Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/vJSQS0E-jh57MzWIc7EjtlI27j8.roa
File: vJSQS0E-jh57MzWIc7EjtlI27j8.roa (raw, json)
Hash identifier: KPnjkFhyYUsyGo4Fg0hB02fq1sYdemA3PrbUN1YEJdY=
Subject key identifier: BC:94:90:4B:41:3E:8E:1E:7B:33:35:88:73:B1:23:B6:52:36:EE:3F
Certificate issuer: /CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Certificate serial: 01856CAF06A714E831D01F86EE2F37FF0EA4
Authority key identifier: D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/vJSQS0E-jh57MzWIc7EjtlI27j8.roa
Signing time: Sun 01 Jan 2023 09:34:47 +0000
ROA not before: Sun 01 Jan 2023 09:34:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 196689
IP address blocks: 2a03:f85:3::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:06:a7:14:e8:31:d0:1f:86:ee:2f:37:ff:0e:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d217b472c841c1d68550a24f1936d29cc6c28f6a
Validity
Not Before: Jan 1 09:34:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc94904b413e8e1e7b33358873b123b65236ee3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:87:d5:83:b6:c7:85:0e:55:aa:9d:4c:b6:8d:
29:f5:fa:92:69:ec:0a:3f:a3:bb:65:99:3b:a7:1b:
b4:9f:da:eb:57:b8:77:2c:36:73:70:75:bb:02:6c:
ad:c9:82:26:81:c9:7a:33:f8:4b:20:18:c7:a0:96:
0f:f0:8e:2a:19:da:5a:cb:50:05:b1:8e:be:8c:67:
75:91:61:43:5c:67:50:11:93:6b:64:c6:87:18:93:
3d:01:10:b3:0f:29:6f:8c:ba:dc:c1:9c:5c:40:1c:
e7:38:c7:4b:35:56:86:a1:fd:5d:e0:a5:51:a4:ea:
a6:fe:20:70:b8:c7:06:47:ec:01:ee:6e:58:97:cf:
8b:cd:82:c6:96:bc:b7:72:48:12:72:68:ef:73:8d:
b1:36:d1:3e:45:d0:0c:af:ba:e9:78:2f:5a:25:94:
75:89:df:91:ca:12:47:da:22:4e:ee:be:82:7f:89:
cb:98:be:94:b5:19:bf:60:05:00:03:17:4d:e1:eb:
f1:de:65:c6:b1:b0:18:98:5f:d3:b3:46:63:36:5d:
40:96:b3:48:0d:9e:6b:6e:94:33:2c:8c:8f:30:43:
78:d3:03:e5:a6:d9:90:38:38:2f:7a:40:03:b5:fd:
35:9b:d0:e4:1b:44:6d:f6:ed:1f:bc:58:07:f5:be:
7e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:94:90:4B:41:3E:8E:1E:7B:33:35:88:73:B1:23:B6:52:36:EE:3F
X509v3 Authority Key Identifier:
keyid:D2:17:B4:72:C8:41:C1:D6:85:50:A2:4F:19:36:D2:9C:C6:C2:8F:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0he0cshBwdaFUKJPGTbSnMbCj2o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/vJSQS0E-jh57MzWIc7EjtlI27j8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/290e44-b479-46cf-ab4b-b38e2677b3dc/1/0he0cshBwdaFUKJPGTbSnMbCj2o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:f85:3::/48
Signature Algorithm: sha256WithRSAEncryption
6c:a4:4e:10:7d:f9:cf:da:1f:f1:dd:5f:e4:3a:90:7e:1a:35:
