Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/93dbe7-db2f-4c35-b0a7-e5b49947ed07/1/kYAKQqaxZ28K3t__WLbBNB60Kh4.roa
File: kYAKQqaxZ28K3t__WLbBNB60Kh4.roa (raw, json)
Hash identifier: 8XHyFVUAKpz0anj6tOK0BEAgSIWmKmbfgU+MnU+zBbo=
Subject key identifier: 91:80:0A:42:A6:B1:67:6F:0A:DE:DF:FF:58:B6:C1:34:1E:B4:2A:1E
Certificate issuer: /CN=acabba0b0052ae7bd349235647a2ed731506ccaa
Certificate serial: 01856D53E0D987AB7917000174D224BE40DB
Authority key identifier: AC:AB:BA:0B:00:52:AE:7B:D3:49:23:56:47:A2:ED:73:15:06:CC:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKu6CwBSrnvTSSNWR6LtcxUGzKo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/93dbe7-db2f-4c35-b0a7-e5b49947ed07/1/kYAKQqaxZ28K3t__WLbBNB60Kh4.roa
Signing time: Sun 01 Jan 2023 12:34:51 +0000
ROA not before: Sun 01 Jan 2023 12:34:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210454
IP address blocks: 2001:67c:7c::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:53:e0:d9:87:ab:79:17:00:01:74:d2:24:be:40:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acabba0b0052ae7bd349235647a2ed731506ccaa
Validity
Not Before: Jan 1 12:34:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91800a42a6b1676f0adedfff58b6c1341eb42a1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:9f:4d:a4:17:61:0c:fd:4d:61:2b:cd:5e:f9:
17:4d:ac:d0:45:17:7b:a5:88:bc:7e:8d:07:7c:0e:
48:4f:42:35:cd:7b:d9:86:62:7b:9c:f8:de:0c:8c:
82:7e:9f:11:34:65:97:0c:3b:06:c6:21:a7:7f:52:
8f:8f:16:0e:8f:f0:70:13:e1:12:ad:85:e1:50:3c:
c1:16:51:d6:bb:b5:db:5c:94:a3:6e:34:c0:e0:e7:
8b:08:cd:16:ec:56:02:ff:dd:43:8c:40:29:cf:2d:
28:93:63:a8:d5:5d:0b:fb:6a:5b:92:2e:95:22:fe:
1e:7b:47:de:8a:0a:4e:a6:56:3e:8d:37:fd:64:f5:
8f:20:f7:56:0a:41:a1:84:f6:6f:02:2b:76:d1:79:
cf:4f:51:ae:ff:16:2e:ec:85:fe:09:49:d1:20:d7:
f6:e6:2d:b2:c7:5b:0f:73:97:db:53:ee:31:35:55:
c8:1c:bb:d0:a9:98:89:64:6c:34:0d:b1:7a:f8:0a:
a9:7c:db:24:cc:ab:58:b7:03:a8:22:40:a0:21:93:
b3:df:f1:81:8e:f6:f7:60:b7:47:ca:82:d2:a5:ea:
84:50:c0:67:69:19:44:c5:a9:48:11:0f:ad:5b:5a:
55:9e:64:fe:1c:e7:85:f8:9d:6a:cc:a6:3c:cb:92:
3a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:80:0A:42:A6:B1:67:6F:0A:DE:DF:FF:58:B6:C1:34:1E:B4:2A:1E
X509v3 Authority Key Identifier:
keyid:AC:AB:BA:0B:00:52:AE:7B:D3:49:23:56:47:A2:ED:73:15:06:CC:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKu6CwBSrnvTSSNWR6LtcxUGzKo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/93dbe7-db2f-4c35-b0a7-e5b49947ed07/1/kYAKQqaxZ28K3t__WLbBNB60Kh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/93dbe7-db2f-4c35-b0a7-e5b49947ed07/1/rKu6CwBSrnvTSSNWR6LtcxUGzKo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:7c::/48
