Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/GKGO6oVlx5ZeegFC8-Dz9yuBMJQ.roa
File: GKGO6oVlx5ZeegFC8-Dz9yuBMJQ.roa (raw, json)
Hash identifier: 3n6awVPosPBfplkVzJ6vYns5jVcwkhTvXh5hzVonfN8=
Subject key identifier: 18:A1:8E:EA:85:65:C7:96:5E:7A:01:42:F3:E0:F3:F7:2B:81:30:94
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E72D8F9DB82F285072E2E139A6531
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/GKGO6oVlx5ZeegFC8-Dz9yuBMJQ.roa
Signing time: Mon 02 Jan 2023 06:14:58 +0000
ROA not before: Mon 02 Jan 2023 06:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210234
IP address blocks: 2a0c:b641:60::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:72:d8:f9:db:82:f2:85:07:2e:2e:13:9a:65:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=18a18eea8565c7965e7a0142f3e0f3f72b813094
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:81:df:f1:ca:b9:f3:b0:77:80:35:96:bd:21:
8f:7f:8d:33:80:0d:63:19:5a:a8:71:b6:78:b3:2c:
eb:5d:b4:85:f5:d4:e3:30:d2:7d:0c:63:69:c7:93:
b0:8a:90:41:6b:81:a9:68:69:5a:02:b7:55:74:cd:
72:e4:3b:a8:56:e7:f5:54:2a:19:73:8e:23:48:de:
e9:9d:43:31:dc:67:72:19:f8:10:43:b4:9b:99:55:
76:0e:ac:bf:b9:21:3d:a4:20:07:fa:01:5d:7c:81:
7d:63:b6:9c:70:be:63:6f:bd:27:02:40:da:95:5e:
5d:84:7b:74:d7:ff:ac:2e:58:c1:92:b7:15:65:c0:
fa:6d:27:d4:11:c1:17:15:88:ff:67:f5:d3:e0:82:
aa:fe:15:81:7a:80:7b:fe:22:a2:ed:57:12:e8:51:
d7:78:a4:12:75:cf:da:5f:56:9a:69:7f:4b:f8:5d:
10:15:d2:f2:03:63:52:7e:25:2c:b3:3b:e5:6d:7d:
fb:e5:74:3b:8f:fc:43:97:16:93:a3:a6:da:eb:d7:
72:df:d5:dc:13:97:b4:bc:c6:04:9f:4e:2d:c4:47:
b1:b5:12:0e:75:35:f5:0a:39:b5:7d:6e:cf:a0:e0:
84:87:4d:b5:fa:e1:6e:71:08:43:c4:1b:4d:f9:1d:
cf:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:A1:8E:EA:85:65:C7:96:5E:7A:01:42:F3:E0:F3:F7:2B:81:30:94
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/GKGO6oVlx5ZeegFC8-Dz9yuBMJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:60::/44
Signature Algorithm: sha256WithRSAEncryption
10:d4:ec:6d:fb:15:63:10:68:12:7d:86:bf:d4:ea:d9:47:d6:
7c:7d:a5:e0:dd:65:6d:d8:35:c4:90:08:1e:2b:2a:fe:eb:db:
6d:07:35:2e:5c:35:34:a0:aa:d0:dd:1d:6c:31:b7:e4:22:36:
0f:9b:ec:0c:8b:cc:50:59:8a:49:04:a9:6a:ae:06:43:ad:1c:
3e:24:55:cd:67:75:86:6c:1e:09:b1:c8:de:2a:1c:7f:c5:6d:
6a:be:12:ed:3f:27:fa:69:b6:f4:70:03:40:ab:dc:b6:cf:5e:
83:89:82:a8:6d:17:21:07:ac:40:ec:0d:06:40:44:68:52:2e:
be:f4:85:80:56:91:a0:4a:12:e2:ff:a1:f5:94:41:4e:43:79:
1d:a5:f5:ed:0e:9d:6d:7e:5e:15:0e:e5:eb:a9:7f:6e:ea:86:
2a:af:3a:0c:e7:4b:ba:14:2c:b2:fb:6a:d2:62:b1:c0:34:99:
3d:c7:23:76:68:ed:9c:10:9b:07:5b:a4:a8:58:49:54:dc:f5:
f8:9b:bf:ae:f8:c0:4d:b0:7c:11:92:49:38:6d:1d:5a:0c:b8:
ea:f2:77:ba:2b:14:6c:a9:a5:69:44:f8:60:63:95:e0:30:01:
aa:66:6d:24:87:f1:c1:5b:fd:09:32:4d:a9:34:ee:ed:23:7d:
2c:c5:ca:2e
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVxHnLY+duC8oUHLi4TmmUxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi
MzUwNTgwHhcNMjMwMTAyMDYxNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxOGExOGVlYTg1NjVjNzk2NWU3YTAxNDJmM2UwZjNmNzJiODEzMDk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhIHf8cq587B3gDWWvSGPf40zgA1j
GVqocbZ4syzrXbSF9dTjMNJ9DGNpx5OwipBBa4GpaGlaArdVdM1y5DuoVuf1VCoZ
c44jSN7pnUMx3GdyGfgQQ7SbmVV2Dqy/uSE9pCAH+gFdfIF9Y7accL5jb70nAkDa
lV5dhHt01/+sLljBkrcVZcD6bSfUEcEXFYj/Z/XT4IKq/hWBeoB7/iKi7VcS6FHX
eKQSdc/aX1aaaX9L+F0QFdLyA2NSfiUsszvlbX375XQ7j/xDlxaTo6ba69dy39Xc
E5e0vMYEn04txEextRIOdTX1Cjm1fW7PoOCEh021+uFucQhDxBtN+R3PtwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFBihjuqFZceWXnoBQvPg8/crgTCUMB8GA1UdIwQY
MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et
NWVjOGM4ZWQ2MGZkLzEvR0tHTzZvVmx4NVplZWdGQzgtRHo5eXVCTUpRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk
LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQBg
MA0GCSqGSIb3DQEBCwUAA4IBAQAQ1Oxt+xVjEGgSfYa/1OrZR9Z8faXg3WVt2DXE
kAgeKyr+69ttBzUuXDU0oKrQ3R1sMbfkIjYPm+wMi8xQWYpJBKlqrgZDrRw+JFXN
Z3WGbB4JscjeKhx/xW1qvhLtPyf6abb0cANAq9y2z16DiYKobRchB6xA7A0GQERo
Ui6+9IWAVpGgShLi/6H1lEFOQ3kdpfXtDp1tfl4VDuXrqX9u6oYqrzoM50u6FCyy
+2rSYrHANJk9xyN2aO2cEJsHW6SoWElU3PX4m7+u+MBNsHwRkkk4bR1aDLjq8ne6
KxRsqaVpRPhgY5XgMAGqZm0kh/HBW/0JMk2pNO7tI30sxcou
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:06 2024 by rpki-client on console-fra.rpki-client.org