Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/28462c-2c23-4f95-8e8d-ade530d7c41b/1/p9ILdkT3J47y88G0Pb2D0-QgxDM.roa
File: p9ILdkT3J47y88G0Pb2D0-QgxDM.roa (raw, json)
Hash identifier: 4jfcfn4PnE+z9eg4/Y7J8knPaMkVK/VAGDgbBD3qhnI=
Subject key identifier: A7:D2:0B:76:44:F7:27:8E:F2:F3:C1:B4:3D:BD:83:D3:E4:20:C4:33
Certificate issuer: /CN=c6bfbef279bf9ded6e3651e0628d39ba79294f78
Certificate serial: 018570705E47495CC33A39AC7BF1B0E69B90
Authority key identifier: C6:BF:BE:F2:79:BF:9D:ED:6E:36:51:E0:62:8D:39:BA:79:29:4F:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xr--8nm_ne1uNlHgYo05unkpT3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/28462c-2c23-4f95-8e8d-ade530d7c41b/1/p9ILdkT3J47y88G0Pb2D0-QgxDM.roa
Signing time: Mon 02 Jan 2023 03:04:50 +0000
ROA not before: Mon 02 Jan 2023 03:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20118
IP address blocks: 2a03:ba1::/64 maxlen: 64
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:5e:47:49:5c:c3:3a:39:ac:7b:f1:b0:e6:9b:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6bfbef279bf9ded6e3651e0628d39ba79294f78
Validity
Not Before: Jan 2 03:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a7d20b7644f7278ef2f3c1b43dbd83d3e420c433
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b5:da:3d:34:c3:df:57:43:0a:b8:6d:25:e0:
5a:ae:5a:1f:4d:81:ff:86:58:bc:dc:df:3b:fb:09:
4a:0f:f3:24:ce:c4:f0:13:09:9d:27:fb:1b:ba:84:
28:21:93:21:4f:bb:7f:dc:0a:8f:a1:ef:c9:40:2f:
76:5a:99:f6:ef:43:bb:e0:81:02:02:62:af:7d:7d:
9b:e1:1f:de:f7:d7:3a:51:33:b2:bb:ef:a3:f8:2c:
be:05:09:e3:54:d9:7c:22:df:16:0d:a5:c4:8b:43:
bc:60:12:72:19:e7:17:e0:ef:15:61:88:d9:45:51:
15:94:ef:c0:0b:a4:4a:b5:7a:75:14:50:24:fc:72:
ab:97:0d:d8:a7:2e:f5:c8:db:8a:de:8a:22:45:6b:
07:49:fc:1b:3c:90:56:d4:a8:29:62:19:ca:64:6c:
fc:0e:df:86:71:39:18:24:a6:6d:0d:63:7f:fd:f5:
53:b0:15:dd:97:bd:02:fb:ec:92:50:5d:79:6e:8b:
36:d4:24:61:72:38:00:e1:db:15:b9:90:17:11:05:
a3:00:22:2c:21:28:d2:25:39:8d:c1:af:45:3b:7a:
e1:6b:ab:11:80:db:52:04:fe:fd:25:a3:77:97:64:
30:b5:e7:2c:27:ae:22:3d:e4:e4:d4:54:32:71:61:
a0:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:D2:0B:76:44:F7:27:8E:F2:F3:C1:B4:3D:BD:83:D3:E4:20:C4:33
X509v3 Authority Key Identifier:
keyid:C6:BF:BE:F2:79:BF:9D:ED:6E:36:51:E0:62:8D:39:BA:79:29:4F:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xr--8nm_ne1uNlHgYo05unkpT3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/28462c-2c23-4f95-8e8d-ade530d7c41b/1/p9ILdkT3J47y88G0Pb2D0-QgxDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/28462c-2c23-4f95-8e8d-ade530d7c41b/1/xr--8nm_ne1uNlHgYo05unkpT3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:ba1::/64