Signature Algorithm: sha256WithRSAEncryption
a7:10:10:40:ed:99:05:cc:79:9e:6f:f0:e0:26:a7:94:e1:10:
9c:b3:18:07:f3:9f:df:43:d9:04:3f:e1:2c:5b:67:7f:64:18:
be:55:1b:c9:53:86:f2:82:9b:c1:91:05:76:51:ba:07:a1:00:
ad:ef:8b:4d:f4:4c:80:98:dc:44:2e:d6:90:11:ed:f2:b2:50:
76:09:26:e8:be:ca:0e:77:2d:de:74:3c:ac:14:ef:2a:2e:e8:
19:df:32:0a:4a:e8:a6:ca:4d:0b:ca:e0:88:51:e5:93:cf:49:
44:4e:27:9c:84:b0:0f:fe:32:65:8c:87:81:e6:93:58:ff:c5:
5b:da:6b:f4:56:f7:d0:46:ca:c1:7a:8e:d9:12:1a:4f:5c:39:
21:8e:2d:36:8c:f2:0f:3e:c9:11:6e:20:68:01:fe:58:df:59:
33:47:f5:63:5c:d4:1c:b6:9b:c5:48:dd:59:29:1c:47:cf:e9:
5a:b3:79:a9:89:d9:4a:da:ea:e8:a1:09:45:6a:c1:1e:c5:85:
8d:db:93:8e:ba:ae:ba:af:72:26:32:f5:56:66:e3:39:0c:14:
a4:a5:76:46:b5:3b:06:73:f2:18:21:d1:37:14:26:c6:70:ba:
f0:0a:c6:bd:68:a8:87:f5:bf:d9:c3:dc:f4:8d:6d:ad:83:64:
6f:71:3e:b2
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVtU+DZh6t5FwABdNIkvkDbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjYWJiYTBiMDA1MmFlN2JkMzQ5MjM1NjQ3YTJlZDczMTUw
NmNjYWEwHhcNMjMwMTAxMTIzNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MTgwMGE0MmE2YjE2NzZmMGFkZWRmZmY1OGI2YzEzNDFlYjQyYTFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkZ9NpBdhDP1NYSvNXvkXTazQRRd7
pYi8fo0HfA5IT0I1zXvZhmJ7nPjeDIyCfp8RNGWXDDsGxiGnf1KPjxYOj/BwE+ES
rYXhUDzBFlHWu7XbXJSjbjTA4OeLCM0W7FYC/91DjEApzy0ok2Oo1V0L+2pbki6V
Iv4ee0feigpOplY+jTf9ZPWPIPdWCkGhhPZvAit20XnPT1Gu/xYu7IX+CUnRINf2
5i2yx1sPc5fbU+4xNVXIHLvQqZiJZGw0DbF6+AqpfNskzKtYtwOoIkCgIZOz3/GB
jvb3YLdHyoLSpeqEUMBnaRlExalIEQ+tW1pVnmT+HOeF+J1qzKY8y5I6qQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFJGACkKmsWdvCt7f/1i2wTQetCoeMB8GA1UdIwQY
MBaAFKyrugsAUq5700kjVkei7XMVBsyqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvckt1NkN3QlNybnZUU1NOV1I2THRjeFVHektvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy85M2RiZTctZGIyZi00YzM1LWIwYTct
ZTViNDk5NDdlZDA3LzEva1lBS1FxYXhaMjhLM3RfX1dMYkJOQjYwS2g0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy85M2RiZTctZGIyZi00YzM1LWIwYTctZTViNDk5NDdlZDA3
LzEvckt1NkN3QlNybnZUU1NOV1I2THRjeFVHektvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAB8
MA0GCSqGSIb3DQEBCwUAA4IBAQCnEBBA7ZkFzHmeb/DgJqeU4RCcsxgH85/fQ9kE
P+EsW2d/ZBi+VRvJU4bygpvBkQV2UboHoQCt74tN9EyAmNxELtaQEe3yslB2CSbo
vsoOdy3edDysFO8qLugZ3zIKSuimyk0LyuCIUeWTz0lETiechLAP/jJljIeB5pNY
/8Vb2mv0VvfQRsrBeo7ZEhpPXDkhji02jPIPPskRbiBoAf5Y31kzR/VjXNQctpvF
SN1ZKRxHz+las3mpidlK2urooQlFasEexYWN25OOuq66r3ImMvVWZuM5DBSkpXZG
tTsGc/IYIdE3FCbGcLrwCsa9aKiH9b/Zw9z0jW2tg2RvcT6y
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:38 2024 by rpki-client on console-fra.rpki-client.org