/ZRhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmY3UG9PWnBKWlhQdnFVbVlIYm81VDc5bEdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9mY2ZlYzctZDZjMy00YjQwLWJhMmMt
Zjk4OGQ0OGU1MWU4LzEvVVJOSWRRdTBUbDFOOFN0Zll6bV9zRndWYkRvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy9mY2ZlYzctZDZjMy00YjQwLWJhMmMtZjk4OGQ0OGU1MWU4
LzEvYmY3UG9PWnBKWlhQdnFVbVlIYm81VDc5bEdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgzjBAAB
MA0GCSqGSIb3DQEBCwUAA4IBAQC3MEesSmEIaWW16USpRZXkR0u2wNyyQ3wzNzpy
qKzUXEZUOrLkD5GLP4heTeObtdTrV39gcYfhM8dAHUx6g/99YvQ4ozcO2m93Zx5p
vRVmMrLo+R/o7G6H0R62bcBQNYN4nSdyolVE52/mhmBVEj6+dy8xDpYlP86zKccN
3nTnmgX2G7TjKpn9G1gbDH2AIvQoyGMvzvzcJIOuAOpAKIvw0ThagMHaPRb0wKc9
jUBZOXNVJsLNyKYQ6yR2GPKO9NNMMQ/VF3v45jx0gI2HJoVXK4+ifeu9xsiUvLOC
OUTlEQ0oArl4t4DtwSvaXL+cesdmrxzWGnNjUdpMYAqMePfD
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:09 2024 by rpki-client on console-ams.rpki-client.org