Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/CqqkjVV5PymQl2e5sIr9Q1lB65E.roa
File: CqqkjVV5PymQl2e5sIr9Q1lB65E.roa (raw, json)
Hash identifier: F6+ZslEnkQl/hFlMUAo1scVvdlplT1a8sxEdV77xXvA=
Subject key identifier: 0A:AA:A4:8D:55:79:3F:29:90:97:67:B9:B0:8A:FD:43:59:41:EB:91
Certificate issuer: /CN=00e4f6a77368b7cecfe67220b436576b1e008aec
Certificate serial: 01856F14C2734FC099B665D9FB7CF8153039
Authority key identifier: 00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/CqqkjVV5PymQl2e5sIr9Q1lB65E.roa
Signing time: Sun 01 Jan 2023 20:45:09 +0000
ROA not before: Sun 01 Jan 2023 20:45:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210756
IP address blocks: 2a03:90c0:b0::/44 maxlen: 44
Validation: Failed, certificate revoked on Mon 16 Jan 2023 12:20:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:c2:73:4f:c0:99:b6:65:d9:fb:7c:f8:15:30:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00e4f6a77368b7cecfe67220b436576b1e008aec
Validity
Not Before: Jan 1 20:45:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0aaaa48d55793f29909767b9b08afd435941eb91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:4c:02:ea:0b:61:38:39:16:52:5b:8e:76:45:
25:df:81:ae:2a:0c:9a:d5:bb:36:e6:a6:fb:bf:e0:
ab:78:1c:72:31:af:61:91:35:0c:42:d1:2e:db:8b:
1e:15:90:ab:db:0c:56:6f:7c:5a:4c:6d:93:f0:b7:
56:be:09:2e:67:dd:4f:1c:8b:95:ab:f3:08:3e:9b:
6d:1d:dc:77:14:72:ac:ff:81:3f:cc:b6:de:20:5d:
46:dc:1b:2e:84:f1:ab:88:cd:47:90:03:b1:1b:32:
8a:23:7a:77:93:c9:5a:0a:72:94:01:dd:38:38:f9:
53:bf:c5:ed:7a:d0:72:2a:30:60:a7:0a:fc:3e:e0:
57:0d:c7:f7:c5:99:39:77:79:89:d1:13:78:7e:8a:
c0:6b:d3:dc:2c:3e:a7:30:52:9a:af:10:03:a8:99:
07:6d:ff:f3:aa:5f:a3:83:64:5c:7c:af:6d:d1:88:
a5:02:41:81:27:3d:b0:52:5f:38:92:72:b2:a2:d8:
28:d1:e6:d5:65:c7:e6:f0:3a:7d:50:9e:aa:9e:20:
64:a2:43:e1:66:fb:cb:b3:55:f9:4c:fb:1b:2e:b5:
75:37:f0:e3:24:f3:19:0e:29:a7:f8:de:b2:ab:67:
0c:83:57:5e:b0:61:0d:50:ab:eb:71:c9:7e:f8:b4:
39:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:AA:A4:8D:55:79:3F:29:90:97:67:B9:B0:8A:FD:43:59:41:EB:91
X509v3 Authority Key Identifier:
keyid:00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/CqqkjVV5PymQl2e5sIr9Q1lB65E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:90c0:b0::/44
Signature Algorithm: sha256WithRSAEncryption
ee:a7:ea:cd:a5:88:31:0e:db:e9:b4:7b:01:6a:c3:e4:a9:8c:
ce:47:27:5c:45:ab:03:c8:43:ff:c4:34:1a:5b:3e:ad:f3:ac:
3f:f4:fb:56:a7:11:57:2f:fd:a8:8d:87:54:80:70:b1:da:a3:
ae:ce:d9:71:03:98:82:5c:09:dc:a4:a6:1a:fc:6e:81:1b:54:
6b:90:2e:ba:b0:86:65:f6:cc:9a:2f:dd:aa:f3:94:2c:93:05:
74:9b:3e:02:ec:dc:5a:8c:3d:62:64:0c:01:c0:7c:1c:ce:b1:
ba:89:00:99:4f:0f:56:e6:e4:26:16:61:ec:9d:2e:ba:cf:36:
61:e6:eb:4d:93:01:22:96:d6:15:eb:b3:0a:35:77:29:c9:13:
11:d6:7b:cc:5c:db:0f:71:08:09:37:bb:9f:31:a8:4d:2e:1c:
ff:7e:2d:5e:46:af:c3:b8:9e:64:1c:bc:5e:77:a9:9d:82:7d:
12:98:72:4b:91:ac:dd:9e:56:bf:63:76:56:b9:a2:11:2c:7e:
a9:1c:5e:9c:b8:08:41:21:09:f2:fa:1b:de:1d:e5:64:2d:56:
be:6f:22:b6:a2:97:c9:0c:68:b3:d2:bf:de:6d:f7:25:c7:5f:
37:0c:3d:4d:d1:7c:15:bd:e0:b4:65:a5:0d:bd:ad:e0:3a:19:
92:df:fe:5a
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVvFMJzT8CZtmXZ+3z4FTA5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwZTRmNmE3NzM2OGI3Y2VjZmU2NzIyMGI0MzY1NzZiMWUw
MDhhZWMwHhcNMjMwMTAxMjA0NTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYWFhYTQ4ZDU1NzkzZjI5OTA5NzY3YjliMDhhZmQ0MzU5NDFlYjkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkkwC6gthODkWUluOdkUl34GuKgya
1bs25qb7v+CreBxyMa9hkTUMQtEu24seFZCr2wxWb3xaTG2T8LdWvgkuZ91PHIuV
q/MIPpttHdx3FHKs/4E/zLbeIF1G3BsuhPGriM1HkAOxGzKKI3p3k8laCnKUAd04
OPlTv8XtetByKjBgpwr8PuBXDcf3xZk5d3mJ0RN4forAa9PcLD6nMFKarxADqJkH
bf/zql+jg2RcfK9t0YilAkGBJz2wUl84knKyotgo0ebVZcfm8Dp9UJ6qniBkokPh
ZvvLs1X5TPsbLrV1N/DjJPMZDimn+N6yq2cMg1desGENUKvrccl++LQ5VwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFAqqpI1VeT8pkJdnubCK/UNZQeuRMB8GA1UdIwQY
MBaAFADk9qdzaLfOz+ZyILQ2V2seAIrsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMt
YjA3ZDg0MTZhZTRhLzEvQ3Fxa2pWVjVQeW1RbDJlNXNJcjlRMWxCNjVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMtYjA3ZDg0MTZhZTRh
LzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgOQwACw
MA0GCSqGSIb3DQEBCwUAA4IBAQDup+rNpYgxDtvptHsBasPkqYzORydcRasDyEP/
xDQaWz6t86w/9PtWpxFXL/2ojYdUgHCx2qOuztlxA5iCXAncpKYa/G6BG1RrkC66
sIZl9syaL92q85QskwV0mz4C7NxajD1iZAwBwHwczrG6iQCZTw9W5uQmFmHsnS66
zzZh5utNkwEiltYV67MKNXcpyRMR1nvMXNsPcQgJN7ufMahNLhz/fi1eRq/DuJ5k
HLxed6mdgn0SmHJLkazdnla/Y3ZWuaIRLH6pHF6cuAhBIQny+hveHeVkLVa+byK2
opfJDGiz0r/ebfclx183DD1N0XwVveC0ZaUNva3gOhmS3/5a
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:34 2024 by rpki-client on console-fra.rpki-client.org