Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/MiFvCt6lIZtQN8EUL88Ck9L4_P4.roa
File: MiFvCt6lIZtQN8EUL88Ck9L4_P4.roa (raw, json)
Hash identifier: hV4XrVkZzN5QT+M0T9oELHkFzqzKN/l9J4Dockt4+p8=
Subject key identifier: 32:21:6F:0A:DE:A5:21:9B:50:37:C1:14:2F:CF:02:93:D2:F8:FC:FE
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0185739019260D7B7EAC3B339F19F28AE393
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/MiFvCt6lIZtQN8EUL88Ck9L4_P4.roa
Signing time: Mon 02 Jan 2023 17:38:21 +0000
ROA not before: Mon 02 Jan 2023 17:38:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213361
IP address blocks: 2a0b:b87:ffee::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:90:19:26:0d:7b:7e:ac:3b:33:9f:19:f2:8a:e3:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 2 17:38:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32216f0adea5219b5037c1142fcf0293d2f8fcfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:8f:08:2f:ee:e9:fe:83:26:2f:a3:ba:d8:af:
f2:a7:93:44:e6:7d:ff:8d:37:e1:92:e4:47:c7:ee:
42:55:94:17:3e:61:f4:87:a4:83:70:c3:35:e2:84:
40:2a:e1:36:82:40:38:19:e3:d4:15:b1:0e:fc:54:
69:8f:71:5c:7e:95:24:db:b3:9f:b4:e0:5f:73:3e:
ff:fb:35:26:93:d1:b1:68:93:9d:3a:e5:b2:fa:58:
81:8f:b0:77:eb:84:ae:9e:ea:e0:8e:d9:f7:8e:17:
ac:44:cb:66:2c:0e:12:2c:4e:1a:26:3c:84:dd:ae:
d1:2c:4c:b5:d4:a6:05:b7:f2:7f:6b:c4:92:2e:fb:
b9:bf:0d:25:0a:f7:1c:f4:81:dc:7f:f3:0a:ba:73:
b6:81:e7:e2:07:8b:42:2b:32:86:2f:8a:b7:36:65:
d1:17:75:c7:18:a8:72:0e:95:93:ea:a9:dd:cd:9f:
86:07:c8:9d:93:bf:1a:b1:fd:06:85:a5:4b:75:6e:
70:43:28:ff:c3:ae:d7:d6:d5:0a:48:59:8f:6b:30:
99:97:68:44:b1:8b:77:e8:39:1f:37:3f:fd:29:d7:
1a:9b:65:d8:3c:25:6e:88:b3:85:a9:23:a5:ae:e2:
53:ce:06:de:f9:f0:a7:79:4c:ac:82:2d:7f:22:ff:
d7:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:21:6F:0A:DE:A5:21:9B:50:37:C1:14:2F:CF:02:93:D2:F8:FC:FE
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/MiFvCt6lIZtQN8EUL88Ck9L4_P4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b87:ffee::/48
Signature Algorithm: sha256WithRSAEncryption
d7:a3:e8:0f:a8:6c:84:11:1d:62:90:63:6f:0c:49:47:7a:b4:
d3:16:4f:0b:5f:3a:aa:72:37:06:fb:77:c6:c1:6b:4d:bc:fa:
00:01:e2:4c:1b:27:81:01:f4:0b:cf:ae:04:36:dd:b3:0f:5b:
7a:4c:0e:e1:05:4b:4c:5b:9a:31:df:d1:88:ea:b3:81:e4:96:
b9:5f:f6:0b:6e:0a:02:e6:16:a4:de:d5:25:5f:a4:68:d2:21:
94:bb:d3:e2:3c:d2:18:ca:f6:99:47:4d:06:4e:a9:94:86:01:
99:e0:80:d3:d6:79:ca:1a:e8:7d:6d:2e:c6:b0:c1:64:f2:be:
13:25:86:66:ce:bb:ca:e8:8a:df:dd:51:65:3a:78:86:2b:9a:
f5:c4:32:ea:dc:b4:3a:d2:a2:96:29:30:67:57:4a:e8:28:66:
45:bd:20:ea:d2:41:d0:cb:dc:61:50:54:95:09:72:5a:b1:54:
de:3c:b1:80:96:bc:92:f6:d1:d5:b3:34:87:55:35:b3:18:f6:
aa:ce:f1:c3:6f:f3:fa:c9:f8:37:e2:d4:b0:bd:fa:e2:42:fa:
ad:6f:38:31:df:14:02:a6:fc:5d:37:ce:70:cd:7c:60:15:b8:
de:73:ff:56:28:08:ca:aa:2d:d9:c0:4c:a5:78:dc:24:b9:8d:
77:3b:e7:00
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVzkBkmDXt+rDsznxnyiuOTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz
YjUwMzQwHhcNMjMwMTAyMTczODIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMjIxNmYwYWRlYTUyMTliNTAzN2MxMTQyZmNmMDI5M2QyZjhmY2ZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmY8IL+7p/oMmL6O62K/yp5NE5n3/
jTfhkuRHx+5CVZQXPmH0h6SDcMM14oRAKuE2gkA4GePUFbEO/FRpj3FcfpUk27Of
tOBfcz7/+zUmk9GxaJOdOuWy+liBj7B364Sunurgjtn3jhesRMtmLA4SLE4aJjyE
3a7RLEy11KYFt/J/a8SSLvu5vw0lCvcc9IHcf/MKunO2gefiB4tCKzKGL4q3NmXR
F3XHGKhyDpWT6qndzZ+GB8idk78asf0GhaVLdW5wQyj/w67X1tUKSFmPazCZl2hE
sYt36DkfNz/9Kdcam2XYPCVuiLOFqSOlruJTzgbe+fCneUysgi1/Iv/XCQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFDIhbwrepSGbUDfBFC/PApPS+Pz+MB8GA1UdIwQY
MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It
Mzk0YWNkMjFmMzliLzEvTWlGdkN0NmxJWnRRTjhFVUw4OENrOUw0X1A0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli
LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgsLh//u
MA0GCSqGSIb3DQEBCwUAA4IBAQDXo+gPqGyEER1ikGNvDElHerTTFk8LXzqqcjcG
+3fGwWtNvPoAAeJMGyeBAfQLz64ENt2zD1t6TA7hBUtMW5ox39GI6rOB5Ja5X/YL
bgoC5hak3tUlX6Ro0iGUu9PiPNIYyvaZR00GTqmUhgGZ4IDT1nnKGuh9bS7GsMFk
8r4TJYZmzrvK6Irf3VFlOniGK5r1xDLq3LQ60qKWKTBnV0roKGZFvSDq0kHQy9xh
UFSVCXJasVTePLGAlryS9tHVszSHVTWzGPaqzvHDb/P6yfg34tSwvfriQvqtbzgx
3xQCpvxdN85wzXxgFbjec/9WKAjKqi3ZwEyleNwkuY13O+cA
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:26 2023 by rpki-client on console-ams.rpki-client.org