Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/7Pnw3axP_VeI5qB4SwjtNGY-wAI.roa
File: 7Pnw3axP_VeI5qB4SwjtNGY-wAI.roa (raw, json)
Hash identifier: pEncqgWC3DVoSWEoDmdZGuQQSRWGUPdaKU6hgwxE0IA=
Subject key identifier: EC:F9:F0:DD:AC:4F:FD:57:88:E6:A0:78:4B:08:ED:34:66:3E:C0:02
Certificate issuer: /CN=95b30111b0b720a209f788c8b90f60380b465c2e
Certificate serial: 01856F94D458FB9A88E269FE09B87F09DD49
Authority key identifier: 95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/7Pnw3axP_VeI5qB4SwjtNGY-wAI.roa
Signing time: Sun 01 Jan 2023 23:05:02 +0000
ROA not before: Sun 01 Jan 2023 23:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205718
IP address blocks: 2a09:eac0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:d4:58:fb:9a:88:e2:69:fe:09:b8:7f:09:dd:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95b30111b0b720a209f788c8b90f60380b465c2e
Validity
Not Before: Jan 1 23:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ecf9f0ddac4ffd5788e6a0784b08ed34663ec002
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:bf:89:06:d9:c7:14:c4:37:37:fc:30:e4:cc:
ae:05:04:85:04:95:90:8e:d4:bf:ab:cd:68:c0:5d:
ae:16:7c:f2:7d:b6:ef:ff:5f:7b:e3:1b:8b:f5:a6:
2a:66:69:f9:4b:31:64:dc:68:11:54:6d:3a:7b:36:
e7:ff:bc:8c:42:2d:b5:70:5d:22:91:80:4a:db:fb:
20:06:d5:5f:c8:ad:a9:7b:47:64:17:a2:b5:80:c9:
5d:d1:34:17:14:50:66:34:cb:52:bb:fe:81:81:5e:
b5:40:a5:56:42:bc:fc:81:36:67:fa:2c:0e:e7:e3:
62:75:04:6e:a3:5a:10:5a:51:fa:95:e8:9d:fb:8e:
77:12:d9:d9:c8:7d:80:0c:a6:78:de:34:13:0f:13:
6c:cc:39:62:d8:7e:68:56:19:5c:81:5f:74:47:85:
59:21:d2:33:c1:c4:ae:a2:b5:07:07:e6:f5:df:72:
cd:3f:7c:97:81:e6:70:d1:45:49:bb:99:49:ef:9a:
22:1f:7c:c6:cc:24:78:9e:e7:76:02:40:3f:ed:37:
76:70:f6:f2:fa:6f:16:fa:9f:8b:e9:27:09:db:87:
f5:a2:4b:74:4b:e7:1b:30:17:ee:79:3e:8d:de:66:
e8:41:02:d9:ca:0e:97:41:b3:dc:85:5a:55:62:5a:
53:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:F9:F0:DD:AC:4F:FD:57:88:E6:A0:78:4B:08:ED:34:66:3E:C0:02
X509v3 Authority Key Identifier:
keyid:95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/7Pnw3axP_VeI5qB4SwjtNGY-wAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:eac0::/32
Signature Algorithm: sha256WithRSAEncryption
b6:95:8f:4f:fb:87:80:9e:12:aa:8d:53:86:9e:b5:80:92:f8:
cc:c7:d8:52:3a:98:89:96:73:25:5c:52:94:6e:01:e1:50:83:
41:6b:25:f1:03:cf:ef:86:d4:13:d1:56:1d:fd:83:76:c0:3d:
