Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/0b3249-fd49-4567-b36d-cbbe3242c2bd/1/6L0sUq58OjIGO7z0e9ieNnaB_sQ.roa
File: 6L0sUq58OjIGO7z0e9ieNnaB_sQ.roa (raw, json)
Hash identifier: bJkOM936/E89K5OLDzY4BYcVW4x6rSc/a0HNM83+jOA=
Subject key identifier: E8:BD:2C:52:AE:7C:3A:32:06:3B:BC:F4:7B:D8:9E:36:76:81:FE:C4
Certificate issuer: /CN=66259dea3e9cae6e819588c5c913f02d4410398b
Certificate serial: 01856D8AC92B366D42554A6174E2C3EA9BD6
Authority key identifier: 66:25:9D:EA:3E:9C:AE:6E:81:95:88:C5:C9:13:F0:2D:44:10:39:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZiWd6j6crm6BlYjFyRPwLUQQOYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/0b3249-fd49-4567-b36d-cbbe3242c2bd/1/6L0sUq58OjIGO7z0e9ieNnaB_sQ.roa
Signing time: Sun 01 Jan 2023 13:34:50 +0000
ROA not before: Sun 01 Jan 2023 13:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42487
IP address blocks: 2a09:5180::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8a:c9:2b:36:6d:42:55:4a:61:74:e2:c3:ea:9b:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66259dea3e9cae6e819588c5c913f02d4410398b
Validity
Not Before: Jan 1 13:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e8bd2c52ae7c3a32063bbcf47bd89e367681fec4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a4:09:33:69:3a:9f:ea:8b:11:9e:a3:45:a3:
27:f8:bb:d1:0a:c2:e1:42:77:f5:c7:c7:1d:d6:53:
dc:6e:fb:ed:35:dc:53:0e:81:20:3e:38:6c:29:2c:
2d:58:1d:68:ad:aa:fa:e2:2b:d3:50:84:e3:a9:58:
1f:ed:0a:c2:dc:c4:36:0a:c4:a2:7c:f9:0d:80:3a:
2d:5f:4c:f4:89:d2:da:2e:d0:8d:34:4c:8e:92:28:
74:85:82:0f:7c:58:25:56:43:5c:ce:fd:bb:0a:40:
d2:f6:a6:ec:96:16:ce:04:bd:a5:41:0b:38:62:2f:
ed:58:6a:0e:42:94:16:26:ae:19:5b:c6:f9:36:fc:
2e:ad:34:a0:17:dd:12:e3:3c:77:d0:05:a5:93:fe:
fa:f9:56:6e:f3:ce:e3:1d:d2:f5:ff:ba:88:64:24:
d8:22:d0:7e:3a:7e:b0:11:c0:95:ff:6c:5e:0e:78:
ec:53:d8:9f:1d:83:70:74:c4:83:bd:74:17:91:11:
c0:a6:01:d7:7a:8b:b6:d8:b0:3a:73:0c:88:c1:6a:
66:26:aa:91:50:96:78:a8:e1:85:f0:fc:df:81:cd:
a9:9e:3e:41:91:4d:9a:32:ec:df:24:b2:74:af:ac:
68:97:4b:63:08:20:e3:0a:38:d4:fc:95:85:f0:1b:
4d:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:BD:2C:52:AE:7C:3A:32:06:3B:BC:F4:7B:D8:9E:36:76:81:FE:C4
X509v3 Authority Key Identifier:
keyid:66:25:9D:EA:3E:9C:AE:6E:81:95:88:C5:C9:13:F0:2D:44:10:39:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZiWd6j6crm6BlYjFyRPwLUQQOYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/0b3249-fd49-4567-b36d-cbbe3242c2bd/1/6L0sUq58OjIGO7z0e9ieNnaB_sQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/0b3249-fd49-4567-b36d-cbbe3242c2bd/1/ZiWd6j6crm6BlYjFyRPwLUQQOYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:5180::/29
