Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/ps14yUPDF5CSxUc5MoQ6OhDPw6w.roa
File: ps14yUPDF5CSxUc5MoQ6OhDPw6w.roa (raw, json)
Hash identifier: Qau7aIp9vhDPXoBPRM5jlw4l+LqTzMePoLJWFq2tRpo=
Subject key identifier: A6:CD:78:C9:43:C3:17:90:92:C5:47:39:32:84:3A:3A:10:CF:C3:AC
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 01856F42E51D16EEE8D2B42896C43EA6F1C7
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/ps14yUPDF5CSxUc5MoQ6OhDPw6w.roa
Signing time: Sun 01 Jan 2023 21:35:33 +0000
ROA not before: Sun 01 Jan 2023 21:35:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212008
IP address blocks: 2a0e:8f02:20f0::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:e5:1d:16:ee:e8:d2:b4:28:96:c4:3e:a6:f1:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 21:35:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a6cd78c943c3179092c5473932843a3a10cfc3ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:2c:fe:5e:08:58:f0:c0:19:ec:97:4c:6a:01:
fe:e6:12:8b:c6:9f:26:20:e9:a9:53:56:8f:5d:66:
a4:9c:f9:d3:14:11:b8:0e:77:bb:1e:86:cb:9b:95:
22:27:4e:8a:20:06:54:ff:c1:68:06:24:e3:61:b6:
c5:3b:54:d9:fb:fa:91:21:48:ea:16:5a:46:20:76:
fa:7a:c3:d6:69:c9:6b:e5:07:14:26:a0:ac:f8:1f:
40:d3:06:f8:1d:96:b6:df:b5:4c:68:1c:b8:8f:01:
85:87:db:30:a6:28:76:c5:67:07:5d:e4:88:b9:f8:
84:af:ed:10:88:30:c1:2f:3b:24:4a:9f:4b:b2:ba:
a7:07:1d:29:4f:d9:05:97:38:89:64:58:4e:04:4d:
81:19:8b:76:45:78:ff:51:69:19:5a:23:9c:13:63:
b0:cd:24:ba:e9:4c:2e:70:89:88:d6:6d:9a:53:4b:
3a:3b:19:1a:bc:d4:18:ff:c4:d9:3f:53:ff:41:33:
36:1e:a5:35:a5:a7:ac:12:fb:cf:0c:01:14:07:49:
0b:4a:75:82:2b:a4:a5:f5:c7:53:b2:37:0e:e0:53:
e1:1d:7b:a6:d9:32:af:43:02:72:02:7f:39:42:0a:
75:13:42:13:57:f1:d5:e5:c4:e1:1b:ea:be:90:7a:
cc:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:CD:78:C9:43:C3:17:90:92:C5:47:39:32:84:3A:3A:10:CF:C3:AC
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/ps14yUPDF5CSxUc5MoQ6OhDPw6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:20f0::/44
Signature Algorithm: sha256WithRSAEncryption
44:3e:06:cd:59:3a:e4:2f:7c:76:19:d1:23:ba:4e:b3:44:25:
b7:6d:24:fb:96:3b:b2:e7:cb:e1:45:21:0e:2f:ad:c4:54:b8:
18:11:93:68:9f:e2:3e:64:d4:ce:27:57:a0:f5:2c:08:5a:cc:
ac:92:e5:29:af:6e:e0:ef:8d:16:dc:f9:ca:86:fb:dd:01:b5:
c8:a7:b5:f2:29:d0:e5:f9:1a:38:02:29:03:90:9c:ad:cf:1c:
54:0b:7c:58:b5:0a:2f:5d:65:c6:ce:0b:68:7c:42:36:46:d6:
30:ea:25:12:bb:46:42:84:e8:8f:71:8c:7c:33:07:72:31:25:
42:a3:cf:10:c6:75:00:39:42:ed:92:d8:4d:c2:c2:1c:c3:6b:
d4:a5:d3:94:b2:be:ad:b8:0e:15:4f:62:86:8c:a6:c9:58:aa:
9d:e4:12:32:cd:d8:47:b3:91:d6:a0:d1:a9:88:44:27:0f:a4:
ed:a4:e9:ec:9f:91:6e:59:b3:b2:9e:87:c9:32:33:52:de:85:
16:84:7b:36:92:4f:6c:a0:a1:64:29:3b:fc:9a:9a:98:4b:3b:
42:34:2c:cf:c6:27:7d:50:df:2f:48:17:ef:5c:23:09:39:c3:
9e:f7:ac:94:f7:74:4a:a2:b7:d2:27:34:13:cd:54:33:0f:c3:
92:23:fa:2f
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVvQuUdFu7o0rQolsQ+pvHHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1NmVmNDhlZDYxNTVkZDc4NDNlZWQzNjMyNDY5YWJhYTMx
MDBiZjMwHhcNMjMwMTAxMjEzNTMzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNmNkNzhjOTQzYzMxNzkwOTJjNTQ3MzkzMjg0M2EzYTEwY2ZjM2FjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjSz+XghY8MAZ7JdMagH+5hKLxp8m
IOmpU1aPXWaknPnTFBG4Dne7HobLm5UiJ06KIAZU/8FoBiTjYbbFO1TZ+/qRIUjq
FlpGIHb6esPWaclr5QcUJqCs+B9A0wb4HZa237VMaBy4jwGFh9swpih2xWcHXeSI
ufiEr+0QiDDBLzskSp9LsrqnBx0pT9kFlziJZFhOBE2BGYt2RXj/UWkZWiOcE2Ow
zSS66UwucImI1m2aU0s6OxkavNQY/8TZP1P/QTM2HqU1paesEvvPDAEUB0kLSnWC
K6Sl9cdTsjcO4FPhHXum2TKvQwJyAn85Qgp1E0ITV/HV5cThG+q+kHrMvQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFKbNeMlDwxeQksVHOTKEOjoQz8OsMB8GA1UdIwQY
MBaAFNVu9I7WFV3XhD7tNjJGmrqjEAvzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVc3MGp0WVZYZGVFUHUwMk1rYWF1cU1RQ19NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS81OGZmNTQtMzQxMC00ZTQyLWFhYjgt
ZDJkN2YyYmI2NGRmLzEvcHMxNHlVUERGNUNTeFVjNU1vUTZPaERQdzZ3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS81OGZmNTQtMzQxMC00ZTQyLWFhYjgtZDJkN2YyYmI2NGRm
LzEvMVc3MGp0WVZYZGVFUHUwMk1rYWF1cU1RQ19NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6PAiDw
MA0GCSqGSIb3DQEBCwUAA4IBAQBEPgbNWTrkL3x2GdEjuk6zRCW3bST7ljuy58vh
RSEOL63EVLgYEZNon+I+ZNTOJ1eg9SwIWsyskuUpr27g740W3PnKhvvdAbXIp7Xy
KdDl+Ro4AikDkJytzxxUC3xYtQovXWXGzgtofEI2RtYw6iUSu0ZChOiPcYx8Mwdy
MSVCo88QxnUAOULtkthNwsIcw2vUpdOUsr6tuA4VT2KGjKbJWKqd5BIyzdhHs5HW
oNGpiEQnD6TtpOnsn5FuWbOynofJMjNS3oUWhHs2kk9soKFkKTv8mpqYSztCNCzP
xid9UN8vSBfvXCMJOcOe96yU93RKorfSJzQTzVQzD8OSI/ov
-----END CERTIFICATE-----
Generated at Tue Jan 2 17:33:52 2024 by rpki-client on console-fra.rpki-client.org