Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/mBzNti3_2jsoQFCS1yrtw1kDPYI.roa
File: mBzNti3_2jsoQFCS1yrtw1kDPYI.roa (raw, json)
Hash identifier: BU8eSWHTlC7spy6RJAmxr8/kqetd/loT7VK4WXdIf8k=
Subject key identifier: 98:1C:CD:B6:2D:FF:DA:3B:28:40:50:92:D7:2A:ED:C3:59:03:3D:82
Certificate issuer: /CN=7bab6c11d41162db0306858f83e5e65121132a6b
Certificate serial: 01856CF87C32F57B3E8BC6F36CE99696B066
Authority key identifier: 7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/mBzNti3_2jsoQFCS1yrtw1kDPYI.roa
Signing time: Sun 01 Jan 2023 10:55:02 +0000
ROA not before: Sun 01 Jan 2023 10:55:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207740
IP address blocks: 2a07:22c1:ffe5::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:f8:7c:32:f5:7b:3e:8b:c6:f3:6c:e9:96:96:b0:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bab6c11d41162db0306858f83e5e65121132a6b
Validity
Not Before: Jan 1 10:55:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=981ccdb62dffda3b28405092d72aedc359033d82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4c:86:f8:03:47:bc:da:92:49:02:67:2f:87:
3e:3e:fa:a7:01:27:a1:d9:40:7e:38:50:61:5f:78:
e0:12:59:11:81:47:ec:a0:36:8a:94:f1:a4:da:41:
d3:03:f2:c3:ac:e8:4e:89:38:36:b0:5c:c6:bf:55:
7b:7c:25:e9:49:17:42:07:e5:64:10:2a:84:cd:97:
07:da:a3:9c:57:ee:49:0d:c4:d6:d0:4a:ca:32:2e:
74:fa:27:f4:db:87:ac:11:7e:53:88:aa:55:fd:8d:
ba:17:e0:88:0c:87:8f:e7:45:8d:4e:66:d3:18:1f:
13:b7:d6:69:77:e8:f8:1a:87:46:4e:00:06:c9:fd:
e2:a9:e1:08:e9:71:8c:1e:06:ad:87:87:79:d5:44:
23:23:90:75:e4:6d:71:25:3b:13:b3:f9:56:ea:ad:
3e:2d:b5:6b:16:0a:28:3b:70:7a:63:24:fa:6b:61:
d6:33:01:93:65:2a:1d:36:85:ea:dc:6e:65:1f:ba:
40:b9:99:26:22:40:d7:00:0f:a5:81:47:c6:0f:60:
f9:c2:05:68:7e:92:4b:1c:5f:ef:d9:c4:e5:cb:ed:
e6:57:71:06:3a:11:ec:bd:27:98:57:1a:dc:be:46:
78:88:78:92:79:fe:90:dd:0b:97:ff:78:e7:29:4d:
25:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:1C:CD:B6:2D:FF:DA:3B:28:40:50:92:D7:2A:ED:C3:59:03:3D:82
X509v3 Authority Key Identifier:
keyid:7B:AB:6C:11:D4:11:62:DB:03:06:85:8F:83:E5:E6:51:21:13:2A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6tsEdQRYtsDBoWPg-XmUSETKms.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/mBzNti3_2jsoQFCS1yrtw1kDPYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/d334ad-5240-4daa-a050-9f5bf736720e/1/e6tsEdQRYtsDBoWPg-XmUSETKms.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a07:22c1:ffe5::/48
Signature Algorithm: sha256WithRSAEncryption
b8:5a:12:9c:f2:81:fa:49:6f:e8:de:4c:8f:ce:81:ea:e0:0a:
b5:17:9b:42:f4:9c:87:65:8c:2c:d4:1c:bb:07:4a:74:08:0b:
83:ad:61:6e:7f:8f:3b:ad:1c:dd:3a:59:ef:0f:1f:91:48:f6:
00:e2:d0:41:d8:6d:f3:04:08:b8:e6:37:c0:7d:17:5c:c5:fe:
c8:77:d5:14:51:0d:bf:7c:74:4b:05:86:44:46:51:bc:9a:6e:
5c:0c:95:25:1d:ea:db:23:1f:74:de:60:66:bf:fc:fa:68:2b:
d6:49:39:aa:fd:64:0e:68:25:3c:f2:7e:6d:73:47:9d:43:35:
4b:83:e9:57:b2:02:e8:5f:88:47:73:95:57:39:99:d7:29:2d:
d2:cf:23:54:b7:06:c3:ce:35:b2:ad:65:d6:06:91:1a:91:a6:
91:00:a1:c5:d4:70:fc:80:b1:07:de:b4:b9:65:da:eb:bf:b4:
89:b7:ff:15:a6:40:d4:7d:87:a3:be:38:df:b0:e0:8d:8d:fb:
e1:2c:91:81:fe:04:08:0d:1e:17:3f:fa:72:61:89:9b:10:f9:
77:54:7c:10:38:25:08:b5:a4:5c:99:1e:22:c7:50:49:27:4c:
b7:79:8b:ed:87:bf:60:40:ac:33:d5:e8:19:84:7c:48:58:e0:
67:0b:cf:a1
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVs+Hwy9Xs+i8bzbOmWlrBmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdiYWI2YzExZDQxMTYyZGIwMzA2ODU4ZjgzZTVlNjUxMjEx
MzJhNmIwHhcNMjMwMTAxMTA1NTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ODFjY2RiNjJkZmZkYTNiMjg0MDUwOTJkNzJhZWRjMzU5MDMzZDgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApUyG+ANHvNqSSQJnL4c+PvqnASeh
2UB+OFBhX3jgElkRgUfsoDaKlPGk2kHTA/LDrOhOiTg2sFzGv1V7fCXpSRdCB+Vk
ECqEzZcH2qOcV+5JDcTW0ErKMi50+if024esEX5TiKpV/Y26F+CIDIeP50WNTmbT
GB8Tt9Zpd+j4GodGTgAGyf3iqeEI6XGMHgath4d51UQjI5B15G1xJTsTs/lW6q0+
LbVrFgooO3B6YyT6a2HWMwGTZSodNoXq3G5lH7pAuZkmIkDXAA+lgUfGD2D5wgVo
fpJLHF/v2cTly+3mV3EGOhHsvSeYVxrcvkZ4iHiSef6Q3QuX/3jnKU0lBwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFJgczbYt/9o7KEBQktcq7cNZAz2CMB8GA1UdIwQY
MBaAFHurbBHUEWLbAwaFj4Pl5lEhEyprMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZTZ0c0VkUVJZdHNEQm9XUGctWG1VU0VUS21zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS9kMzM0YWQtNTI0MC00ZGFhLWEwNTAt
OWY1YmY3MzY3MjBlLzEvbUJ6TnRpM18yanNvUUZDUzF5cnR3MWtEUFlJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOS9kMzM0YWQtNTI0MC00ZGFhLWEwNTAtOWY1YmY3MzY3MjBl
LzEvZTZ0c0VkUVJZdHNEQm9XUGctWG1VU0VUS21zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgciwf/l
MA0GCSqGSIb3DQEBCwUAA4IBAQC4WhKc8oH6SW/o3kyPzoHq4Aq1F5tC9JyHZYws
1By7B0p0CAuDrWFuf487rRzdOlnvDx+RSPYA4tBB2G3zBAi45jfAfRdcxf7Id9UU
UQ2/fHRLBYZERlG8mm5cDJUlHerbIx903mBmv/z6aCvWSTmq/WQOaCU88n5tc0ed
QzVLg+lXsgLoX4hHc5VXOZnXKS3SzyNUtwbDzjWyrWXWBpEakaaRAKHF1HD8gLEH
3rS5Zdrrv7SJt/8VpkDUfYejvjjfsOCNjfvhLJGB/gQIDR4XP/pyYYmbEPl3VHwQ
OCUItaRcmR4ix1BJJ0y3eYvth79gQKwz1egZhHxIWOBnC8+h
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:48 2024 by rpki-client on console-fra.rpki-client.org