Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/67d028-67f5-444a-8afd-f0a660657e83/1/auregtRaodtqlJNfsmp3tfL_5dU.roa
File: auregtRaodtqlJNfsmp3tfL_5dU.roa (raw, json)
Hash identifier: dyTPMw0Wo/l/Sizsfz2hBDiFHZ1Cw2H1+RZSNLlsnzo=
Subject key identifier: 6A:EA:DE:82:D4:5A:A1:DB:6A:94:93:5F:B2:6A:77:B5:F2:FF:E5:D5
Certificate issuer: /CN=871ba47d7bb1246d5b70078372569f94f358fb06
Certificate serial: 01856AF7E1F90F45330EF50F26FBB876EDF5
Authority key identifier: 87:1B:A4:7D:7B:B1:24:6D:5B:70:07:83:72:56:9F:94:F3:58:FB:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hxukfXuxJG1bcAeDclaflPNY-wY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/67d028-67f5-444a-8afd-f0a660657e83/1/auregtRaodtqlJNfsmp3tfL_5dU.roa
Signing time: Sun 01 Jan 2023 01:35:08 +0000
ROA not before: Sun 01 Jan 2023 01:35:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210661
IP address blocks: 2a11:78c0::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6a:f7:e1:f9:0f:45:33:0e:f5:0f:26:fb:b8:76:ed:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=871ba47d7bb1246d5b70078372569f94f358fb06
Validity
Not Before: Jan 1 01:35:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6aeade82d45aa1db6a94935fb26a77b5f2ffe5d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:83:23:41:60:6d:3a:76:d4:b2:9e:22:51:da:
2a:2d:78:5a:d0:f4:f9:e8:ec:e6:88:6c:02:bb:14:
6a:98:f5:fb:c1:49:52:31:68:16:6d:51:6d:24:3f:
e2:bc:cd:29:c8:71:35:ea:12:d7:d2:17:3a:c4:cd:
21:c5:65:74:1e:e7:4b:6a:10:d6:ef:81:cb:41:90:
0a:44:20:f6:e4:94:f3:12:cb:93:38:b4:c9:bb:25:
5a:23:08:e6:86:4c:aa:f0:1a:8d:a0:70:12:57:6f:
89:cc:0f:f1:20:e1:6e:7f:6d:fb:a3:8e:6c:c3:8d:
0b:3e:3e:55:e5:20:e8:89:db:90:ec:96:2e:34:16:
bf:28:e8:b0:5f:7f:67:f1:02:2b:cd:a3:fe:f3:0d:
23:ad:91:d6:2f:e1:3e:da:e8:4b:d0:37:9b:c6:a9:
60:6f:7c:ff:3f:98:0c:f7:d4:5b:5a:85:29:52:73:
a3:79:53:1c:0a:79:a3:44:0c:b1:09:95:26:1f:94:
aa:d3:8b:34:41:db:c7:0b:6d:ad:7f:7e:ea:48:a4:
21:71:ce:55:ab:13:06:0d:63:4d:c1:f8:c3:ec:f2:
4d:2c:9e:54:03:5c:81:fa:f1:4e:09:4f:39:17:fc:
8e:7f:7f:f6:62:a8:b9:f2:df:4f:17:30:05:c2:12:
42:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:EA:DE:82:D4:5A:A1:DB:6A:94:93:5F:B2:6A:77:B5:F2:FF:E5:D5
X509v3 Authority Key Identifier:
keyid:87:1B:A4:7D:7B:B1:24:6D:5B:70:07:83:72:56:9F:94:F3:58:FB:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hxukfXuxJG1bcAeDclaflPNY-wY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/67d028-67f5-444a-8afd-f0a660657e83/1/auregtRaodtqlJNfsmp3tfL_5dU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/67d028-67f5-444a-8afd-f0a660657e83/1/hxukfXuxJG1bcAeDclaflPNY-wY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:78c0::/29
