Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/q_6Bpez6aOewaDGgzAt_5u1Tk2A.roa
File: q_6Bpez6aOewaDGgzAt_5u1Tk2A.roa (raw, json)
Hash identifier: WXLU9OpttN+QhE2a5EWYFfwkBaqtSZRoQWjcXCg4Dlo=
Subject key identifier: AB:FE:81:A5:EC:FA:68:E7:B0:68:31:A0:CC:0B:7F:E6:ED:53:93:60
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E38F989CE6FB71C1A66A1B596C896
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/q_6Bpez6aOewaDGgzAt_5u1Tk2A.roa
Signing time: Mon 02 Jan 2023 06:14:44 +0000
ROA not before: Mon 02 Jan 2023 06:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34681
IP address blocks: 2a0c:b641:60::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:38:f9:89:ce:6f:b7:1c:1a:66:a1:b5:96:c8:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=abfe81a5ecfa68e7b06831a0cc0b7fe6ed539360
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:2f:38:c2:30:81:36:e3:07:b7:c9:1b:ad:40:
60:dd:b8:f3:f6:d8:bb:03:76:b2:92:22:47:70:2b:
1e:a3:98:0a:40:9a:1c:ac:d0:0c:d8:77:64:72:a2:
9b:ca:4b:5d:8d:50:61:95:9e:68:f2:1f:88:2c:64:
f4:5a:b5:d2:c2:49:22:3f:ae:51:1e:e2:76:08:81:
f8:87:5c:5c:48:a1:51:c9:88:18:7d:4a:65:c9:7d:
c0:26:36:7d:41:e3:b3:7f:e3:ce:78:c4:e9:44:fe:
78:33:a0:94:b2:21:ff:f2:1c:11:be:14:ea:56:7b:
83:e4:02:79:94:4f:dc:9b:d1:0b:ff:d5:be:a7:95:
43:9c:66:4e:04:73:a3:56:75:c4:52:3a:15:68:20:
8c:8f:d3:ef:2b:41:04:7b:3a:b6:e2:e1:0d:82:20:
65:30:c8:0d:e1:ca:73:46:7e:a7:74:ff:ae:b6:0d:
24:ab:6a:4b:62:d9:04:48:02:0f:ff:44:de:09:3b:
90:1f:8a:12:7d:db:d9:ba:7b:4c:d7:3f:b3:ab:17:
ca:fd:eb:e5:cc:45:68:bd:7c:35:bf:61:88:87:8c:
9f:fd:ef:28:21:f0:30:f8:94:c4:0b:26:2b:80:c1:
3d:89:f8:4a:b7:99:8f:38:ac:63:5e:14:65:9c:0d:
0e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:FE:81:A5:EC:FA:68:E7:B0:68:31:A0:CC:0B:7F:E6:ED:53:93:60
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/q_6Bpez6aOewaDGgzAt_5u1Tk2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:60::/44
Signature Algorithm: sha256WithRSAEncryption
01:75:fd:0c:60:a4:88:70:2c:f1:5e:a7:73:f2:2c:27:b9:40:
54:bb:cf:90:46:b0:1f:aa:d0:60:0e:f6:e5:39:3e:22:0b:12:
ca:97:0c:64:d2:f7:ce:61:cb:61:8e:d0:51:c3:e1:87:5f:56:
b7:ca:73:04:a2:cf:02:58:5e:9b:ca:53:ad:3c:12:9a:75:83:
99:d9:4b:13:34:31:b2:fa:80:d3:53:53:b2:eb:b9:b3:5f:c5:
4d:da:81:c7:67:6e:13:fd:68:a5:df:70:11:fd:a4:5d:fc:d0:
3f:d3:16:c7:09:0e:65:79:81:31:be:ad:a1:fc:b2:47:9c:b2:
a3:cc:e3:1a:87:08:68:ef:ef:29:0a:58:49:66:7b:9d:11:39:
df:25:9e:0f:1b:dd:13:be:69:e9:d4:9b:cc:69:45:8f:65:02:
9a:b1:73:29:a4:cc:87:2a:9f:0c:30:e4:aa:f7:3b:13:56:9e:
33:6d:42:a9:8a:3b:6c:4e:a4:0c:e5:4c:3b:07:d3:a1:db:df:
22:f2:60:05:c2:9e:e6:12:85:b1:ef:80:04:83:f6:56:e2:26:
75:ab:62:6b:9d:36:3e:05:8e:c9:4b:04:7f:17:05:58:d9:1f:
85:74:e9:08:5e:3e:fc:0e:b9:0c:eb:f6:d6:6d:68:74:52:13:
a8:f3:e7:82
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVxHjj5ic5vtxwaZqG1lsiWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi
MzUwNTgwHhcNMjMwMTAyMDYxNDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYmZlODFhNWVjZmE2OGU3YjA2ODMxYTBjYzBiN2ZlNmVkNTM5MzYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiS84wjCBNuMHt8kbrUBg3bjz9ti7
A3aykiJHcCseo5gKQJocrNAM2HdkcqKbyktdjVBhlZ5o8h+ILGT0WrXSwkkiP65R
HuJ2CIH4h1xcSKFRyYgYfUplyX3AJjZ9QeOzf+POeMTpRP54M6CUsiH/8hwRvhTq
VnuD5AJ5lE/cm9EL/9W+p5VDnGZOBHOjVnXEUjoVaCCMj9PvK0EEezq24uENgiBl
MMgN4cpzRn6ndP+utg0kq2pLYtkESAIP/0TeCTuQH4oSfdvZuntM1z+zqxfK/evl
zEVovXw1v2GIh4yf/e8oIfAw+JTECyYrgME9ifhKt5mPOKxjXhRlnA0O2QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFKv+gaXs+mjnsGgxoMwLf+btU5NgMB8GA1UdIwQY
MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et
NWVjOGM4ZWQ2MGZkLzEvcV82QnBlejZhT2V3YURHZ3pBdF81dTFUazJBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk
LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQBg
MA0GCSqGSIb3DQEBCwUAA4IBAQABdf0MYKSIcCzxXqdz8iwnuUBUu8+QRrAfqtBg
DvblOT4iCxLKlwxk0vfOYcthjtBRw+GHX1a3ynMEos8CWF6bylOtPBKadYOZ2UsT
NDGy+oDTU1Oy67mzX8VN2oHHZ24T/Wil33AR/aRd/NA/0xbHCQ5leYExvq2h/LJH
nLKjzOMahwho7+8pClhJZnudETnfJZ4PG90Tvmnp1JvMaUWPZQKasXMppMyHKp8M
MOSq9zsTVp4zbUKpijtsTqQM5Uw7B9Oh298i8mAFwp7mEoWx74AEg/ZW4iZ1q2Jr
nTY+BY7JSwR/FwVY2R+FdOkIXj78DrkM6/bWbWh0UhOo8+eC
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:38 2024 by rpki-client on console-ams.rpki-client.org