Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/eff67f-40a9-4775-a9c2-ad28fa966b51/1/JjcRYo7erhOqG8V6R7H4G7OyHDM.roa
File: JjcRYo7erhOqG8V6R7H4G7OyHDM.roa (raw, json)
Hash identifier: mpo4rt31Trb6/hRnRMtOufx/Saz30naeX0LS7BsehOQ=
Subject key identifier: 26:37:11:62:8E:DE:AE:13:AA:1B:C5:7A:47:B1:F8:1B:B3:B2:1C:33
Certificate issuer: /CN=0bb3e73aa8b7f0af3bd8400572dae72b0d46f55c
Certificate serial: 01856F3919F9786EC72204D151FF8A696EB7
Authority key identifier: 0B:B3:E7:3A:A8:B7:F0:AF:3B:D8:40:05:72:DA:E7:2B:0D:46:F5:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C7PnOqi38K872EAFctrnKw1G9Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/eff67f-40a9-4775-a9c2-ad28fa966b51/1/JjcRYo7erhOqG8V6R7H4G7OyHDM.roa
Signing time: Sun 01 Jan 2023 21:24:51 +0000
ROA not before: Sun 01 Jan 2023 21:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 2a0e:48c4::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:39:19:f9:78:6e:c7:22:04:d1:51:ff:8a:69:6e:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bb3e73aa8b7f0af3bd8400572dae72b0d46f55c
Validity
Not Before: Jan 1 21:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=263711628edeae13aa1bc57a47b1f81bb3b21c33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:0a:e9:4f:74:43:98:f3:ba:08:e7:06:f1:92:
15:cd:82:62:3c:d4:b6:61:78:c9:b3:14:8a:6b:7a:
1d:f3:0e:a0:5f:d1:1b:f7:ae:1f:b0:0d:c5:c7:0d:
95:f0:d6:fd:9f:2f:86:35:8e:95:c6:73:4c:d5:2f:
6b:56:9d:35:a9:90:7c:a4:68:ed:9f:41:3e:d3:aa:
c5:1b:f8:eb:72:52:65:fa:ba:a1:07:2b:92:63:52:
9d:53:74:0f:7a:b3:57:54:5d:01:a6:3e:9a:7e:e8:
89:26:6d:1c:04:de:42:70:0d:e2:e3:c3:c0:1a:79:
ec:a0:e7:d4:32:11:d5:c7:bc:76:cc:88:0e:3c:7f:
e4:c6:96:f6:9d:cf:2b:e2:5b:07:78:ae:62:6e:df:
17:66:ce:60:ad:73:6c:c6:ab:71:82:7c:7b:7b:28:
b6:d0:3d:d1:52:b1:9a:8c:e1:e3:1a:fe:e8:d4:dd:
28:c7:2f:1a:17:7e:0e:dd:7b:28:8e:ea:fc:d1:16:
03:b0:da:c5:86:bf:4b:7b:9c:68:36:bc:94:77:be:
ac:b3:b0:d8:ba:19:09:5c:d6:32:f1:a1:4a:c6:81:
32:57:49:80:c7:95:71:63:c7:be:47:7a:3b:64:3e:
79:05:06:28:b2:03:96:03:e4:b8:dc:6c:8e:01:d6:
75:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:37:11:62:8E:DE:AE:13:AA:1B:C5:7A:47:B1:F8:1B:B3:B2:1C:33
X509v3 Authority Key Identifier:
keyid:0B:B3:E7:3A:A8:B7:F0:AF:3B:D8:40:05:72:DA:E7:2B:0D:46:F5:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C7PnOqi38K872EAFctrnKw1G9Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/eff67f-40a9-4775-a9c2-ad28fa966b51/1/JjcRYo7erhOqG8V6R7H4G7OyHDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/eff67f-40a9-4775-a9c2-ad28fa966b51/1/C7PnOqi38K872EAFctrnKw1G9Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:48c4::/32
