Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/DJSsibqPU7qD1N29pDcfyG7bOuY.roa
File: DJSsibqPU7qD1N29pDcfyG7bOuY.roa (raw, json)
Hash identifier: Aqri72irij2i+lauCMtyhiyOXtIeYgO+ohZDB8HDZKI=
Subject key identifier: 0C:94:AC:89:BA:8F:53:BA:83:D4:DD:BD:A4:37:1F:C8:6E:DB:3A:E6
Certificate issuer: /CN=87be093097097c4457ff5aa3e5893c8c15432612
Certificate serial: 018B37AD9BAEF74895B375096392977BDAA8
Authority key identifier: 87:BE:09:30:97:09:7C:44:57:FF:5A:A3:E5:89:3C:8C:15:43:26:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h74JMJcJfERX_1qj5Yk8jBVDJhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/DJSsibqPU7qD1N29pDcfyG7bOuY.roa
Signing time: Mon 16 Oct 2023 08:50:06 +0000
ROA not before: Mon 16 Oct 2023 08:50:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210930
IP address blocks: 2a10:9903:511::/48 maxlen: 48
2a10:9903:501::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:37:ad:9b:ae:f7:48:95:b3:75:09:63:92:97:7b:da:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87be093097097c4457ff5aa3e5893c8c15432612
Validity
Not Before: Oct 16 08:50:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c94ac89ba8f53ba83d4ddbda4371fc86edb3ae6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:13:95:4b:54:e9:23:f0:85:8e:04:79:ff:5f:
73:05:a7:ed:4f:25:dd:06:6b:b8:04:36:d4:a5:13:
de:a1:03:1f:2b:96:ad:82:99:14:3f:7a:3c:a8:99:
ac:c1:5c:5a:51:dc:32:ae:1f:e1:36:15:88:b8:6d:
49:ad:dd:6c:17:b0:d1:0b:51:dd:06:6f:21:1d:44:
5a:44:a0:3c:3a:dc:c2:76:f9:0f:3a:3f:73:7d:d1:
f4:12:16:2a:8b:1a:a9:82:d8:43:86:b0:28:12:28:
c1:df:a6:0a:92:e8:0a:24:09:44:53:d5:f1:ac:a5:
d5:de:6b:1e:a9:d2:aa:d4:69:a8:18:c8:47:cd:61:
62:30:da:4e:53:8b:ea:59:3d:70:9b:2d:73:60:27:
16:39:2a:fa:c2:01:46:63:65:f3:61:dd:6c:63:1a:
79:af:e9:1e:8d:d2:c4:f1:61:04:ea:81:f3:8f:ad:
fc:c0:61:f5:3c:ef:3c:14:fe:c0:c5:c6:b8:1b:9e:
34:86:4d:29:b5:57:2a:99:cd:23:bb:5b:74:7e:2a:
2c:3a:a9:d7:9a:c6:e7:78:f6:af:f9:d9:23:26:7e:
13:f5:a2:72:18:ab:f3:14:85:fe:90:26:24:5c:0d:
7f:25:b9:1b:02:59:ca:d3:ce:a9:68:2c:df:29:bd:
f0:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:94:AC:89:BA:8F:53:BA:83:D4:DD:BD:A4:37:1F:C8:6E:DB:3A:E6
X509v3 Authority Key Identifier:
keyid:87:BE:09:30:97:09:7C:44:57:FF:5A:A3:E5:89:3C:8C:15:43:26:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h74JMJcJfERX_1qj5Yk8jBVDJhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/DJSsibqPU7qD1N29pDcfyG7bOuY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/cc8f4a-4c02-404b-8d93-2cde65f3112a/1/h74JMJcJfERX_1qj5Yk8jBVDJhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:9903:501::/48
2a10:9903:511::/48
