Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/zLk0khH7hpcYGfsno2-zXbHgAyU.roa
File: zLk0khH7hpcYGfsno2-zXbHgAyU.roa (raw, json)
Hash identifier: Jo7lMaxX7EclKXdNJeAYaTnqD5gmluXmRpBMvpMvMkU=
Subject key identifier: CC:B9:34:92:11:FB:86:97:18:19:FB:27:A3:6F:B3:5D:B1:E0:03:25
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018570E7761985B4A966A8E1D1DD459D94F8
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/zLk0khH7hpcYGfsno2-zXbHgAyU.roa
Signing time: Mon 02 Jan 2023 05:14:55 +0000
ROA not before: Mon 02 Jan 2023 05:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 23428
IP address blocks: 2a10:2f00:181::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:76:19:85:b4:a9:66:a8:e1:d1:dd:45:9d:94:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jan 2 05:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ccb9349211fb86971819fb27a36fb35db1e00325
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f5:78:01:be:fa:7e:c2:a6:a8:cf:69:7c:ed:
04:c6:6e:42:2e:68:42:c5:11:37:ee:22:18:8d:2f:
f4:71:51:a5:7f:12:29:25:5b:32:90:84:41:66:72:
20:6c:41:8f:10:1b:dc:bf:93:3c:5b:1c:dd:cd:f0:
a7:a2:3b:df:18:50:c6:1d:26:2d:ab:d9:52:96:44:
45:06:cb:19:ab:dd:57:ec:1b:b8:c2:fb:2d:68:b1:
a0:7f:a6:66:ff:2a:64:e8:81:81:5f:e4:ef:06:0b:
96:4b:0d:96:16:04:6c:b8:a3:4b:62:19:ab:85:d4:
1b:26:0c:8a:e9:3b:fe:69:fd:97:ca:76:f0:bf:8b:
26:eb:92:7a:ff:a0:ab:93:c3:bf:bc:6c:22:d9:03:
77:c1:76:a2:12:ce:6b:f1:d0:e2:f9:7b:c7:dd:91:
56:f6:dd:97:c6:60:cd:aa:20:e8:88:62:4e:96:0b:
11:89:c2:b9:8a:ca:a7:59:52:f7:4c:e7:f0:63:d4:
4d:1d:4c:07:ed:13:48:4c:bf:de:ca:b0:af:05:ae:
3c:e9:7d:1c:66:91:fb:d5:9e:b0:f5:58:47:b8:cf:
f5:8d:7d:99:e6:a6:9d:14:46:4e:c3:aa:57:61:f0:
3a:ac:dc:19:b2:d0:34:6d:d5:2b:52:a3:f2:c8:2a:
44:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:B9:34:92:11:FB:86:97:18:19:FB:27:A3:6F:B3:5D:B1:E0:03:25
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/zLk0khH7hpcYGfsno2-zXbHgAyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:2f00:181::/48
Signature Algorithm: sha256WithRSAEncryption
27:1b:28:af:44:ed:6b:c5:73:64:6d:67:f6:a9:da:59:4f:97:
e2:21:9d:c8:73:ba:c5:cd:66:78:18:a7:19:66:ef:82:90:0f:
dd:df:13:65:e8:b0:78:94:b2:ab:41:23:3d:65:02:d7:c7:dc:
23:24:17:11:a7:37:bd:18:93:61:7c:16:97:da:1d:27:44:eb:
de:bb:57:4b:e3:3e:e6:9b:f3:13:75:3a:23:7f:1b:66:22:90:
d2:79:a4:5c:82:4e:e4:ab:d7:96:c1:8b:f1:c6:f7:97:2c:db:
1c:5c:c9:ca:df:c5:99:f7:c8:47:6e:2e:7d:9c:aa:82:83:ba:
bb:5e:88:66:c3:89:80:50:b3:30:90:26:e8:25:a4:dd:8b:fb:
8d:c8:33:22:a3:76:bb:eb:41:13:57:5d:c0:45:39:ca:3c:30:
31:6c:0d:ba:11:54:65:3f:83:05:67:6d:34:78:36:ba:e3:db:
6a:5f:80:48:39:46:8d:33:84:7a:01:9b:ed:df:8f:8f:c5:4f:
a9:55:bd:db:82:e9:1a:20:70:5b:ee:95:8f:2b:26:f6:66:81:
da:47:46:76:e3:ea:9b:c7:03:f3:92:7f:7e:c3:7c:8a:33:94:
a4:78:29:59:ae:fc:b9:19:cf:0b:bc:4b:db:f4:75:81:fd:ec:
e8:50:3f:9d
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVw53YZhbSpZqjh0d1FnZT4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMwMTAyMDUxNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjY2I5MzQ5MjExZmI4Njk3MTgxOWZiMjdhMzZmYjM1ZGIxZTAwMzI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsvV4Ab76fsKmqM9pfO0Exm5CLmhC
xRE37iIYjS/0cVGlfxIpJVsykIRBZnIgbEGPEBvcv5M8WxzdzfCnojvfGFDGHSYt
q9lSlkRFBssZq91X7Bu4wvstaLGgf6Zm/ypk6IGBX+TvBguWSw2WFgRsuKNLYhmr
hdQbJgyK6Tv+af2Xynbwv4sm65J6/6Crk8O/vGwi2QN3wXaiEs5r8dDi+XvH3ZFW
9t2XxmDNqiDoiGJOlgsRicK5isqnWVL3TOfwY9RNHUwH7RNITL/eyrCvBa486X0c
ZpH71Z6w9VhHuM/1jX2Z5qadFEZOw6pXYfA6rNwZstA0bdUrUqPyyCpEHQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFMy5NJIR+4aXGBn7J6Nvs12x4AMlMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvekxrMGtoSDdocGNZR2Zzbm8yLXpYYkhnQXlVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhAvAAGB
MA0GCSqGSIb3DQEBCwUAA4IBAQAnGyivRO1rxXNkbWf2qdpZT5fiIZ3Ic7rFzWZ4
GKcZZu+CkA/d3xNl6LB4lLKrQSM9ZQLXx9wjJBcRpze9GJNhfBaX2h0nROveu1dL
4z7mm/MTdTojfxtmIpDSeaRcgk7kq9eWwYvxxveXLNscXMnK38WZ98hHbi59nKqC
g7q7Xohmw4mAULMwkCboJaTdi/uNyDMio3a760ETV13ARTnKPDAxbA26EVRlP4MF
Z200eDa649tqX4BIOUaNM4R6AZvt34+PxU+pVb3bgukaIHBb7pWPKyb2ZoHaR0Z2
4+qbxwPzkn9+w3yKM5SkeClZrvy5Gc8LvEvb9HWB/ezoUD+d
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:21 2023 by rpki-client on console-fra.rpki-client.org