Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/cvOhDKKphbo4EezKx55ek0j_HwU.roa
File: cvOhDKKphbo4EezKx55ek0j_HwU.roa (raw, json)
Hash identifier: WcxrSH1kcICgj+l7NGpNjrgHuGRuq0RJHtM7KK+pTHE=
Subject key identifier: 72:F3:A1:0C:A2:A9:85:BA:38:11:EC:CA:C7:9E:5E:93:48:FF:1F:05
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E42770A2A998C446299742D5FA854
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/cvOhDKKphbo4EezKx55ek0j_HwU.roa
Signing time: Mon 02 Jan 2023 06:14:46 +0000
ROA not before: Mon 02 Jan 2023 06:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 53356
IP address blocks: 2a0c:b641:493::/48 maxlen: 48
2a0c:b642:1a0c::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:42:77:0a:2a:99:8c:44:62:99:74:2d:5f:a8:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=72f3a10ca2a985ba3811eccac79e5e9348ff1f05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:8d:2a:73:01:36:ed:eb:bb:25:49:f9:38:80:
2d:d2:bc:d5:b7:78:0d:81:92:1a:0f:c0:78:81:1e:
de:9e:7e:32:24:61:60:db:33:92:e3:49:ed:bc:98:
a2:5b:17:df:4a:39:8b:ad:1f:23:e4:aa:3d:6f:e3:
e3:1c:ea:c2:0d:6f:66:24:63:fc:15:fc:78:10:e1:
40:86:9e:1d:38:18:55:81:d4:46:70:a0:74:26:b3:
67:ce:dc:9b:a3:76:a8:86:7b:3f:6a:a2:2b:65:88:
fc:96:e9:d5:66:14:5b:42:4f:90:15:22:6d:b3:3d:
39:58:96:01:a5:b3:e0:4c:41:fc:4e:b5:11:c7:72:
d4:05:e5:6b:21:d0:cb:64:19:ee:8c:13:e0:b2:c0:
9f:ae:8a:7f:34:76:00:a1:a5:d3:06:63:91:25:32:
b4:3d:6e:4d:84:e7:e5:88:52:8a:9d:92:87:17:5a:
15:32:56:e1:4b:57:30:30:0c:12:8b:42:95:a5:da:
39:67:cd:6d:63:a7:68:f1:5f:f4:fe:73:3d:91:79:
d8:a9:8c:e4:93:f1:55:ff:29:76:c8:5e:f3:06:a2:
8b:eb:58:70:76:a9:5f:27:b7:57:83:73:b1:c1:0b:
dc:9d:15:aa:cf:a0:f3:a4:fc:fb:4e:f8:17:34:76:
4c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:F3:A1:0C:A2:A9:85:BA:38:11:EC:CA:C7:9E:5E:93:48:FF:1F:05
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/cvOhDKKphbo4EezKx55ek0j_HwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:493::/48
2a0c:b642:1a0c::/48
Signature Algorithm: sha256WithRSAEncryption
63:de:1d:49:d6:d4:2e:b9:45:e2:43:7e:bf:7a:40:c1:09:a1:
54:19:26:03:c9:25:5f:16:19:c2:e6:db:4c:fb:ec:f4:77:2e:
93:10:a9:85:7b:a8:81:1b:db:2e:eb:c7:08:b4:18:ca:6d:7f:
af:33:cb:cd:e6:88:0e:a3:84:51:ee:77:6f:bd:f4:b6:fa:d0:
b2:a0:ee:7e:4b:a4:02:ea:7e:9f:f3:3b:a5:09:1f:88:f1:5b:
b1:84:c2:10:82:c7:77:f7:7b:da:e2:33:c8:ab:8e:33:00:e8:
66:7a:94:31:c2:63:9f:1c:36:3b:8b:e0:03:ed:12:2e:04:ae:
61:4c:d3:cf:7a:71:f5:b0:8e:ed:53:ff:ac:ed:ee:32:9c:22:
53:a4:e2:a3:16:20:5c:a6:f5:8a:59:aa:70:87:90:ce:31:d7:
f5:f8:fd:8c:d4:86:2c:7b:a6:fe:16:e5:d6:1b:65:1e:e5:7d:
7e:e3:94:a9:c3:c3:24:85:23:76:59:59:e3:1b:f5:d3:7d:7f:
2a:15:26:f2:24:d0:42:10:08:79:bb:e1:6f:ec:a5:23:03:6e:
28:2f:84:f0:27:78:6f:64:b1:03:95:e3:ba:9b:40:94:54:34:
e3:96:a5:e2:e6:fc:dd:b5:44:6d:27:11:77:68:6e:b9:f5:52:
41:e7:c2:ae
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYVxHkJ3CiqZjERimXQtX6hUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi
MzUwNTgwHhcNMjMwMTAyMDYxNDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MmYzYTEwY2EyYTk4NWJhMzgxMWVjY2FjNzllNWU5MzQ4ZmYxZjA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz40qcwE27eu7JUn5OIAt0rzVt3gN
gZIaD8B4gR7enn4yJGFg2zOS40ntvJiiWxffSjmLrR8j5Ko9b+PjHOrCDW9mJGP8
Ffx4EOFAhp4dOBhVgdRGcKB0JrNnztybo3aohns/aqIrZYj8lunVZhRbQk+QFSJt
sz05WJYBpbPgTEH8TrURx3LUBeVrIdDLZBnujBPgssCfrop/NHYAoaXTBmORJTK0
PW5NhOfliFKKnZKHF1oVMlbhS1cwMAwSi0KVpdo5Z81tY6do8V/0/nM9kXnYqYzk
k/FV/yl2yF7zBqKL61hwdqlfJ7dXg3OxwQvcnRWqz6DzpPz7TvgXNHZMRQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFHLzoQyiqYW6OBHsyseeXpNI/x8FMB8GA1UdIwQY
MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et
NWVjOGM4ZWQ2MGZkLzEvY3ZPaERLS3BoYm80RWV6S3g1NWVrMGpfSHdVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk
LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKgy2QQST
AwcAKgy2QhoMMA0GCSqGSIb3DQEBCwUAA4IBAQBj3h1J1tQuuUXiQ36/ekDBCaFU
GSYDySVfFhnC5ttM++z0dy6TEKmFe6iBG9su68cItBjKbX+vM8vN5ogOo4RR7ndv
vfS2+tCyoO5+S6QC6n6f8zulCR+I8VuxhMIQgsd393va4jPIq44zAOhmepQxwmOf
HDY7i+AD7RIuBK5hTNPPenH1sI7tU/+s7e4ynCJTpOKjFiBcpvWKWapwh5DOMdf1
+P2M1IYse6b+FuXWG2Ue5X1+45Spw8MkhSN2WVnjG/XTfX8qFSbyJNBCEAh5u+Fv
7KUjA24oL4TwJ3hvZLEDleO6m0CUVDTjlqXi5vzdtURtJxF3aG659VJB58Ku
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:15 2024 by rpki-client on console-fra.rpki-client.org