Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/6mlY8c_c7mAWiLTfKLQrkRgcLOg.roa
File: 6mlY8c_c7mAWiLTfKLQrkRgcLOg.roa (raw, json)
Hash identifier: xSPeHMdE5p9xR/kwrU+NKoYlLTZt7IU0NMScL/PGD4M=
Subject key identifier: EA:69:58:F1:CF:DC:EE:60:16:88:B4:DF:28:B4:2B:91:18:1C:2C:E8
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 0187B27FA1D65FD2CC75AB9A380FF6A35C0C
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/6mlY8c_c7mAWiLTfKLQrkRgcLOg.roa
Signing time: Mon 24 Apr 2023 09:02:01 +0000
ROA not before: Mon 24 Apr 2023 09:02:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2a0b:3c40:22::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 24 Apr 2023 16:02:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b2:7f:a1:d6:5f:d2:cc:75:ab:9a:38:0f:f6:a3:5c:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Apr 24 09:02:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ea6958f1cfdcee601688b4df28b42b91181c2ce8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b9:a7:53:e4:e0:c4:6c:f0:40:bf:f0:2e:08:
9e:8f:d3:3d:6b:ea:02:e9:c4:d5:9f:38:cf:cb:eb:
9a:76:d3:d1:0a:9a:20:33:97:a7:31:32:11:7b:f7:
e1:f3:87:a4:d1:bb:ca:46:4f:55:b0:07:6a:48:5a:
c6:79:ea:1c:14:d6:fc:c6:e1:75:38:b4:91:1d:b7:
d9:8d:e5:2c:22:60:c0:5b:71:10:72:7d:af:e9:18:
55:91:55:35:6c:b3:c1:c2:69:75:51:a5:9a:9a:66:
ee:7b:2a:73:ab:9e:7f:cc:f0:49:e2:e7:88:77:84:
a9:d0:aa:09:2a:5f:3a:f4:c4:65:08:26:b5:90:54:
f2:21:a7:ab:ec:ef:41:cf:27:07:4b:b0:e6:21:38:
64:03:c8:5e:4f:00:58:78:f7:a9:52:cb:ab:08:1c:
17:26:1c:f7:1a:4f:48:6a:6d:63:56:5d:54:e3:7a:
b5:32:00:07:33:73:15:b3:5d:91:ae:86:71:6a:e1:
7a:50:1d:c5:57:a2:1b:c3:06:df:ef:dd:11:17:45:
5f:fd:7c:16:82:c7:c1:8f:84:15:f3:6e:61:ca:f8:
9b:bb:89:41:8a:e9:03:1f:c9:27:5d:12:05:3f:41:
cd:6e:88:42:c8:ba:20:81:ef:0c:48:cc:49:55:8c:
60:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:69:58:F1:CF:DC:EE:60:16:88:B4:DF:28:B4:2B:91:18:1C:2C:E8
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/6mlY8c_c7mAWiLTfKLQrkRgcLOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:3c40:22::/48
Signature Algorithm: sha256WithRSAEncryption
57:be:2c:7e:93:90:cf:68:be:d4:dc:4f:63:8a:37:4f:82:79:
17:ae:c2:a1:0c:94:8c:57:92:18:b8:08:9a:24:3d:01:20:34:
ac:4e:93:75:7d:98:7b:98:f8:30:d1:7a:1e:51:02:10:7e:75:
e1:fe:cc:7d:29:12:e1:07:76:67:70:03:db:cb:6d:85:29:43:
19:f0:50:14:b8:fe:99:c5:9e:c2:9a:af:31:ce:eb:b9:50:12:
d4:dd:5a:52:b4:a8:d9:5c:e1:8d:e9:37:36:35:b3:38:c1:0f:
46:b8:1b:2d:41:72:1d:31:2b:27:c2:4f:2d:68:39:7a:e3:6a:
e3:05:d5:ee:ff:b8:2e:2c:7d:96:78:c5:70:05:38:16:49:91:
97:6a:fa:2e:bf:c9:ef:16:10:cc:ba:bb:80:9e:06:e7:f6:30:
00:f6:4e:85:6f:1c:93:b4:4d:06:86:04:d8:f8:e6:8c:00:b3:
d9:7a:d3:65:92:07:d4:71:22:a8:2c:43:bc:fb:d3:57:bf:bb:
e0:2b:9e:ea:99:d4:13:a6:1a:80:75:00:85:a8:cf:05:7e:a7:
06:aa:54:bc:ba:a5:e1:d1:35:f4:8d:9f:8a:44:2b:c8:6a:4c:
4b:91:08:69:73:d0:c3:11:cc:e2:0b:8b:da:54:bb:2e:47:f9:
29:d8:56:89
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYeyf6HWX9LMdauaOA/2o1wMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NTdjY2Q0M2FmZTgxNmU0OTUzMjI4YmYxNGE3NWRjMjkw
MTRiOGQwHhcNMjMwNDI0MDkwMjAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYTY5NThmMWNmZGNlZTYwMTY4OGI0ZGYyOGI0MmI5MTE4MWMyY2U4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtLmnU+TgxGzwQL/wLgiej9M9a+oC
6cTVnzjPy+uadtPRCpogM5enMTIRe/fh84ek0bvKRk9VsAdqSFrGeeocFNb8xuF1
OLSRHbfZjeUsImDAW3EQcn2v6RhVkVU1bLPBwml1UaWammbueypzq55/zPBJ4ueI
d4Sp0KoJKl869MRlCCa1kFTyIaer7O9BzycHS7DmIThkA8heTwBYePepUsurCBwX
Jhz3Gk9Iam1jVl1U43q1MgAHM3MVs12RroZxauF6UB3FV6Ibwwbf790RF0Vf/XwW
gsfBj4QV825hyvibu4lBiukDH8knXRIFP0HNbohCyLogge8MSMxJVYxgvwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFOppWPHP3O5gFoi03yi0K5EYHCzoMB8GA1UdIwQY
MBaAFLVXzNQ6/oFuSVMii/FKddwpAUuNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUt
NmJjNzU1NzhiNGMzLzEvNm1sWThjX2M3bUFXaUxUZktMUXJrUmdjTE9nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUtNmJjNzU1NzhiNGMz
LzEvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgs8QAAi
MA0GCSqGSIb3DQEBCwUAA4IBAQBXvix+k5DPaL7U3E9jijdPgnkXrsKhDJSMV5IY
uAiaJD0BIDSsTpN1fZh7mPgw0XoeUQIQfnXh/sx9KRLhB3ZncAPby22FKUMZ8FAU
uP6ZxZ7Cmq8xzuu5UBLU3VpStKjZXOGN6Tc2NbM4wQ9GuBstQXIdMSsnwk8taDl6
42rjBdXu/7guLH2WeMVwBTgWSZGXavouv8nvFhDMuruAngbn9jAA9k6FbxyTtE0G
hgTY+OaMALPZetNlkgfUcSKoLEO8+9NXv7vgK57qmdQTphqAdQCFqM8FfqcGqlS8
uqXh0TX0jZ+KRCvIakxLkQhpc9DDEcziC4vaVLsuR/kp2FaJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:17 2024 by rpki-client on console-ams.rpki-client.org