Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/h27LKEgy9mgdv_Bno2_KPsuBewc.roa
File: h27LKEgy9mgdv_Bno2_KPsuBewc.roa (raw, json)
Hash identifier: yrcFuuydpdvz7CqxX+WNEhphTpZvzWN4RY/4wO7N5Bo=
Subject key identifier: 87:6E:CB:28:48:32:F6:68:1D:BF:F0:67:A3:6F:CA:3E:CB:81:7B:07
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E82679CAD52FEE2AFC825F49512AD1
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/h27LKEgy9mgdv_Bno2_KPsuBewc.roa
Signing time: Mon 02 Jan 2023 05:15:40 +0000
ROA not before: Mon 02 Jan 2023 05:15:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213215
IP address blocks: 2a0e:b107:a20::/44 maxlen: 48
2a0e:b107:6e3::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e8:26:79:ca:d5:2f:ee:2a:fc:82:5f:49:51:2a:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:15:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=876ecb284832f6681dbff067a36fca3ecb817b07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:81:e0:b7:b0:07:b1:03:d7:b2:aa:11:28:5b:
5f:c3:a7:e3:29:bb:30:66:f5:8e:4e:81:54:43:c2:
13:e3:c1:3f:aa:dc:30:f9:33:21:be:9b:de:e0:54:
d3:54:cc:94:85:8e:a1:7b:2f:6b:4d:dd:35:80:75:
cf:c3:d6:3e:75:fc:7c:a4:6a:6e:8d:88:d0:a7:b7:
3a:80:b7:c1:90:ae:71:a1:e8:de:c7:50:7d:d3:3d:
8d:2d:c7:46:97:b8:d4:32:cc:e4:09:88:c9:1c:82:
97:9d:b6:58:f4:84:76:3d:b7:a2:e2:a3:0e:75:7c:
91:87:cf:08:9d:1d:a1:a1:b9:5d:86:ec:ad:4d:4b:
89:51:10:72:50:58:4a:5f:e3:9b:a0:b2:4e:73:11:
00:1f:06:25:21:fa:4d:4d:a6:b5:a4:52:06:da:a9:
c2:03:ba:7c:43:35:5c:f6:87:ed:05:17:8f:3a:d2:
a6:cc:a2:0d:d7:0d:00:db:65:34:e3:da:db:eb:e4:
23:ef:6f:df:05:c4:03:ab:12:5c:5f:10:c0:6f:ee:
fd:d2:f0:06:89:2a:d2:08:af:b8:d5:24:eb:25:dd:
fd:8d:7c:04:5c:95:7f:3c:cd:95:79:82:02:15:e6:
a0:32:7d:cb:a1:cb:eb:be:49:5c:e8:68:77:d7:39:
fc:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:6E:CB:28:48:32:F6:68:1D:BF:F0:67:A3:6F:CA:3E:CB:81:7B:07
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/h27LKEgy9mgdv_Bno2_KPsuBewc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:b107:6e3::/48
2a0e:b107:a20::/44
Signature Algorithm: sha256WithRSAEncryption
00:94:a3:f3:b5:28:15:3c:db:7d:e2:dc:f1:00:3b:5c:3d:a3:
e7:a2:c1:b5:2e:84:38:59:39:8b:0d:a1:d6:2a:0c:92:8a:d5:
dc:c1:b6:fd:d5:9d:4b:00:ea:cb:92:f4:3b:9a:3e:59:a5:e3:
a3:08:98:98:d4:cf:40:cb:13:18:bb:ca:a6:76:78:aa:b1:b5:
95:dc:54:82:d6:31:16:3d:50:f0:42:31:bf:bd:60:a1:e6:2e:
98:39:20:be:bc:57:60:63:48:7b:b8:c5:a5:59:ba:00:a3:bc:
c0:5f:1c:78:63:e9:b2:fd:0b:ce:77:ef:93:b4:5d:1c:7c:28:
0e:34:64:f2:37:97:18:2d:bd:b3:26:26:b7:4f:61:d9:87:d3:
dd:83:91:66:e5:75:b2:2c:33:c9:ab:03:36:88:ee:57:8a:32:
70:52:6b:b2:61:36:31:f7:64:af:50:77:d2:dd:e6:5d:d1:fb:
01:ce:cf:77:ef:66:0b:4a:8f:41:85:b3:a5:4d:c9:b6:6d:31:
fc:9f:ba:8b:3b:21:95:ff:1a:9a:e2:03:cc:da:0f:d1:c4:82:
44:36:91:e4:13:76:3d:95:0a:f9:d1:11:01:df:0a:0c:1d:73:
0a:4d:ed:4c:56:62:86:1e:c4:8b:70:61:e9:44:59:dd:2b:73:
a3:3c:a5:9c
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYVw6CZ5ytUv7ir8gl9JUSrRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwMTAyMDUxNTQwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NzZlY2IyODQ4MzJmNjY4MWRiZmYwNjdhMzZmY2EzZWNiODE3YjA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp4Hgt7AHsQPXsqoRKFtfw6fjKbsw
ZvWOToFUQ8IT48E/qtww+TMhvpve4FTTVMyUhY6hey9rTd01gHXPw9Y+dfx8pGpu
jYjQp7c6gLfBkK5xoejex1B90z2NLcdGl7jUMszkCYjJHIKXnbZY9IR2Pbei4qMO
dXyRh88InR2hobldhuytTUuJURByUFhKX+OboLJOcxEAHwYlIfpNTaa1pFIG2qnC
A7p8QzVc9oftBRePOtKmzKIN1w0A22U049rb6+Qj72/fBcQDqxJcXxDAb+790vAG
iSrSCK+41STrJd39jXwEXJV/PM2VeYICFeagMn3Locvrvklc6Gh31zn8rQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFIduyyhIMvZoHb/wZ6Nvyj7LgXsHMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvaDI3TEtFZ3k5bWdkdl9Cbm8yX0tQc3VCZXdjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcAKg6xBwbj
AwcEKg6xBwogMA0GCSqGSIb3DQEBCwUAA4IBAQAAlKPztSgVPNt94tzxADtcPaPn
osG1LoQ4WTmLDaHWKgySitXcwbb91Z1LAOrLkvQ7mj5ZpeOjCJiY1M9AyxMYu8qm
dniqsbWV3FSC1jEWPVDwQjG/vWCh5i6YOSC+vFdgY0h7uMWlWboAo7zAXxx4Y+my
/QvOd++TtF0cfCgONGTyN5cYLb2zJia3T2HZh9Pdg5Fm5XWyLDPJqwM2iO5XijJw
UmuyYTYx92SvUHfS3eZd0fsBzs9372YLSo9BhbOlTcm2bTH8n7qLOyGV/xqa4gPM
2g/RxIJENpHkE3Y9lQr50REB3woMHXMKTe1MVmKGHsSLcGHpRFndK3OjPKWc
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:18 2023 by rpki-client on console-fra.rpki-client.org