Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/d83777-5ba8-4f1e-851c-92819de8a036/1/oMKUnVNnwpUokTjRJbRoay_mCG4.roa
File: oMKUnVNnwpUokTjRJbRoay_mCG4.roa (raw, json)
Hash identifier: QCKfl/hK15JRD2D4pDM4IoFIQZSg04mJH7I6qTXI5ik=
Subject key identifier: A0:C2:94:9D:53:67:C2:95:28:91:38:D1:25:B4:68:6B:2F:E6:08:6E
Certificate issuer: /CN=ed77e6b925b3b7a7abb92885d55d733dc5fa62d2
Certificate serial: 018582183C9A088E988EA6502CCF4FEF5B22
Authority key identifier: ED:77:E6:B9:25:B3:B7:A7:AB:B9:28:85:D5:5D:73:3D:C5:FA:62:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7XfmuSWzt6eruSiF1V1zPcX6YtI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/d83777-5ba8-4f1e-851c-92819de8a036/1/oMKUnVNnwpUokTjRJbRoay_mCG4.roa
Signing time: Thu 05 Jan 2023 13:21:44 +0000
ROA not before: Thu 05 Jan 2023 13:21:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213185
IP address blocks: 2a0d:1a40:7553::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:82:18:3c:9a:08:8e:98:8e:a6:50:2c:cf:4f:ef:5b:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed77e6b925b3b7a7abb92885d55d733dc5fa62d2
Validity
Not Before: Jan 5 13:21:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0c2949d5367c295289138d125b4686b2fe6086e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:ed:15:f1:d3:1b:35:f7:fd:d1:1d:fc:fe:72:
a3:38:47:c3:65:0e:8a:68:26:ea:5a:42:85:08:88:
16:f4:73:97:0c:dc:19:37:bb:21:35:01:54:32:c7:
54:c8:57:e8:de:fc:9e:52:2a:a9:38:e1:5b:a8:d6:
54:0e:0c:3a:90:50:b4:75:34:da:92:02:6a:56:0d:
1c:e2:12:bd:bc:6e:96:54:51:bb:13:95:5c:fc:a6:
33:dd:36:ee:cd:b4:8e:84:6c:9e:8a:0f:85:50:fa:
17:ac:a1:9d:a6:67:41:e8:03:4a:13:80:4a:c9:6e:
29:28:b8:0c:a2:72:8c:98:4e:2e:9b:c0:f5:f6:b2:
3b:83:26:80:ab:3f:e4:ae:c0:46:fd:d0:5b:c6:0c:
32:1a:a2:aa:9f:9f:fa:d2:60:06:6f:3d:09:a6:35:
da:ae:18:88:e4:86:fe:8d:78:92:b1:57:76:f1:11:
8a:ec:6a:db:79:e0:e5:8c:87:ab:d2:1a:f8:f0:6f:
92:93:af:7f:23:bb:92:2c:1d:b5:17:37:c9:15:a5:
b8:43:a7:a2:e2:1e:52:9d:9e:79:ad:53:84:f8:30:
04:27:73:91:e2:0d:ab:64:36:f3:da:bb:63:4b:4f:
19:b9:91:6b:ac:d2:1a:cb:e8:dd:a7:fd:fa:9a:00:
c9:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:C2:94:9D:53:67:C2:95:28:91:38:D1:25:B4:68:6B:2F:E6:08:6E
X509v3 Authority Key Identifier:
keyid:ED:77:E6:B9:25:B3:B7:A7:AB:B9:28:85:D5:5D:73:3D:C5:FA:62:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7XfmuSWzt6eruSiF1V1zPcX6YtI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/d83777-5ba8-4f1e-851c-92819de8a036/1/oMKUnVNnwpUokTjRJbRoay_mCG4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/d83777-5ba8-4f1e-851c-92819de8a036/1/7XfmuSWzt6eruSiF1V1zPcX6YtI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:1a40:7553::/48