6b:ea:31:2f:6f:19:5a:a8:a1:6c:da:4b:0d:e4:17:ba:9f:1b:
cd:d2:a7:b4:49:e4:ac:25:bf:84:67:7f:0a:a1:72:c5:42:b4:
17:0c:9e:ab:cb:e9:da:d3:a1:d3:e1:53:a7:f1:87:5c:11:16:
97:9f:79:0f:cd:f4:f7:23:5d:cc:68:67:de:6c:71:dc:de:5e:
06:ce:b2:2a:16:4c:c6:8b:62:51:c9:6a:da:99:81:6f:47:c2:
20:83:3b:11:25:32:1a:97:ec:61:65:6c:83:d6:01:b7:55:e3:
41:80:9f:9f:94:0a:1f:07:60:df:d6:b8:04:7e:23:b2:0f:80:
f6:81:e0:c0:f8:a1:cd:0a:b9:e6:23:c1:4f:da:19:62:a9:14:
e3:02:d7:79:d3:05:e1:3e:e4:b6:42:dc:30:2d:b5:cb:fd:0a:
96:71:92:45:58:d9:b0:12:da:f4:c3:11:ba:c6:a5:4b:bd:4a:
ad:2d:50:a2:fd:32:43:9d:5d:08:d1:90:f5:c7:f0:c3:c1:3f:
f3:7b:76:2a
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVvlNRY+5qI4mn+Cbh/Cd1JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk1YjMwMTExYjBiNzIwYTIwOWY3ODhjOGI5MGY2MDM4MGI0
NjVjMmUwHhcNMjMwMTAxMjMwNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlY2Y5ZjBkZGFjNGZmZDU3ODhlNmEwNzg0YjA4ZWQzNDY2M2VjMDAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvL+JBtnHFMQ3N/ww5MyuBQSFBJWQ
jtS/q81owF2uFnzyfbbv/1974xuL9aYqZmn5SzFk3GgRVG06ezbn/7yMQi21cF0i
kYBK2/sgBtVfyK2pe0dkF6K1gMld0TQXFFBmNMtSu/6BgV61QKVWQrz8gTZn+iwO
5+NidQRuo1oQWlH6leid+453EtnZyH2ADKZ43jQTDxNszDli2H5oVhlcgV90R4VZ
IdIzwcSuorUHB+b133LNP3yXgeZw0UVJu5lJ75oiH3zGzCR4nud2AkA/7Td2cPby
+m8W+p+L6ScJ24f1okt0S+cbMBfueT6N3mboQQLZyg6XQbPchVpVYlpTJwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFOz58N2sT/1XiOageEsI7TRmPsACMB8GA1UdIwQY
MBaAFJWzARGwtyCiCfeIyLkPYDgLRlwuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGJNQkViQzNJS0lKOTRqSXVROWdPQXRHWEM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS8wM2JmMjgtYzU1ZC00YzdhLTkxYmIt
OTE2NDZiZjAxNTNkLzEvN1BudzNheFBfVmVJNXFCNFN3anROR1ktd0FJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS8wM2JmMjgtYzU1ZC00YzdhLTkxYmItOTE2NDZiZjAxNTNk
LzEvbGJNQkViQzNJS0lKOTRqSXVROWdPQXRHWEM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgnqwDAN
BgkqhkiG9w0BAQsFAAOCAQEAtpWPT/uHgJ4Sqo1Thp61gJL4zMfYUjqYiZZzJVxS
lG4B4VCDQWsl8QPP74bUE9FWHf2DdsA9a+oxL28ZWqihbNpLDeQXup8bzdKntEnk
rCW/hGd/CqFyxUK0Fwyeq8vp2tOh0+FTp/GHXBEWl595D8309yNdzGhn3mxx3N5e
Bs6yKhZMxotiUclq2pmBb0fCIIM7ESUyGpfsYWVsg9YBt1XjQYCfn5QKHwdg39a4
BH4jsg+A9oHgwPihzQq55iPBT9oZYqkU4wLXedMF4T7ktkLcMC21y/0KlnGSRVjZ
sBLa9MMRusalS71KrS1Qov0yQ51dCNGQ9cfww8E/83t2Kg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:18 2024 by rpki-client on console-fra.rpki-client.org