Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/t4ClLXFQmzFI00lyxxkvfhMBrWw.roa
File: t4ClLXFQmzFI00lyxxkvfhMBrWw.roa (raw, json)
Hash identifier: /5hS33e7s2MyjI+uNO9bcZdxxZ5zU9fRDNGX3olYqms=
Subject key identifier: B7:80:A5:2D:71:50:9B:31:48:D3:49:72:C7:19:2F:7E:13:01:AD:6C
Certificate issuer: /CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Certificate serial: 01856F429C0AAA5C4D066B94F487CAE8BC36
Authority key identifier: C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/t4ClLXFQmzFI00lyxxkvfhMBrWw.roa
Signing time: Sun 01 Jan 2023 21:35:14 +0000
ROA not before: Sun 01 Jan 2023 21:35:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202726
IP address blocks: 2a05:4140:1f80::/43 maxlen: 43
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:9c:0a:aa:5c:4d:06:6b:94:f4:87:ca:e8:bc:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c74c60adeb0cd5768cf756f562b1b5cc5b9c180a
Validity
Not Before: Jan 1 21:35:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b780a52d71509b3148d34972c7192f7e1301ad6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9a:14:08:41:a8:19:7f:6d:f6:e2:dc:b2:c5:
64:ca:3b:a1:9e:f4:14:33:d8:30:15:cf:66:83:47:
a6:ee:a7:52:b0:af:ec:8b:07:52:3b:9a:b3:75:a1:
c5:53:2f:3d:ea:a3:26:3d:f0:3d:bd:e6:c1:57:d1:
74:16:d9:91:29:40:bd:ed:0e:8a:73:58:83:bd:42:
34:5e:77:bc:c4:42:bb:3d:6f:35:38:be:f9:d8:1d:
aa:d3:48:b4:ad:0b:85:6f:03:dd:2f:f4:64:51:ac:
a3:7e:3a:4f:21:18:94:2f:b4:5d:07:67:66:b9:af:
4c:cd:c5:fe:26:f0:93:45:6d:9e:c2:92:a8:2d:61:
12:3b:97:e3:64:8e:66:a3:74:97:7a:18:be:b0:02:
94:ab:d3:12:ac:b7:cc:11:ae:76:64:37:c0:ce:a2:
af:52:60:b5:08:62:81:f1:92:23:db:cc:6f:c3:9a:
86:7e:83:f9:94:0b:ea:d6:27:5b:cb:bc:81:18:1b:
d8:02:63:e6:2e:7f:c3:82:fa:5f:2b:96:c6:b5:ea:
ce:ed:fd:c3:cf:74:36:47:c2:be:00:99:d7:ee:ec:
af:eb:0b:66:4e:78:de:6b:21:94:94:87:51:41:f2:
53:81:ae:66:e1:d1:53:16:a8:aa:32:c8:b1:53:75:
ec:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:80:A5:2D:71:50:9B:31:48:D3:49:72:C7:19:2F:7E:13:01:AD:6C
X509v3 Authority Key Identifier:
keyid:C7:4C:60:AD:EB:0C:D5:76:8C:F7:56:F5:62:B1:B5:CC:5B:9C:18:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x0xgresM1XaM91b1YrG1zFucGAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/t4ClLXFQmzFI00lyxxkvfhMBrWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/adb65c-f6f7-4495-ba23-885e84e7512e/1/x0xgresM1XaM91b1YrG1zFucGAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:4140:1f80::/43
Signature Algorithm: sha256WithRSAEncryption
45:67:1e:28:cd:83:5e:8c:89:e0:96:98:59:4e:70:c2:60:a3:
