Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/OggIKIXK8IBuqCdlninwuh6WPNc.roa
File: OggIKIXK8IBuqCdlninwuh6WPNc.roa (raw, json)
Hash identifier: 1wmopBlP0i4epGg7JEHPQlZ8w5J5I1WOOQTWyrcKi0s=
Subject key identifier: 3A:08:08:28:85:CA:F0:80:6E:A8:27:65:9E:29:F0:BA:1E:96:3C:D7
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018C460128C71D905AA29791CA2BC9BF8A50
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/OggIKIXK8IBuqCdlninwuh6WPNc.roa
Signing time: Thu 07 Dec 2023 20:38:50 +0000
ROA not before: Thu 07 Dec 2023 20:38:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215956
IP address blocks: 2a0e:b107:1190::/45 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:46:01:28:c7:1d:90:5a:a2:97:91:ca:2b:c9:bf:8a:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Dec 7 20:38:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3a08082885caf0806ea827659e29f0ba1e963cd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:80:8a:6c:11:13:2f:d6:fa:26:68:9d:ee:6a:
de:ef:a2:15:e8:cd:16:d7:e8:f1:dd:da:c3:1a:54:
04:39:db:45:df:85:24:99:95:fd:5d:a4:7b:38:ec:
89:06:3f:6f:0e:37:30:33:9e:91:6a:88:13:3f:4c:
71:18:10:45:b8:32:21:22:0b:07:fc:bf:e1:22:30:
1f:c1:2e:37:e5:70:f7:d8:9b:5f:1c:f9:ad:81:d3:
cf:51:da:35:f2:5b:1d:7d:d1:9a:cf:53:20:52:22:
3c:fb:7f:ee:d5:e4:61:40:ad:0b:da:80:1e:3c:15:
f7:c1:58:3a:8e:d9:d5:46:02:a1:a3:3d:2d:65:68:
6d:2e:82:8e:02:85:bc:7b:0d:13:00:55:7f:4f:0c:
c4:a7:fd:f5:2f:7c:f3:19:b2:77:b1:75:d7:cb:69:
f8:81:5c:7d:51:dd:3f:d9:f6:6a:0a:c5:77:2f:de:
e6:01:b8:68:d5:7c:0c:6b:c8:13:83:9c:0b:34:d4:
88:c3:11:9b:24:7c:14:6f:39:05:db:4d:3f:a9:d9:
71:54:db:6b:6d:5d:68:34:22:de:b3:eb:e1:36:d6:
dd:c6:b1:6b:1a:14:56:34:66:1d:25:8d:97:9f:1c:
6c:02:28:0a:68:ec:da:11:c9:b8:18:66:9b:3c:80:
c0:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:08:08:28:85:CA:F0:80:6E:A8:27:65:9E:29:F0:BA:1E:96:3C:D7
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/OggIKIXK8IBuqCdlninwuh6WPNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:1190::/45
Signature Algorithm: sha256WithRSAEncryption
9a:84:a5:56:b6:84:09:9d:6b:71:32:a6:8d:66:2c:a8:31:0a:
f4:84:46:5e:b9:44:67:28:d7:18:f2:f5:b0:9b:ba:0a:64:b9:
18:15:32:01:8d:3e:2c:e2:f9:c0:b7:80:f1:1a:74:ac:41:36:
dc:12:d5:b5:70:c3:e0:3b:3b:32:59:1f:62:e8:62:72:6f:ef:
c3:59:b9:02:dd:af:d0:c0:7e:d9:22:70:a7:64:b8:6d:24:a5:
99:89:2c:d0:22:90:e0:a6:6d:cf:5c:7a:62:c8:09:4c:8e:b5:
73:88:1a:7a:99:3c:df:a1:fd:25:4e:67:87:42:61:74:3c:af:
5c:61:1e:3d:69:f4:7f:13:53:24:36:13:74:d7:4a:59:cf:1e:
a1:e4:d3:52:d9:ba:43:6b:79:e4:a1:3b:81:f5:ee:b6:1c:dc:
01:77:59:6a:29:a3:cf:2a:2e:a6:51:fe:35:ba:11:c7:b5:f7:
df:94:58:bf:de:c9:61:3b:a5:e7:ad:df:24:cd:b4:b9:3f:d7:
83:cc:d1:c3:d8:47:a9:3e:2b:47:0d:5d:88:4c:c3:91:b2:59:
4f:39:9d:20:19:86:33:c2:aa:46:e4:29:b5:00:4b:4b:da:d2:
e9:d8:61:ef:c4:d7:c5:1a:15:5a:fc:be:01:c6:79:99:fa:a6:
91:68:cd:a6
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYxGASjHHZBaopeRyivJv4pQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMxMjA3MjAzODUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYTA4MDgyODg1Y2FmMDgwNmVhODI3NjU5ZTI5ZjBiYTFlOTYzY2Q3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmICKbBETL9b6Jmid7mre76IV6M0W
1+jx3drDGlQEOdtF34UkmZX9XaR7OOyJBj9vDjcwM56RaogTP0xxGBBFuDIhIgsH
/L/hIjAfwS435XD32JtfHPmtgdPPUdo18lsdfdGaz1MgUiI8+3/u1eRhQK0L2oAe
PBX3wVg6jtnVRgKhoz0tZWhtLoKOAoW8ew0TAFV/TwzEp/31L3zzGbJ3sXXXy2n4
gVx9Ud0/2fZqCsV3L97mAbho1XwMa8gTg5wLNNSIwxGbJHwUbzkF200/qdlxVNtr
bV1oNCLes+vhNtbdxrFrGhRWNGYdJY2XnxxsAigKaOzaEcm4GGabPIDAQQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFDoICCiFyvCAbqgnZZ4p8LoeljzXMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvT2dnSUtJWEs4SUJ1cUNkbG5pbnd1aDZXUE5jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcDKg6xBxGQ
MA0GCSqGSIb3DQEBCwUAA4IBAQCahKVWtoQJnWtxMqaNZiyoMQr0hEZeuURnKNcY
8vWwm7oKZLkYFTIBjT4s4vnAt4DxGnSsQTbcEtW1cMPgOzsyWR9i6GJyb+/DWbkC
3a/QwH7ZInCnZLhtJKWZiSzQIpDgpm3PXHpiyAlMjrVziBp6mTzfof0lTmeHQmF0
PK9cYR49afR/E1MkNhN010pZzx6h5NNS2bpDa3nkoTuB9e62HNwBd1lqKaPPKi6m
Uf41uhHHtffflFi/3slhO6Xnrd8kzbS5P9eDzNHD2EepPitHDV2ITMORsllPOZ0g
GYYzwqpG5Cm1AEtL2tLp2GHvxNfFGhVa/L4BxnmZ+qaRaM2m
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:50 2024 by rpki-client on console-ams.rpki-client.org