Signature Algorithm: sha256WithRSAEncryption
82:f0:6b:fe:f0:6e:f4:8d:68:79:1d:b1:2e:ef:7a:5d:80:54:
b6:67:e2:9b:86:4a:61:1a:50:b2:b8:f8:a9:8c:65:59:0c:80:
8d:38:b2:82:a3:79:66:f9:ed:c7:2b:35:26:fc:11:d3:d8:2a:
a1:8d:c6:ba:12:9a:c2:69:05:34:86:a6:00:13:ba:5e:af:c2:
51:79:aa:47:74:d8:4c:5c:e8:4e:af:28:8d:2d:12:be:87:ce:
8d:49:75:99:1e:43:ac:44:71:aa:33:ee:43:d1:a2:c5:80:68:
16:c1:62:4c:8a:d9:1e:bd:bf:2d:f6:0a:4e:0f:d0:ba:f6:ae:
de:d8:42:6b:f7:9f:a2:ee:df:58:24:93:1b:01:56:60:97:89:
80:76:42:80:99:7b:1e:39:1b:6f:2a:86:17:a3:0b:97:be:f5:
99:12:03:7e:00:f4:64:46:2f:8c:66:95:02:c0:8e:1e:46:c3:
ae:32:b4:ec:9c:b7:53:0e:44:01:ac:47:cd:76:de:31:c5:3b:
47:f7:53:17:f4:16:59:ac:12:15:bf:1a:fe:c4:b7:a8:fe:05:
f5:87:a9:c0:29:ab:cc:8d:31:2e:83:72:f5:eb:a3:ec:41:ca:
80:d7:fb:8b:3f:9d:b7:66:73:62:4f:44:d7:c9:29:c5:ca:1a:
b7:a2:63:c3
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVq9+H5D0UzDvUPJvu4du31MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3MWJhNDdkN2JiMTI0NmQ1YjcwMDc4MzcyNTY5Zjk0ZjM1
OGZiMDYwHhcNMjMwMTAxMDEzNTA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YWVhZGU4MmQ0NWFhMWRiNmE5NDkzNWZiMjZhNzdiNWYyZmZlNWQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkYMjQWBtOnbUsp4iUdoqLXha0PT5
6OzmiGwCuxRqmPX7wUlSMWgWbVFtJD/ivM0pyHE16hLX0hc6xM0hxWV0HudLahDW
74HLQZAKRCD25JTzEsuTOLTJuyVaIwjmhkyq8BqNoHASV2+JzA/xIOFuf237o45s
w40LPj5V5SDoiduQ7JYuNBa/KOiwX39n8QIrzaP+8w0jrZHWL+E+2uhL0Debxqlg
b3z/P5gM99RbWoUpUnOjeVMcCnmjRAyxCZUmH5Sq04s0QdvHC22tf37qSKQhcc5V
qxMGDWNNwfjD7PJNLJ5UA1yB+vFOCU85F/yOf3/2Yqi58t9PFzAFwhJCgQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFGrq3oLUWqHbapSTX7Jqd7Xy/+XVMB8GA1UdIwQY
MBaAFIcbpH17sSRtW3AHg3JWn5TzWPsGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHh1a2ZYdXhKRzFiY0FlRGNsYWZsUE5ZLXdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS82N2QwMjgtNjdmNS00NDRhLThhZmQt
ZjBhNjYwNjU3ZTgzLzEvYXVyZWd0UmFvZHRxbEpOZnNtcDN0ZkxfNWRVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS82N2QwMjgtNjdmNS00NDRhLThhZmQtZjBhNjYwNjU3ZTgz
LzEvaHh1a2ZYdXhKRzFiY0FlRGNsYWZsUE5ZLXdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhF4wDAN
BgkqhkiG9w0BAQsFAAOCAQEAgvBr/vBu9I1oeR2xLu96XYBUtmfim4ZKYRpQsrj4
qYxlWQyAjTiygqN5Zvntxys1JvwR09gqoY3GuhKawmkFNIamABO6Xq/CUXmqR3TY
TFzoTq8ojS0SvofOjUl1mR5DrERxqjPuQ9GixYBoFsFiTIrZHr2/LfYKTg/Quvau
3thCa/efou7fWCSTGwFWYJeJgHZCgJl7HjkbbyqGF6MLl771mRIDfgD0ZEYvjGaV
AsCOHkbDrjK07Jy3Uw5EAaxHzXbeMcU7R/dTF/QWWawSFb8a/sS3qP4F9YepwCmr
zI0xLoNy9euj7EHKgNf7iz+dt2ZzYk9E18kpxcoat6Jjww==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:38 2023 by rpki-client on console-fra.rpki-client.org