Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/sPqN6mKRGi9afS063knjN0UAWCQ.roa
File: sPqN6mKRGi9afS063knjN0UAWCQ.roa (raw, json)
Hash identifier: Ownzu0rp2IRw8AT3hso3DBnvaGXJyuVIy2WOh450igs=
Subject key identifier: B0:FA:8D:EA:62:91:1A:2F:5A:7D:2D:3A:DE:49:E3:37:45:00:58:24
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0185711E6DCBEE908B2FCFD12992A586E2F8
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/sPqN6mKRGi9afS063knjN0UAWCQ.roa
Signing time: Mon 02 Jan 2023 06:14:57 +0000
ROA not before: Mon 02 Jan 2023 06:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209661
IP address blocks: 2a0c:b641:210::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:6d:cb:ee:90:8b:2f:cf:d1:29:92:a5:86:e2:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 2 06:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0fa8dea62911a2f5a7d2d3ade49e33745005824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:b0:04:36:d0:fd:d1:10:cb:9b:fc:37:5d:96:
fa:4d:32:f9:04:62:68:cd:1b:a0:51:4d:09:58:02:
89:61:c1:56:8b:60:e6:fe:36:c8:51:da:e9:e0:0d:
35:1e:71:86:73:f7:41:e7:89:cd:26:84:cd:91:5c:
dc:a4:45:0f:00:7a:ec:80:89:39:ff:14:38:d4:ff:
c0:26:64:c5:70:58:15:a8:5f:50:f6:56:d7:e0:c8:
73:8c:62:9c:84:b0:dc:1d:77:38:ba:c0:2e:9f:79:
cb:2d:6c:cb:d1:bc:26:d0:b6:fa:75:f7:58:fd:08:
94:55:ee:8b:25:5f:79:13:8e:5c:bf:5f:ea:35:df:
84:b7:69:b1:58:3c:6a:0e:e6:40:11:e8:68:92:45:
4e:26:6e:f7:d7:62:92:43:58:67:97:88:51:d9:d8:
f1:c7:fa:ca:af:a7:02:1c:c2:2d:9f:e9:84:fe:b9:
b3:8f:25:09:82:36:02:07:12:cd:a9:14:b5:d1:11:
32:93:97:d5:af:37:0e:0c:89:6f:2b:c5:d8:f0:43:
a6:5d:31:56:72:12:f2:6a:4e:cf:c2:ed:55:68:27:
7b:fe:bf:ea:1a:18:bd:45:91:f0:1d:00:ce:68:de:
9e:5b:75:fe:13:bd:d0:90:e2:18:ee:92:c9:6b:67:
ff:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:FA:8D:EA:62:91:1A:2F:5A:7D:2D:3A:DE:49:E3:37:45:00:58:24
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/sPqN6mKRGi9afS063knjN0UAWCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:210::/44
Signature Algorithm: sha256WithRSAEncryption
62:74:c7:ec:64:9a:4a:c4:d0:0d:26:18:3a:df:6a:d3:76:e5:
9d:e5:21:14:fd:c2:13:6a:32:7e:ed:a0:93:1e:eb:ef:4d:c7:
8b:ec:b9:2e:2b:ff:0c:8b:a6:90:92:05:66:6c:22:91:bc:c3:
5f:31:b1:41:db:9d:0f:21:7e:c3:d8:d3:4d:88:76:50:53:d3:
05:0b:33:da:10:6f:c1:21:35:c2:23:75:5a:df:74:7f:40:51:
87:84:3d:73:e2:64:9a:43:af:8e:71:15:6d:22:32:63:19:e7:
18:11:50:d8:5b:88:19:ef:eb:c7:60:4a:ee:60:78:e8:c6:fe:
6d:99:b9:23:23:e1:ee:d2:e4:78:4e:fb:33:c9:a2:70:03:1c:
a7:34:83:ee:2c:69:fc:41:11:b8:73:fa:2e:80:e8:4c:9f:d4:
39:4e:08:3e:b7:fc:55:2b:ed:bf:87:24:44:d8:71:0b:66:86:
97:86:08:2e:49:b3:6c:2e:40:bf:f8:e2:24:f4:3a:14:9d:91:
43:69:31:83:da:16:ff:1e:92:c1:5d:b0:e6:5d:35:f7:31:82:
b0:a1:7c:32:f1:07:89:d3:75:93:25:91:7f:60:b9:23:c9:03:
44:60:3e:14:63:f9:d6:58:18:e7:53:fa:da:e7:d4:77:be:1d:
dc:71:80:07
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVxHm3L7pCLL8/RKZKlhuL4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi
MzUwNTgwHhcNMjMwMTAyMDYxNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMGZhOGRlYTYyOTExYTJmNWE3ZDJkM2FkZTQ5ZTMzNzQ1MDA1ODI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkbAENtD90RDLm/w3XZb6TTL5BGJo
zRugUU0JWAKJYcFWi2Dm/jbIUdrp4A01HnGGc/dB54nNJoTNkVzcpEUPAHrsgIk5
/xQ41P/AJmTFcFgVqF9Q9lbX4MhzjGKchLDcHXc4usAun3nLLWzL0bwm0Lb6dfdY
/QiUVe6LJV95E45cv1/qNd+Et2mxWDxqDuZAEehokkVOJm7312KSQ1hnl4hR2djx
x/rKr6cCHMItn+mE/rmzjyUJgjYCBxLNqRS10REyk5fVrzcODIlvK8XY8EOmXTFW
chLyak7Pwu1VaCd7/r/qGhi9RZHwHQDOaN6eW3X+E73QkOIY7pLJa2f/pwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFLD6jepikRovWn0tOt5J4zdFAFgkMB8GA1UdIwQY
MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et
NWVjOGM4ZWQ2MGZkLzEvc1BxTjZtS1JHaTlhZlMwNjNrbmpOMFVBV0NRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk
LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQIQ
MA0GCSqGSIb3DQEBCwUAA4IBAQBidMfsZJpKxNANJhg632rTduWd5SEU/cITajJ+
7aCTHuvvTceL7LkuK/8Mi6aQkgVmbCKRvMNfMbFB250PIX7D2NNNiHZQU9MFCzPa
EG/BITXCI3Va33R/QFGHhD1z4mSaQ6+OcRVtIjJjGecYEVDYW4gZ7+vHYEruYHjo
xv5tmbkjI+Hu0uR4TvszyaJwAxynNIPuLGn8QRG4c/ougOhMn9Q5Tgg+t/xVK+2/
hyRE2HELZoaXhgguSbNsLkC/+OIk9DoUnZFDaTGD2hb/HpLBXbDmXTX3MYKwoXwy
8QeJ03WTJZF/YLkjyQNEYD4UY/nWWBjnU/ra59R3vh3ccYAH
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:02 2024 by rpki-client on console-ams.rpki-client.org