Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/R59D1-nYsTnoFWFOjwjvtlQnbZw.roa
File: R59D1-nYsTnoFWFOjwjvtlQnbZw.roa (raw, json)
Hash identifier: JiC9b/Cf4y0H3OpGfd6M+PXXNJQuN2VsE/8TiC9ZuZM=
Subject key identifier: 47:9F:43:D7:E9:D8:B1:39:E8:15:61:4E:8F:08:EF:B6:54:27:6D:9C
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E803BF00D6F60BBCA0DD9EDACEA6E3
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/R59D1-nYsTnoFWFOjwjvtlQnbZw.roa
Signing time: Mon 02 Jan 2023 05:15:31 +0000
ROA not before: Mon 02 Jan 2023 05:15:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211481
IP address blocks: 2a0e:97c0:330::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e8:03:bf:00:d6:f6:0b:bc:a0:dd:9e:da:ce:a6:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=479f43d7e9d8b139e815614e8f08efb654276d9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:31:15:8d:51:4a:1b:fa:ff:eb:f8:1b:95:55:
d5:0e:8a:b1:d3:99:1c:3c:7b:2d:c8:8b:e0:b4:49:
b2:94:48:0c:ea:61:f4:08:d3:69:e1:dd:4c:62:10:
1d:93:16:52:2a:c4:26:f1:25:28:21:a3:9a:3d:0d:
f4:93:45:49:41:04:55:8a:20:2e:11:1f:42:10:27:
fa:b7:fd:ab:fa:59:96:6c:b0:52:a6:43:d5:16:5b:
21:c8:2d:7d:a2:97:5a:2a:a0:f4:ec:00:65:ba:ed:
76:ad:be:45:51:a7:4e:a3:c5:94:ab:41:10:14:5f:
b8:59:ff:d7:4b:33:1d:73:dd:a3:66:b1:69:f1:1f:
a3:08:79:48:b5:8e:13:96:43:93:b8:bc:64:15:35:
f3:8c:59:ee:9a:30:ee:d1:9a:a3:b8:25:51:2b:22:
be:87:b3:8b:53:64:79:ce:07:77:18:6f:91:37:ff:
5d:83:2e:1e:2f:55:0e:94:0f:2f:5b:1b:fd:62:98:
f7:07:05:5b:ea:ff:6d:53:72:c7:b3:bb:07:83:90:
73:ec:5f:4b:50:84:d3:54:c0:5d:d3:9c:8c:3b:90:
4f:8d:62:be:d5:a0:83:68:22:fc:b5:03:81:37:d5:
cf:e1:2e:84:01:cf:54:2e:43:e1:f8:77:ac:2e:0a:
d6:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:9F:43:D7:E9:D8:B1:39:E8:15:61:4E:8F:08:EF:B6:54:27:6D:9C
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/R59D1-nYsTnoFWFOjwjvtlQnbZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:330::/44
Signature Algorithm: sha256WithRSAEncryption
65:0d:c2:6a:a3:29:b9:2c:6f:cf:5c:a0:a6:d9:78:3f:cc:4a:
3d:3e:4d:01:d2:14:f0:10:1a:92:9e:16:57:76:1c:18:a0:0d:
a8:76:3e:84:48:e5:7a:eb:aa:8b:1d:f6:34:51:7a:85:32:28:
b3:37:92:59:e5:2a:83:d5:5a:08:48:25:46:99:20:03:5b:75:
a2:26:4b:90:ef:1e:ba:89:54:bf:80:8d:64:d8:d7:2b:28:b6:
16:30:ea:25:5c:82:ae:82:dc:7f:fd:7e:6d:bd:83:f6:92:ff:
c7:c1:e1:4a:71:8e:b1:98:2d:63:ca:a1:b1:c9:bb:d7:71:45:
e3:6f:75:93:04:42:8a:1a:f5:e0:44:54:c5:68:36:5c:ec:b7:
2d:e4:06:6c:4b:16:33:b1:16:b1:ab:23:fb:13:86:b7:6c:66:
57:c8:cf:03:f6:b0:02:97:af:10:3c:12:51:d4:b0:13:31:01:
cb:90:3c:09:09:3f:38:e0:ce:83:3e:c6:fc:d5:11:c6:36:9d:
27:98:7c:ad:bd:a3:ff:65:d7:95:08:6f:2a:fa:8a:91:7b:8a:
01:d1:fe:a9:b3:d7:b1:8f:3b:0b:b1:3e:8a:22:21:63:1d:92:
33:a3:2a:bf:44:e2:5e:f4:9c:74:bf:85:07:89:d9:7c:84:8c:
55:5f:87:1e
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVw6AO/ANb2C7yg3Z7azqbjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwMTAyMDUxNTMxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NzlmNDNkN2U5ZDhiMTM5ZTgxNTYxNGU4ZjA4ZWZiNjU0Mjc2ZDljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkzEVjVFKG/r/6/gblVXVDoqx05kc
PHstyIvgtEmylEgM6mH0CNNp4d1MYhAdkxZSKsQm8SUoIaOaPQ30k0VJQQRViiAu
ER9CECf6t/2r+lmWbLBSpkPVFlshyC19opdaKqD07ABluu12rb5FUadOo8WUq0EQ
FF+4Wf/XSzMdc92jZrFp8R+jCHlItY4TlkOTuLxkFTXzjFnumjDu0ZqjuCVRKyK+
h7OLU2R5zgd3GG+RN/9dgy4eL1UOlA8vWxv9Ypj3BwVb6v9tU3LHs7sHg5Bz7F9L
UITTVMBd05yMO5BPjWK+1aCDaCL8tQOBN9XP4S6EAc9ULkPh+HesLgrW8QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFEefQ9fp2LE56BVhTo8I77ZUJ22cMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvUjU5RDEtbllzVG5vRldGT2p3anZ0bFFuYlp3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6XwAMw
MA0GCSqGSIb3DQEBCwUAA4IBAQBlDcJqoym5LG/PXKCm2Xg/zEo9Pk0B0hTwEBqS
nhZXdhwYoA2odj6ESOV666qLHfY0UXqFMiizN5JZ5SqD1VoISCVGmSADW3WiJkuQ
7x66iVS/gI1k2NcrKLYWMOolXIKugtx//X5tvYP2kv/HweFKcY6xmC1jyqGxybvX
cUXjb3WTBEKKGvXgRFTFaDZc7Lct5AZsSxYzsRaxqyP7E4a3bGZXyM8D9rACl68Q
PBJR1LATMQHLkDwJCT844M6DPsb81RHGNp0nmHytvaP/ZdeVCG8q+oqRe4oB0f6p
s9exjzsLsT6KIiFjHZIzoyq/ROJe9Jx0v4UHidl8hIxVX4ce
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:50 2024 by rpki-client on console-ams.rpki-client.org