Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/aKp6kofabDKu1LjQY9M9IOK3-Xg.roa
File: aKp6kofabDKu1LjQY9M9IOK3-Xg.roa (raw, json)
Hash identifier: N0+4ceZ9xryRbzrN+0f4vjCaNs2Hu5R5HCKSxgEoWZ0=
Subject key identifier: 68:AA:7A:92:87:DA:6C:32:AE:D4:B8:D0:63:D3:3D:20:E2:B7:F9:78
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E7E5BA1A58EA41E567540371760839
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/aKp6kofabDKu1LjQY9M9IOK3-Xg.roa
Signing time: Mon 02 Jan 2023 05:15:23 +0000
ROA not before: Mon 02 Jan 2023 05:15:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210337
IP address blocks: 2a0e:b107:9f7::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:e5:ba:1a:58:ea:41:e5:67:54:03:71:76:08:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68aa7a9287da6c32aed4b8d063d33d20e2b7f978
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:58:9c:ba:5d:f5:b9:f4:9f:8a:3a:90:41:3f:
c5:d0:0f:f8:3a:50:dc:ef:1a:90:10:17:81:47:12:
17:af:79:ab:ad:0f:bd:42:5c:73:34:58:81:88:ab:
08:a2:90:b4:9e:14:bf:33:e7:93:81:d4:8e:d4:e6:
9b:0f:54:2d:75:6c:24:20:f4:a0:0f:d2:8d:6a:25:
cd:45:8b:43:9a:d2:48:83:3c:a9:09:4f:af:b3:44:
ed:a3:e1:a8:d1:57:61:ac:7c:73:e7:56:ff:b8:9e:
1d:6d:96:b5:52:c5:35:d3:e3:73:af:eb:d6:1c:fd:
d1:4f:c7:f2:bb:4c:bd:de:9d:23:67:c0:58:b2:c8:
ab:90:6c:65:84:74:e1:bf:fb:5b:10:f8:39:64:ae:
0d:35:c3:69:2b:dd:d7:88:88:25:9e:f8:7d:01:85:
1c:fd:4c:fc:ee:15:81:2f:b9:3a:6f:fa:6b:66:6c:
36:6d:05:39:b6:35:15:41:b3:22:07:e2:e7:fa:a1:
ff:2f:7d:68:24:ad:9d:8e:2e:2a:55:18:d5:8e:7e:
7b:8c:e1:6e:72:59:80:8d:23:12:0c:b2:a4:03:7f:
cb:c8:00:35:ad:98:f1:8a:8a:73:81:56:43:0f:ee:
55:4f:d5:24:b2:15:5e:7b:ab:69:55:ab:70:bd:16:
45:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:AA:7A:92:87:DA:6C:32:AE:D4:B8:D0:63:D3:3D:20:E2:B7:F9:78
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/aKp6kofabDKu1LjQY9M9IOK3-Xg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:9f7::/48
Signature Algorithm: sha256WithRSAEncryption
18:80:27:89:71:8a:33:d5:98:1e:30:4b:11:0b:b1:6b:4d:3c:
4b:fd:4d:52:31:b5:25:83:14:cd:fd:2e:fd:55:97:ae:e4:d7:
e0:7a:27:68:1c:c5:43:18:53:90:2f:06:ba:47:97:56:ec:34:
88:0f:6d:5b:54:53:44:21:d8:6c:2a:8e:19:2e:5a:e2:a0:ae:
f2:7e:03:02:e9:f9:67:28:28:89:be:5d:e6:78:cb:32:08:0b:
d9:69:3b:11:e2:b6:eb:1e:75:23:01:be:ff:1e:be:d1:e7:1b:
99:c3:d1:52:db:21:ea:a5:23:c4:af:4a:74:ed:da:e5:e7:34:
92:05:2c:64:36:2d:6a:8e:76:74:14:c8:fd:ec:73:71:01:d5:
4a:bb:31:37:e4:76:f8:36:97:94:fb:16:1e:34:33:9b:27:4b:
67:41:28:0a:91:65:5b:07:39:2b:3a:f7:51:66:0a:e3:ec:5d:
0b:a1:9e:26:38:92:83:dd:fc:08:95:09:9d:72:7d:d3:09:1d:
1f:1d:1a:c4:4e:06:b2:10:75:dc:79:0e:4c:9c:94:40:97:1e:
ed:cc:0a:f4:2a:6e:aa:b9:77:23:c4:88:4c:d6:1d:07:bf:d9:
1d:f8:f0:a4:65:09:f1:d5:34:c8:df:13:21:c7:01:e1:c6:43:
ae:e2:b2:25
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVw5+W6GljqQeVnVANxdgg5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwMTAyMDUxNTIzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2OGFhN2E5Mjg3ZGE2YzMyYWVkNGI4ZDA2M2QzM2QyMGUyYjdmOTc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlFicul31ufSfijqQQT/F0A/4OlDc
7xqQEBeBRxIXr3mrrQ+9QlxzNFiBiKsIopC0nhS/M+eTgdSO1OabD1QtdWwkIPSg
D9KNaiXNRYtDmtJIgzypCU+vs0Tto+Go0VdhrHxz51b/uJ4dbZa1UsU10+Nzr+vW
HP3RT8fyu0y93p0jZ8BYssirkGxlhHThv/tbEPg5ZK4NNcNpK93XiIglnvh9AYUc
/Uz87hWBL7k6b/prZmw2bQU5tjUVQbMiB+Ln+qH/L31oJK2dji4qVRjVjn57jOFu
clmAjSMSDLKkA3/LyAA1rZjxiopzgVZDD+5VT9UkshVee6tpVatwvRZFZQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFGiqepKH2mwyrtS40GPTPSDit/l4MB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvYUtwNmtvZmFiREt1MUxqUVk5TTlJT0szLVhnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg6xBwn3
MA0GCSqGSIb3DQEBCwUAA4IBAQAYgCeJcYoz1ZgeMEsRC7FrTTxL/U1SMbUlgxTN
/S79VZeu5NfgeidoHMVDGFOQLwa6R5dW7DSID21bVFNEIdhsKo4ZLlrioK7yfgMC
6flnKCiJvl3meMsyCAvZaTsR4rbrHnUjAb7/Hr7R5xuZw9FS2yHqpSPEr0p07drl
5zSSBSxkNi1qjnZ0FMj97HNxAdVKuzE35Hb4NpeU+xYeNDObJ0tnQSgKkWVbBzkr
OvdRZgrj7F0LoZ4mOJKD3fwIlQmdcn3TCR0fHRrETgayEHXceQ5MnJRAlx7tzAr0
Km6quXcjxIhM1h0Hv9kd+PCkZQnx1TTI3xMhxwHhxkOu4rIl
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:17 2023 by rpki-client on console-fra.rpki-client.org