Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5e06fa-37f9-4a1c-811a-d6a305cbf46c/1/B8YZEZN1W6ri8KC9Dfg1QSTKS8I.roa
File: B8YZEZN1W6ri8KC9Dfg1QSTKS8I.roa (raw, json)
Hash identifier: 1IUz7Yt9Rr4Q0F0lD05qOsVLy/TF32vVw4FzCLsOrPw=
Subject key identifier: 07:C6:19:11:93:75:5B:AA:E2:F0:A0:BD:0D:F8:35:41:24:CA:4B:C2
Certificate issuer: /CN=aa7b6137f5af3c22c85a1908d40b2941ee2c06f4
Certificate serial: 0186BC4EB8244C0B9E278C56ECCD1C6736AC
Authority key identifier: AA:7B:61:37:F5:AF:3C:22:C8:5A:19:08:D4:0B:29:41:EE:2C:06:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qnthN_WvPCLIWhkI1AspQe4sBvQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/5e06fa-37f9-4a1c-811a-d6a305cbf46c/1/B8YZEZN1W6ri8KC9Dfg1QSTKS8I.roa
Signing time: Tue 07 Mar 2023 13:42:00 +0000
ROA not before: Tue 07 Mar 2023 13:42:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198508
IP address blocks: 2a00:8440::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 13 Mar 2023 11:57:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:bc:4e:b8:24:4c:0b:9e:27:8c:56:ec:cd:1c:67:36:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa7b6137f5af3c22c85a1908d40b2941ee2c06f4
Validity
Not Before: Mar 7 13:42:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=07c6191193755baae2f0a0bd0df8354124ca4bc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:63:4d:2e:55:57:d8:5b:e6:04:7e:c4:97:8b:
14:65:f2:c5:ca:45:e1:b9:e8:3e:ef:09:e2:cb:1a:
ba:f4:70:5d:1f:21:dc:c9:e9:85:9b:97:29:f7:16:
74:58:65:3d:73:be:d0:d5:9b:f0:af:b5:bc:8f:01:
b5:36:ee:95:68:0b:8c:fa:48:83:b1:71:b8:83:72:
0f:40:25:54:fb:61:e1:3f:9a:d7:71:5c:2a:35:40:
56:10:f0:c4:4f:6f:e9:04:2f:de:47:7f:26:81:27:
ac:d0:8c:8c:34:c4:93:13:02:d8:e1:ce:f3:b7:42:
d0:2d:1e:b0:75:5b:99:76:6a:24:da:03:73:13:46:
35:67:96:d2:b9:d5:de:21:97:1b:72:e3:60:ff:cd:
62:e7:22:9e:32:7b:a1:7d:14:fb:e3:d7:a1:e5:bb:
a2:f4:2c:b3:fc:18:ea:8e:3a:4e:58:65:25:84:40:
c6:35:79:9e:bd:51:23:cd:8f:90:e4:27:b1:ef:65:
a9:62:b3:87:a6:03:64:d0:26:45:23:be:8f:d0:1c:
89:8e:fa:29:09:19:2e:28:bf:46:f3:ab:e3:69:85:
0e:3f:2f:9c:08:03:c7:66:b8:f2:58:a8:4f:d9:39:
16:b5:f1:dd:78:8d:62:af:1f:ac:9c:a3:f6:98:57:
07:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:C6:19:11:93:75:5B:AA:E2:F0:A0:BD:0D:F8:35:41:24:CA:4B:C2
X509v3 Authority Key Identifier:
keyid:AA:7B:61:37:F5:AF:3C:22:C8:5A:19:08:D4:0B:29:41:EE:2C:06:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qnthN_WvPCLIWhkI1AspQe4sBvQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5e06fa-37f9-4a1c-811a-d6a305cbf46c/1/B8YZEZN1W6ri8KC9Dfg1QSTKS8I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5e06fa-37f9-4a1c-811a-d6a305cbf46c/1/qnthN_WvPCLIWhkI1AspQe4sBvQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:8440::/32
