Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/rWWik7eBF7KLdS4TqWwocgVEgOo.roa
File: rWWik7eBF7KLdS4TqWwocgVEgOo.roa (raw, json)
Hash identifier: Lr20cVr6fgmwBEV3R816YTfKtwVJ01wTlI8HV/sh9SU=
Subject key identifier: AD:65:A2:93:B7:81:17:B2:8B:75:2E:13:A9:6C:28:72:05:44:80:EA
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 01857246ED2701AB000040FD5AEE65EDBC47
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/rWWik7eBF7KLdS4TqWwocgVEgOo.roa
Signing time: Mon 02 Jan 2023 11:38:48 +0000
ROA not before: Mon 02 Jan 2023 11:38:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398646
IP address blocks: 2a0c:9a40:808b::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:ed:27:01:ab:00:00:40:fd:5a:ee:65:ed:bc:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Jan 2 11:38:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad65a293b78117b28b752e13a96c2872054480ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:f9:7a:a7:07:97:02:b7:6d:8f:0e:77:7c:11:
e4:5d:d0:b8:8a:e2:de:c4:bd:90:e4:58:08:d0:e9:
08:af:ce:91:81:92:e1:33:21:64:7e:af:00:9d:12:
81:09:d9:78:ad:c4:8c:a9:cc:61:e9:b7:9f:ee:22:
17:7c:6f:95:92:b7:ca:61:49:eb:da:de:6f:df:1d:
b9:14:b2:04:a1:1f:e5:f8:c5:56:2c:ed:67:f4:a7:
f0:3c:15:a3:d8:9e:8e:5f:3d:c6:67:b2:44:4d:91:
49:77:61:31:47:89:12:cc:af:08:c0:96:2b:43:12:
fa:b9:81:22:ce:e7:5a:b0:ae:ae:f7:2c:44:9f:72:
66:34:5e:1c:d4:c7:3d:a9:84:f9:86:90:66:52:48:
78:23:ee:3a:a7:8e:eb:99:b7:84:86:49:8e:bf:8b:
43:7a:6c:b8:bb:df:7c:1e:4a:f7:13:c6:17:22:3c:
5a:ce:14:28:9b:52:85:c9:a2:14:fc:bb:cd:03:92:
a8:d7:8e:8a:df:e5:30:5d:5d:3b:4d:28:38:e8:c1:
b0:9f:a6:6c:d2:57:30:21:d2:40:6c:d2:f2:cb:94:
35:6d:66:b7:00:ad:08:32:af:59:fb:68:83:c8:99:
8d:1d:4b:76:44:68:2e:7a:4d:a2:57:e3:ec:1f:4f:
ea:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:65:A2:93:B7:81:17:B2:8B:75:2E:13:A9:6C:28:72:05:44:80:EA
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/rWWik7eBF7KLdS4TqWwocgVEgOo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:9a40:808b::/48
Signature Algorithm: sha256WithRSAEncryption
18:b3:38:73:da:0b:69:39:05:78:eb:9d:6b:ea:c8:7c:ae:10:
7e:48:61:bc:76:a9:f4:38:85:0a:9e:e4:f4:7d:26:10:2c:f2:
28:b0:5b:9a:53:95:11:3f:76:ad:41:54:a8:d2:04:50:ed:c3:
1f:73:80:71:fc:70:20:22:68:ee:12:a5:ea:54:f6:f6:34:10:
19:a9:34:13:24:20:28:2e:17:0c:b0:98:ad:2b:b1:d3:e3:89:
88:ec:4c:47:f7:e8:0f:66:1f:95:00:ab:eb:0e:c8:3a:ea:37:
24:87:15:97:46:09:a8:b9:d7:86:3c:af:18:a6:4b:be:4c:fc:
e4:ad:92:85:98:58:b9:55:be:f9:3d:99:34:05:81:b2:44:76:
ec:99:f7:80:0e:d8:01:fb:5d:61:48:d1:22:79:45:a7:9f:b6:
66:2e:4e:46:4b:03:9e:22:76:b2:b6:60:f2:d3:6a:0d:f9:f2:
f2:c0:39:09:7b:64:9f:9a:2e:1f:4e:ba:3c:41:21:13:bf:59:
9c:50:37:26:5b:37:99:ca:0e:f3:42:74:01:d8:5b:ed:de:b9:
0a:cf:68:c0:6a:ce:85:e1:52:50:98:35:cd:ea:16:f7:fb:5f:
a8:da:8b:35:23:2c:fc:d5:41:00:3a:19:92:e1:a6:0f:e5:b8:
75:98:d8:2b
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVyRu0nAasAAED9Wu5l7bxHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllOTVhMzYxZmUyYjJjNTI5MjYyNmJhNGM1NmE2NWE4MTRl
NDgwMDgwHhcNMjMwMTAyMTEzODQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZDY1YTI5M2I3ODExN2IyOGI3NTJlMTNhOTZjMjg3MjA1NDQ4MGVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAifl6pweXArdtjw53fBHkXdC4iuLe
xL2Q5FgI0OkIr86RgZLhMyFkfq8AnRKBCdl4rcSMqcxh6bef7iIXfG+VkrfKYUnr
2t5v3x25FLIEoR/l+MVWLO1n9KfwPBWj2J6OXz3GZ7JETZFJd2ExR4kSzK8IwJYr
QxL6uYEizudasK6u9yxEn3JmNF4c1Mc9qYT5hpBmUkh4I+46p47rmbeEhkmOv4tD
emy4u998Hkr3E8YXIjxazhQom1KFyaIU/LvNA5Ko146K3+UwXV07TSg46MGwn6Zs
0lcwIdJAbNLyy5Q1bWa3AK0IMq9Z+2iDyJmNHUt2RGguek2iV+PsH0/qnwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFK1lopO3gReyi3UuE6lsKHIFRIDqMB8GA1UdIwQY
MBaAFJ6Vo2H+KyxSkmJrpMVqZagU5IAIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2Yt
YmY0ZTUyN2I5ZmE4LzEvcldXaWs3ZUJGN0tMZFM0VHFXd29jZ1ZFZ09vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9mOTZmNzMtNjY4Ni00MTY0LWIyM2YtYmY0ZTUyN2I5ZmE4
LzEvbnBXallmNHJMRktTWW11a3hXcGxxQlRrZ0FnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgyaQICL
MA0GCSqGSIb3DQEBCwUAA4IBAQAYszhz2gtpOQV4651r6sh8rhB+SGG8dqn0OIUK
nuT0fSYQLPIosFuaU5URP3atQVSo0gRQ7cMfc4Bx/HAgImjuEqXqVPb2NBAZqTQT
JCAoLhcMsJitK7HT44mI7ExH9+gPZh+VAKvrDsg66jckhxWXRgmoudeGPK8Ypku+
TPzkrZKFmFi5Vb75PZk0BYGyRHbsmfeADtgB+11hSNEieUWnn7ZmLk5GSwOeInay
tmDy02oN+fLywDkJe2Sfmi4fTro8QSETv1mcUDcmWzeZyg7zQnQB2Fvt3rkKz2jA
as6F4VJQmDXN6hb3+1+o2os1Iyz81UEAOhmS4aYP5bh1mNgr
-----END CERTIFICATE-----
Generated at Mon Jan 1 23:36:58 2024 by rpki-client on console-fra.rpki-client.org