Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/9ac86a-85ed-4a1c-873f-752905330392/1/r6W8wLND8MeHMJyTFL2qseyXFKk.roa
File: r6W8wLND8MeHMJyTFL2qseyXFKk.roa (raw, json)
Hash identifier: lMsTWajwMmQQ0KG04IWID0WJxsBIeTm5/Zlq5RPWMJ4=
Subject key identifier: AF:A5:BC:C0:B3:43:F0:C7:87:30:9C:93:14:BD:AA:B1:EC:97:14:A9
Certificate issuer: /CN=1983604f083e58c3cd19d39480baaadf38a19b63
Certificate serial: 01880A81F619F0E2649A30FC5A6F8AC62661
Authority key identifier: 19:83:60:4F:08:3E:58:C3:CD:19:D3:94:80:BA:AA:DF:38:A1:9B:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GYNgTwg-WMPNGdOUgLqq3zihm2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/9ac86a-85ed-4a1c-873f-752905330392/1/r6W8wLND8MeHMJyTFL2qseyXFKk.roa
Signing time: Thu 11 May 2023 11:11:09 +0000
ROA not before: Thu 11 May 2023 11:11:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21263
IP address blocks: 2a0d:9600::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0a:81:f6:19:f0:e2:64:9a:30:fc:5a:6f:8a:c6:26:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1983604f083e58c3cd19d39480baaadf38a19b63
Validity
Not Before: May 11 11:11:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=afa5bcc0b343f0c787309c9314bdaab1ec9714a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:43:e3:a6:98:d8:c2:5a:2b:2c:c0:fe:1a:a1:
2e:cf:3a:28:ec:50:d9:e9:67:46:39:07:5e:28:5d:
00:95:51:3c:e0:e7:4c:81:c0:65:b3:41:52:af:c3:
04:52:fd:16:47:51:56:60:7f:28:ab:21:f2:7b:0c:
29:53:cf:7a:2e:87:c7:4b:b8:6b:e1:a5:09:f8:81:
b9:55:35:2d:14:8c:70:de:8c:b7:4f:e3:aa:73:9b:
49:e8:df:09:9f:75:49:c1:c6:d9:d9:45:15:89:9d:
4c:e3:67:4d:dd:60:01:7e:1e:22:a5:b6:50:f3:8b:
24:a6:fe:43:37:a3:95:5d:39:55:50:b6:9b:78:b3:
20:e2:26:d6:8b:88:87:40:ef:1d:bd:f6:30:d6:ea:
38:69:5d:72:fa:99:f9:9a:06:86:af:7d:12:ac:52:
f2:38:50:77:e1:e7:74:16:28:31:84:d9:59:14:31:
5d:9a:55:14:6f:86:90:af:3e:aa:15:c9:c4:9a:6f:
5c:85:db:7b:1c:0a:26:69:61:a3:98:3f:e0:cb:1a:
21:c8:46:b7:12:37:3d:a0:73:95:4c:fe:ae:92:41:
79:b1:f8:fd:63:ab:51:1e:cf:98:aa:9b:09:4b:16:
0e:74:c1:dd:49:d3:22:80:ea:fd:54:56:5b:97:c6:
e8:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:A5:BC:C0:B3:43:F0:C7:87:30:9C:93:14:BD:AA:B1:EC:97:14:A9
X509v3 Authority Key Identifier:
keyid:19:83:60:4F:08:3E:58:C3:CD:19:D3:94:80:BA:AA:DF:38:A1:9B:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GYNgTwg-WMPNGdOUgLqq3zihm2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/9ac86a-85ed-4a1c-873f-752905330392/1/r6W8wLND8MeHMJyTFL2qseyXFKk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/9ac86a-85ed-4a1c-873f-752905330392/1/GYNgTwg-WMPNGdOUgLqq3zihm2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:9600::/29
