Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/3W6WZbHX0wfe9kwLXI0wOx-P8AU.roa
File: 3W6WZbHX0wfe9kwLXI0wOx-P8AU.roa (raw, json)
Hash identifier: fIhIBZyI0HDIaA2YsnIXr6W1aUyNnNslg5HdDuv2mso=
Subject key identifier: DD:6E:96:65:B1:D7:D3:07:DE:F6:4C:0B:5C:8D:30:3B:1F:8F:F0:05
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E542CA8FEBCCF3BAB33274886A468
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/3W6WZbHX0wfe9kwLXI0wOx-P8AU.roa
Signing time: Mon 02 Jan 2023 06:14:50 +0000
ROA not before: Mon 02 Jan 2023 06:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204767
IP address blocks: 2a0c:b641:8c0::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:54:2c:a8:fe:bc:cf:3b:ab:33:27:48:86:a4:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd6e9665b1d7d307def64c0b5c8d303b1f8ff005
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e4:f3:41:c9:be:e1:53:c6:00:45:6f:ce:0b:
dc:23:6f:cd:cf:d2:75:cc:af:ff:f6:9d:b9:d1:db:
42:bc:46:4f:dd:af:b3:72:b2:af:e7:7b:4a:89:7f:
53:2f:59:d6:ce:1b:b0:97:d5:b5:25:8b:13:66:0a:
85:45:5a:c3:e8:41:df:d0:82:fc:d5:52:b1:ad:35:
b7:2c:7b:8c:3b:53:76:3c:a0:32:70:24:86:26:80:
4e:55:55:f6:28:fc:ca:bd:60:57:a8:22:52:be:a5:
09:29:15:eb:dc:b5:7e:72:36:ce:0c:d1:ce:9f:bb:
63:e6:82:e4:b0:29:d5:60:19:75:6e:16:57:c7:f9:
54:fd:3b:04:29:ce:76:c3:85:e4:25:2b:6c:74:14:
d5:e8:86:b1:7d:5b:70:f1:72:f7:6e:cd:03:44:e6:
05:dc:70:f0:6a:e2:83:6c:66:32:a5:b9:78:db:59:
ff:49:81:94:61:73:ed:4b:9b:1b:da:df:8a:56:c9:
cd:a2:4c:ea:a7:a8:78:b9:3c:0f:59:41:64:37:12:
23:14:47:ab:1b:a9:56:a1:67:90:d1:97:23:66:64:
bf:df:92:e9:65:29:0d:9f:18:c8:9c:e3:81:09:94:
28:11:b5:1d:cc:ec:42:96:2a:1f:4c:a1:34:69:2f:
5d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:6E:96:65:B1:D7:D3:07:DE:F6:4C:0B:5C:8D:30:3B:1F:8F:F0:05
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/3W6WZbHX0wfe9kwLXI0wOx-P8AU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:8c0::/44
Signature Algorithm: sha256WithRSAEncryption
46:8a:2f:cb:b9:1a:71:c1:6b:2c:a3:28:e9:53:72:ce:4b:90:
64:13:ed:94:a7:f3:0d:5d:e1:50:1b:ac:7f:b3:d8:ea:fb:9e:
5c:94:f9:df:83:a1:1b:70:c5:11:52:7b:96:e3:a0:6b:64:34:
af:c5:4e:fb:13:45:c2:46:be:c2:ce:86:fd:6b:e6:8d:07:6c:
bb:76:f9:34:b3:22:31:c7:b1:76:69:25:71:17:97:66:38:3e:
4a:95:02:f8:c6:ca:63:a8:77:7a:08:95:83:8f:a3:4a:bf:7d:
b3:d3:ab:4e:0b:7d:a9:11:ea:42:68:09:44:11:1d:c7:10:17:
31:17:e3:5c:c0:07:86:7f:03:db:4c:6e:60:63:17:65:75:e3:
8c:c7:78:8b:36:b4:82:ce:f6:b0:b4:cf:e7:48:4b:ec:65:45:
2d:86:6d:da:f6:77:f4:3c:69:ee:37:f9:08:dc:50:27:d0:00:
0d:3f:79:19:79:72:cb:7e:76:66:a5:ff:b4:46:9e:f4:01:f9:
87:00:97:06:93:14:65:82:5b:e0:a0:50:d6:c4:23:f5:e7:97:
f7:15:8b:32:81:d4:ef:fa:45:fb:3a:78:51:20:8f:35:70:dc:
a0:f4:d6:22:1a:b6:e9:43:2e:51:26:91:f1:22:30:c9:1d:fa:
0c:8d:c3:5e
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVxHlQsqP68zzurMydIhqRoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi
MzUwNTgwHhcNMjMwMTAyMDYxNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZDZlOTY2NWIxZDdkMzA3ZGVmNjRjMGI1YzhkMzAzYjFmOGZmMDA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmuTzQcm+4VPGAEVvzgvcI2/Nz9J1
zK//9p250dtCvEZP3a+zcrKv53tKiX9TL1nWzhuwl9W1JYsTZgqFRVrD6EHf0IL8
1VKxrTW3LHuMO1N2PKAycCSGJoBOVVX2KPzKvWBXqCJSvqUJKRXr3LV+cjbODNHO
n7tj5oLksCnVYBl1bhZXx/lU/TsEKc52w4XkJStsdBTV6IaxfVtw8XL3bs0DROYF
3HDwauKDbGYypbl421n/SYGUYXPtS5sb2t+KVsnNokzqp6h4uTwPWUFkNxIjFEer
G6lWoWeQ0ZcjZmS/35LpZSkNnxjInOOBCZQoEbUdzOxCliofTKE0aS9dXwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFN1ulmWx19MH3vZMC1yNMDsfj/AFMB8GA1UdIwQY
MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et
NWVjOGM4ZWQ2MGZkLzEvM1c2V1piSFgwd2ZlOWt3TFhJMHdPeC1QOEFVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk
LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQjA
MA0GCSqGSIb3DQEBCwUAA4IBAQBGii/LuRpxwWssoyjpU3LOS5BkE+2Up/MNXeFQ
G6x/s9jq+55clPnfg6EbcMURUnuW46BrZDSvxU77E0XCRr7Czob9a+aNB2y7dvk0
syIxx7F2aSVxF5dmOD5KlQL4xspjqHd6CJWDj6NKv32z06tOC32pEepCaAlEER3H
EBcxF+NcwAeGfwPbTG5gYxdldeOMx3iLNrSCzvawtM/nSEvsZUUthm3a9nf0PGnu
N/kI3FAn0AANP3kZeXLLfnZmpf+0Rp70AfmHAJcGkxRlglvgoFDWxCP155f3FYsy
gdTv+kX7OnhRII81cNyg9NYiGrbpQy5RJpHxIjDJHfoMjcNe
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:15 2024 by rpki-client on console-fra.rpki-client.org