Signature Algorithm: sha256WithRSAEncryption
25:2a:2a:23:81:4c:c0:f2:8c:29:0d:c2:54:25:03:16:55:6e:
0a:00:60:4f:c9:fe:22:1b:5a:7a:ff:25:2b:71:83:33:8e:c6:
3f:8d:ef:a9:a3:8a:f4:4f:76:fa:3b:fd:e1:0d:6b:c5:82:05:
57:46:03:10:63:11:ab:10:5b:2e:4f:f6:63:b4:08:84:50:b4:
6a:3d:87:2c:5f:35:e0:1a:8d:08:4f:ba:73:ce:01:e3:06:28:
05:e5:8d:89:da:42:a9:cb:ec:09:f4:2e:4c:28:07:d1:f7:70:
00:f5:d1:7e:02:31:ef:71:b3:a0:9f:c4:e0:a7:40:e0:b5:85:
16:d0:03:ac:73:8c:23:01:4b:3d:03:11:ac:ef:64:2e:e3:e3:
f3:b9:41:4f:a1:b4:1d:ad:3c:8d:65:e9:29:65:72:ed:36:07:
7f:55:09:26:15:76:99:eb:4a:5b:ea:45:52:71:78:dd:bc:a6:
02:34:9c:f0:d6:0d:bf:a4:78:2b:db:f1:36:58:53:0a:ab:6c:
3b:86:e0:da:ec:7d:4d:01:c1:6a:81:7a:a4:38:b6:81:fd:92:
92:80:e8:5f:22:ce:f2:f0:aa:d2:35:2d:0d:37:cc:dd:46:83:
e5:22:6a:fb:18:7f:0c:de:7f:5e:e2:ac:66:33:32:4c:19:35:
32:d7:15:7c
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVvORn5eG7HIgTRUf+KaW63MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBiYjNlNzNhYThiN2YwYWYzYmQ4NDAwNTcyZGFlNzJiMGQ0
NmY1NWMwHhcNMjMwMTAxMjEyNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNjM3MTE2MjhlZGVhZTEzYWExYmM1N2E0N2IxZjgxYmIzYjIxYzMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3wrpT3RDmPO6COcG8ZIVzYJiPNS2
YXjJsxSKa3od8w6gX9Eb964fsA3Fxw2V8Nb9ny+GNY6VxnNM1S9rVp01qZB8pGjt
n0E+06rFG/jrclJl+rqhByuSY1KdU3QPerNXVF0Bpj6afuiJJm0cBN5CcA3i48PA
GnnsoOfUMhHVx7x2zIgOPH/kxpb2nc8r4lsHeK5ibt8XZs5grXNsxqtxgnx7eyi2
0D3RUrGajOHjGv7o1N0oxy8aF34O3Xsojur80RYDsNrFhr9Le5xoNryUd76ss7DY
uhkJXNYy8aFKxoEyV0mAx5VxY8e+R3o7ZD55BQYosgOWA+S43GyOAdZ1XwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFCY3EWKO3q4TqhvFekex+BuzshwzMB8GA1UdIwQY
MBaAFAuz5zqot/CvO9hABXLa5ysNRvVcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQzdQbk9xaTM4Szg3MkVBRmN0cm5LdzFHOVZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9lZmY2N2YtNDBhOS00Nzc1LWE5YzIt
YWQyOGZhOTY2YjUxLzEvSmpjUllvN2VyaE9xRzhWNlI3SDRHN095SERNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS9lZmY2N2YtNDBhOS00Nzc1LWE5YzItYWQyOGZhOTY2YjUx
LzEvQzdQbk9xaTM4Szg3MkVBRmN0cm5LdzFHOVZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKg5IxDAN
BgkqhkiG9w0BAQsFAAOCAQEAJSoqI4FMwPKMKQ3CVCUDFlVuCgBgT8n+Ihtaev8l
K3GDM47GP43vqaOK9E92+jv94Q1rxYIFV0YDEGMRqxBbLk/2Y7QIhFC0aj2HLF81
4BqNCE+6c84B4wYoBeWNidpCqcvsCfQuTCgH0fdwAPXRfgIx73GzoJ/E4KdA4LWF
FtADrHOMIwFLPQMRrO9kLuPj87lBT6G0Ha08jWXpKWVy7TYHf1UJJhV2metKW+pF
UnF43bymAjSc8NYNv6R4K9vxNlhTCqtsO4bg2ux9TQHBaoF6pDi2gf2SkoDoXyLO
8vCq0jUtDTfM3UaD5SJq+xh/DN5/XuKsZjMyTBk1MtcVfA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:08 2024 by rpki-client on console-ams.rpki-client.org