Signature Algorithm: sha256WithRSAEncryption
6c:e1:76:48:41:65:d9:c0:f4:36:a0:69:a0:1d:6c:ab:75:e2:
6d:71:c5:2a:ca:03:b2:1a:33:88:66:7c:ab:78:09:76:e7:a3:
90:61:33:5a:fd:89:11:da:12:61:09:45:c7:a7:87:e3:c2:ad:
07:26:21:cd:36:df:7c:9f:8a:ce:af:d7:27:1a:7d:03:37:77:
49:4b:e0:cd:c3:9f:4c:1b:1c:93:22:2a:3d:cd:d4:5b:4a:75:
ea:1a:a0:12:c5:10:8c:9e:e5:78:6f:a6:22:be:39:c3:60:e3:
12:6c:d1:73:7a:24:2d:00:1b:59:77:d6:f0:4c:94:a2:10:e4:
d5:ab:e5:23:59:92:2f:57:0a:31:b5:bc:a0:c3:6d:1e:0b:49:
9a:c3:30:ae:3e:3e:f4:ef:24:33:83:20:26:ec:3f:58:aa:c5:
2b:dd:41:b7:71:93:25:33:46:77:a5:a8:7c:d0:e7:d9:75:99:
a5:dd:0d:52:d6:f1:ca:1e:fc:2d:19:c0:fe:10:98:35:79:14:
8d:09:b6:0d:05:c1:55:16:1b:d6:0b:39:4b:df:2f:ad:c2:54:
96:0f:21:0d:d7:dd:2c:44:f3:a8:9a:db:75:15:3d:f6:03:02:
ac:49:96:10:4f:6f:70:df:08:09:6c:f1:73:84:26:ee:c0:32:
0e:12:b0:e9
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYgKgfYZ8OJkmjD8Wm+KxiZhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5ODM2MDRmMDgzZTU4YzNjZDE5ZDM5NDgwYmFhYWRmMzhh
MTliNjMwHhcNMjMwNTExMTExMTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZmE1YmNjMGIzNDNmMGM3ODczMDljOTMxNGJkYWFiMWVjOTcxNGE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp0PjppjYwlorLMD+GqEuzzoo7FDZ
6WdGOQdeKF0AlVE84OdMgcBls0FSr8MEUv0WR1FWYH8oqyHyewwpU896LofHS7hr
4aUJ+IG5VTUtFIxw3oy3T+Oqc5tJ6N8Jn3VJwcbZ2UUViZ1M42dN3WABfh4ipbZQ
84skpv5DN6OVXTlVULabeLMg4ibWi4iHQO8dvfYw1uo4aV1y+pn5mgaGr30SrFLy
OFB34ed0FigxhNlZFDFdmlUUb4aQrz6qFcnEmm9chdt7HAomaWGjmD/gyxohyEa3
Ejc9oHOVTP6ukkF5sfj9Y6tRHs+YqpsJSxYOdMHdSdMigOr9VFZbl8bo1QIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFK+lvMCzQ/DHhzCckxS9qrHslxSpMB8GA1UdIwQY
MBaAFBmDYE8IPljDzRnTlIC6qt84oZtjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR1lOZ1R3Zy1XTVBOR2RPVWdMcXEzemlobTJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS85YWM4NmEtODVlZC00YTFjLTg3M2Yt
NzUyOTA1MzMwMzkyLzEvcjZXOHdMTkQ4TWVITUp5VEZMMnFzZXlYRktrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS85YWM4NmEtODVlZC00YTFjLTg3M2YtNzUyOTA1MzMwMzky
LzEvR1lOZ1R3Zy1XTVBOR2RPVWdMcXEzemlobTJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKg2WADAN
BgkqhkiG9w0BAQsFAAOCAQEAbOF2SEFl2cD0NqBpoB1sq3XibXHFKsoDshoziGZ8
q3gJduejkGEzWv2JEdoSYQlFx6eH48KtByYhzTbffJ+Kzq/XJxp9Azd3SUvgzcOf
TBsckyIqPc3UW0p16hqgEsUQjJ7leG+mIr45w2DjEmzRc3okLQAbWXfW8EyUohDk
1avlI1mSL1cKMbW8oMNtHgtJmsMwrj4+9O8kM4MgJuw/WKrFK91Bt3GTJTNGd6Wo
fNDn2XWZpd0NUtbxyh78LRnA/hCYNXkUjQm2DQXBVRYb1gs5S98vrcJUlg8hDdfd
LETzqJrbdRU99gMCrEmWEE9vcN8ICWzxc4Qm7sAyDhKw6Q==
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:26 2024 by rpki-client on console-fra.rpki-client.org