Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/M9py4BoH3Ew3brifolls4A5xR_k.roa
File: M9py4BoH3Ew3brifolls4A5xR_k.roa (raw, json)
Hash identifier: 8NtdrPthyKEoNF1yGWUZimvvkXFpTnF3/b0PbmSl9a4=
Subject key identifier: 33:DA:72:E0:1A:07:DC:4C:37:6E:B8:9F:A2:59:6C:E0:0E:71:47:F9
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01856D820C2D3B9245A80A8B8D605B8DCF15
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/M9py4BoH3Ew3brifolls4A5xR_k.roa
Signing time: Sun 01 Jan 2023 13:25:17 +0000
ROA not before: Sun 01 Jan 2023 13:25:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205175
IP address blocks: 2a00:1728:31::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:82:0c:2d:3b:92:45:a8:0a:8b:8d:60:5b:8d:cf:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 13:25:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=33da72e01a07dc4c376eb89fa2596ce00e7147f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:06:42:7f:dd:8b:23:e9:9e:c7:e0:1d:7e:7b:
e2:94:6c:e0:e9:5a:60:9b:82:33:fc:77:99:2b:9f:
c9:a3:f1:0a:d5:fb:40:8c:a7:85:10:9c:ae:85:12:
ad:e0:29:f9:95:85:4d:d0:87:c7:40:7d:8e:1f:8c:
e0:70:07:cd:95:9f:34:bd:0c:8b:0e:e1:60:0a:ee:
94:f3:14:a3:dc:40:c2:1d:48:dd:13:0e:47:36:d1:
68:2a:c3:fb:e2:fa:d5:7f:1b:aa:f9:0b:fc:da:2c:
4a:26:54:3d:95:fb:f8:40:73:03:1a:79:d7:85:60:
43:a5:b8:fc:6c:13:85:03:97:95:0d:06:01:c8:b1:
d3:da:d7:4d:54:42:9c:53:a0:c9:96:9f:74:7d:36:
39:bc:5b:c8:1d:f6:3e:15:94:d3:44:54:5b:da:84:
43:ce:f8:52:53:49:b0:69:58:71:af:9f:3a:06:98:
86:91:9e:b3:4a:81:85:19:7d:ec:5f:1a:37:97:86:
b3:8e:ce:c4:36:26:a7:58:ee:87:0b:91:94:2f:6d:
ec:47:e3:81:9c:80:3b:92:9f:c0:b9:a3:d8:d8:5d:
1b:82:82:e7:97:e1:08:1d:91:d4:89:9b:a8:cd:f8:
30:a6:3b:b1:25:f4:20:cd:2c:f9:ea:69:9f:8d:20:
57:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:DA:72:E0:1A:07:DC:4C:37:6E:B8:9F:A2:59:6C:E0:0E:71:47:F9
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/M9py4BoH3Ew3brifolls4A5xR_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:1728:31::/48
Signature Algorithm: sha256WithRSAEncryption
2d:88:04:ec:af:fa:fd:cb:13:29:69:6e:02:6b:35:61:c1:6c:
d4:32:ff:17:dc:a5:1c:99:f5:f8:55:e9:5e:c3:da:f3:1f:1d:
5e:d6:18:df:80:1d:9d:1a:9e:6e:70:a4:d3:0a:10:d7:ca:66:
32:fd:10:ef:cf:1b:47:e4:14:85:2f:fd:4f:e2:ad:31:52:41:
ad:86:b7:b4:c7:fa:db:0f:e6:a1:4a:af:a7:c8:6c:c0:08:e7:
87:4c:64:19:fd:90:b2:d6:cc:c5:2a:71:a7:a5:69:11:c5:f3:
88:af:b9:39:c3:82:4a:5f:84:56:6a:05:c2:7a:72:2d:73:e8:
c9:b1:48:68:8b:59:c0:c5:6b:bd:40:c1:cb:d6:17:64:2f:c1:
2b:c5:ec:91:5f:12:59:86:a3:b2:09:8d:2d:6b:72:61:2e:e2:
33:91:29:07:2f:16:eb:2d:3f:5e:40:7e:4e:95:5c:53:13:80:
c7:c2:dd:66:72:78:40:d9:b7:02:7f:4f:43:75:f3:64:6a:4e:
5e:90:ab:9a:4b:dc:1e:24:6f:ef:8e:3e:44:fb:cf:23:4e:c6:
3c:03:71:26:fa:d7:97:53:7d:77:05:be:6b:18:dd:df:24:d5:
d9:4b:35:c0:fc:1e:26:b3:0d:61:2a:e2:fa:8c:fe:70:0f:5c:
c3:1a:34:40
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVtggwtO5JFqAqLjWBbjc8VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjMwMTAxMTMyNTE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzM2RhNzJlMDFhMDdkYzRjMzc2ZWI4OWZhMjU5NmNlMDBlNzE0N2Y5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoAZCf92LI+mex+AdfnvilGzg6Vpg
m4Iz/HeZK5/Jo/EK1ftAjKeFEJyuhRKt4Cn5lYVN0IfHQH2OH4zgcAfNlZ80vQyL
DuFgCu6U8xSj3EDCHUjdEw5HNtFoKsP74vrVfxuq+Qv82ixKJlQ9lfv4QHMDGnnX
hWBDpbj8bBOFA5eVDQYByLHT2tdNVEKcU6DJlp90fTY5vFvIHfY+FZTTRFRb2oRD
zvhSU0mwaVhxr586BpiGkZ6zSoGFGX3sXxo3l4azjs7ENianWO6HC5GUL23sR+OB
nIA7kp/AuaPY2F0bgoLnl+EIHZHUiZuozfgwpjuxJfQgzSz56mmfjSBX2wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFDPacuAaB9xMN264n6JZbOAOcUf5MB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvTTlweTRCb0gzRXczYnJpZm9sbHM0QTV4Ul9rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgAXKAAx
MA0GCSqGSIb3DQEBCwUAA4IBAQAtiATsr/r9yxMpaW4CazVhwWzUMv8X3KUcmfX4
Velew9rzHx1e1hjfgB2dGp5ucKTTChDXymYy/RDvzxtH5BSFL/1P4q0xUkGthre0
x/rbD+ahSq+nyGzACOeHTGQZ/ZCy1szFKnGnpWkRxfOIr7k5w4JKX4RWagXCenIt
c+jJsUhoi1nAxWu9QMHL1hdkL8ErxeyRXxJZhqOyCY0ta3JhLuIzkSkHLxbrLT9e
QH5OlVxTE4DHwt1mcnhA2bcCf09DdfNkak5ekKuaS9weJG/vjj5E+88jTsY8A3Em
+teXU313Bb5rGN3fJNXZSzXA/B4msw1hKuL6jP5wD1zDGjRA
-----END CERTIFICATE-----
Generated at Tue Aug 22 08:50:44 2023 by rpki-client on console-ams.rpki-client.org