Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/s0mTn8K0g1xhBcUqP6nxfOa1Uv0.roa
File: s0mTn8K0g1xhBcUqP6nxfOa1Uv0.roa (raw, json)
Hash identifier: 3muzWMpziVWkHXEN/xdLJNKuxZdJ3K3PDMIcS7wpJdQ=
Subject key identifier: B3:49:93:9F:C2:B4:83:5C:61:05:C5:2A:3F:A9:F1:7C:E6:B5:52:FD
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E7734FCFD8D775788BE3E3FC60CB08
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/s0mTn8K0g1xhBcUqP6nxfOa1Uv0.roa
Signing time: Mon 02 Jan 2023 05:14:54 +0000
ROA not before: Mon 02 Jan 2023 05:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8882
IP address blocks: 2a10:cc40:140::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:73:4f:cf:d8:d7:75:78:8b:e3:e3:fc:60:cb:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b349939fc2b4835c6105c52a3fa9f17ce6b552fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:ef:b6:2a:1e:f3:ad:f7:92:f4:4f:ae:88:48:
99:a9:a8:6a:33:4c:da:a2:73:d5:fd:69:c3:39:20:
78:4b:be:0a:36:f2:8c:83:71:c5:51:53:1b:3a:3f:
57:83:91:49:91:49:27:1a:ce:f4:9f:e4:7f:84:0f:
60:11:88:d0:97:c4:39:b1:b1:cf:00:cf:d8:4f:a0:
76:3a:4d:b0:58:0c:12:96:5c:ad:ef:06:d7:a7:ad:
01:13:19:cb:dd:b1:d1:09:19:d5:8b:96:19:6c:7d:
06:cb:a8:34:cb:dd:39:f8:26:10:45:79:e1:a8:40:
a7:86:e6:a4:e8:f0:3d:d8:3c:f2:8f:d9:79:4b:db:
ac:29:16:57:5d:e2:ef:26:ac:52:c3:e9:96:a7:51:
c9:3e:2e:b7:95:e1:c5:7d:d5:5e:2f:d2:f8:14:84:
64:fe:07:12:32:ae:58:66:94:a2:85:f7:41:ae:f8:
2f:d5:8f:41:d9:7e:35:90:73:19:f5:2b:89:97:2e:
39:35:cc:51:28:36:19:4a:76:4f:d2:6d:fc:01:b2:
1c:e8:a8:89:3d:71:6c:8b:b6:6e:d7:6d:a5:20:87:
a0:5c:f1:4c:c2:14:48:57:40:8c:d8:76:cd:91:88:
10:67:b3:e6:07:4c:79:e5:79:9c:13:7a:0c:8c:41:
22:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:49:93:9F:C2:B4:83:5C:61:05:C5:2A:3F:A9:F1:7C:E6:B5:52:FD
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/s0mTn8K0g1xhBcUqP6nxfOa1Uv0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:cc40:140::/44
Signature Algorithm: sha256WithRSAEncryption
8f:7a:e8:54:1e:e0:6a:a1:cc:86:fc:17:f2:54:c3:e5:8f:0d:
8f:fe:63:37:90:8c:30:1a:eb:a1:45:1c:4f:9a:dd:22:a6:64:
13:60:cf:67:d0:8a:f1:82:9f:88:09:03:fe:b6:4f:66:2a:44:
be:0b:6c:f7:d7:49:a3:a5:ac:b0:f2:ad:d1:9a:5f:70:21:54:
67:90:d7:c4:b0:7f:9a:73:6c:65:69:f0:91:df:b2:89:a4:16:
bd:6f:43:29:10:fd:23:74:f5:26:df:60:b0:3c:00:f0:7d:e2:
76:00:1c:b1:60:91:a9:a9:9f:0c:d4:e9:b0:d4:a6:12:cd:e1:
2f:42:e9:a5:98:dc:3d:41:8a:c0:58:66:4b:56:86:47:72:d2:
89:e0:07:8d:49:0a:92:04:82:ee:e6:60:da:0d:c1:3a:19:f4:
26:66:fc:dc:63:1b:f1:0e:d2:22:06:e2:62:84:8d:77:6d:32:
9c:41:55:4b:c8:24:88:6f:4d:ab:a0:11:4c:be:57:ce:c6:94:
9c:5a:f6:ea:1e:ce:1b:f0:10:c4:a9:b8:a9:14:fa:4a:44:12:
be:f0:81:ac:2f:9a:56:1f:42:7e:8b:cf:a2:5a:85:77:6e:5b:
c2:f4:84:c6:93:62:31:b0:d6:6c:83:3e:54:50:19:f7:ac:33:
a5:b8:60:6b
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVw53NPz9jXdXiL4+P8YMsIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwMTAyMDUxNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMzQ5OTM5ZmMyYjQ4MzVjNjEwNWM1MmEzZmE5ZjE3Y2U2YjU1MmZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgO+2Kh7zrfeS9E+uiEiZqahqM0za
onPV/WnDOSB4S74KNvKMg3HFUVMbOj9Xg5FJkUknGs70n+R/hA9gEYjQl8Q5sbHP
AM/YT6B2Ok2wWAwSllyt7wbXp60BExnL3bHRCRnVi5YZbH0Gy6g0y905+CYQRXnh
qECnhuak6PA92Dzyj9l5S9usKRZXXeLvJqxSw+mWp1HJPi63leHFfdVeL9L4FIRk
/gcSMq5YZpSihfdBrvgv1Y9B2X41kHMZ9SuJly45NcxRKDYZSnZP0m38AbIc6KiJ
PXFsi7Zu122lIIegXPFMwhRIV0CM2HbNkYgQZ7PmB0x55XmcE3oMjEEinwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFLNJk5/CtINcYQXFKj+p8XzmtVL9MB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvczBtVG44SzBnMXhoQmNVcVA2bnhmT2ExVXYwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKhDMQAFA
MA0GCSqGSIb3DQEBCwUAA4IBAQCPeuhUHuBqocyG/BfyVMPljw2P/mM3kIwwGuuh
RRxPmt0ipmQTYM9n0Irxgp+ICQP+tk9mKkS+C2z310mjpayw8q3Rml9wIVRnkNfE
sH+ac2xlafCR37KJpBa9b0MpEP0jdPUm32CwPADwfeJ2AByxYJGpqZ8M1Omw1KYS
zeEvQumlmNw9QYrAWGZLVoZHctKJ4AeNSQqSBILu5mDaDcE6GfQmZvzcYxvxDtIi
BuJihI13bTKcQVVLyCSIb02roBFMvlfOxpScWvbqHs4b8BDEqbipFPpKRBK+8IGs
L5pWH0J+i8+iWoV3blvC9ITGk2IxsNZsgz5UUBn3rDOluGBr
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:04 2023 by rpki-client on console-ams.rpki-client.org