Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/4b1a80-4e5f-49e7-b502-a22ffee4a515/1/lB6fIF4GYy_TjqP89q1KxGSblHs.roa
File: lB6fIF4GYy_TjqP89q1KxGSblHs.roa (raw, json)
Hash identifier: TDOGGdLQJxePJP6d0BGUvrRWV9dKsyctRgFA1v0SYQg=
Subject key identifier: 94:1E:9F:20:5E:06:63:2F:D3:8E:A3:FC:F6:AD:4A:C4:64:9B:94:7B
Certificate issuer: /CN=a2d952245bb34e40cdab5d4b090143c0d8581390
Certificate serial: 0188535ACA1AE9B4439D87ADDB338F4688E6
Authority key identifier: A2:D9:52:24:5B:B3:4E:40:CD:AB:5D:4B:09:01:43:C0:D8:58:13:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/otlSJFuzTkDNq11LCQFDwNhYE5A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/4b1a80-4e5f-49e7-b502-a22ffee4a515/1/lB6fIF4GYy_TjqP89q1KxGSblHs.roa
Signing time: Thu 25 May 2023 14:40:38 +0000
ROA not before: Thu 25 May 2023 14:40:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 2a0c:4144:200::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 26 May 2023 09:13:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:53:5a:ca:1a:e9:b4:43:9d:87:ad:db:33:8f:46:88:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2d952245bb34e40cdab5d4b090143c0d8581390
Validity
Not Before: May 25 14:40:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=941e9f205e06632fd38ea3fcf6ad4ac4649b947b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a4:4f:88:61:9f:6f:b6:7c:5b:29:d0:d0:d6:
e7:89:38:5e:be:e7:55:b3:57:98:68:7c:4f:72:4d:
34:f4:17:bf:5d:8f:ef:80:f0:3b:42:1b:1a:1c:4d:
97:0a:db:d5:c1:4b:f3:c4:b5:6b:24:d1:41:fa:bf:
64:9a:d2:e8:5e:bc:fb:a7:2e:ef:eb:9d:38:58:23:
2a:69:2c:c1:74:bd:fb:f4:25:0c:18:9d:c0:27:b8:
83:9e:ae:f1:e0:6d:79:af:08:62:eb:64:05:79:36:
f7:51:2f:c0:f0:56:23:3c:6c:93:72:0a:3a:d6:d6:
44:4c:e4:38:76:9d:10:ba:17:79:fd:31:89:d4:23:
a3:e2:27:a8:86:e5:22:aa:3e:57:e2:40:fd:43:d6:
80:7a:22:10:9b:71:84:ce:9e:47:f2:0e:cc:0f:2e:
72:14:76:13:b1:8e:be:cd:4d:11:78:57:61:63:40:
87:60:55:24:8b:0b:b1:84:c2:c8:4b:e0:cd:d4:f8:
a0:0f:ae:8d:68:18:d8:84:8e:d3:61:37:27:04:16:
0a:68:2c:0f:dc:ab:ba:7d:7d:86:ae:ba:d4:41:c4:
ca:b3:49:cb:8f:ba:7a:e6:15:73:90:b8:cd:35:6e:
cb:4f:13:53:cb:f3:8e:96:91:77:6c:bf:43:02:96:
80:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:1E:9F:20:5E:06:63:2F:D3:8E:A3:FC:F6:AD:4A:C4:64:9B:94:7B
X509v3 Authority Key Identifier:
keyid:A2:D9:52:24:5B:B3:4E:40:CD:AB:5D:4B:09:01:43:C0:D8:58:13:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/otlSJFuzTkDNq11LCQFDwNhYE5A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/4b1a80-4e5f-49e7-b502-a22ffee4a515/1/lB6fIF4GYy_TjqP89q1KxGSblHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/4b1a80-4e5f-49e7-b502-a22ffee4a515/1/otlSJFuzTkDNq11LCQFDwNhYE5A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:4144:200::/48
