Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/PQDiPPpyXgQoOjbvL7ddUo4q6_k.roa
File: PQDiPPpyXgQoOjbvL7ddUo4q6_k.roa (raw, json)
Hash identifier: +K7Ww0YWeB2it2XO2OGkERHIHFm3+r8euW1kddlhLF0=
Subject key identifier: 3D:00:E2:3C:FA:72:5E:04:28:3A:36:EF:2F:B7:5D:52:8E:2A:EB:F9
Certificate issuer: /CN=6ca977f854c63dc9f97a18be7b13002121a5d384
Certificate serial: 0186C14A0E127C891C2E58C1D7D21E765077
Authority key identifier: 6C:A9:77:F8:54:C6:3D:C9:F9:7A:18:BE:7B:13:00:21:21:A5:D3:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bKl3-FTGPcn5ehi-exMAISGl04Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/PQDiPPpyXgQoOjbvL7ddUo4q6_k.roa
Signing time: Wed 08 Mar 2023 12:55:01 +0000
ROA not before: Wed 08 Mar 2023 12:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202939
IP address blocks: 2a13:b487:1700::/40 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c1:4a:0e:12:7c:89:1c:2e:58:c1:d7:d2:1e:76:50:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ca977f854c63dc9f97a18be7b13002121a5d384
Validity
Not Before: Mar 8 12:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d00e23cfa725e04283a36ef2fb75d528e2aebf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:83:ea:47:e7:bb:f5:ed:dc:92:8c:da:84:18:
8f:88:69:71:18:41:47:da:4b:6b:3d:15:95:8f:e7:
3c:fe:04:59:a0:4c:10:08:85:db:e2:32:a1:60:72:
13:c4:a7:57:c4:5b:71:c9:0a:f5:89:7f:2e:08:8e:
e4:e6:fd:c6:4e:65:5b:6a:f5:78:f0:e1:9c:d8:41:
78:de:9f:50:2a:50:fb:24:7b:9e:83:db:70:29:15:
ee:3c:21:58:ec:6b:c1:a2:b1:49:f2:fc:29:74:ea:
bc:13:2a:58:37:a5:be:4d:52:ea:7b:9f:db:31:35:
77:42:c0:a4:76:43:6d:29:dd:61:aa:af:6c:a4:e9:
14:ff:02:1c:db:97:65:c5:8a:69:c5:1a:50:9e:0d:
84:69:32:d5:86:3e:c3:6d:c4:a6:1f:20:8b:b5:1a:
89:6f:cc:ab:44:e3:57:d0:62:92:06:33:a7:61:61:
3b:7b:51:9d:b1:4e:e9:8c:4c:09:3b:c3:3a:9f:e8:
5b:22:16:9d:8f:ac:38:d6:e4:8e:6c:48:f9:bc:da:
15:8a:f9:d1:29:56:89:6c:99:89:9e:3a:b7:f6:a7:
ee:84:ec:af:58:f3:b6:2c:39:70:35:f2:9a:7f:7e:
fe:7f:d1:15:be:c2:73:43:70:56:1e:44:b0:83:d1:
3d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:00:E2:3C:FA:72:5E:04:28:3A:36:EF:2F:B7:5D:52:8E:2A:EB:F9
X509v3 Authority Key Identifier:
keyid:6C:A9:77:F8:54:C6:3D:C9:F9:7A:18:BE:7B:13:00:21:21:A5:D3:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bKl3-FTGPcn5ehi-exMAISGl04Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/PQDiPPpyXgQoOjbvL7ddUo4q6_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/09ccb4-2483-4ba7-9634-d6a5950cadf2/1/bKl3-FTGPcn5ehi-exMAISGl04Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:b487:1700::/40
