Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/30b124-87f2-4c7a-bc0e-790775c779c5/1/g8Qktj79TyjmXaoHgiIKBfAZk78.roa
File: g8Qktj79TyjmXaoHgiIKBfAZk78.roa (raw, json)
Hash identifier: ullWZm7aT81h68J29x4Ce0m2x8QbRBeV9WuKHFhyRsk=
Subject key identifier: 83:C4:24:B6:3E:FD:4F:28:E6:5D:AA:07:82:22:0A:05:F0:19:93:BF
Certificate issuer: /CN=7af6779e62b4612887fe6f8d4e9c0e3731f6e108
Certificate serial: 018CA52E3610FF9A69693E85D440E004346A
Authority key identifier: 7A:F6:77:9E:62:B4:61:28:87:FE:6F:8D:4E:9C:0E:37:31:F6:E1:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/evZ3nmK0YSiH_m-NTpwONzH24Qg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/30b124-87f2-4c7a-bc0e-790775c779c5/1/g8Qktj79TyjmXaoHgiIKBfAZk78.roa
Signing time: Tue 26 Dec 2023 08:11:58 +0000
ROA not before: Tue 26 Dec 2023 08:11:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208772
IP address blocks: 2a0f:d607::/44 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:a5:2e:36:10:ff:9a:69:69:3e:85:d4:40:e0:04:34:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7af6779e62b4612887fe6f8d4e9c0e3731f6e108
Validity
Not Before: Dec 26 08:11:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83c424b63efd4f28e65daa0782220a05f01993bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8f:7e:ed:23:11:68:39:34:2d:4e:1a:ef:37:
de:17:4a:2f:19:f4:b5:7f:90:61:18:18:b2:d5:67:
40:7a:c4:33:b7:4c:a3:b2:4c:19:7c:73:f9:8c:57:
02:6f:88:f3:01:f0:0d:b3:cb:62:8c:3e:9c:98:7c:
91:ba:d5:e7:4c:0c:ca:1a:09:72:81:86:b0:67:9e:
5d:84:26:fe:c2:c5:ff:b5:89:30:7b:2b:ef:07:11:
96:3c:c1:1b:b7:0a:1a:c3:2e:58:d5:c9:b6:22:ab:
b3:b0:e7:e7:17:c3:e1:e8:9e:1f:3d:c8:e1:9e:57:
9a:d0:d3:10:df:4e:6b:80:6d:90:4f:a8:88:c2:c9:
41:5e:e5:a7:ae:03:7f:ea:11:40:47:70:3d:c7:40:
c7:be:0f:b0:dc:69:16:38:f5:83:b8:24:b9:03:2f:
fc:71:6d:45:95:ea:fc:7f:a3:bd:98:5d:06:9f:a5:
b7:37:42:3d:9c:8a:22:a3:7d:34:6b:92:e2:8f:0f:
3b:db:a6:9c:ee:34:27:f0:c4:e0:bd:61:00:90:5a:
41:bb:76:8c:7d:5f:ec:87:cc:8a:9d:e3:a6:c3:b8:
af:cb:ce:c9:5e:8a:cc:c2:6d:8a:65:e7:fc:4b:7a:
6c:3f:c4:74:2f:d6:40:6a:20:77:4a:6e:34:8c:13:
34:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:C4:24:B6:3E:FD:4F:28:E6:5D:AA:07:82:22:0A:05:F0:19:93:BF
X509v3 Authority Key Identifier:
keyid:7A:F6:77:9E:62:B4:61:28:87:FE:6F:8D:4E:9C:0E:37:31:F6:E1:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/evZ3nmK0YSiH_m-NTpwONzH24Qg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/30b124-87f2-4c7a-bc0e-790775c779c5/1/g8Qktj79TyjmXaoHgiIKBfAZk78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/30b124-87f2-4c7a-bc0e-790775c779c5/1/evZ3nmK0YSiH_m-NTpwONzH24Qg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:d607::/44
