Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/vGZnmP57Ic3psmzmvlTalDcy4ZU.roa
File: vGZnmP57Ic3psmzmvlTalDcy4ZU.roa (raw, json)
Hash identifier: 1FveI+TcPKhElJ5LHgnB9eWmrbrQY6d2CUy49L7n0FE=
Subject key identifier: BC:66:67:98:FE:7B:21:CD:E9:B2:6C:E6:BE:54:DA:94:37:32:E1:95
Certificate issuer: /CN=860d9f01a98b514ebd3c2723d7f7eb448326f5e2
Certificate serial: 01856CB82041F784F7DD58E0A18FD2D8EEB6
Authority key identifier: 86:0D:9F:01:A9:8B:51:4E:BD:3C:27:23:D7:F7:EB:44:83:26:F5:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hg2fAamLUU69PCcj1_frRIMm9eI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/vGZnmP57Ic3psmzmvlTalDcy4ZU.roa
Signing time: Sun 01 Jan 2023 09:44:44 +0000
ROA not before: Sun 01 Jan 2023 09:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13020
IP address blocks: 2001:67c:20a1::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:20:41:f7:84:f7:dd:58:e0:a1:8f:d2:d8:ee:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=860d9f01a98b514ebd3c2723d7f7eb448326f5e2
Validity
Not Before: Jan 1 09:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc666798fe7b21cde9b26ce6be54da943732e195
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f1:a7:2b:b9:42:4b:23:ff:d1:ea:18:19:39:
bc:cb:08:5e:b1:8d:2f:71:2a:3b:08:88:19:a3:aa:
25:7b:cb:95:a1:c3:a3:9c:1f:e8:02:de:57:08:76:
ab:90:3c:26:71:65:ec:c2:a1:04:67:5b:ba:d9:58:
54:81:43:01:ab:e5:32:49:71:63:eb:b0:1d:29:0d:
97:1f:f7:95:f3:e8:84:8d:4a:d3:aa:37:ce:03:7c:
bf:f0:14:e5:49:d2:8c:03:53:9f:15:b5:6a:4a:ff:
14:d6:aa:e6:d6:7a:fe:b0:2a:b0:c6:9f:a4:73:05:
ce:b6:73:fe:12:84:dd:72:e6:9b:7d:40:fc:49:52:
25:82:30:9c:d0:ad:33:3a:dd:07:f8:82:53:d5:57:
b0:fd:a6:63:bf:d4:ae:ba:57:4f:83:90:22:85:66:
40:9f:44:a8:4c:fb:b1:4a:32:6b:42:a1:e0:26:6d:
ca:c9:4d:e2:04:09:a0:01:b3:0f:70:df:0b:8e:8e:
c2:d2:11:47:87:0d:6d:0e:d1:6b:ac:a7:bf:2e:b7:
a0:12:9b:b2:77:ea:f7:c6:9b:35:5e:2a:c6:95:84:
3f:b6:de:1f:18:52:bb:1d:e5:10:6e:08:49:35:3b:
c6:25:74:55:f0:1c:81:9d:02:fb:8b:6c:df:69:9b:
20:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:66:67:98:FE:7B:21:CD:E9:B2:6C:E6:BE:54:DA:94:37:32:E1:95
X509v3 Authority Key Identifier:
keyid:86:0D:9F:01:A9:8B:51:4E:BD:3C:27:23:D7:F7:EB:44:83:26:F5:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hg2fAamLUU69PCcj1_frRIMm9eI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/vGZnmP57Ic3psmzmvlTalDcy4ZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/23bea6-9001-441d-8364-61cb43c2db85/1/hg2fAamLUU69PCcj1_frRIMm9eI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:20a1::/48
Signature Algorithm: sha256WithRSAEncryption