Signature Algorithm: sha256WithRSAEncryption
03:aa:3e:ee:99:60:9c:2e:9f:2e:cf:ec:07:7b:5b:77:7f:21:
4b:a1:c2:1d:58:b8:74:5e:6f:4c:95:98:bd:9f:57:e0:91:82:
5d:3a:d4:5a:22:41:79:51:95:2e:76:3b:0a:0d:50:51:af:3f:
8c:5f:85:53:7b:72:fc:e3:26:98:d4:d2:ca:fb:cc:33:ed:24:
dc:ee:a7:b6:4e:73:2a:e5:31:f5:33:dd:2c:19:e7:fe:56:bb:
d1:b8:59:7e:1e:d3:09:29:25:93:5b:e7:04:25:5e:cd:14:05:
3d:56:45:ae:f6:51:71:4f:8c:a7:25:ae:ba:8d:4d:67:ff:a5:
46:e1:fe:b9:bc:44:89:03:77:14:ae:e0:fa:8b:38:2d:90:90:
0e:2f:fc:5e:c7:b7:fc:43:6b:51:4f:a3:b7:8f:14:12:59:00:
6d:ce:24:a9:6e:3e:34:ef:8e:02:4c:d1:04:65:bc:69:29:a2:
61:62:20:28:cc:c1:d4:77:4e:8e:d1:af:de:38:89:f4:73:60:
8f:d5:d7:5a:c3:9e:a7:cf:5d:b5:77:45:ff:59:84:30:7b:b7:
55:c8:d9:75:ff:eb:02:63:d3:3d:82:21:4a:e4:1c:79:af:ab:
3f:cf:f0:19:23:78:da:51:d1:90:5f:77:6c:bf:17:f0:5c:fc:
88:91:06:14
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYs3rZuu90iVs3UJY5KXe9qoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3YmUwOTMwOTcwOTdjNDQ1N2ZmNWFhM2U1ODkzYzhjMTU0
MzI2MTIwHhcNMjMxMDE2MDg1MDA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYzk0YWM4OWJhOGY1M2JhODNkNGRkYmRhNDM3MWZjODZlZGIzYWU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxxOVS1TpI/CFjgR5/19zBaftTyXd
Bmu4BDbUpRPeoQMfK5atgpkUP3o8qJmswVxaUdwyrh/hNhWIuG1Jrd1sF7DRC1Hd
Bm8hHURaRKA8OtzCdvkPOj9zfdH0EhYqixqpgthDhrAoEijB36YKkugKJAlEU9Xx
rKXV3mseqdKq1GmoGMhHzWFiMNpOU4vqWT1wmy1zYCcWOSr6wgFGY2XzYd1sYxp5
r+kejdLE8WEE6oHzj638wGH1PO88FP7Axca4G540hk0ptVcqmc0ju1t0fiosOqnX
msbnePav+dkjJn4T9aJyGKvzFIX+kCYkXA1/JbkbAlnK086paCzfKb3wEwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFAyUrIm6j1O6g9TdvaQ3H8hu2zrmMB8GA1UdIwQY
MBaAFIe+CTCXCXxEV/9ao+WJPIwVQyYSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaDc0Sk1KY0pmRVJYXzFxajVZazhqQlZESmhJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9jYzhmNGEtNGMwMi00MDRiLThkOTMt
MmNkZTY1ZjMxMTJhLzEvREpTc2licVBVN3FEMU4yOXBEY2Z5RzdiT3VZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOS9jYzhmNGEtNGMwMi00MDRiLThkOTMtMmNkZTY1ZjMxMTJh
LzEvaDc0Sk1KY0pmRVJYXzFxajVZazhqQlZESmhJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKhCZAwUB
AwcAKhCZAwURMA0GCSqGSIb3DQEBCwUAA4IBAQADqj7umWCcLp8uz+wHe1t3fyFL
ocIdWLh0Xm9MlZi9n1fgkYJdOtRaIkF5UZUudjsKDVBRrz+MX4VTe3L84yaY1NLK
+8wz7STc7qe2TnMq5TH1M90sGef+VrvRuFl+HtMJKSWTW+cEJV7NFAU9VkWu9lFx
T4ynJa66jU1n/6VG4f65vESJA3cUruD6izgtkJAOL/xex7f8Q2tRT6O3jxQSWQBt
ziSpbj40744CTNEEZbxpKaJhYiAozMHUd06O0a/eOIn0c2CP1ddaw56nz121d0X/
WYQwe7dVyNl1/+sCY9M9giFK5Bx5r6s/z/AZI3jaUdGQX3dsvxfwXPyIkQYU
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:45 2024 by rpki-client on console-ams.rpki-client.org