Signature Algorithm: sha256WithRSAEncryption
c3:f6:71:55:6e:ae:9f:14:7d:a1:cc:70:f9:0e:47:f7:9e:e0:
dc:8d:e3:a2:6c:2b:a9:2a:40:44:68:b3:e4:e0:ce:1e:5c:09:
79:f3:3d:de:9c:35:2a:d8:c9:31:f9:ea:6a:fa:1d:16:33:95:
db:8b:f8:38:a7:a1:e3:17:2c:aa:6d:17:22:2c:e1:26:66:2a:
aa:4b:e5:92:59:57:57:83:fe:0a:42:af:8a:a7:a8:32:9e:39:
5e:b3:21:57:19:53:7f:36:c6:8b:2e:a1:d9:e4:09:c7:f0:d7:
5c:f6:b6:61:a6:bd:69:b5:3b:1b:84:5e:80:2b:f5:54:84:dc:
15:6e:a7:34:24:f7:71:e9:c6:24:09:5d:dd:60:72:23:b5:59:
51:c9:0c:d2:e0:7c:13:78:67:4c:7f:fc:3b:cf:a6:ea:0f:dc:
12:3d:06:23:33:e7:4a:8f:bf:45:a3:df:35:14:b9:f1:1b:54:
48:e4:fa:3a:4b:96:50:0d:f1:d1:04:5d:a1:a9:cb:aa:5a:ae:
b1:87:bc:98:e1:67:31:cc:28:6a:c0:a2:36:37:b9:06:6d:dd:
21:fa:36:23:97:97:cb:a6:48:c0:e4:27:79:7e:7b:d6:7c:dd:
89:54:d2:47:da:1a:f8:0a:06:9f:3b:ae:38:ca:53:ee:2c:4d:
88:c9:25:eb
-----BEGIN CERTIFICATE-----
MIIFAjCCA+qgAwIBAgISAYVwcF5HSVzDOjmse/Gw5puQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2YmZiZWYyNzliZjlkZWQ2ZTM2NTFlMDYyOGQzOWJhNzky
OTRmNzgwHhcNMjMwMTAyMDMwNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhN2QyMGI3NjQ0ZjcyNzhlZjJmM2MxYjQzZGJkODNkM2U0MjBjNDMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtbXaPTTD31dDCrhtJeBarlofTYH/
hli83N87+wlKD/MkzsTwEwmdJ/sbuoQoIZMhT7t/3AqPoe/JQC92Wpn270O74IEC
AmKvfX2b4R/e99c6UTOyu++j+Cy+BQnjVNl8It8WDaXEi0O8YBJyGecX4O8VYYjZ
RVEVlO/AC6RKtXp1FFAk/HKrlw3Ypy71yNuK3ooiRWsHSfwbPJBW1KgpYhnKZGz8
Dt+GcTkYJKZtDWN//fVTsBXdl70C++ySUF15bos21CRhcjgA4dsVuZAXEQWjACIs
ISjSJTmNwa9FO3rha6sRgNtSBP79JaN3l2QwtecsJ64iPeTk1FQycWGguwIDAQAB
o4ICDjCCAgowHQYDVR0OBBYEFKfSC3ZE9yeO8vPBtD29g9PkIMQzMB8GA1UdIwQY
MBaAFMa/vvJ5v53tbjZR4GKNObp5KU94MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveHItLThubV9uZTF1TmxIZ1lvMDV1bmtwVDNnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC8yODQ2MmMtMmMyMy00Zjk1LThlOGQt
YWRlNTMwZDdjNDFiLzEvcDlJTGRrVDNKNDd5ODhHMFBiMkQwLVFneERNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC8yODQ2MmMtMmMyMy00Zjk1LThlOGQtYWRlNTMwZDdjNDFi
LzEveHItLThubV9uZTF1TmxIZ1lvMDV1bmtwVDNnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCQGCCsGAQUFBwEHAQH/BBUwEzARBAIAAjALAwkAKgMLoQAA
AAAwDQYJKoZIhvcNAQELBQADggEBAMP2cVVurp8UfaHMcPkOR/ee4NyN46JsK6kq
QERos+Tgzh5cCXnzPd6cNSrYyTH56mr6HRYzlduL+DinoeMXLKptFyIs4SZmKqpL
5ZJZV1eD/gpCr4qnqDKeOV6zIVcZU382xosuodnkCcfw11z2tmGmvWm1OxuEXoAr
9VSE3BVupzQk93HpxiQJXd1gciO1WVHJDNLgfBN4Z0x//DvPpuoP3BI9BiMz50qP
v0Wj3zUUufEbVEjk+jpLllAN8dEEXaGpy6parrGHvJjhZzHMKGrAojY3uQZt3SH6
NiOXl8umSMDkJ3l+e9Z83YlU0kfaGvgKBp87rjjKU+4sTYjJJes=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:02 2024 by rpki-client on console-fra.rpki-client.org