Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/c3AUdFbo2Bxi7iIu121XlMZmekE.roa
File: c3AUdFbo2Bxi7iIu121XlMZmekE.roa (raw, json)
Hash identifier: 1FxXuXSsbNFT9TREjpC5Bv+jtWIq2KUDtMylBr3ltkw=
Subject key identifier: 73:70:14:74:56:E8:D8:1C:62:EE:22:2E:D7:6D:57:94:C6:66:7A:41
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 01856F42F28D3AB360D697B9FE1490D11016
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/c3AUdFbo2Bxi7iIu121XlMZmekE.roa
Signing time: Sun 01 Jan 2023 21:35:36 +0000
ROA not before: Sun 01 Jan 2023 21:35:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213031
IP address blocks: 2a0e:8f02:f004::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:32:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:f2:8d:3a:b3:60:d6:97:b9:fe:14:90:d1:10:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 21:35:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7370147456e8d81c62ee222ed76d5794c6667a41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:0a:57:55:aa:25:a0:54:e4:20:e4:3b:00:4b:
da:78:ec:e3:2e:2e:e7:8c:20:24:00:39:72:21:80:
9d:63:b9:1e:1e:b8:38:3e:c9:3a:40:a5:19:89:28:
7b:67:9a:cf:fd:1a:4f:4f:92:97:c3:0f:60:52:01:
03:98:84:1f:dd:79:95:75:d2:c7:04:78:3f:dc:ad:
99:ca:a6:6b:23:b5:97:a6:c6:26:78:ac:48:88:84:
f7:14:6a:56:0e:f5:5e:60:2c:a0:a2:e3:86:79:f3:
3f:c5:bd:c2:aa:c5:87:25:b5:ca:9f:d4:6b:90:b7:
e3:44:fa:b2:c6:6e:72:92:de:dc:e9:14:f9:aa:2f:
f0:90:4d:62:ce:7c:01:e2:06:7e:2b:fe:85:e4:55:
ea:e5:31:8a:76:f5:84:68:d7:ac:aa:da:3c:05:c5:
d0:ab:c2:f8:17:3c:4b:3a:3d:81:2c:a4:18:5f:47:
4f:67:fa:2a:99:05:a4:03:1d:26:e8:20:e9:62:d7:
b2:84:60:cf:6e:24:6f:32:fd:40:62:1a:3d:0f:31:
6d:4f:c1:0a:99:d3:1f:4e:d1:40:e1:1d:13:cb:88:
c5:c4:ca:6d:eb:bc:f1:1e:77:9d:b3:95:0d:90:da:
86:72:e1:21:e5:57:a9:3e:b7:79:02:78:9b:7f:af:
1a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:70:14:74:56:E8:D8:1C:62:EE:22:2E:D7:6D:57:94:C6:66:7A:41
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/c3AUdFbo2Bxi7iIu121XlMZmekE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f004::/48
Signature Algorithm: sha256WithRSAEncryption
2d:f0:e1:3e:9a:2e:02:b3:3d:f2:54:b6:f7:8a:17:68:52:6c:
8c:0d:88:3b:0f:ec:cb:b0:f3:77:5b:2e:f0:fc:a0:53:f2:ee:
d7:0e:05:2f:f8:36:65:5b:5a:c9:95:9c:9d:f3:72:33:03:b9:
d7:5b:4c:9e:3e:79:77:ad:95:90:8f:82:12:bd:25:40:df:4b:
a1:3a:c1:1a:3f:b3:85:89:61:f9:1b:a2:8e:41:64:43:26:5d:
2e:34:e4:1a:48:5c:95:4e:12:52:fb:34:ad:c8:51:a4:94:40:
31:37:93:9a:bc:fb:fb:30:24:b6:a4:b0:71:43:ea:50:cc:49:
f9:c5:48:fe:ea:af:c2:a2:c5:66:65:c6:50:28:48:fd:5c:15:
a8:35:f0:cc:9d:61:4b:83:e9:75:68:11:13:83:4e:87:de:0c:
38:ed:fc:9b:59:86:5e:c7:a8:cf:a9:aa:f4:d6:a6:0d:35:a4:
ae:61:3c:da:af:88:e8:42:8b:64:47:38:71:99:11:b1:3e:13:
53:6a:83:a7:4d:9e:f9:78:b0:ca:32:e5:71:ea:81:0a:3c:06:
7e:7d:ac:6e:f9:71:a7:aa:34:87:08:e5:3e:61:7a:79:97:92:
b9:58:ce:b1:ad:27:ed:28:74:28:3c:49:b2:eb:5f:90:6b:1e:
22:b3:7b:7c
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVvQvKNOrNg1pe5/hSQ0RAWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1NmVmNDhlZDYxNTVkZDc4NDNlZWQzNjMyNDY5YWJhYTMx
MDBiZjMwHhcNMjMwMTAxMjEzNTM2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MzcwMTQ3NDU2ZThkODFjNjJlZTIyMmVkNzZkNTc5NGM2NjY3YTQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArApXVaoloFTkIOQ7AEvaeOzjLi7n
jCAkADlyIYCdY7keHrg4Psk6QKUZiSh7Z5rP/RpPT5KXww9gUgEDmIQf3XmVddLH
BHg/3K2ZyqZrI7WXpsYmeKxIiIT3FGpWDvVeYCygouOGefM/xb3CqsWHJbXKn9Rr
kLfjRPqyxm5ykt7c6RT5qi/wkE1iznwB4gZ+K/6F5FXq5TGKdvWEaNesqto8BcXQ
q8L4FzxLOj2BLKQYX0dPZ/oqmQWkAx0m6CDpYteyhGDPbiRvMv1AYho9DzFtT8EK
mdMfTtFA4R0Ty4jFxMpt67zxHneds5UNkNqGcuEh5VepPrd5Anibf68a0wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFHNwFHRW6NgcYu4iLtdtV5TGZnpBMB8GA1UdIwQY
MBaAFNVu9I7WFV3XhD7tNjJGmrqjEAvzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVc3MGp0WVZYZGVFUHUwMk1rYWF1cU1RQ19NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS81OGZmNTQtMzQxMC00ZTQyLWFhYjgt
ZDJkN2YyYmI2NGRmLzEvYzNBVWRGYm8yQnhpN2lJdTEyMVhsTVptZWtFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS81OGZmNTQtMzQxMC00ZTQyLWFhYjgtZDJkN2YyYmI2NGRm
LzEvMVc3MGp0WVZYZGVFUHUwMk1rYWF1cU1RQ19NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg6PAvAE
MA0GCSqGSIb3DQEBCwUAA4IBAQAt8OE+mi4Csz3yVLb3ihdoUmyMDYg7D+zLsPN3
Wy7w/KBT8u7XDgUv+DZlW1rJlZyd83IzA7nXW0yePnl3rZWQj4ISvSVA30uhOsEa
P7OFiWH5G6KOQWRDJl0uNOQaSFyVThJS+zStyFGklEAxN5OavPv7MCS2pLBxQ+pQ
zEn5xUj+6q/CosVmZcZQKEj9XBWoNfDMnWFLg+l1aBETg06H3gw47fybWYZex6jP
qar01qYNNaSuYTzar4joQotkRzhxmRGxPhNTaoOnTZ75eLDKMuVx6oEKPAZ+faxu
+XGnqjSHCOU+YXp5l5K5WM6xrSftKHQoPEmy61+Qax4is3t8
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:41 2024 by rpki-client on console-fra.rpki-client.org