Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/IdCo9-boDGE93o-VY52nq5W3nTc.roa
File: IdCo9-boDGE93o-VY52nq5W3nTc.roa (raw, json)
Hash identifier: JNCREEs3QgMVRD0nOKlcFnChVoXAgyciRcdt+ORkAR0=
Subject key identifier: 21:D0:A8:F7:E6:E8:0C:61:3D:DE:8F:95:63:9D:A7:AB:95:B7:9D:37
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01878601430127753CAF9131BA75F0C31B7C
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/IdCo9-boDGE93o-VY52nq5W3nTc.roa
Signing time: Sat 15 Apr 2023 17:40:42 +0000
ROA not before: Sat 15 Apr 2023 17:40:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199518
IP address blocks: 2a0e:b107:b14::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:86:01:43:01:27:75:3c:af:91:31:ba:75:f0:c3:1b:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Apr 15 17:40:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21d0a8f7e6e80c613dde8f95639da7ab95b79d37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:0a:d4:15:70:65:b5:be:3a:66:e0:5a:8d:2d:
7a:86:43:fe:11:6e:f8:26:10:64:9b:73:cf:8c:06:
a3:06:86:a4:61:8c:d7:89:b5:cb:4b:ae:36:e6:2e:
9a:67:fe:04:fa:87:59:77:32:c6:57:8e:ec:f5:d0:
7d:45:9f:8a:d8:04:3c:5e:b4:4f:41:6f:a5:11:61:
a4:09:0d:f7:78:49:c7:6b:71:3b:f7:c0:13:1f:29:
01:72:94:c1:21:ee:c5:df:f5:65:7d:7b:55:0c:0d:
13:a2:be:a9:aa:f0:a1:22:43:18:a9:22:d1:25:66:
84:59:b1:0f:8b:c9:7e:cc:c8:8e:87:f0:2c:07:e2:
49:ce:2e:a2:2c:9a:86:f7:a8:ba:2a:79:95:07:fe:
57:d0:34:06:8d:5e:de:93:be:fa:37:f7:40:5d:87:
ad:c4:4f:78:b5:92:0b:a1:a5:50:1e:52:36:cb:7d:
03:4d:62:83:12:69:dd:ec:98:c8:41:bf:34:ef:d2:
f2:3c:6b:02:ab:00:68:32:4a:64:de:ad:1d:8a:14:
00:40:b5:09:05:cd:42:c8:f9:36:e2:f6:96:5d:6a:
ff:97:89:40:13:78:7a:3f:eb:e5:6f:6f:da:b8:84:
08:83:3c:47:99:ed:db:d5:38:85:13:9f:ec:74:76:
f3:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:D0:A8:F7:E6:E8:0C:61:3D:DE:8F:95:63:9D:A7:AB:95:B7:9D:37
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/IdCo9-boDGE93o-VY52nq5W3nTc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:b14::/48
Signature Algorithm: sha256WithRSAEncryption
25:e1:45:89:77:d9:95:28:ca:a0:f6:bf:2f:7c:4c:65:29:2f:
e0:ae:79:57:f5:9e:f7:f6:82:81:67:3e:6d:b9:17:af:6a:78:
55:df:f3:11:5c:55:52:b3:55:c7:b5:5c:b6:80:d1:02:d1:82:
79:77:aa:30:a0:48:0b:66:91:07:e7:5c:fb:c0:b4:1e:0c:57:
fd:08:1c:d4:4c:13:ee:94:f1:44:b5:bf:a3:98:3b:cb:0b:8a:
3c:4d:c3:e4:32:f8:51:e6:6c:23:be:1f:ad:20:04:6b:9f:58:
77:89:15:4a:3a:57:06:10:eb:4a:61:b3:87:00:95:83:dd:8b:
bb:a9:73:5a:67:b5:8b:23:0a:a0:2a:7b:da:25:12:69:14:55:
be:ab:3d:be:76:ab:ac:3d:ce:1e:b4:91:d8:77:1a:85:57:ab:
17:1f:c0:5a:01:01:4f:8f:ae:63:ee:d0:6d:31:4a:00:46:b2:
da:35:df:f1:71:20:17:1b:a8:3e:19:78:4e:fe:55:ef:ab:60:
04:83:df:03:a0:87:72:63:b5:c3:f8:e2:e2:03:11:80:30:d4:
8f:19:37:0a:f2:ce:df:65:50:fd:b9:40:03:6a:68:1e:14:81:
bf:01:1a:4f:ef:b0:ab:36:5a:58:c8:40:e6:fd:5d:ab:6a:dc:
d5:d2:41:a7
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYeGAUMBJ3U8r5ExunXwwxt8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwNDE1MTc0MDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMWQwYThmN2U2ZTgwYzYxM2RkZThmOTU2MzlkYTdhYjk1Yjc5ZDM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkArUFXBltb46ZuBajS16hkP+EW74
JhBkm3PPjAajBoakYYzXibXLS6425i6aZ/4E+odZdzLGV47s9dB9RZ+K2AQ8XrRP
QW+lEWGkCQ33eEnHa3E798ATHykBcpTBIe7F3/VlfXtVDA0Tor6pqvChIkMYqSLR
JWaEWbEPi8l+zMiOh/AsB+JJzi6iLJqG96i6KnmVB/5X0DQGjV7ek776N/dAXYet
xE94tZILoaVQHlI2y30DTWKDEmnd7JjIQb8079LyPGsCqwBoMkpk3q0dihQAQLUJ
Bc1CyPk24vaWXWr/l4lAE3h6P+vlb2/auIQIgzxHme3b1TiFE5/sdHbzWwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFCHQqPfm6AxhPd6PlWOdp6uVt503MB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvSWRDbzktYm9ER0U5M28tVlk1Mm5xNVczblRjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg6xBwsU
MA0GCSqGSIb3DQEBCwUAA4IBAQAl4UWJd9mVKMqg9r8vfExlKS/grnlX9Z739oKB
Zz5tuRevanhV3/MRXFVSs1XHtVy2gNEC0YJ5d6owoEgLZpEH51z7wLQeDFf9CBzU
TBPulPFEtb+jmDvLC4o8TcPkMvhR5mwjvh+tIARrn1h3iRVKOlcGEOtKYbOHAJWD
3Yu7qXNaZ7WLIwqgKnvaJRJpFFW+qz2+dqusPc4etJHYdxqFV6sXH8BaAQFPj65j
7tBtMUoARrLaNd/xcSAXG6g+GXhO/lXvq2AEg98DoIdyY7XD+OLiAxGAMNSPGTcK
8s7fZVD9uUADamgeFIG/ARpP77CrNlpYyEDm/V2ratzV0kGn
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:50 2024 by rpki-client on console-ams.rpki-client.org