Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/epfFdoQdlsqyH8WakjxbktwoNmw.roa
File: epfFdoQdlsqyH8WakjxbktwoNmw.roa (raw, json)
Hash identifier: UbZjLRZTncqcxWu4XfOsVNBmPIC9FVtKiR1ypZozLVo=
Subject key identifier: 7A:97:C5:76:84:1D:96:CA:B2:1F:C5:9A:92:3C:5B:92:DC:28:36:6C
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E95F10E153013DE10E38C03019512
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/epfFdoQdlsqyH8WakjxbktwoNmw.roa
Signing time: Mon 02 Jan 2023 06:15:07 +0000
ROA not before: Mon 02 Jan 2023 06:15:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213190
IP address blocks: 2a0c:b642:fc0::/43 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:95:f1:0e:15:30:13:de:10:e3:8c:03:01:95:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:15:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a97c576841d96cab21fc59a923c5b92dc28366c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ba:24:45:9e:a7:73:36:e1:38:13:d7:18:ca:
fb:e6:c4:60:ec:6f:1b:0e:2b:f0:94:69:7e:67:08:
3b:88:55:43:f3:b6:31:fa:c0:dc:e8:83:e3:d8:6f:
29:db:d9:59:7d:ac:e8:3c:c0:7b:f0:50:f2:5d:d5:
4b:f7:5a:74:6b:5d:f0:9b:75:65:db:d3:3f:08:7b:
2a:9f:7e:c6:da:79:70:36:43:f1:8b:86:2a:73:1c:
df:ce:c4:7a:d2:6a:8f:f7:3b:e0:8b:03:1f:84:7b:
6e:8c:b1:b5:b1:ca:ad:e7:86:57:a6:fa:6a:40:37:
6e:53:99:51:03:30:3b:65:84:ff:ad:85:00:94:4f:
26:a2:7f:85:a6:0c:80:37:be:b4:e0:a0:b6:79:d4:
d7:95:a9:07:5c:2b:d1:ee:f7:6c:29:2c:28:5c:f1:
83:07:6b:a2:d3:ba:b4:1d:fa:f2:34:c7:fe:f7:d8:
ad:87:03:f1:47:db:9f:17:87:14:63:c4:4f:d2:df:
0d:54:49:7e:e4:48:6e:21:97:bb:6c:5f:2f:21:eb:
24:ff:b4:0f:f2:76:e0:06:57:9d:43:0e:4f:83:cf:
4e:0e:a9:59:a9:a6:e3:ae:8e:33:6f:f2:90:b5:62:
33:cb:b1:f4:9c:a7:9c:50:53:4c:8a:e8:a5:6a:ed:
9f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:97:C5:76:84:1D:96:CA:B2:1F:C5:9A:92:3C:5B:92:DC:28:36:6C
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/epfFdoQdlsqyH8WakjxbktwoNmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b642:fc0::/43
Signature Algorithm: sha256WithRSAEncryption
89:aa:a3:4e:0c:14:9d:0e:38:bd:42:b7:10:1c:0a:1a:a9:d4:
ad:31:4a:e6:b6:77:91:f8:40:a8:bc:fd:5a:4f:c9:db:4f:d5:
94:79:df:d8:c8:8a:d9:0d:06:60:7f:96:ec:12:04:77:a0:45:
05:e8:3f:1f:93:d8:3a:2c:2d:e5:4b:ce:b3:74:a8:c0:1b:76:
2a:bf:4b:b1:fd:f0:62:1c:4d:6d:fc:c0:e5:8d:6a:c2:c1:fa:
38:b0:36:c1:48:a3:b2:a4:48:f4:09:be:1b:f1:74:8f:1e:5e:
71:b3:26:50:1a:b6:67:a1:74:fb:c0:d7:bb:8f:b2:70:0e:6a:
8e:8c:0b:a9:30:60:a1:cd:d0:ca:16:eb:8f:63:85:f5:76:51:
c2:da:44:25:ea:93:f6:6d:8f:a4:d2:d8:ca:b5:bd:10:27:42:
32:63:be:35:d1:09:2c:9c:7f:ad:d7:77:4f:b6:e5:6d:97:ac:
be:3d:55:d8:3d:7d:fd:5b:5b:b7:c5:85:7f:3c:36:6c:b9:84:
f5:88:9c:6a:26:a2:5a:b1:a2:c3:4d:a2:3d:6e:35:00:67:e9:
d1:49:14:19:20:53:0e:cb:79:eb:55:76:66:81:2e:b3:d3:7e:
8d:2b:da:aa:56:1f:a4:03:d9:79:d7:2a:50:e0:25:3a:e1:14:
34:0b:69:eb
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVxHpXxDhUwE94Q44wDAZUSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi
MzUwNTgwHhcNMjMwMTAyMDYxNTA3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YTk3YzU3Njg0MWQ5NmNhYjIxZmM1OWE5MjNjNWI5MmRjMjgzNjZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnLokRZ6nczbhOBPXGMr75sRg7G8b
DivwlGl+Zwg7iFVD87Yx+sDc6IPj2G8p29lZfazoPMB78FDyXdVL91p0a13wm3Vl
29M/CHsqn37G2nlwNkPxi4YqcxzfzsR60mqP9zvgiwMfhHtujLG1scqt54ZXpvpq
QDduU5lRAzA7ZYT/rYUAlE8mon+FpgyAN7604KC2edTXlakHXCvR7vdsKSwoXPGD
B2ui07q0HfryNMf+99ithwPxR9ufF4cUY8RP0t8NVEl+5EhuIZe7bF8vIesk/7QP
8nbgBledQw5Pg89ODqlZqabjro4zb/KQtWIzy7H0nKecUFNMiuilau2fuQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFHqXxXaEHZbKsh/FmpI8W5LcKDZsMB8GA1UdIwQY
MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et
NWVjOGM4ZWQ2MGZkLzEvZXBmRmRvUWRsc3F5SDhXYWtqeGJrdHdvTm13LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk
LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcFKgy2Qg/A
MA0GCSqGSIb3DQEBCwUAA4IBAQCJqqNODBSdDji9QrcQHAoaqdStMUrmtneR+ECo
vP1aT8nbT9WUed/YyIrZDQZgf5bsEgR3oEUF6D8fk9g6LC3lS86zdKjAG3Yqv0ux
/fBiHE1t/MDljWrCwfo4sDbBSKOypEj0Cb4b8XSPHl5xsyZQGrZnoXT7wNe7j7Jw
DmqOjAupMGChzdDKFuuPY4X1dlHC2kQl6pP2bY+k0tjKtb0QJ0IyY7410QksnH+t
13dPtuVtl6y+PVXYPX39W1u3xYV/PDZsuYT1iJxqJqJasaLDTaI9bjUAZ+nRSRQZ
IFMOy3nrVXZmgS6z036NK9qqVh+kA9l51ypQ4CU64RQ0C2nr
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:38 2024 by rpki-client on console-ams.rpki-client.org