Signature Algorithm: sha256WithRSAEncryption
19:53:4d:f9:5c:b3:e7:80:1f:3e:e8:6c:63:fa:54:5b:41:b3:
ef:a6:8c:5d:1b:d1:bc:09:93:0d:a8:a3:b7:1e:ec:20:6f:44:
90:d8:37:51:10:06:18:f2:53:b1:c7:f1:17:c7:26:b4:68:aa:
06:8a:6b:aa:90:c7:80:16:42:5b:5d:39:c2:f6:6e:5d:e9:a6:
13:7d:e3:9f:35:f8:6e:68:81:e4:e6:9c:55:c9:b5:78:d0:99:
39:62:11:e8:1d:31:00:ef:d5:32:c4:12:46:de:a2:3b:d2:70:
9f:1a:11:6c:10:a8:f9:73:08:82:35:4c:a1:17:06:a2:31:58:
f3:7c:f6:a1:e9:8c:7a:3b:45:6c:07:5a:a8:73:33:a8:8d:0c:
d4:09:6e:07:fb:e1:b7:0e:3c:0d:b0:90:9e:b8:ef:f9:d1:7e:
ea:3e:e3:5d:b0:ad:ba:de:ec:67:e1:6d:63:fc:ee:93:23:de:
68:b4:0e:0a:83:81:bb:3f:ab:3d:f7:03:2b:fd:3e:98:4f:cf:
15:24:db:9d:4c:95:0f:83:27:4f:9c:9c:c5:a5:56:b6:9c:97:
9c:fd:18:67:5e:3f:4a:6c:4a:54:60:ed:c0:91:2e:ac:17:17:
c1:22:a9:42:38:74:c3:9b:18:83:4b:c0:84:a4:04:64:7f:9d:
4c:56:e6:17
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYWCGDyaCI6YjqZQLM9P71siMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVkNzdlNmI5MjViM2I3YTdhYmI5Mjg4NWQ1NWQ3MzNkYzVm
YTYyZDIwHhcNMjMwMTA1MTMyMTQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMGMyOTQ5ZDUzNjdjMjk1Mjg5MTM4ZDEyNWI0Njg2YjJmZTYwODZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6O0V8dMbNff90R38/nKjOEfDZQ6K
aCbqWkKFCIgW9HOXDNwZN7shNQFUMsdUyFfo3vyeUiqpOOFbqNZUDgw6kFC0dTTa
kgJqVg0c4hK9vG6WVFG7E5Vc/KYz3TbuzbSOhGyeig+FUPoXrKGdpmdB6ANKE4BK
yW4pKLgMonKMmE4um8D19rI7gyaAqz/krsBG/dBbxgwyGqKqn5/60mAGbz0JpjXa
rhiI5Ib+jXiSsVd28RGK7GrbeeDljIer0hr48G+Sk69/I7uSLB21FzfJFaW4Q6ei
4h5SnZ55rVOE+DAEJ3OR4g2rZDbz2rtjS08ZuZFrrNIay+jdp/36mgDJHwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFKDClJ1TZ8KVKJE40SW0aGsv5ghuMB8GA1UdIwQY
MBaAFO135rkls7enq7kohdVdcz3F+mLSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN1hmbXVTV3p0NmVydVNpRjFWMXpQY1g2WXRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9kODM3NzctNWJhOC00ZjFlLTg1MWMt
OTI4MTlkZThhMDM2LzEvb01LVW5WTm53cFVva1RqUkpiUm9heV9tQ0c0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9kODM3NzctNWJhOC00ZjFlLTg1MWMtOTI4MTlkZThhMDM2
LzEvN1hmbXVTV3p0NmVydVNpRjFWMXpQY1g2WXRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg0aQHVT
MA0GCSqGSIb3DQEBCwUAA4IBAQAZU035XLPngB8+6Gxj+lRbQbPvpoxdG9G8CZMN
qKO3Huwgb0SQ2DdREAYY8lOxx/EXxya0aKoGimuqkMeAFkJbXTnC9m5d6aYTfeOf
NfhuaIHk5pxVybV40Jk5YhHoHTEA79UyxBJG3qI70nCfGhFsEKj5cwiCNUyhFwai
MVjzfPah6Yx6O0VsB1qoczOojQzUCW4H++G3DjwNsJCeuO/50X7qPuNdsK263uxn
4W1j/O6TI95otA4Kg4G7P6s99wMr/T6YT88VJNudTJUPgydPnJzFpVa2nJec/Rhn
Xj9KbEpUYO3AkS6sFxfBIqlCOHTDmxiDS8CEpARkf51MVuYX
-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:02 2024 by rpki-client on console-fra.rpki-client.org