Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/62a01d-feec-40fd-98ed-bc8c6d286f1c/1/bBqKYJPwBqscfoW6gZFbDS_cqus.roa
File: bBqKYJPwBqscfoW6gZFbDS_cqus.roa (raw, json)
Hash identifier: oYsawE0wtJOZqW8D6QQQxEzpdYpBF7ijz0v0TbSzEOM=
Subject key identifier: 6C:1A:8A:60:93:F0:06:AB:1C:7E:85:BA:81:91:5B:0D:2F:DC:AA:EB
Certificate issuer: /CN=b8155ac34b6ec15f226ae9913d6aecfca7a784d4
Certificate serial: 018571DE7C57840CBFAE2063EA61B992FACC
Authority key identifier: B8:15:5A:C3:4B:6E:C1:5F:22:6A:E9:91:3D:6A:EC:FC:A7:A7:84:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uBVaw0tuwV8iaumRPWrs_KenhNQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/62a01d-feec-40fd-98ed-bc8c6d286f1c/1/bBqKYJPwBqscfoW6gZFbDS_cqus.roa
Signing time: Mon 02 Jan 2023 09:44:44 +0000
ROA not before: Mon 02 Jan 2023 09:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204693
IP address blocks: 2a02:e220:7::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:de:7c:57:84:0c:bf:ae:20:63:ea:61:b9:92:fa:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8155ac34b6ec15f226ae9913d6aecfca7a784d4
Validity
Not Before: Jan 2 09:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c1a8a6093f006ab1c7e85ba81915b0d2fdcaaeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4f:3e:0d:8d:9f:23:1a:fc:25:06:57:a5:b9:
8e:f5:be:48:11:63:4d:64:ca:ce:9c:8d:f7:dd:e7:
a8:5c:6e:30:09:e6:da:b4:40:0c:ce:5c:e8:12:fd:
26:71:d4:bd:38:3e:11:3c:57:a1:fc:64:3d:92:29:
ad:68:ab:72:73:66:7c:bf:04:be:b8:2e:4a:db:82:
17:14:5b:dc:6c:cd:79:62:ca:21:e6:1e:25:4b:1b:
ea:86:6e:b9:99:d8:0a:bc:40:97:a3:fa:19:6c:c3:
4b:6e:cd:58:34:f2:91:6e:44:cd:69:2b:48:11:92:
9a:68:27:a1:2d:aa:e0:7c:6a:65:28:a1:74:1a:ca:
e2:3c:08:4a:67:9f:b7:c5:62:e0:f3:ac:d6:93:3c:
59:81:eb:93:d9:40:04:ec:6b:44:65:76:70:37:f3:
ac:0d:2a:e7:12:8b:f7:87:63:8e:ac:8c:94:94:4a:
79:9b:7e:51:48:98:82:bc:42:38:6e:94:84:a8:19:
8d:70:aa:ba:35:d2:b1:ca:89:9b:2d:69:53:78:d1:
3b:d5:01:59:e1:a1:b3:e9:ab:f2:f5:40:fc:c7:20:
3d:13:c8:7d:16:c6:34:b8:65:c0:60:ba:42:4a:e4:
70:23:aa:9e:af:5c:64:60:e7:da:12:9a:6c:1f:38:
e8:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:1A:8A:60:93:F0:06:AB:1C:7E:85:BA:81:91:5B:0D:2F:DC:AA:EB
X509v3 Authority Key Identifier:
keyid:B8:15:5A:C3:4B:6E:C1:5F:22:6A:E9:91:3D:6A:EC:FC:A7:A7:84:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uBVaw0tuwV8iaumRPWrs_KenhNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/62a01d-feec-40fd-98ed-bc8c6d286f1c/1/bBqKYJPwBqscfoW6gZFbDS_cqus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/62a01d-feec-40fd-98ed-bc8c6d286f1c/1/uBVaw0tuwV8iaumRPWrs_KenhNQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:e220:7::/48
