Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/dfffc5-cb6d-44ce-8472-777ee9556210/1/7U_xYLTht5Z0ynOE0ydAcuHLY7E.roa
File: 7U_xYLTht5Z0ynOE0ydAcuHLY7E.roa (raw, json)
Hash identifier: 0XRKkAJWuWfCYKB2mqrKLoKL6VwG3r9Bzy49h5AlXr8=
Subject key identifier: ED:4F:F1:60:B4:E1:B7:96:74:CA:73:84:D3:27:40:72:E1:CB:63:B1
Certificate issuer: /CN=b2c5f74df4520d341da348a700a03b97caf07735
Certificate serial: 01856CCAB529696C8B4048B90AE5331DBC2C
Authority key identifier: B2:C5:F7:4D:F4:52:0D:34:1D:A3:48:A7:00:A0:3B:97:CA:F0:77:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ssX3TfRSDTQdo0inAKA7l8rwdzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/dfffc5-cb6d-44ce-8472-777ee9556210/1/7U_xYLTht5Z0ynOE0ydAcuHLY7E.roa
Signing time: Sun 01 Jan 2023 10:05:02 +0000
ROA not before: Sun 01 Jan 2023 10:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28727
IP address blocks: 2001:67c:628::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:b5:29:69:6c:8b:40:48:b9:0a:e5:33:1d:bc:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2c5f74df4520d341da348a700a03b97caf07735
Validity
Not Before: Jan 1 10:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed4ff160b4e1b79674ca7384d3274072e1cb63b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:26:ed:87:77:09:5a:73:f7:af:3b:1a:a3:d1:
f6:2b:69:1b:a4:45:cc:46:0d:81:43:9b:86:59:c9:
2d:3e:7d:b3:79:49:e0:ee:37:6f:c1:c5:9e:b2:da:
e4:9c:b9:d5:99:31:a0:69:63:d1:2d:2e:4b:79:2a:
22:63:56:6d:22:97:45:4e:a8:a6:8d:e5:0e:a3:e8:
a3:8b:cf:66:75:c9:1d:07:80:96:06:e6:04:42:da:
38:7f:86:96:8d:56:5b:9a:21:02:17:44:b1:97:fd:
e6:1f:68:44:56:54:e6:14:88:1a:f6:fb:19:15:a8:
16:cb:de:76:2e:bf:38:47:61:dc:37:83:a3:1d:b9:
6e:65:0b:ce:0b:6d:6c:2b:a7:26:c8:2f:87:e7:7f:
d3:04:47:42:d4:6f:a9:72:39:fd:96:6d:2f:c8:d6:
6a:f2:7b:89:cf:b0:15:c3:18:2f:a3:89:d3:37:4c:
08:b4:ff:13:c9:6a:44:c3:a3:13:a5:f8:0d:be:c2:
87:ee:e1:62:f1:b8:3e:5d:01:dc:3d:0a:25:b3:57:
7d:5a:72:bc:c3:92:30:60:b5:4b:85:31:39:b3:04:
6a:36:2a:3f:36:cd:6c:55:85:0f:e7:aa:2b:b9:a8:
6f:1d:49:92:b5:81:6b:36:f3:59:f4:5f:bf:9f:e0:
5a:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:4F:F1:60:B4:E1:B7:96:74:CA:73:84:D3:27:40:72:E1:CB:63:B1
X509v3 Authority Key Identifier:
keyid:B2:C5:F7:4D:F4:52:0D:34:1D:A3:48:A7:00:A0:3B:97:CA:F0:77:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ssX3TfRSDTQdo0inAKA7l8rwdzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dfffc5-cb6d-44ce-8472-777ee9556210/1/7U_xYLTht5Z0ynOE0ydAcuHLY7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dfffc5-cb6d-44ce-8472-777ee9556210/1/ssX3TfRSDTQdo0inAKA7l8rwdzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:628::/48