3f:eb:bb:49:c6:63:74:a8:bc:96:58:e5:44:53:43:31:53:83:
b2:99:f9:0a:ad:11:62:b9:13:72:02:55:86:8e:53:25:d5:cf:
30:d4:11:d8:6f:61:ca:59:50:aa:00:81:24:19:02:35:97:37:
f8:9c:7d:ea:48:b7:bf:0f:50:5d:cf:7f:ee:26:4e:f5:18:b9:
24:13:ae:22:01:c9:7b:75:92:c4:b5:3c:cd:03:03:e3:07:4c:
75:bc:9d:01:64:01:48:48:f9:4b:c4:c2:a9:1d:b6:66:5d:e6:
6b:0b:df:11:45:ad:9f:37:cb:6d:3f:8e:bd:58:35:cf:a1:97:
29:47:88:e4:b6:79:e6:64:4e:49:72:2a:25:ac:63:fb:fb:5a:
5d:3e:92:e3:8e:13:6e:b4:29:67:09:9a:87:94:7e:db:59:9a:
67:48:0b:97:7d:d6:cc:2e:ef:89:bc:15:ad:93:8f:98:7e:b7:
50:41:3a:7e:16:65:b1:49:ca:11:dc:2f:69:10:74:57:16:14:
d8:6b:5e:47:de:07:d2:0b:b9:4e:38:56:07:ed:45:20:4c:43:
f7:4d:f7:6d:ed:f4:a9:3e:29:ac:6f:c8:a2:7d:74:bd:1c:11:
a4:0e:89:d2
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVvQpwKqlxNBmuU9IfK6Lw2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM3NGM2MGFkZWIwY2Q1NzY4Y2Y3NTZmNTYyYjFiNWNjNWI5
YzE4MGEwHhcNMjMwMTAxMjEzNTE0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNzgwYTUyZDcxNTA5YjMxNDhkMzQ5NzJjNzE5MmY3ZTEzMDFhZDZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr5oUCEGoGX9t9uLcssVkyjuhnvQU
M9gwFc9mg0em7qdSsK/siwdSO5qzdaHFUy896qMmPfA9vebBV9F0FtmRKUC97Q6K
c1iDvUI0Xne8xEK7PW81OL752B2q00i0rQuFbwPdL/RkUayjfjpPIRiUL7RdB2dm
ua9MzcX+JvCTRW2ewpKoLWESO5fjZI5mo3SXehi+sAKUq9MSrLfMEa52ZDfAzqKv
UmC1CGKB8ZIj28xvw5qGfoP5lAvq1idby7yBGBvYAmPmLn/DgvpfK5bGterO7f3D
z3Q2R8K+AJnX7uyv6wtmTnjeayGUlIdRQfJTga5m4dFTFqiqMsixU3XsAQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFLeApS1xUJsxSNNJcscZL34TAa1sMB8GA1UdIwQY
MBaAFMdMYK3rDNV2jPdW9WKxtcxbnBgKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveDB4Z3Jlc00xWGFNOTFiMVlyRzF6RnVjR0FvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi9hZGI2NWMtZjZmNy00NDk1LWJhMjMt
ODg1ZTg0ZTc1MTJlLzEvdDRDbExYRlFtekZJMDBseXh4a3ZmaE1Ccld3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi9hZGI2NWMtZjZmNy00NDk1LWJhMjMtODg1ZTg0ZTc1MTJl
LzEveDB4Z3Jlc00xWGFNOTFiMVlyRzF6RnVjR0FvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcFKgVBQB+A
MA0GCSqGSIb3DQEBCwUAA4IBAQBFZx4ozYNejInglphZTnDCYKM/67tJxmN0qLyW
WOVEU0MxU4OymfkKrRFiuRNyAlWGjlMl1c8w1BHYb2HKWVCqAIEkGQI1lzf4nH3q
SLe/D1Bdz3/uJk71GLkkE64iAcl7dZLEtTzNAwPjB0x1vJ0BZAFISPlLxMKpHbZm
XeZrC98RRa2fN8ttP469WDXPoZcpR4jktnnmZE5JciolrGP7+1pdPpLjjhNutCln
CZqHlH7bWZpnSAuXfdbMLu+JvBWtk4+YfrdQQTp+FmWxScoR3C9pEHRXFhTYa15H
3gfSC7lOOFYH7UUgTEP3Tfdt7fSpPimsb8iifXS9HBGkDonS
-----END CERTIFICATE-----
Generated at Mon Jan 1 08:09:26 2024 by rpki-client on console-fra.rpki-client.org