Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1zC2DSXFR_QJ1cLLOiqLMq_0228.roa
File: 1zC2DSXFR_QJ1cLLOiqLMq_0228.roa (raw, json)
Hash identifier: BgeNXUxiqN5OHT/CEMNzWt1vuA4CEt8ulrl/o9FBu8w=
Subject key identifier: D7:30:B6:0D:25:C5:47:F4:09:D5:C2:CB:3A:2A:8B:32:AF:F4:DB:6F
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01856D8205EF60BCAFDEDD5336B5844375F5
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1zC2DSXFR_QJ1cLLOiqLMq_0228.roa
Signing time: Sun 01 Jan 2023 13:25:15 +0000
ROA not before: Sun 01 Jan 2023 13:25:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203559
IP address blocks: 2a00:1728:9::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:82:05:ef:60:bc:af:de:dd:53:36:b5:84:43:75:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 13:25:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d730b60d25c547f409d5c2cb3a2a8b32aff4db6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:53:b8:3e:54:b2:64:9f:f5:0d:06:dc:cb:71:
e4:13:69:bc:da:5e:73:41:c2:2c:9f:50:60:a7:bd:
76:6f:ee:b8:07:25:01:99:d4:9e:a5:d2:45:48:07:
e3:f4:8c:69:22:d5:e6:dd:c8:00:78:0d:6c:06:ee:
92:9b:0c:31:f2:b0:ce:f7:ad:8a:3a:5e:31:4c:d2:
df:5d:ea:7f:3b:77:c9:4b:d7:ac:be:ae:10:48:d8:
bd:a8:05:ac:59:9a:c9:95:94:04:6c:d2:20:f8:56:
7e:b8:54:37:ab:cd:55:77:5f:1c:b5:99:e8:87:74:
e5:29:b8:e5:16:21:66:e3:c5:37:96:57:0f:f4:0e:
8f:f8:eb:9d:d1:77:1c:e5:8d:b7:c3:80:8b:a5:f4:
d2:ab:41:43:ea:78:04:27:40:0f:36:52:12:bc:6c:
be:75:1f:3c:36:1e:c0:0c:06:6b:1f:56:fc:14:d4:
3e:81:36:01:98:5b:0c:9a:54:15:4e:13:5c:4a:98:
65:42:bb:40:ef:84:67:82:92:18:a8:1c:b2:15:00:
06:e4:b3:33:1e:24:99:dd:35:ac:a2:5d:d3:ff:2d:
24:68:5e:97:97:96:60:5f:69:f1:e9:5b:eb:35:79:
ef:45:d0:d6:67:5e:33:50:a1:51:63:b7:82:ef:62:
89:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:30:B6:0D:25:C5:47:F4:09:D5:C2:CB:3A:2A:8B:32:AF:F4:DB:6F
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1zC2DSXFR_QJ1cLLOiqLMq_0228.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1728:9::/48
Signature Algorithm: sha256WithRSAEncryption
09:fa:8f:d7:1d:81:de:ca:60:2f:79:ca:3f:32:72:e1:36:85:
58:35:9f:d6:01:32:c2:53:28:89:9e:1e:2b:0d:45:6d:03:32:
0f:4a:02:88:89:0d:56:06:82:81:70:b4:8c:19:d4:03:95:e8:
bd:af:fc:0a:02:d6:9d:50:43:e0:de:c4:75:30:e1:b8:01:4a:
ed:87:0f:d8:94:a1:bd:39:ec:f8:87:17:06:42:20:e3:8b:58:
a0:0b:2d:7a:75:a3:50:8e:0f:96:a5:c8:2d:be:bc:2e:a1:6d:
5c:af:cd:ef:7c:90:e8:4f:c5:e1:af:21:4f:50:33:91:12:ba:
f2:85:3e:25:02:17:01:55:e6:50:00:60:b3:0c:80:2b:99:b6:
3d:40:7d:c1:55:26:71:4d:cd:82:03:15:01:f1:ef:8e:a6:3c:
ba:bd:f8:1b:f5:14:98:03:5d:c4:a6:c3:5e:16:1d:18:74:dc:
88:db:93:42:dc:31:1e:59:b4:df:e8:0f:f7:89:cf:16:91:36:
47:c8:71:8b:2a:e6:98:34:e3:67:b2:f0:0d:87:fc:70:68:2e:
e4:6c:cf:72:61:1a:24:42:02:84:15:9b:f1:15:2c:06:61:7d:
26:81:be:51:53:7a:25:45:a6:65:68:06:bc:73:56:5c:0e:88:
31:46:ab:96
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVtggXvYLyv3t1TNrWEQ3X1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjMwMTAxMTMyNTE1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNzMwYjYwZDI1YzU0N2Y0MDlkNWMyY2IzYTJhOGIzMmFmZjRkYjZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9VO4PlSyZJ/1DQbcy3HkE2m82l5z
QcIsn1Bgp712b+64ByUBmdSepdJFSAfj9IxpItXm3cgAeA1sBu6Smwwx8rDO962K
Ol4xTNLfXep/O3fJS9esvq4QSNi9qAWsWZrJlZQEbNIg+FZ+uFQ3q81Vd18ctZno
h3TlKbjlFiFm48U3llcP9A6P+Oud0Xcc5Y23w4CLpfTSq0FD6ngEJ0APNlISvGy+
dR88Nh7ADAZrH1b8FNQ+gTYBmFsMmlQVThNcSphlQrtA74RngpIYqByyFQAG5LMz
HiSZ3TWsol3T/y0kaF6Xl5ZgX2nx6VvrNXnvRdDWZ14zUKFRY7eC72KJUQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFNcwtg0lxUf0CdXCyzoqizKv9NtvMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvMXpDMkRTWEZSX1FKMWNMTE9pcUxNcV8wMjI4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgAXKAAJ
MA0GCSqGSIb3DQEBCwUAA4IBAQAJ+o/XHYHeymAveco/MnLhNoVYNZ/WATLCUyiJ
nh4rDUVtAzIPSgKIiQ1WBoKBcLSMGdQDlei9r/wKAtadUEPg3sR1MOG4AUrthw/Y
lKG9Oez4hxcGQiDji1igCy16daNQjg+WpcgtvrwuoW1cr83vfJDoT8XhryFPUDOR
ErryhT4lAhcBVeZQAGCzDIArmbY9QH3BVSZxTc2CAxUB8e+Opjy6vfgb9RSYA13E
psNeFh0YdNyI25NC3DEeWbTf6A/3ic8WkTZHyHGLKuaYNONnsvANh/xwaC7kbM9y
YRokQgKEFZvxFSwGYX0mgb5RU3olRaZlaAa8c1ZcDogxRquW
-----END CERTIFICATE-----
Generated at Tue Jan 2 08:59:08 2024 by rpki-client on console-ams.rpki-client.org