Signature Algorithm: sha256WithRSAEncryption
b3:d9:4e:47:ad:42:22:df:80:0b:11:8d:7e:76:d9:c4:22:07:
5c:6c:85:43:f4:a3:68:3c:61:ab:ef:85:1d:a1:0b:e2:c2:18:
75:a8:cc:d0:f8:b9:f9:ec:ef:ee:86:85:58:9a:94:3c:b7:68:
ee:35:50:06:c9:35:b4:b4:52:8f:38:68:9f:89:e3:6d:26:f4:
fe:28:8b:5b:63:3e:a5:2c:b0:1c:15:fb:42:d4:f4:2f:c5:1d:
e6:b0:c4:92:fd:71:52:77:e2:fb:4c:71:80:a1:3e:cf:11:dc:
34:de:dd:3e:ba:50:d4:18:85:f4:b7:1d:ae:17:51:12:14:41:
6c:8f:23:d4:74:ae:61:17:b9:19:f8:d3:15:ad:2d:a1:35:76:
aa:11:f5:62:f6:2f:e8:58:99:cc:af:30:56:53:8b:b4:97:7c:
5e:be:0b:bc:02:e8:62:b3:91:62:9f:72:1b:76:69:af:38:8f:
26:90:56:61:e3:e4:25:33:f2:07:a1:1b:d4:d0:40:7c:1f:2e:
6e:8d:1b:58:c4:b1:17:7b:30:da:5d:66:a3:09:40:d6:20:8d:
32:06:43:60:78:34:30:77:ab:56:a9:c9:db:a3:31:98:3b:df:
d1:1d:7b:de:91:af:84:1f:21:de:49:c0:7d:fc:e6:0f:34:fa:
6b:8b:cf:a1
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYbBSg4SfIkcLljB19IedlB3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjYTk3N2Y4NTRjNjNkYzlmOTdhMThiZTdiMTMwMDIxMjFh
NWQzODQwHhcNMjMwMzA4MTI1NTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZDAwZTIzY2ZhNzI1ZTA0MjgzYTM2ZWYyZmI3NWQ1MjhlMmFlYmY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj4PqR+e79e3ckozahBiPiGlxGEFH
2ktrPRWVj+c8/gRZoEwQCIXb4jKhYHITxKdXxFtxyQr1iX8uCI7k5v3GTmVbavV4
8OGc2EF43p9QKlD7JHueg9twKRXuPCFY7GvBorFJ8vwpdOq8EypYN6W+TVLqe5/b
MTV3QsCkdkNtKd1hqq9spOkU/wIc25dlxYppxRpQng2EaTLVhj7DbcSmHyCLtRqJ
b8yrRONX0GKSBjOnYWE7e1GdsU7pjEwJO8M6n+hbIhadj6w41uSObEj5vNoVivnR
KVaJbJmJnjq39qfuhOyvWPO2LDlwNfKaf37+f9EVvsJzQ3BWHkSwg9E9uwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFD0A4jz6cl4EKDo27y+3XVKOKuv5MB8GA1UdIwQY
MBaAFGypd/hUxj3J+XoYvnsTACEhpdOEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYktsMy1GVEdQY241ZWhpLWV4TUFJU0dsMDRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8wOWNjYjQtMjQ4My00YmE3LTk2MzQt
ZDZhNTk1MGNhZGYyLzEvUFFEaVBQcHlYZ1FvT2pidkw3ZGRVbzRxNl9rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS8wOWNjYjQtMjQ4My00YmE3LTk2MzQtZDZhNTk1MGNhZGYy
LzEvYktsMy1GVEdQY241ZWhpLWV4TUFJU0dsMDRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKhO0hxcw
DQYJKoZIhvcNAQELBQADggEBALPZTketQiLfgAsRjX522cQiB1xshUP0o2g8Yavv
hR2hC+LCGHWozND4ufns7+6GhVialDy3aO41UAbJNbS0Uo84aJ+J420m9P4oi1tj
PqUssBwV+0LU9C/FHeawxJL9cVJ34vtMcYChPs8R3DTe3T66UNQYhfS3Ha4XURIU
QWyPI9R0rmEXuRn40xWtLaE1dqoR9WL2L+hYmcyvMFZTi7SXfF6+C7wC6GKzkWKf
cht2aa84jyaQVmHj5CUz8gehG9TQQHwfLm6NG1jEsRd7MNpdZqMJQNYgjTIGQ2B4
NDB3q1apydujMZg739Ede96Rr4QfId5JwH385g80+muLz6E=
-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:04 2024 by rpki-client on console-ams.rpki-client.org