Signature Algorithm: sha256WithRSAEncryption
9f:cf:de:ad:ed:76:2d:23:c8:4e:27:9e:9c:b0:15:6a:7b:34:
fe:92:7e:7f:6f:52:15:1c:17:30:60:c6:d0:a8:ff:36:69:21:
58:1a:b2:c4:48:59:ba:0e:c6:26:21:bb:b3:4d:f4:ed:43:79:
b8:df:f8:d3:52:1d:78:d5:29:8d:a5:b0:35:9a:4a:3e:c0:75:
ab:07:a5:9f:48:43:6e:e5:55:e1:90:81:87:ea:ae:ff:d0:2a:
13:fb:dd:62:4c:3a:bc:e1:dc:4c:06:8c:20:85:0f:50:13:67:
02:43:97:73:04:d1:c6:d4:c5:fd:a1:dc:12:c7:e7:7e:4c:87:
d1:8a:db:1a:e9:19:2c:10:78:70:aa:52:de:b2:93:5b:66:e2:
b7:0a:64:cf:0e:cc:e8:63:25:41:7d:a7:ab:42:7f:81:e3:d4:
23:f0:16:2c:89:a0:43:fb:16:79:0d:0b:06:fd:71:b0:f5:d0:
92:aa:18:25:cf:75:23:fb:a6:b9:83:23:ae:a1:c5:7a:24:52:
be:ac:9f:e8:b0:59:50:8e:34:23:cd:49:75:b0:d3:ac:31:82:
a4:32:59:e4:ec:96:82:1f:a7:74:36:bc:ff:30:87:32:a8:18:
c4:4d:40:7e:75:a8:9a:0e:1a:0a:78:25:4b:36:2a:60:7d:0d:
ac:19:0c:ad
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYylLjYQ/5ppaT6F1EDgBDRqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdhZjY3NzllNjJiNDYxMjg4N2ZlNmY4ZDRlOWMwZTM3MzFm
NmUxMDgwHhcNMjMxMjI2MDgxMTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4M2M0MjRiNjNlZmQ0ZjI4ZTY1ZGFhMDc4MjIyMGEwNWYwMTk5M2JmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuY9+7SMRaDk0LU4a7zfeF0ovGfS1
f5BhGBiy1WdAesQzt0yjskwZfHP5jFcCb4jzAfANs8tijD6cmHyRutXnTAzKGgly
gYawZ55dhCb+wsX/tYkweyvvBxGWPMEbtwoawy5Y1cm2IquzsOfnF8Ph6J4fPcjh
nlea0NMQ305rgG2QT6iIwslBXuWnrgN/6hFAR3A9x0DHvg+w3GkWOPWDuCS5Ay/8
cW1Fler8f6O9mF0Gn6W3N0I9nIoio300a5Lijw8726ac7jQn8MTgvWEAkFpBu3aM
fV/sh8yKneOmw7ivy87JXorMwm2KZef8S3psP8R0L9ZAaiB3Sm40jBM0ZQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFIPEJLY+/U8o5l2qB4IiCgXwGZO/MB8GA1UdIwQY
MBaAFHr2d55itGEoh/5vjU6cDjcx9uEIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZXZaM25tSzBZU2lIX20tTlRwd09OekgyNFFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS8zMGIxMjQtODdmMi00YzdhLWJjMGUt
NzkwNzc1Yzc3OWM1LzEvZzhRa3RqNzlUeWptWGFvSGdpSUtCZkFaazc4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZS8zMGIxMjQtODdmMi00YzdhLWJjMGUtNzkwNzc1Yzc3OWM1
LzEvZXZaM25tSzBZU2lIX20tTlRwd09OekgyNFFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg/WBwAA
MA0GCSqGSIb3DQEBCwUAA4IBAQCfz96t7XYtI8hOJ56csBVqezT+kn5/b1IVHBcw
YMbQqP82aSFYGrLESFm6DsYmIbuzTfTtQ3m43/jTUh141SmNpbA1mko+wHWrB6Wf
SENu5VXhkIGH6q7/0CoT+91iTDq84dxMBowghQ9QE2cCQ5dzBNHG1MX9odwSx+d+
TIfRitsa6RksEHhwqlLespNbZuK3CmTPDszoYyVBfaerQn+B49Qj8BYsiaBD+xZ5
DQsG/XGw9dCSqhglz3Uj+6a5gyOuocV6JFK+rJ/osFlQjjQjzUl1sNOsMYKkMlnk
7JaCH6d0Nrz/MIcyqBjETUB+daiaDhoKeCVLNipgfQ2sGQyt
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:28 2024 by rpki-client on console-ams.rpki-client.org