Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/DKs6E7doFTN74qOQuVsmzjxfN60.roa
File: DKs6E7doFTN74qOQuVsmzjxfN60.roa (raw, json)
Hash identifier: 4NZFNJDVIJfo0zTY1cqbDVX/flI8sB5eGPIKueUO0o8=
Subject key identifier: 0C:AB:3A:13:B7:68:15:33:7B:E2:A3:90:B9:5B:26:CE:3C:5F:37:AD
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018CAAB109E503B9438EA9BFC6283374E0D2
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/DKs6E7doFTN74qOQuVsmzjxfN60.roa
Signing time: Wed 27 Dec 2023 09:52:58 +0000
ROA not before: Wed 27 Dec 2023 09:52:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200250
IP address blocks: 2a0c:fe01::/32 maxlen: 48
2a0e:a942::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:aa:b1:09:e5:03:b9:43:8e:a9:bf:c6:28:33:74:e0:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Dec 27 09:52:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0cab3a13b76815337be2a390b95b26ce3c5f37ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b9:c7:4f:bd:f3:5e:b6:7e:1c:21:1e:02:e5:
0a:ff:1a:0d:d9:3f:1f:d8:ce:79:09:07:9e:23:14:
94:16:b1:05:0c:24:3f:41:ee:f0:f9:f4:13:d9:9a:
76:8c:e2:4c:28:11:8c:77:9e:b5:33:bf:f9:b9:5f:
38:2f:df:1c:bf:e4:d9:d9:13:68:be:dd:07:2c:80:
74:ee:39:75:43:48:3e:55:66:7a:c2:1e:2f:e2:85:
80:fe:6d:b0:5e:5a:11:13:55:cb:d3:eb:55:2f:1a:
0a:d9:bd:8f:58:14:35:33:83:0e:a4:41:7e:6a:fb:
f6:b3:ae:cb:aa:9e:24:8a:0f:83:a3:9d:27:38:d9:
60:56:e5:74:1e:4d:60:ca:7b:95:42:09:ce:19:09:
56:b4:ad:bb:b9:e4:4a:45:af:da:82:cd:b4:91:99:
85:e7:6b:47:7a:99:a9:bc:ca:0c:49:33:29:70:ae:
7a:60:2c:65:8c:85:fb:22:a7:1c:c4:53:7a:a3:58:
f0:23:5b:50:8d:6f:1f:9d:4d:a5:c0:47:7d:d0:d6:
2f:24:a5:31:92:35:3e:47:15:58:ef:82:5a:63:9d:
b1:6d:e4:2e:a9:9b:dd:3e:b4:81:51:a3:ce:75:a6:
e6:04:b3:f3:a6:58:4b:6d:01:da:dc:bb:3a:fb:9c:
3a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:AB:3A:13:B7:68:15:33:7B:E2:A3:90:B9:5B:26:CE:3C:5F:37:AD
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/DKs6E7doFTN74qOQuVsmzjxfN60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:fe01::/32
2a0e:a942::/32
Signature Algorithm: sha256WithRSAEncryption
9d:cd:2c:07:b6:f6:8e:48:77:e5:e5:80:f4:c4:26:7e:e0:d8:
55:4a:87:ca:f8:61:83:84:53:60:db:81:dc:46:e8:cc:c3:f9:
32:bb:f1:9e:98:6b:4d:b1:fc:b0:19:b6:25:67:fc:39:66:f7:
46:13:bf:e0:ad:32:17:92:42:8c:5c:9c:74:1e:bf:5b:ae:01:
24:a8:9a:2e:fc:33:56:9e:b5:25:6e:94:76:a6:35:82:c3:ad:
14:9c:1c:dd:7c:c8:45:c0:18:64:38:d1:e4:33:e6:a7:45:96:
36:64:69:f1:d1:47:06:63:37:27:ac:c5:c2:c4:39:d3:35:3e:
e7:38:9e:0f:9e:7a:11:96:d0:24:bc:dd:c3:12:e2:fe:10:99:
0a:38:14:4c:71:72:cc:67:6a:ac:37:77:33:90:db:82:ab:91:
b5:0f:86:ed:6f:e3:95:d5:b6:7d:b3:55:3d:dc:9a:e2:3f:26:
4c:1e:86:f4:96:79:6d:bb:71:de:a6:a9:80:6f:3c:98:4c:c5:
ab:da:3b:f0:41:cb:9c:7e:d9:b8:5a:56:78:29:4f:af:3e:c3:
91:f2:9c:95:2e:d9:24:6d:c7:c2:8a:f2:09:ee:20:95:0e:2a:
14:c0:c4:51:72:e3:cc:16:c6:ad:d6:dc:fd:b4:dd:c5:c0:a0:
16:82:78:72
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYyqsQnlA7lDjqm/xigzdODSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NTdjY2Q0M2FmZTgxNmU0OTUzMjI4YmYxNGE3NWRjMjkw
MTRiOGQwHhcNMjMxMjI3MDk1MjU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwY2FiM2ExM2I3NjgxNTMzN2JlMmEzOTBiOTViMjZjZTNjNWYzN2FkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk7nHT73zXrZ+HCEeAuUK/xoN2T8f
2M55CQeeIxSUFrEFDCQ/Qe7w+fQT2Zp2jOJMKBGMd561M7/5uV84L98cv+TZ2RNo
vt0HLIB07jl1Q0g+VWZ6wh4v4oWA/m2wXloRE1XL0+tVLxoK2b2PWBQ1M4MOpEF+
avv2s67Lqp4kig+Do50nONlgVuV0Hk1gynuVQgnOGQlWtK27ueRKRa/ags20kZmF
52tHepmpvMoMSTMpcK56YCxljIX7IqccxFN6o1jwI1tQjW8fnU2lwEd90NYvJKUx
kjU+RxVY74JaY52xbeQuqZvdPrSBUaPOdabmBLPzplhLbQHa3Ls6+5w6uwIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFAyrOhO3aBUze+KjkLlbJs48XzetMB8GA1UdIwQY
MBaAFLVXzNQ6/oFuSVMii/FKddwpAUuNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUt
NmJjNzU1NzhiNGMzLzEvREtzNkU3ZG9GVE43NHFPUXVWc216anhmTjYwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUtNmJjNzU1NzhiNGMz
LzEvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUAKgz+AQMF
ACoOqUIwDQYJKoZIhvcNAQELBQADggEBAJ3NLAe29o5Id+XlgPTEJn7g2FVKh8r4
YYOEU2DbgdxG6MzD+TK78Z6Ya02x/LAZtiVn/Dlm90YTv+CtMheSQoxcnHQev1uu
ASSomi78M1aetSVulHamNYLDrRScHN18yEXAGGQ40eQz5qdFljZkafHRRwZjNyes
xcLEOdM1Puc4ng+eehGW0CS83cMS4v4QmQo4FExxcsxnaqw3dzOQ24KrkbUPhu1v
45XVtn2zVT3cmuI/JkwehvSWeW27cd6mqYBvPJhMxavaO/BBy5x+2bhaVngpT68+
w5HynJUu2SRtx8KK8gnuIJUOKhTAxFFy48wWxq3W3P203cXAoBaCeHI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:17 2024 by rpki-client on console-ams.rpki-client.org