Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/k8z-QXpsyIYcftl1ylQz2q0xhXs.roa
File: k8z-QXpsyIYcftl1ylQz2q0xhXs.roa (raw, json)
Hash identifier: PR+0G7ft8q35chhyoD7DNzY/K4HZGmxCXLHKhAFuQ4Y=
Subject key identifier: 93:CC:FE:41:7A:6C:C8:86:1C:7E:D9:75:CA:54:33:DA:AD:31:85:7B
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01871DDFF01F1649A8584B650C0EF443FD9C
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/k8z-QXpsyIYcftl1ylQz2q0xhXs.roa
Signing time: Sun 26 Mar 2023 12:23:47 +0000
ROA not before: Sun 26 Mar 2023 12:23:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200872
IP address blocks: 2a0e:97c0:5f0::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:1d:df:f0:1f:16:49:a8:58:4b:65:0c:0e:f4:43:fd:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Mar 26 12:23:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=93ccfe417a6cc8861c7ed975ca5433daad31857b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:51:32:3e:2a:fb:36:f4:b9:91:9c:fe:4c:3f:
5c:ca:43:19:c4:ec:6b:a1:dd:28:e1:80:3a:dc:87:
ad:aa:64:11:c2:b2:bf:15:dd:6c:b8:15:1e:3d:9a:
0d:80:ae:79:29:61:c1:92:5a:ad:02:7f:70:2d:81:
04:c3:28:6c:87:b4:b3:1c:74:d8:34:7a:5d:bb:5d:
75:a3:84:50:aa:59:87:da:a0:bd:97:f3:09:59:b0:
90:60:59:2b:a6:59:83:6a:62:54:cd:d5:4d:14:d8:
2d:e8:57:01:e4:31:e2:be:0f:bd:6e:70:54:43:4c:
9d:6c:f6:b3:53:f2:a8:0b:df:a7:6b:4f:f0:27:bb:
ff:4e:91:64:90:d0:d4:bd:ab:48:c7:d4:33:06:b5:
13:03:d3:bb:d2:b4:d3:e4:37:56:d5:d4:62:2e:27:
1f:1c:bc:6b:ee:9b:9d:3c:2b:b1:44:ac:39:17:66:
d7:4a:dd:29:c1:0f:11:48:95:1e:38:55:8f:03:68:
7d:72:ab:ba:84:ed:a9:36:7c:eb:42:15:3f:46:be:
6f:fc:48:8b:4d:d3:34:2c:fa:a6:93:21:e6:79:fe:
88:a7:08:2d:a1:0e:d0:ae:2a:19:8e:69:50:4a:54:
e0:81:97:44:46:bc:b1:45:be:a0:40:61:e7:41:09:
ed:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:CC:FE:41:7A:6C:C8:86:1C:7E:D9:75:CA:54:33:DA:AD:31:85:7B
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/k8z-QXpsyIYcftl1ylQz2q0xhXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:97c0:5f0::/44
Signature Algorithm: sha256WithRSAEncryption
8f:ed:bc:cc:b0:d4:81:d2:63:9a:54:1a:17:1e:e9:f3:3a:9e:
4d:8e:91:31:f6:87:2b:7d:54:8a:26:d6:7a:ff:98:16:88:e5:
04:a9:05:ea:96:9e:f1:c5:41:82:32:2f:de:c5:45:3f:4b:91:
15:1b:22:e9:6a:4f:df:4a:8f:54:f8:c0:51:b9:2a:d1:8b:57:
c8:06:16:38:a8:cb:56:d1:07:f8:e3:7a:5c:61:0d:43:4f:37:
b7:d5:5b:3b:3d:4a:44:f2:7b:0f:e2:92:4c:19:36:29:ff:8e:
ec:93:b5:80:6b:29:a0:be:bf:d9:24:e5:4d:a0:c8:f2:1c:20:
0a:57:a7:49:aa:a4:99:1e:36:a8:0a:8d:4b:e1:8d:6f:0d:f1:
c3:64:28:54:db:27:83:f7:55:eb:78:b7:0c:b9:fc:d1:c9:c5:
80:ab:d0:e3:96:5c:17:71:75:2e:65:50:d7:5e:98:74:4f:4f:
0d:ca:c0:58:91:c3:ec:3b:92:7c:60:f2:29:d8:be:b3:bf:6c:
74:ac:99:31:a3:a4:78:28:19:d8:16:37:ee:c4:27:27:2c:6d:
8e:06:fe:6e:42:88:dd:6e:78:cc:18:9d:96:af:ae:c6:37:73:
a2:2e:9b:80:26:74:ae:48:75:3e:da:c7:2f:78:66:f8:a5:ff:
f7:08:3f:c2
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYcd3/AfFkmoWEtlDA70Q/2cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwMzI2MTIyMzQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5M2NjZmU0MTdhNmNjODg2MWM3ZWQ5NzVjYTU0MzNkYWFkMzE4NTdiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoFEyPir7NvS5kZz+TD9cykMZxOxr
od0o4YA63IetqmQRwrK/Fd1suBUePZoNgK55KWHBklqtAn9wLYEEwyhsh7SzHHTY
NHpdu111o4RQqlmH2qC9l/MJWbCQYFkrplmDamJUzdVNFNgt6FcB5DHivg+9bnBU
Q0ydbPazU/KoC9+na0/wJ7v/TpFkkNDUvatIx9QzBrUTA9O70rTT5DdW1dRiLicf
HLxr7pudPCuxRKw5F2bXSt0pwQ8RSJUeOFWPA2h9cqu6hO2pNnzrQhU/Rr5v/EiL
TdM0LPqmkyHmef6IpwgtoQ7QrioZjmlQSlTggZdERryxRb6gQGHnQQntewIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFJPM/kF6bMiGHH7ZdcpUM9qtMYV7MB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvazh6LVFYcHN5SVljZnRsMXlsUXoycTB4aFhzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6XwAXw
MA0GCSqGSIb3DQEBCwUAA4IBAQCP7bzMsNSB0mOaVBoXHunzOp5NjpEx9ocrfVSK
JtZ6/5gWiOUEqQXqlp7xxUGCMi/exUU/S5EVGyLpak/fSo9U+MBRuSrRi1fIBhY4
qMtW0Qf443pcYQ1DTze31Vs7PUpE8nsP4pJMGTYp/47sk7WAaymgvr/ZJOVNoMjy
HCAKV6dJqqSZHjaoCo1L4Y1vDfHDZChU2yeD91XreLcMufzRycWAq9DjllwXcXUu
ZVDXXph0T08NysBYkcPsO5J8YPIp2L6zv2x0rJkxo6R4KBnYFjfuxCcnLG2OBv5u
QojdbnjMGJ2Wr67GN3OiLpuAJnSuSHU+2scveGb4pf/3CD/C
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:03 2023 by rpki-client on console-ams.rpki-client.org