Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/wNl79gNHW7j6Cinr-qJ7i930NXk.roa
File: wNl79gNHW7j6Cinr-qJ7i930NXk.roa (raw, json)
Hash identifier: 2/ve4hgdE8Egfjg+VSyZF5QRopwRPzeXqYUHGWe7vps=
Subject key identifier: C0:D9:7B:F6:03:47:5B:B8:FA:0A:29:EB:FA:A2:7B:8B:DD:F4:35:79
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 01885F012CE9A08939BEA279E7F32D392932
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/wNl79gNHW7j6Cinr-qJ7i930NXk.roa
Signing time: Sat 27 May 2023 20:58:12 +0000
ROA not before: Sat 27 May 2023 20:58:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202973
IP address blocks: 2a0c:b641:820::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:5f:01:2c:e9:a0:89:39:be:a2:79:e7:f3:2d:39:29:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: May 27 20:58:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c0d97bf603475bb8fa0a29ebfaa27b8bddf43579
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:20:79:1d:81:72:4a:f5:fa:92:32:ff:67:1e:
98:6a:92:8d:8b:49:78:e6:1a:1f:86:10:f9:e7:73:
42:2f:33:4b:77:3b:21:bc:04:37:49:7a:21:19:cc:
5f:25:16:6d:2b:0d:26:f7:18:1a:35:99:ec:d6:a0:
9d:c7:45:46:44:db:4e:80:a1:ca:fc:f9:63:7f:e7:
26:27:0e:3e:00:31:72:84:74:37:69:7e:70:4e:99:
9b:1b:ff:5a:d4:2e:4d:df:65:4e:87:e9:7d:68:93:
fa:c9:16:e4:38:f9:52:e1:62:df:ce:38:6f:b2:db:
b6:15:03:e8:ca:04:01:a4:25:84:34:41:a9:1e:29:
d1:ae:be:c3:03:be:fb:ea:64:2c:19:91:09:af:bb:
03:03:8d:00:10:09:eb:1d:77:0f:6e:f3:b0:fc:e8:
ad:30:fc:26:49:bd:ba:67:2a:f0:d0:80:a6:c1:39:
63:96:e1:71:85:3b:3b:25:8e:95:ee:2b:a5:d8:7d:
38:9c:43:4d:f0:85:df:66:66:65:b1:20:ed:da:79:
dc:5b:c8:aa:19:d2:e0:f1:a8:f1:fd:48:56:2f:3d:
3a:1a:12:d2:c4:32:a6:26:ff:f3:76:03:cf:6a:f5:
28:35:17:2f:aa:9d:05:1c:5f:71:0e:0d:78:d1:44:
f5:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:D9:7B:F6:03:47:5B:B8:FA:0A:29:EB:FA:A2:7B:8B:DD:F4:35:79
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/wNl79gNHW7j6Cinr-qJ7i930NXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:b641:820::/44
Signature Algorithm: sha256WithRSAEncryption
64:48:36:16:84:0c:dd:11:9f:29:be:0d:27:c1:2f:7a:45:e3:
cb:fe:6c:3e:3a:b0:48:3b:be:50:b9:f9:79:3d:a2:b9:bd:f5:
8a:c3:99:9d:66:f9:39:96:97:35:be:9b:b1:65:9d:78:5a:fe:
78:03:67:8c:1c:b6:94:85:03:6c:2d:d6:15:64:cd:da:9f:9c:
78:2f:54:ab:86:1f:d7:13:7f:ec:d9:ea:05:54:96:85:2f:39:
5d:76:b8:45:dc:96:ef:ff:89:bc:47:e9:6f:42:a3:f4:e3:59:
8c:b0:d4:23:94:4a:7b:29:de:2f:de:8f:e1:ac:73:e5:32:93:
53:85:84:13:2d:95:17:40:a3:ec:26:7e:87:30:05:a2:4d:94:
43:23:64:af:6d:03:35:a7:d8:61:f8:99:f2:ca:bd:66:dd:d1:
a4:9b:06:bb:ff:7f:e9:60:02:41:74:a3:81:8b:8e:fd:e1:13:
2f:ae:53:da:63:3a:fa:33:fd:32:c8:50:20:d5:ad:8e:73:30:
ca:d3:9f:b1:45:e7:91:16:4d:08:8f:08:6f:ba:c9:48:0d:ab:
32:68:07:c8:9a:f8:c3:2f:df:f5:ce:07:d8:28:f8:9a:d8:4e:
dc:d7:1d:a5:7c:46:8b:ee:1e:61:e3:35:4c:3a:ee:c6:89:42:
ea:23:79:17
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYhfASzpoIk5vqJ55/MtOSkyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1OTc2ODAxMzYzZDM3NTc4NjE1MmU0ZDA2MWU3NWM4YmVi
MzUwNTgwHhcNMjMwNTI3MjA1ODEyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMGQ5N2JmNjAzNDc1YmI4ZmEwYTI5ZWJmYWEyN2I4YmRkZjQzNTc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgSB5HYFySvX6kjL/Zx6YapKNi0l4
5hofhhD553NCLzNLdzshvAQ3SXohGcxfJRZtKw0m9xgaNZns1qCdx0VGRNtOgKHK
/Pljf+cmJw4+ADFyhHQ3aX5wTpmbG/9a1C5N32VOh+l9aJP6yRbkOPlS4WLfzjhv
stu2FQPoygQBpCWENEGpHinRrr7DA7776mQsGZEJr7sDA40AEAnrHXcPbvOw/Oit
MPwmSb26Zyrw0ICmwTljluFxhTs7JY6V7iul2H04nENN8IXfZmZlsSDt2nncW8iq
GdLg8ajx/UhWLz06GhLSxDKmJv/zdgPPavUoNRcvqp0FHF9xDg140UT1BwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFMDZe/YDR1u4+gop6/qie4vd9DV5MB8GA1UdIwQY
MBaAFAWXaAE2PTdXhhUuTQYedci+s1BYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2Et
NWVjOGM4ZWQ2MGZkLzEvd05sNzlnTkhXN2o2Q2luci1xSjdpOTMwTlhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS8yYmFhZGMtMmI3YS00ZWMwLTk1Y2EtNWVjOGM4ZWQ2MGZk
LzEvQlpkb0FUWTlOMWVHRlM1TkJoNTF5TDZ6VUZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgy2QQgg
MA0GCSqGSIb3DQEBCwUAA4IBAQBkSDYWhAzdEZ8pvg0nwS96RePL/mw+OrBIO75Q
ufl5PaK5vfWKw5mdZvk5lpc1vpuxZZ14Wv54A2eMHLaUhQNsLdYVZM3an5x4L1Sr
hh/XE3/s2eoFVJaFLzlddrhF3Jbv/4m8R+lvQqP041mMsNQjlEp7Kd4v3o/hrHPl
MpNThYQTLZUXQKPsJn6HMAWiTZRDI2SvbQM1p9hh+Jnyyr1m3dGkmwa7/3/pYAJB
dKOBi4794RMvrlPaYzr6M/0yyFAg1a2OczDK05+xReeRFk0IjwhvuslIDasyaAfI
mvjDL9/1zgfYKPia2E7c1x2lfEaL7h5h4zVMOu7GiULqI3kX
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:06 2024 by rpki-client on console-fra.rpki-client.org