45:91:1c:b1:c1:e0:f6:e5:0e:29:f0:9b:2d:4a:e8:8f:83:86:
1d:c8:63:d4:2f:e4:46:04:ef:eb:7f:71:b5:ae:ea:80:ee:51:
9f:16:64:af:e7:16:7e:62:c0:bb:25:d6:eb:2e:2f:1b:06:ab:
c9:b8:79:5a:34:22:8c:40:54:56:82:f3:a5:7a:72:73:36:0b:
9e:17:f1:d1:d5:48:07:42:2a:a4:a5:53:9b:2e:11:6a:ac:49:
5a:d0:60:df:6d:cb:69:39:51:6f:20:34:f6:cc:88:a9:cd:4f:
5c:26:cb:fb:69:68:e9:2b:40:44:7d:38:18:8e:db:14:50:20:
53:88:90:d8:05:c9:39:34:67:79:92:34:d1:ef:87:9c:d1:29:
73:46:2f:19:fc:7a:8d:ad:43:a7:f6:80:a6:a5:3d:2a:68:7a:
42:c9:58:d4:37:78:25:5f:68:9b:d5:4f:67:ac:df:9c:39:02:
a0:0e:4a:ff:b6:66:c6:22:cc:05:6b:96:13:b8:7c:e4:3d:e0:
ea:05:3a:6f:a2:dd:df:aa:14:d5:a5:6a:15:65:28:9b:90:dc:
b5:2a:b2:32:19:a5:bd:6f:ab:41:ab:a6:08:78:c9:b6:85:6f:
5d:38:0c:cd
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVsrwanFOgx0B+G7i83/w6kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyMTdiNDcyYzg0MWMxZDY4NTUwYTI0ZjE5MzZkMjljYzZj
MjhmNmEwHhcNMjMwMTAxMDkzNDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYzk0OTA0YjQxM2U4ZTFlN2IzMzM1ODg3M2IxMjNiNjUyMzZlZTNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA64fVg7bHhQ5Vqp1Mto0p9fqSaewK
P6O7ZZk7pxu0n9rrV7h3LDZzcHW7AmytyYImgcl6M/hLIBjHoJYP8I4qGdpay1AF
sY6+jGd1kWFDXGdQEZNrZMaHGJM9ARCzDylvjLrcwZxcQBznOMdLNVaGof1d4KVR
pOqm/iBwuMcGR+wB7m5Yl8+LzYLGlry3ckgScmjvc42xNtE+RdAMr7rpeC9aJZR1
id+RyhJH2iJO7r6Cf4nLmL6UtRm/YAUAAxdN4evx3mXGsbAYmF/Ts0ZjNl1AlrNI
DZ5rbpQzLIyPMEN40wPlptmQODgvekADtf01m9DkG0Rt9u0fvFgH9b5+bwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFLyUkEtBPo4eezM1iHOxI7ZSNu4/MB8GA1UdIwQY
MBaAFNIXtHLIQcHWhVCiTxk20pzGwo9qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGhlMGNzaEJ3ZGFGVUtKUEdUYlNuTWJDajJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC8yOTBlNDQtYjQ3OS00NmNmLWFiNGIt
YjM4ZTI2NzdiM2RjLzEvdkpTUVMwRS1qaDU3TXpXSWM3RWp0bEkyN2o4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC8yOTBlNDQtYjQ3OS00NmNmLWFiNGItYjM4ZTI2NzdiM2Rj
LzEvMGhlMGNzaEJ3ZGFGVUtKUEdUYlNuTWJDajJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgMPhQAD
MA0GCSqGSIb3DQEBCwUAA4IBAQBspE4QffnP2h/x3V/kOpB+GjVFkRyxweD25Q4p
8JstSuiPg4YdyGPUL+RGBO/rf3G1ruqA7lGfFmSv5xZ+YsC7JdbrLi8bBqvJuHla
NCKMQFRWgvOlenJzNgueF/HR1UgHQiqkpVObLhFqrEla0GDfbctpOVFvIDT2zIip
zU9cJsv7aWjpK0BEfTgYjtsUUCBTiJDYBck5NGd5kjTR74ec0SlzRi8Z/HqNrUOn
9oCmpT0qaHpCyVjUN3glX2ib1U9nrN+cOQKgDkr/tmbGIswFa5YTuHzkPeDqBTpv
ot3fqhTVpWoVZSibkNy1KrIyGaW9b6tBq6YIeMm2hW9dOAzN
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:51 2024 by rpki-client on console-ams.rpki-client.org