Signature Algorithm: sha256WithRSAEncryption
29:e6:9b:b1:c3:15:f8:92:0d:45:5d:6f:f4:ef:fb:9c:a0:2c:
05:3f:ec:27:40:8f:33:52:b8:98:1a:a6:77:ed:b7:78:d6:af:
ee:46:b7:8b:27:83:8c:33:0c:ed:19:af:05:d5:8e:a4:5a:a7:
00:cd:ea:43:85:46:c9:22:a1:ba:5a:39:0f:39:e6:94:e9:d4:
b4:c7:f3:77:3e:ce:a3:1e:aa:fa:06:57:7a:92:bf:b7:2a:55:
96:70:15:ce:8b:a5:5e:3e:69:79:77:dc:e3:83:fc:f7:b9:8b:
00:ad:49:eb:5f:60:79:1b:fb:96:b5:fb:aa:c3:ca:d3:d5:40:
2c:33:03:a7:a0:8b:ad:4e:cd:bc:a7:b9:ce:bf:db:3e:1f:d3:
57:b9:85:4a:e0:5d:c8:9b:f2:a5:d2:ee:3b:f9:10:b8:5d:ce:
a2:63:f4:21:a1:f8:43:45:7e:58:8b:fd:57:d1:05:0a:c3:d3:
9b:2d:42:76:d0:a7:03:fd:1b:23:79:ed:10:67:20:49:9c:cb:
10:9e:70:8a:f4:8a:09:98:70:c8:fd:18:20:13:a4:7b:32:42:
34:60:61:af:7a:6b:83:fd:bb:8a:bf:7a:17:ad:21:03:42:c6:
17:29:5e:7b:fe:f2:ee:d6:50:1e:6a:64:f6:7a:6a:c8:fb:b6:
6e:3d:a6:52
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYa8TrgkTAueJ4xW7M0cZzasMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhN2I2MTM3ZjVhZjNjMjJjODVhMTkwOGQ0MGIyOTQxZWUy
YzA2ZjQwHhcNMjMwMzA3MTM0MjAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwN2M2MTkxMTkzNzU1YmFhZTJmMGEwYmQwZGY4MzU0MTI0Y2E0YmMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoGNNLlVX2FvmBH7El4sUZfLFykXh
ueg+7wniyxq69HBdHyHcyemFm5cp9xZ0WGU9c77Q1Zvwr7W8jwG1Nu6VaAuM+kiD
sXG4g3IPQCVU+2HhP5rXcVwqNUBWEPDET2/pBC/eR38mgSes0IyMNMSTEwLY4c7z
t0LQLR6wdVuZdmok2gNzE0Y1Z5bSudXeIZcbcuNg/81i5yKeMnuhfRT749eh5bui
9Cyz/BjqjjpOWGUlhEDGNXmevVEjzY+Q5Cex72WpYrOHpgNk0CZFI76P0ByJjvop
CRkuKL9G86vjaYUOPy+cCAPHZrjyWKhP2TkWtfHdeI1irx+snKP2mFcH1wIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFAfGGRGTdVuq4vCgvQ34NUEkykvCMB8GA1UdIwQY
MBaAFKp7YTf1rzwiyFoZCNQLKUHuLAb0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcW50aE5fV3ZQQ0xJV2hrSTFBc3BRZTRzQnZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My81ZTA2ZmEtMzdmOS00YTFjLTgxMWEt
ZDZhMzA1Y2JmNDZjLzEvQjhZWkVaTjFXNnJpOEtDOURmZzFRU1RLUzhJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My81ZTA2ZmEtMzdmOS00YTFjLTgxMWEtZDZhMzA1Y2JmNDZj
LzEvcW50aE5fV3ZQQ0xJV2hrSTFBc3BRZTRzQnZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgCEQDAN
BgkqhkiG9w0BAQsFAAOCAQEAKeabscMV+JINRV1v9O/7nKAsBT/sJ0CPM1K4mBqm
d+23eNav7ka3iyeDjDMM7RmvBdWOpFqnAM3qQ4VGySKhulo5DznmlOnUtMfzdz7O
ox6q+gZXepK/typVlnAVzoulXj5peXfc44P897mLAK1J619geRv7lrX7qsPK09VA
LDMDp6CLrU7NvKe5zr/bPh/TV7mFSuBdyJvypdLuO/kQuF3OomP0IaH4Q0V+WIv9
V9EFCsPTmy1CdtCnA/0bI3ntEGcgSZzLEJ5wivSKCZhwyP0YIBOkezJCNGBhr3pr
g/27ir96F60hA0LGFylee/7y7tZQHmpk9npqyPu2bj2mUg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:34 2024 by rpki-client on console-ams.rpki-client.org