Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/O5Pv2JFKgvUNsIp3Ei_iWP8v8go.roa
File: O5Pv2JFKgvUNsIp3Ei_iWP8v8go.roa (raw, json)
Hash identifier: 7EiPdwCBhywHokJBWzf1IA0nMw/Pnl6QFxD118QHC60=
Subject key identifier: 3B:93:EF:D8:91:4A:82:F5:0D:B0:8A:77:12:2F:E2:58:FF:2F:F2:0A
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0185738FF1E32CFA8E3E5C0C009982CF78F6
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/O5Pv2JFKgvUNsIp3Ei_iWP8v8go.roa
Signing time: Mon 02 Jan 2023 17:38:11 +0000
ROA not before: Mon 02 Jan 2023 17:38:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59417
IP address blocks: 2a0b:b87:ffb7::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:8f:f1:e3:2c:fa:8e:3e:5c:0c:00:99:82:cf:78:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 2 17:38:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b93efd8914a82f50db08a77122fe258ff2ff20a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:10:40:e0:23:96:30:04:58:c4:77:fe:05:fd:
f6:4c:9d:5f:a6:74:02:d5:12:bf:6e:91:22:6b:ce:
c0:67:ce:10:a0:91:95:f4:3a:ca:9b:b0:ad:3b:8a:
68:a8:24:d0:ee:1a:2f:21:eb:ca:7d:db:64:47:e4:
ce:fc:13:b4:40:70:3d:cf:e1:b7:84:e4:a9:d5:f4:
9a:28:f7:6c:18:78:06:83:43:09:4e:4d:75:9d:aa:
78:69:20:0b:eb:56:f0:8a:54:57:e2:4b:ed:b9:77:
3d:dc:61:a7:ac:c9:18:c9:d3:57:c3:3a:5f:0f:a2:
f5:4b:30:9e:4f:36:76:c3:41:cd:09:b6:00:77:77:
05:4b:4b:cb:28:d9:9d:90:1a:04:c1:30:fc:b0:cf:
51:90:24:f9:53:03:7a:9f:a9:d4:4f:18:07:df:f2:
43:31:17:b6:f5:dc:4a:05:83:9b:31:c8:cd:05:c6:
69:06:87:7e:a5:67:de:ec:0b:d5:93:ef:3e:07:74:
b7:17:e9:d7:85:67:85:7e:73:10:49:47:d5:22:d7:
58:a7:c8:5c:32:3c:8d:b0:cb:0a:cc:b6:da:14:38:
41:c4:2c:ea:4c:4e:d7:2f:a8:85:72:d4:8e:20:b3:
68:b2:8d:a1:22:ca:bf:cd:86:97:cd:38:7c:94:7b:
db:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:93:EF:D8:91:4A:82:F5:0D:B0:8A:77:12:2F:E2:58:FF:2F:F2:0A
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/O5Pv2JFKgvUNsIp3Ei_iWP8v8go.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:b87:ffb7::/48
Signature Algorithm: sha256WithRSAEncryption
72:f1:96:ec:17:4d:8c:c5:41:1c:66:c2:75:14:b4:3f:d5:af:
61:82:20:e4:a7:f9:a9:c2:40:7e:89:ed:da:51:a6:17:24:50:
1a:92:0c:cf:95:70:5d:40:35:0a:19:ac:60:b5:0f:4c:18:cf:
2d:03:8d:a1:b7:e0:6e:e7:e2:92:a6:af:39:5d:7d:27:b8:4d:
fd:11:e2:26:c5:00:3a:6e:d9:36:2e:af:18:0e:8e:c5:39:ce:
55:b9:cd:bf:c7:5f:64:f3:95:a1:61:b6:41:0a:15:0f:0a:df:
79:09:58:12:5d:bb:fc:b7:f4:58:95:22:bc:c1:cd:fc:63:09:
ac:61:ea:82:ef:f0:cb:55:52:02:9a:b2:63:22:63:36:fe:3a:
40:e3:4a:84:30:6a:8c:a9:39:36:a2:13:06:07:9d:fa:81:b6:
3a:ba:58:04:02:f5:fb:b8:52:2a:9d:e8:8a:53:74:b5:d1:90:
29:11:0d:6a:8c:ee:5f:61:4b:15:e8:52:80:69:01:27:cf:83:
79:58:9c:a7:0e:64:ce:c6:45:e7:3e:f6:c5:bf:38:ea:25:49:
18:58:85:80:89:3f:37:33:5d:50:3b:c0:43:8e:bd:49:48:e8:
c0:5d:45:2c:9f:e0:ea:e5:d3:db:40:88:2f:20:53:ee:b8:0c:
47:8a:73:e8
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVzj/HjLPqOPlwMAJmCz3j2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxYTdiMGQ4ZGU4MjUxZDM2ZDdjODNmYWY2YmM3ZWZlYzcz
YjUwMzQwHhcNMjMwMTAyMTczODExWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYjkzZWZkODkxNGE4MmY1MGRiMDhhNzcxMjJmZTI1OGZmMmZmMjBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmRBA4COWMARYxHf+Bf32TJ1fpnQC
1RK/bpEia87AZ84QoJGV9DrKm7CtO4poqCTQ7hovIevKfdtkR+TO/BO0QHA9z+G3
hOSp1fSaKPdsGHgGg0MJTk11nap4aSAL61bwilRX4kvtuXc93GGnrMkYydNXwzpf
D6L1SzCeTzZ2w0HNCbYAd3cFS0vLKNmdkBoEwTD8sM9RkCT5UwN6n6nUTxgH3/JD
MRe29dxKBYObMcjNBcZpBod+pWfe7AvVk+8+B3S3F+nXhWeFfnMQSUfVItdYp8hc
MjyNsMsKzLbaFDhBxCzqTE7XL6iFctSOILNoso2hIsq/zYaXzTh8lHvbtwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFDuT79iRSoL1DbCKdxIv4lj/L/IKMB8GA1UdIwQY
MBaAFLGnsNjeglHTbXyD+va8fv7HO1A0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2It
Mzk0YWNkMjFmMzliLzEvTzVQdjJKRktndlVOc0lwM0VpX2lXUDh2OGdvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9mMTM0YzgtZjgxNC00YjcxLTk1N2ItMzk0YWNkMjFmMzli
LzEvc2FldzJONkNVZE50ZklQNjlyeC1fc2M3VURRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgsLh/+3
MA0GCSqGSIb3DQEBCwUAA4IBAQBy8ZbsF02MxUEcZsJ1FLQ/1a9hgiDkp/mpwkB+
ie3aUaYXJFAakgzPlXBdQDUKGaxgtQ9MGM8tA42ht+Bu5+KSpq85XX0nuE39EeIm
xQA6btk2Lq8YDo7FOc5Vuc2/x19k85WhYbZBChUPCt95CVgSXbv8t/RYlSK8wc38
YwmsYeqC7/DLVVICmrJjImM2/jpA40qEMGqMqTk2ohMGB536gbY6ulgEAvX7uFIq
neiKU3S10ZApEQ1qjO5fYUsV6FKAaQEnz4N5WJynDmTOxkXnPvbFvzjqJUkYWIWA
iT83M11QO8BDjr1JSOjAXUUsn+Dq5dPbQIgvIFPuuAxHinPo
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:49 2024 by rpki-client on console-fra.rpki-client.org