Signature Algorithm: sha256WithRSAEncryption
61:7f:09:e2:83:91:aa:08:55:38:d5:c9:5b:ab:f2:e5:ab:21:
c3:99:e2:5f:ba:91:0e:65:73:c2:11:5c:fb:6f:f6:52:fe:91:
18:36:ae:5d:e0:d2:3c:f4:52:33:5e:42:a6:d3:81:13:e8:fb:
20:b1:20:e6:6c:1a:ae:9b:fb:ac:33:ea:69:79:4e:51:3d:b8:
a8:a0:20:ac:35:5f:d5:ee:11:6d:50:a1:00:9c:0c:a0:ca:0e:
ad:bd:c9:8e:14:f6:ff:19:27:7c:3d:f9:02:3d:6a:54:0f:d4:
d6:db:be:d8:ab:b4:cc:4f:7b:27:27:a7:d2:1f:25:df:cf:38:
af:cf:f6:16:bd:c2:8f:2c:27:95:e9:7d:d5:d1:fc:cc:a1:62:
b6:56:a2:ca:92:50:4e:84:36:ef:59:9c:54:bf:17:f4:28:47:
d5:64:72:88:18:43:af:67:33:97:eb:40:9d:99:0c:19:d4:42:
32:31:e7:52:8d:70:07:54:de:bd:2e:25:72:55:86:3a:10:a7:
5d:c3:58:df:ad:53:03:dd:37:57:86:14:11:2f:f6:29:a9:df:
04:ef:df:ad:93:57:f6:a1:45:a9:37:c4:33:4d:13:2c:28:be:
ae:a1:35:b7:51:bd:ec:7c:14:85:16:83:d8:40:da:a4:5d:90:
23:9c:d4:59
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVx3nxXhAy/riBj6mG5kvrMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4MTU1YWMzNGI2ZWMxNWYyMjZhZTk5MTNkNmFlY2ZjYTdh
Nzg0ZDQwHhcNMjMwMTAyMDk0NDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YzFhOGE2MDkzZjAwNmFiMWM3ZTg1YmE4MTkxNWIwZDJmZGNhYWViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuU8+DY2fIxr8JQZXpbmO9b5IEWNN
ZMrOnI333eeoXG4wCebatEAMzlzoEv0mcdS9OD4RPFeh/GQ9kimtaKtyc2Z8vwS+
uC5K24IXFFvcbM15Ysoh5h4lSxvqhm65mdgKvECXo/oZbMNLbs1YNPKRbkTNaStI
EZKaaCehLargfGplKKF0GsriPAhKZ5+3xWLg86zWkzxZgeuT2UAE7GtEZXZwN/Os
DSrnEov3h2OOrIyUlEp5m35RSJiCvEI4bpSEqBmNcKq6NdKxyombLWlTeNE71QFZ
4aGz6avy9UD8xyA9E8h9FsY0uGXAYLpCSuRwI6qer1xkYOfaEppsHzjoDwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFGwaimCT8AarHH6FuoGRWw0v3KrrMB8GA1UdIwQY
MBaAFLgVWsNLbsFfImrpkT1q7Pynp4TUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdUJWYXcwdHV3VjhpYXVtUlBXcnNfS2VuaE5RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC82MmEwMWQtZmVlYy00MGZkLTk4ZWQt
YmM4YzZkMjg2ZjFjLzEvYkJxS1lKUHdCcXNjZm9XNmdaRmJEU19jcXVzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC82MmEwMWQtZmVlYy00MGZkLTk4ZWQtYmM4YzZkMjg2ZjFj
LzEvdUJWYXcwdHV3VjhpYXVtUlBXcnNfS2VuaE5RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgLiIAAH
MA0GCSqGSIb3DQEBCwUAA4IBAQBhfwnig5GqCFU41clbq/LlqyHDmeJfupEOZXPC
EVz7b/ZS/pEYNq5d4NI89FIzXkKm04ET6PsgsSDmbBqum/usM+ppeU5RPbiooCCs
NV/V7hFtUKEAnAygyg6tvcmOFPb/GSd8PfkCPWpUD9TW277Yq7TMT3snJ6fSHyXf
zzivz/YWvcKPLCeV6X3V0fzMoWK2VqLKklBOhDbvWZxUvxf0KEfVZHKIGEOvZzOX
60CdmQwZ1EIyMedSjXAHVN69LiVyVYY6EKddw1jfrVMD3TdXhhQRL/Ypqd8E79+t
k1f2oUWpN8QzTRMsKL6uoTW3Ub3sfBSFFoPYQNqkXZAjnNRZ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:19 2024 by rpki-client on console-fra.rpki-client.org