Signature Algorithm: sha256WithRSAEncryption
92:68:7a:f9:90:59:27:f0:1a:a5:c9:d1:b5:64:a9:70:99:d0:
0d:c6:15:1e:26:b8:82:66:35:95:6d:4b:05:f3:6a:5f:c0:89:
6e:d6:27:5b:23:dd:a1:46:ba:83:fc:27:c3:42:0c:3c:cd:9a:
c6:f6:08:ec:97:34:f7:01:76:70:25:2d:fd:0e:54:4f:0d:5f:
8b:19:94:bd:c7:3d:32:60:1f:e7:68:1e:18:54:22:1a:16:72:
d6:d6:e4:ce:bd:6c:37:94:f0:30:c7:4e:6c:a5:b6:85:42:15:
e6:4a:9e:40:48:90:a6:d9:2a:0f:f8:58:44:6a:bf:ca:d5:98:
bd:81:f0:c2:cc:24:91:29:93:f7:68:02:47:b0:88:a3:15:91:
43:b5:53:9c:ee:f4:54:83:d3:b1:cf:dc:e4:a7:43:03:4c:41:
cd:a4:8d:e2:5f:6d:79:90:ed:20:cb:68:51:a9:69:d7:5b:34:
c7:4a:01:dd:83:70:93:a9:f3:f2:83:93:df:c4:b2:76:ff:0e:
31:c0:fb:ca:04:44:38:5c:ce:e8:c3:ae:be:c4:b2:9c:bd:8e:
61:39:46:01:36:c7:77:e4:f2:5a:e9:1a:78:5e:e9:dc:ba:ca:
8f:dd:45:d6:d1:a6:28:82:0f:c2:e9:9f:d5:42:1b:f0:14:6d:
6c:27:b9:59
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVtiskrNm1CVUphdOLD6pvWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY2MjU5ZGVhM2U5Y2FlNmU4MTk1ODhjNWM5MTNmMDJkNDQx
MDM5OGIwHhcNMjMwMTAxMTMzNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOGJkMmM1MmFlN2MzYTMyMDYzYmJjZjQ3YmQ4OWUzNjc2ODFmZWM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApqQJM2k6n+qLEZ6jRaMn+LvRCsLh
Qnf1x8cd1lPcbvvtNdxTDoEgPjhsKSwtWB1orar64ivTUITjqVgf7QrC3MQ2CsSi
fPkNgDotX0z0idLaLtCNNEyOkih0hYIPfFglVkNczv27CkDS9qbslhbOBL2lQQs4
Yi/tWGoOQpQWJq4ZW8b5NvwurTSgF90S4zx30AWlk/76+VZu887jHdL1/7qIZCTY
ItB+On6wEcCV/2xeDnjsU9ifHYNwdMSDvXQXkRHApgHXeou22LA6cwyIwWpmJqqR
UJZ4qOGF8Pzfgc2pnj5BkU2aMuzfJLJ0r6xol0tjCCDjCjjU/JWF8BtNlwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFOi9LFKufDoyBju89HvYnjZ2gf7EMB8GA1UdIwQY
MBaAFGYlneo+nK5ugZWIxckT8C1EEDmLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWmlXZDZqNmNybTZCbFlqRnlSUHdMVVFRT1lzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy8wYjMyNDktZmQ0OS00NTY3LWIzNmQt
Y2JiZTMyNDJjMmJkLzEvNkwwc1VxNThPaklHTzd6MGU5aWVObmFCX3NRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYy8wYjMyNDktZmQ0OS00NTY3LWIzNmQtY2JiZTMyNDJjMmJk
LzEvWmlXZDZqNmNybTZCbFlqRnlSUHdMVVFRT1lzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKglRgDAN
BgkqhkiG9w0BAQsFAAOCAQEAkmh6+ZBZJ/AapcnRtWSpcJnQDcYVHia4gmY1lW1L
BfNqX8CJbtYnWyPdoUa6g/wnw0IMPM2axvYI7Jc09wF2cCUt/Q5UTw1fixmUvcc9
MmAf52geGFQiGhZy1tbkzr1sN5TwMMdObKW2hUIV5kqeQEiQptkqD/hYRGq/ytWY
vYHwwswkkSmT92gCR7CIoxWRQ7VTnO70VIPTsc/c5KdDA0xBzaSN4l9teZDtIMto
Ualp11s0x0oB3YNwk6nz8oOT38Sydv8OMcD7ygREOFzO6MOuvsSynL2OYTlGATbH
d+TyWukaeF7p3LrKj91F1tGmKIIPwumf1UIb8BRtbCe5WQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:51 2023 by rpki-client on console-fra.rpki-client.org