Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/7SYQD4yTnpm3431fVZ2ITUbV3c0.roa
File: 7SYQD4yTnpm3431fVZ2ITUbV3c0.roa (raw, json)
Hash identifier: kFBJoALvBC7d7GVSI6eLTvWnMSKc6ypuwK4JkItJRVE=
Subject key identifier: ED:26:10:0F:8C:93:9E:99:B7:E3:7D:5F:55:9D:88:4D:46:D5:DD:CD
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E860A992C2270FE0690556940F0AF
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/7SYQD4yTnpm3431fVZ2ITUbV3c0.roa
Signing time: Mon 02 Jan 2023 06:15:03 +0000
ROA not before: Mon 02 Jan 2023 06:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211888
IP address blocks: 2a0c:b641:810::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:86:0a:99:2c:22:70:fe:06:90:55:69:40:f0:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed26100f8c939e99b7e37d5f559d884d46d5ddcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ce:21:f2:01:20:31:8b:83:62:ae:19:22:64:
e2:ed:d0:6f:2b:c8:d9:22:0b:59:f0:f9:1f:93:9f:
83:c3:f1:89:81:4a:f1:1b:2f:ae:cd:c4:02:63:d0:
30:59:42:2b:a6:e4:e7:4d:78:6e:30:9e:c8:36:22:
8c:e1:33:f9:db:af:b1:c6:29:55:45:a9:35:e4:1d:
0d:d6:b2:3f:b3:07:36:1f:8e:d7:2d:f9:cd:30:15:
b3:5c:e5:d3:fd:5b:33:86:49:6f:3d:80:81:e3:c0:
09:4c:2b:b0:74:9e:ed:7b:cc:cb:f6:75:43:50:8c:
3f:0b:08:ca:c6:27:e6:89:f8:ad:50:f3:be:a7:c8:
a9:a7:8b:44:ac:5b:b4:c1:47:73:44:44:58:a5:a0:
45:2a:da:ff:68:5c:7b:6e:2d:a0:e7:6a:b5:30:8a:
22:ae:39:01:40:b9:19:9b:c3:b7:58:1d:a7:55:b4:
d1:b0:2c:ce:6f:05:58:c9:52:be:20:27:76:6f:51:
eb:cf:a8:b2:eb:6d:d5:0b:32:c8:90:cd:bc:ed:a5:
d0:97:32:c1:9a:3d:f1:fe:57:de:e4:b0:b2:b3:5a:
d7:f1:63:71:5b:5f:e4:35:a9:f9:6d:9d:28:24:86:
46:1a:9b:6f:61:a9:08:cb:40:9b:70:1d:bd:14:0b:
ba:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:26:10:0F:8C:93:9E:99:B7:E3:7D:5F:55:9D:88:4D:46:D5:DD:CD
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/7SYQD4yTnpm3431fVZ2ITUbV3c0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:810::/44
Signature Algorithm: sha256WithRSAEncryption
79:61:e6:f2:56:d5:98:cb:66:32:7e:b8:00:35:7a:f5:ef:2e:
5a:f9:36:2d:e1:51:5a:57:5e:6b:47:b2:c6:bf:9c:aa:b8:d4:
b8:12:ed:aa:5a:ae:e4:31:bc:ba:19:4e:de:c5:86:7c:25:95:
cd:a8:c2:2c:9e:21:5b:50:ad:a7:96:68:ab:91:3c:64:c0:cb:
ef:6b:24:af:e6:3c:1d:c1:da:da:9a:ed:78:4a:6d:a6:8d:f2:
15:82:cb:e4:53:17:e3:25:61:4a:b5:40:76:d6:86:ff:24:1d:
f7:7b:39:0d:44:8b:d0:84:cd:19:0b:ef:02:20:27:1e:6a:90:
45:af:a9:ce:86:84:e8:5e:79:7f:01:4d:5e:36:3e:9a:14:7a:
4b:d2:2b:a6:a7:a9:75:53:43:a9:4e:b4:8f:85:8a:5f:13:f8:
97:ac:00:2b:db:39:48:40:d3:70:7b:a4:d1:33:b4:4e:b8:5d:
26:e5:01:b0:f0:da:12:d0:14:1c:87:b3:3a:10:a8:0c:ce:c9:
1a:12:41:8f:e0:d8:01:da:6e:04:08:d3:a4:66:9c:91:4f:07:
ed:25:de:43:7c:0e:68:a2:40:8d:83:21:8a:2f:7b:9f:27:c9:
2b:5b:0d:78:19:59:ff:b6:8c:0d:84:1c:89:e3:2e:8b:a7:63:
24:da:2d:be
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVxHoYKmSwicP4GkFVpQPCvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi
MzUwNTgwHhcNMjMwMTAyMDYxNTAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZDI2MTAwZjhjOTM5ZTk5YjdlMzdkNWY1NTlkODg0ZDQ2ZDVkZGNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAos4h8gEgMYuDYq4ZImTi7dBvK8jZ
IgtZ8Pkfk5+Dw/GJgUrxGy+uzcQCY9AwWUIrpuTnTXhuMJ7INiKM4TP526+xxilV
Rak15B0N1rI/swc2H47XLfnNMBWzXOXT/VszhklvPYCB48AJTCuwdJ7te8zL9nVD
UIw/CwjKxifmifitUPO+p8ipp4tErFu0wUdzRERYpaBFKtr/aFx7bi2g52q1MIoi
rjkBQLkZm8O3WB2nVbTRsCzObwVYyVK+ICd2b1Hrz6iy623VCzLIkM287aXQlzLB
mj3x/lfe5LCys1rX8WNxW1/kNan5bZ0oJIZGGptvYakIy0CbcB29FAu6mQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFO0mEA+Mk56Zt+N9X1WdiE1G1d3NMB8GA1UdIwQY
MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et
NWVjOGM4ZWQ2MGZkLzEvN1NZUUQ0eVRucG0zNDMxZlZaMklUVWJWM2MwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk
LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQgQ
MA0GCSqGSIb3DQEBCwUAA4IBAQB5YebyVtWYy2YyfrgANXr17y5a+TYt4VFaV15r
R7LGv5yquNS4Eu2qWq7kMby6GU7exYZ8JZXNqMIsniFbUK2nlmirkTxkwMvvaySv
5jwdwdramu14Sm2mjfIVgsvkUxfjJWFKtUB21ob/JB33ezkNRIvQhM0ZC+8CICce
apBFr6nOhoToXnl/AU1eNj6aFHpL0iump6l1U0OpTrSPhYpfE/iXrAAr2zlIQNNw
e6TRM7ROuF0m5QGw8NoS0BQch7M6EKgMzskaEkGP4NgB2m4ECNOkZpyRTwftJd5D
fA5ookCNgyGKL3ufJ8krWw14GVn/towNhByJ4y6Lp2Mk2i2+
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:25 2023 by rpki-client on console-ams.rpki-client.org