Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/FlltfYIO4GsmyGDNEODvjiZLTfM.roa
File: FlltfYIO4GsmyGDNEODvjiZLTfM.roa (raw, json)
Hash identifier: RjRYyg+iObPNEQV0tuWBDAkT2NM/k0Ub2zOkigjIFe4=
Subject key identifier: 16:59:6D:7D:82:0E:E0:6B:26:C8:60:CD:10:E0:EF:8E:26:4B:4D:F3
Certificate issuer: /CN=408fa017532ff6d9fb38b40037896afaf0aacf8b
Certificate serial: 0189547BC4D793C8975AF3C4F398D5828897
Authority key identifier: 40:8F:A0:17:53:2F:F6:D9:FB:38:B4:00:37:89:6A:FA:F0:AA:CF:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/FlltfYIO4GsmyGDNEODvjiZLTfM.roa
Signing time: Fri 14 Jul 2023 12:59:04 +0000
ROA not before: Fri 14 Jul 2023 12:59:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213052
IP address blocks: 2001:67c:10c::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:54:7b:c4:d7:93:c8:97:5a:f3:c4:f3:98:d5:82:88:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408fa017532ff6d9fb38b40037896afaf0aacf8b
Validity
Not Before: Jul 14 12:59:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16596d7d820ee06b26c860cd10e0ef8e264b4df3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:98:51:e1:af:68:30:9b:41:6e:a2:75:e1:dd:
8e:99:01:58:41:91:3f:c5:a3:0d:79:c0:80:46:f4:
8f:36:c7:41:ab:05:2d:06:6b:f7:87:25:e0:6a:ca:
8c:84:e4:d2:a1:e5:bf:66:a6:fb:a1:83:51:ac:58:
0a:5b:f6:a0:e4:f0:b9:2a:ba:8c:3f:89:9f:54:23:
67:b4:67:ff:3d:56:be:f3:06:d5:b4:06:10:dc:8a:
c2:1c:84:69:25:0a:15:bd:da:06:9c:0a:3d:60:db:
e6:0f:03:5b:67:04:0e:33:f6:67:7d:20:64:ea:ef:
aa:0a:fb:7e:2e:7f:04:d5:02:c6:2d:44:24:23:cc:
be:5a:e1:b7:97:67:93:0a:94:7d:9b:cb:a4:e0:3c:
d4:20:c0:1b:19:c5:c4:03:39:00:1e:d7:3d:56:f4:
11:64:b0:d4:e3:45:97:05:05:9d:14:e5:cd:ac:70:
2e:f7:a1:16:3b:ba:0f:e2:8e:53:36:c4:42:ea:d8:
2a:69:4d:87:63:ff:c4:7d:1c:f4:c5:9c:b7:a0:54:
97:66:4d:26:06:0f:78:54:34:93:3d:59:ce:59:de:
09:7d:9a:4a:08:15:9b:6e:e8:c3:74:bd:89:c0:b9:
30:14:0f:09:7f:e0:8b:23:ed:35:fe:9f:02:1b:d1:
70:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:59:6D:7D:82:0E:E0:6B:26:C8:60:CD:10:E0:EF:8E:26:4B:4D:F3
X509v3 Authority Key Identifier:
keyid:40:8F:A0:17:53:2F:F6:D9:FB:38:B4:00:37:89:6A:FA:F0:AA:CF:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/FlltfYIO4GsmyGDNEODvjiZLTfM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/adb871-6972-4dd6-8360-f1982a691d45/1/QI-gF1Mv9tn7OLQAN4lq-vCqz4s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:10c::/48
Signature Algorithm: sha256WithRSAEncryption
09:8d:0b:da:0f:7c:6c:ce:40:2d:aa:87:66:52:23:92:f4:57:
d6:56:7d:4f:d7:51:aa:f6:1b:3e:b0:7c:5c:95:14:fd:3e:34:
ad:6b:1d:c2:46:12:e0:cd:53:85:7d:32:31:2e:64:b6:e6:06:
ac:18:24:5a:fd:bc:79:47:30:16:4a:45:b3:e2:05:9c:07:37:
fc:f4:ea:19:0a:f6:4c:17:20:ba:6e:d0:db:b1:31:29:19:80:
01:d9:01:66:89:17:b6:44:df:72:90:c3:b9:1e:e1:80:da:41:
45:16:7b:65:a4:82:58:d0:a7:c0:6f:b0:06:68:68:37:00:ba:
5d:1b:04:d3:05:74:b3:31:ad:0f:97:97:d2:d0:9c:04:d4:68:
b4:fe:0a:7f:78:04:2d:54:55:77:f2:af:4f:52:20:22:b8:47:
3a:07:6d:1a:90:4a:fe:a3:3a:37:0f:05:af:cf:96:3b:47:9a:
30:41:0b:6b:7e:7e:c5:97:88:9f:88:ba:47:05:fe:8c:bb:40:
4c:08:e7:7d:08:db:1b:81:06:f3:64:11:6f:56:7d:ca:f6:de:
e6:87:45:c1:31:71:dd:ce:a5:65:c8:93:26:95:74:83:a7:68:
b2:85:75:82:62:df:f8:4f:dc:6b:02:06:15:8b:d3:06:25:03:
18:02:31:bb
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYlUe8TXk8iXWvPE85jVgoiXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwOGZhMDE3NTMyZmY2ZDlmYjM4YjQwMDM3ODk2YWZhZjBh
YWNmOGIwHhcNMjMwNzE0MTI1OTA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNjU5NmQ3ZDgyMGVlMDZiMjZjODYwY2QxMGUwZWY4ZTI2NGI0ZGYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgphR4a9oMJtBbqJ14d2OmQFYQZE/
xaMNecCARvSPNsdBqwUtBmv3hyXgasqMhOTSoeW/Zqb7oYNRrFgKW/ag5PC5KrqM
P4mfVCNntGf/PVa+8wbVtAYQ3IrCHIRpJQoVvdoGnAo9YNvmDwNbZwQOM/ZnfSBk
6u+qCvt+Ln8E1QLGLUQkI8y+WuG3l2eTCpR9m8uk4DzUIMAbGcXEAzkAHtc9VvQR
ZLDU40WXBQWdFOXNrHAu96EWO7oP4o5TNsRC6tgqaU2HY//EfRz0xZy3oFSXZk0m
Bg94VDSTPVnOWd4JfZpKCBWbbujDdL2JwLkwFA8Jf+CLI+01/p8CG9Fw3wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFBZZbX2CDuBrJshgzRDg744mS03zMB8GA1UdIwQY
MBaAFECPoBdTL/bZ+zi0ADeJavrwqs+LMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUktZ0YxTXY5dG43T0xRQU40bHEtdkNxejRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hZGI4NzEtNjk3Mi00ZGQ2LTgzNjAt
ZjE5ODJhNjkxZDQ1LzEvRmxsdGZZSU80R3NteUdETkVPRHZqaVpMVGZNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9hZGI4NzEtNjk3Mi00ZGQ2LTgzNjAtZjE5ODJhNjkxZDQ1
LzEvUUktZ0YxTXY5dG43T0xRQU40bHEtdkNxejRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAEM
MA0GCSqGSIb3DQEBCwUAA4IBAQAJjQvaD3xszkAtqodmUiOS9FfWVn1P11Gq9hs+
sHxclRT9PjStax3CRhLgzVOFfTIxLmS25gasGCRa/bx5RzAWSkWz4gWcBzf89OoZ
CvZMFyC6btDbsTEpGYAB2QFmiRe2RN9ykMO5HuGA2kFFFntlpIJY0KfAb7AGaGg3
ALpdGwTTBXSzMa0Pl5fS0JwE1Gi0/gp/eAQtVFV38q9PUiAiuEc6B20akEr+ozo3
DwWvz5Y7R5owQQtrfn7Fl4ifiLpHBf6Mu0BMCOd9CNsbgQbzZBFvVn3K9t7mh0XB
MXHdzqVlyJMmlXSDp2iyhXWCYt/4T9xrAgYVi9MGJQMYAjG7
-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:15 2024 by rpki-client on console-fra.rpki-client.org