Signature Algorithm: sha256WithRSAEncryption
51:0b:93:44:de:2d:4d:91:b8:7a:73:a9:09:d9:1d:49:0d:ac:
c7:f3:d1:c6:1e:ac:d4:3b:db:9a:26:0a:ff:04:1d:f3:88:cb:
ad:87:58:88:ff:57:60:15:10:99:2f:0e:33:0b:83:9f:f8:57:
50:47:dc:7e:4c:02:b8:48:21:10:93:74:53:65:d5:bf:a8:29:
be:b6:a8:7a:13:d1:8c:48:39:38:a5:31:b1:0d:d6:30:9a:8f:
cf:87:62:13:17:5a:16:a6:e5:69:68:5d:43:77:20:39:fb:22:
e8:27:d6:33:8c:dc:f0:89:c5:d7:d7:87:a1:c9:03:65:65:9f:
11:14:4d:10:5b:a7:62:f3:86:0e:93:ab:bc:b2:09:dc:8a:16:
57:8a:04:8a:4e:eb:87:5b:48:7f:9c:05:73:80:6a:01:91:60:
4c:34:ee:42:35:4d:4e:0d:1b:8d:b7:e7:73:b9:d7:3a:6c:8a:
51:14:6b:ac:dc:9e:63:ef:a4:1c:6a:e6:71:d0:2a:63:2a:06:
07:71:d2:f1:af:cc:65:1f:c8:3a:91:82:ae:dc:b1:05:88:c3:
05:13:64:23:66:ef:ac:86:1b:2b:85:0a:bc:92:98:8e:32:21:
74:9e:9f:3a:80:7c:b0:ec:b0:9a:72:87:3f:7b:7b:57:b6:24:
36:f9:17:15
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYhTWsoa6bRDnYet2zOPRojmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyZDk1MjI0NWJiMzRlNDBjZGFiNWQ0YjA5MDE0M2MwZDg1
ODEzOTAwHhcNMjMwNTI1MTQ0MDM4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NDFlOWYyMDVlMDY2MzJmZDM4ZWEzZmNmNmFkNGFjNDY0OWI5NDdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmKRPiGGfb7Z8WynQ0NbniThevudV
s1eYaHxPck009Be/XY/vgPA7QhsaHE2XCtvVwUvzxLVrJNFB+r9kmtLoXrz7py7v
6504WCMqaSzBdL379CUMGJ3AJ7iDnq7x4G15rwhi62QFeTb3US/A8FYjPGyTcgo6
1tZETOQ4dp0Quhd5/TGJ1COj4ieohuUiqj5X4kD9Q9aAeiIQm3GEzp5H8g7MDy5y
FHYTsY6+zU0ReFdhY0CHYFUkiwuxhMLIS+DN1PigD66NaBjYhI7TYTcnBBYKaCwP
3Ku6fX2GrrrUQcTKs0nLj7p65hVzkLjNNW7LTxNTy/OOlpF3bL9DApaAhwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFJQenyBeBmMv046j/PatSsRkm5R7MB8GA1UdIwQY
MBaAFKLZUiRbs05AzatdSwkBQ8DYWBOQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb3RsU0pGdXpUa0ROcTExTENRRkR3TmhZRTVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC80YjFhODAtNGU1Zi00OWU3LWI1MDIt
YTIyZmZlZTRhNTE1LzEvbEI2ZklGNEdZeV9UanFQODlxMUt4R1NibEhzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC80YjFhODAtNGU1Zi00OWU3LWI1MDItYTIyZmZlZTRhNTE1
LzEvb3RsU0pGdXpUa0ROcTExTENRRkR3TmhZRTVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgxBRAIA
MA0GCSqGSIb3DQEBCwUAA4IBAQBRC5NE3i1Nkbh6c6kJ2R1JDazH89HGHqzUO9ua
Jgr/BB3ziMuth1iI/1dgFRCZLw4zC4Of+FdQR9x+TAK4SCEQk3RTZdW/qCm+tqh6
E9GMSDk4pTGxDdYwmo/Ph2ITF1oWpuVpaF1DdyA5+yLoJ9YzjNzwicXX14ehyQNl
ZZ8RFE0QW6di84YOk6u8sgncihZXigSKTuuHW0h/nAVzgGoBkWBMNO5CNU1ODRuN
t+dzudc6bIpRFGus3J5j76QcauZx0CpjKgYHcdLxr8xlH8g6kYKu3LEFiMMFE2Qj
Zu+shhsrhQq8kpiOMiF0np86gHyw7LCacoc/e3tXtiQ2+RcV
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:13 2024 by rpki-client on console-fra.rpki-client.org