a7:49:9e:91:38:f1:e1:b6:7b:ac:5c:75:a4:f8:13:2a:1d:23:
9f:55:d0:27:f0:47:bc:1b:1f:9a:7b:a4:04:03:85:74:4c:43:
d9:f8:eb:36:0e:bf:94:98:73:e5:60:d0:22:89:0e:4f:2b:e8:
fe:f4:1a:90:5d:ee:eb:48:e0:40:5f:30:6f:56:71:ac:00:9d:
8f:64:6f:dd:56:36:14:ee:ed:9c:4d:c4:1c:27:17:5f:9a:90:
04:07:7b:c7:2d:d1:e9:9b:c8:69:c0:96:a5:f2:22:28:8d:5c:
67:61:69:c0:56:d5:21:88:c7:75:01:9e:65:dd:78:4a:8f:17:
35:78:ef:a5:5f:3c:6f:5d:c3:dc:28:0b:73:8b:e8:21:79:5e:
ea:13:54:45:4a:b0:7d:c5:b9:68:85:4e:ee:51:81:8d:e7:55:
0f:59:fd:06:ad:96:2f:ed:d5:76:85:ca:6e:c1:12:c4:68:6c:
22:46:0a:64:e6:f1:b6:6b:2c:40:95:f9:1c:d8:a7:37:06:0e:
65:e3:a6:b0:0b:51:cb:2d:35:08:56:49:f2:9e:28:7e:f1:8d:
76:98:d3:8e:9e:d9:93:2e:65:20:02:b5:a7:ea:09:6b:26:ad:
09:d5:bb:c7:db:64:c7:9f:04:5a:b1:60:d7:63:86:46:b3:e8:
a6:50:01:6a
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVsuCBB94T33VjgoY/S2O62MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2MGQ5ZjAxYTk4YjUxNGViZDNjMjcyM2Q3ZjdlYjQ0ODMy
NmY1ZTIwHhcNMjMwMTAxMDk0NDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYzY2Njc5OGZlN2IyMWNkZTliMjZjZTZiZTU0ZGE5NDM3MzJlMTk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyvGnK7lCSyP/0eoYGTm8ywhesY0v
cSo7CIgZo6ole8uVocOjnB/oAt5XCHarkDwmcWXswqEEZ1u62VhUgUMBq+UySXFj
67AdKQ2XH/eV8+iEjUrTqjfOA3y/8BTlSdKMA1OfFbVqSv8U1qrm1nr+sCqwxp+k
cwXOtnP+EoTdcuabfUD8SVIlgjCc0K0zOt0H+IJT1Vew/aZjv9SuuldPg5AihWZA
n0SoTPuxSjJrQqHgJm3KyU3iBAmgAbMPcN8Ljo7C0hFHhw1tDtFrrKe/LregEpuy
d+r3xps1XirGlYQ/tt4fGFK7HeUQbghJNTvGJXRV8ByBnQL7i2zfaZsgDQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFLxmZ5j+eyHN6bJs5r5U2pQ3MuGVMB8GA1UdIwQY
MBaAFIYNnwGpi1FOvTwnI9f360SDJvXiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGcyZkFhbUxVVTY5UENjajFfZnJSSU1tOWVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC8yM2JlYTYtOTAwMS00NDFkLTgzNjQt
NjFjYjQzYzJkYjg1LzEvdkdabm1QNTdJYzNwc216bXZsVGFsRGN5NFpVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOC8yM2JlYTYtOTAwMS00NDFkLTgzNjQtNjFjYjQzYzJkYjg1
LzEvaGcyZkFhbUxVVTY5UENjajFfZnJSSU1tOWVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCCh
MA0GCSqGSIb3DQEBCwUAA4IBAQCnSZ6ROPHhtnusXHWk+BMqHSOfVdAn8Ee8Gx+a
e6QEA4V0TEPZ+Os2Dr+UmHPlYNAiiQ5PK+j+9BqQXe7rSOBAXzBvVnGsAJ2PZG/d
VjYU7u2cTcQcJxdfmpAEB3vHLdHpm8hpwJal8iIojVxnYWnAVtUhiMd1AZ5l3XhK
jxc1eO+lXzxvXcPcKAtzi+gheV7qE1RFSrB9xblohU7uUYGN51UPWf0GrZYv7dV2
hcpuwRLEaGwiRgpk5vG2ayxAlfkc2Kc3Bg5l46awC1HLLTUIVknynih+8Y12mNOO
ntmTLmUgArWn6glrJq0J1bvH22THnwRasWDXY4ZGs+imUAFq
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:10 2023 by rpki-client on console-fra.rpki-client.org