Signature Algorithm: sha256WithRSAEncryption
6b:ba:27:a4:d9:d7:24:ac:f3:a3:15:66:e0:35:bd:a7:93:d2:
99:d0:ce:9f:e5:19:e2:03:ad:68:eb:c3:03:fb:9f:60:2a:54:
21:8c:a6:81:72:42:18:c2:6a:d4:30:10:f2:b1:c4:8d:9a:c7:
34:66:24:4b:1d:ab:9d:99:1a:0b:0a:74:21:c3:d4:2e:2f:6f:
53:bf:84:0b:97:4b:e3:91:4b:ae:3a:29:3c:cd:41:54:db:d8:
17:20:2f:f4:66:77:2f:fd:dc:34:50:f6:66:85:89:a1:84:0b:
38:9b:f9:58:6a:39:e9:34:6c:9f:57:bf:93:7e:fe:7e:84:d4:
e0:cc:da:92:1b:09:71:4f:dc:bb:34:65:20:79:4a:58:5f:c2:
72:d8:49:21:28:1d:2e:c8:1d:34:e9:b0:90:86:0a:43:0a:d6:
7f:22:eb:20:94:6c:35:28:12:81:22:7c:a6:57:26:05:bd:d7:
83:6b:14:cd:f0:cd:2e:57:25:3a:b3:90:ef:89:8e:f0:b5:95:
da:79:11:98:0d:14:42:ec:0b:9f:41:4e:03:09:02:bb:a8:c7:
ee:69:d9:6c:4b:13:00:80:1d:20:a2:ff:40:92:0a:9f:b1:65:
76:fc:56:24:e9:07:4f:84:dc:e1:69:8f:87:b2:03:b0:0c:03:
af:66:f7:1e
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVsyrUpaWyLQEi5CuUzHbwsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyYzVmNzRkZjQ1MjBkMzQxZGEzNDhhNzAwYTAzYjk3Y2Fm
MDc3MzUwHhcNMjMwMTAxMTAwNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZDRmZjE2MGI0ZTFiNzk2NzRjYTczODRkMzI3NDA3MmUxY2I2M2IxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjSbth3cJWnP3rzsao9H2K2kbpEXM
Rg2BQ5uGWcktPn2zeUng7jdvwcWestrknLnVmTGgaWPRLS5LeSoiY1ZtIpdFTqim
jeUOo+iji89mdckdB4CWBuYEQto4f4aWjVZbmiECF0Sxl/3mH2hEVlTmFIga9vsZ
FagWy952Lr84R2HcN4OjHbluZQvOC21sK6cmyC+H53/TBEdC1G+pcjn9lm0vyNZq
8nuJz7AVwxgvo4nTN0wItP8TyWpEw6MTpfgNvsKH7uFi8bg+XQHcPQols1d9WnK8
w5IwYLVLhTE5swRqNio/Ns1sVYUP56oruahvHUmStYFrNvNZ9F+/n+BadQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFO1P8WC04beWdMpzhNMnQHLhy2OxMB8GA1UdIwQY
MBaAFLLF9030Ug00HaNIpwCgO5fK8Hc1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3NYM1RmUlNEVFFkbzBpbkFLQTdsOHJ3ZHpVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9kZmZmYzUtY2I2ZC00NGNlLTg0NzIt
Nzc3ZWU5NTU2MjEwLzEvN1VfeFlMVGh0NVoweW5PRTB5ZEFjdUhMWTdFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS9kZmZmYzUtY2I2ZC00NGNlLTg0NzItNzc3ZWU5NTU2MjEw
LzEvc3NYM1RmUlNEVFFkbzBpbkFLQTdsOHJ3ZHpVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAYo
MA0GCSqGSIb3DQEBCwUAA4IBAQBruiek2dckrPOjFWbgNb2nk9KZ0M6f5RniA61o
68MD+59gKlQhjKaBckIYwmrUMBDyscSNmsc0ZiRLHaudmRoLCnQhw9QuL29Tv4QL
l0vjkUuuOik8zUFU29gXIC/0Zncv/dw0UPZmhYmhhAs4m/lYajnpNGyfV7+Tfv5+
hNTgzNqSGwlxT9y7NGUgeUpYX8Jy2EkhKB0uyB006bCQhgpDCtZ/IusglGw1KBKB
InymVyYFvdeDaxTN8M0uVyU6s5DviY7wtZXaeRGYDRRC7AufQU4DCQK7qMfuadls
SxMAgB0gov9AkgqfsWV2/FYk6QdPhNzhaY+HsgOwDAOvZvce
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:58 2024 by rpki-client on console-ams.rpki-client.org