Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/jlJPcyUM2TjG0vIskx9OhrSaB7U.roa
File: jlJPcyUM2TjG0vIskx9OhrSaB7U.roa (raw, json)
Hash identifier: Hm/jaKrDvKbWFYRIFXwYCWfcpBNXRVMb2K+dIdHe8ZA=
Subject key identifier: 8E:52:4F:73:25:0C:D9:38:C6:D2:F2:2C:93:1F:4E:86:B4:9A:07:B5
Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Certificate serial: 01856CAF0606A0F866476B86E0D4E622C0B6
Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/jlJPcyUM2TjG0vIskx9OhrSaB7U.roa
Signing time: Sun 01 Jan 2023 09:34:47 +0000
ROA not before: Sun 01 Jan 2023 09:34:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62588
IP address blocks: 2a03:f87:aabb::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:06:06:a0:f8:66:47:6b:86:e0:d4:e6:22:c0:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Validity
Not Before: Jan 1 09:34:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e524f73250cd938c6d2f22c931f4e86b49a07b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:02:86:bb:14:0f:11:3a:3b:a6:34:0e:2a:61:
1c:c5:2d:9d:6e:57:78:22:1a:4e:3f:c0:5e:d2:9d:
10:96:a3:d6:4b:9a:ba:71:e9:be:d3:14:0c:2a:7b:
ff:32:8a:e0:10:9f:27:0e:e4:ac:b3:ce:c6:3e:c1:
08:6a:07:5c:e3:55:d2:7a:96:75:c6:67:86:c5:a3:
67:44:02:d1:9a:c6:73:61:7b:3f:ab:ef:25:70:b3:
a3:31:70:54:0d:2f:02:91:6c:cd:bc:69:61:14:4a:
8c:1a:94:5d:96:a1:3f:96:d0:96:4b:60:46:2d:69:
9e:c9:aa:38:14:d9:5f:6b:e4:6f:e0:9b:1f:c9:df:
24:f3:c6:25:da:ae:2c:6c:2f:56:9f:25:5e:1a:93:
4e:e1:e6:51:31:27:10:4f:df:4d:67:6b:94:16:38:
e8:9e:4b:59:33:0f:6f:5f:e4:c3:1f:f5:b2:58:89:
6a:ab:9d:c7:4e:b3:11:29:bb:b1:7d:0a:fb:d9:e1:
6b:a6:a9:67:ad:db:ed:23:cb:97:6d:6f:54:93:c0:
2e:13:17:34:d6:2d:54:10:d7:f0:f0:eb:7c:a5:07:
53:fc:29:2b:fd:95:24:53:7d:2f:22:9b:cb:34:98:
1d:8b:45:02:a4:3b:a0:1b:36:d8:aa:0f:18:05:47:
2c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:52:4F:73:25:0C:D9:38:C6:D2:F2:2C:93:1F:4E:86:B4:9A:07:B5
X509v3 Authority Key Identifier:
keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/jlJPcyUM2TjG0vIskx9OhrSaB7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:f87:aabb::/48
Signature Algorithm: sha256WithRSAEncryption
92:51:24:ca:fa:d2:63:ad:4c:f4:a3:f7:36:76:f0:51:f7:7a:
ba:41:60:89:45:54:47:db:0c:73:c2:87:c2:29:87:10:28:08:
4a:07:4f:00:63:b9:b4:b8:a4:ea:77:42:01:20:ed:5c:d9:6e:
f6:c8:d5:42:95:16:06:34:f0:10:f4:f4:b2:58:2b:81:4e:10:
