Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/CUbSDImvHyW9sDCaQRAubCDmwyg.roa
File: CUbSDImvHyW9sDCaQRAubCDmwyg.roa (raw, json)
Hash identifier: 25JFEgkODKyWpMC2Rdc8QsZ0/oivx16AKSevzUdN+Tg=
Subject key identifier: 09:46:D2:0C:89:AF:1F:25:BD:B0:30:9A:41:10:2E:6C:20:E6:C3:28
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 01857390163333EFFF9301811D81353C8F1D
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/CUbSDImvHyW9sDCaQRAubCDmwyg.roa
Signing time: Mon 02 Jan 2023 17:38:20 +0000
ROA not before: Mon 02 Jan 2023 17:38:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213029
IP address blocks: 2a0b:b87:ffbc::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:90:16:33:33:ef:ff:93:01:81:1d:81:35:3c:8f:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 2 17:38:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0946d20c89af1f25bdb0309a41102e6c20e6c328
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:81:df:c9:4e:a2:dc:a6:88:86:a9:c2:0c:b9:
a1:c3:4a:5e:b5:47:6e:da:6c:6d:13:38:bb:5a:52:
40:b8:85:d5:e0:cd:49:6b:05:fd:52:20:3b:1d:c6:
62:15:c0:05:3c:16:02:c6:5d:83:fd:62:a9:2e:b7:
65:36:77:16:06:39:37:07:ec:71:a1:87:ce:8d:37:
47:11:7c:7a:da:cf:be:d9:33:23:d0:fa:a1:62:5f:
8d:30:44:70:60:56:67:2c:90:fc:1d:c4:ae:4c:d5:
e7:19:c7:29:6f:1a:45:79:15:79:30:16:fb:5c:15:
cc:53:23:82:4c:a5:c9:4a:f0:9c:fd:f9:9d:a7:57:
94:81:09:fb:60:c0:d3:25:4d:ea:67:76:4c:91:49:
3e:e7:0b:2a:26:58:ac:5d:71:ae:f4:4c:81:1b:76:
d7:60:a5:4c:7b:a7:84:a7:d6:93:6c:31:25:5a:11:
15:7f:30:2c:1f:5c:75:18:8b:61:e6:2c:3a:79:2a:
ad:f8:d8:c4:c0:a3:0d:d0:64:84:ab:91:79:c7:ac:
e7:d8:f4:04:d4:df:dc:d7:f3:25:bf:bf:23:5a:79:
d3:a5:a9:63:19:5a:87:f7:6c:5d:79:2b:5c:49:4c:
76:ab:e5:c5:d0:29:8b:52:e2:b7:f8:91:88:b8:a4:
05:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:46:D2:0C:89:AF:1F:25:BD:B0:30:9A:41:10:2E:6C:20:E6:C3:28
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/CUbSDImvHyW9sDCaQRAubCDmwyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b87:ffbc::/48
Signature Algorithm: sha256WithRSAEncryption
03:0e:5d:4b:d6:a0:cc:55:66:7e:0d:51:c2:eb:6e:53:47:03:
d1:ee:c6:d0:28:a2:44:e0:98:3a:d2:a3:44:11:ad:c9:89:4b:
6d:98:96:c6:a3:f7:63:99:98:4c:97:c0:70:26:16:54:d3:8b:
5c:41:35:03:e5:03:4f:56:c2:ae:82:fd:12:49:09:04:60:dc:
36:4b:94:4b:70:1a:32:0e:c1:47:19:af:2a:0c:bf:7f:76:5c:
67:6e:ee:d5:4e:c1:29:bc:39:14:09:c3:3c:83:25:44:20:2a:
aa:08:72:33:b7:3f:c0:17:0c:cd:ed:17:26:9f:75:ed:db:9e:
5d:46:39:56:63:a4:08:1c:ad:d9:4a:2d:a2:25:d8:77:94:52:
52:94:34:fc:d6:61:27:67:b9:7d:f5:c4:dc:ee:16:2c:b4:f8:
84:cd:a6:bd:fb:99:2d:a5:5d:e3:af:00:79:f7:1c:d0:d9:44:
89:ce:20:84:03:89:ef:a4:f6:3a:1c:ae:98:28:57:8b:90:f8:
42:f4:53:60:da:d3:b5:82:e4:61:b6:ee:e5:ba:ea:d2:b8:13:
49:bd:b7:18:aa:41:6a:ad:5a:ef:8c:91:f3:6c:32:8b:d1:f0:
57:d1:be:10:e2:d6:24:dd:f1:b4:6e:98:04:82:1b:ac:22:e3:
7e:87:18:6a
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVzkBYzM+//kwGBHYE1PI8dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz
YjUwMzQwHhcNMjMwMTAyMTczODIwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwOTQ2ZDIwYzg5YWYxZjI1YmRiMDMwOWE0MTEwMmU2YzIwZTZjMzI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgoHfyU6i3KaIhqnCDLmhw0petUdu
2mxtEzi7WlJAuIXV4M1JawX9UiA7HcZiFcAFPBYCxl2D/WKpLrdlNncWBjk3B+xx
oYfOjTdHEXx62s++2TMj0PqhYl+NMERwYFZnLJD8HcSuTNXnGccpbxpFeRV5MBb7
XBXMUyOCTKXJSvCc/fmdp1eUgQn7YMDTJU3qZ3ZMkUk+5wsqJlisXXGu9EyBG3bX
YKVMe6eEp9aTbDElWhEVfzAsH1x1GIth5iw6eSqt+NjEwKMN0GSEq5F5x6zn2PQE
1N/c1/Mlv78jWnnTpaljGVqH92xdeStcSUx2q+XF0CmLUuK3+JGIuKQFBQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFAlG0gyJrx8lvbAwmkEQLmwg5sMoMB8GA1UdIwQY
MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It
Mzk0YWNkMjFmMzliLzEvQ1ViU0RJbXZIeVc5c0RDYVFSQXViQ0Rtd3lnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli
LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgsLh/+8
MA0GCSqGSIb3DQEBCwUAA4IBAQADDl1L1qDMVWZ+DVHC625TRwPR7sbQKKJE4Jg6
0qNEEa3JiUttmJbGo/djmZhMl8BwJhZU04tcQTUD5QNPVsKugv0SSQkEYNw2S5RL
cBoyDsFHGa8qDL9/dlxnbu7VTsEpvDkUCcM8gyVEICqqCHIztz/AFwzN7Rcmn3Xt
255dRjlWY6QIHK3ZSi2iJdh3lFJSlDT81mEnZ7l99cTc7hYstPiEzaa9+5ktpV3j
rwB59xzQ2USJziCEA4nvpPY6HK6YKFeLkPhC9FNg2tO1guRhtu7luurSuBNJvbcY
qkFqrVrvjJHzbDKL0fBX0b4Q4tYk3fG0bpgEghusIuN+hxhq
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:39 2024 by rpki-client on console-ams.rpki-client.org