32:2a:90:9d:4b:26:95:65:67:a1:f9:27:7e:f9:90:0a:23:89:
af:de:44:60:c6:e5:f1:9d:2d:87:8d:8f:61:63:45:b8:34:68:
1a:3a:78:49:59:57:2f:03:0f:a9:fa:13:c8:65:e0:49:43:35:
9d:05:a8:30:0a:bb:79:ae:f7:51:91:40:9f:64:62:a1:7c:00:
ba:e2:fa:79:d4:a8:f1:b7:1b:5b:e5:98:e1:84:ec:8b:d9:fb:
f2:b8:c1:49:11:7e:b8:6d:e8:c3:69:31:3f:e3:b3:61:68:d1:
a8:ab:96:89:5e:b2:f5:83:6b:27:51:f7:0d:48:87:72:ac:26:
56:52:fa:a1:98:a3:ec:9f:fc:c6:e5:f3:04:ac:62:83:bb:c3:
0c:8c:69:74:63:7c:20:cd:89:b7:40:89:8f:10:98:a2:16:b9:
f1:a2:02:4b:f1:37:95:39:9c:43:4e:b7:0c:77:f7:22:17:9e:
c4:92:0a:99
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVsrwYGoPhmR2uG4NTmIsC2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyMTdiNDcyYzg0MWMxZDY4NTUwYTI0ZjE5MzZkMjljYzZj
MjhmNmEwHhcNMjMwMTAxMDkzNDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZTUyNGY3MzI1MGNkOTM4YzZkMmYyMmM5MzFmNGU4NmI0OWEwN2I1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAggKGuxQPETo7pjQOKmEcxS2dbld4
IhpOP8Be0p0QlqPWS5q6cem+0xQMKnv/MorgEJ8nDuSss87GPsEIagdc41XSepZ1
xmeGxaNnRALRmsZzYXs/q+8lcLOjMXBUDS8CkWzNvGlhFEqMGpRdlqE/ltCWS2BG
LWmeyao4FNlfa+Rv4Jsfyd8k88Yl2q4sbC9WnyVeGpNO4eZRMScQT99NZ2uUFjjo
nktZMw9vX+TDH/WyWIlqq53HTrMRKbuxfQr72eFrpqlnrdvtI8uXbW9Uk8AuExc0
1i1UENfw8Ot8pQdT/Ckr/ZUkU30vIpvLNJgdi0UCpDugGzbYqg8YBUcsVwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFI5ST3MlDNk4xtLyLJMfToa0mge1MB8GA1UdIwQY
MBaAFNIXtHLIQcHWhVCiTxk20pzGwo9qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGhlMGNzaEJ3ZGFGVUtKUEdUYlNuTWJDajJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC8yOTBlNDQtYjQ3OS00NmNmLWFiNGIt
YjM4ZTI2NzdiM2RjLzEvamxKUGN5VU0yVGpHMHZJc2t4OU9oclNhQjdVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC8yOTBlNDQtYjQ3OS00NmNmLWFiNGItYjM4ZTI2NzdiM2Rj
LzEvMGhlMGNzaEJ3ZGFGVUtKUEdUYlNuTWJDajJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgMPh6q7
MA0GCSqGSIb3DQEBCwUAA4IBAQCSUSTK+tJjrUz0o/c2dvBR93q6QWCJRVRH2wxz
wofCKYcQKAhKB08AY7m0uKTqd0IBIO1c2W72yNVClRYGNPAQ9PSyWCuBThAyKpCd
SyaVZWeh+Sd++ZAKI4mv3kRgxuXxnS2HjY9hY0W4NGgaOnhJWVcvAw+p+hPIZeBJ
QzWdBagwCrt5rvdRkUCfZGKhfAC64vp51Kjxtxtb5ZjhhOyL2fvyuMFJEX64bejD
aTE/47NhaNGoq5aJXrL1g2snUfcNSIdyrCZWUvqhmKPsn/zG5fMErGKDu8MMjGl0
Y3wgzYm3QImPEJiiFrnxogJL8TeVOZxDTrcMd/ciF57EkgqZ
-----END CERTIFICATE-----
Generated at Mon Jan 1 23:29:24 2024 by rpki-client on console-ams.rpki-client.org