Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/e8cb44-a954-4672-b9a4-a49e5c6633bd/1/nO9iKkQpn2jj77CK_lO5cUuk6yk.roa
File: nO9iKkQpn2jj77CK_lO5cUuk6yk.roa (raw, json)
Hash identifier: +tpPppSYyBC7m1EXZyNgBrjer6H8rkx3LwfMJGfzcxo=
Subject key identifier: 9C:EF:62:2A:44:29:9F:68:E3:EF:B0:8A:FE:53:B9:71:4B:A4:EB:29
Certificate issuer: /CN=faccbb72aa9884a5bf8d0e757404a17e5e23322c
Certificate serial: 018C2ECDB25611C55DC27B16BEBAD7E2CEB8
Authority key identifier: FA:CC:BB:72:AA:98:84:A5:BF:8D:0E:75:74:04:A1:7E:5E:23:32:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-sy7cqqYhKW_jQ51dAShfl4jMiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/e8cb44-a954-4672-b9a4-a49e5c6633bd/1/nO9iKkQpn2jj77CK_lO5cUuk6yk.roa
Signing time: Sun 03 Dec 2023 08:31:21 +0000
ROA not before: Sun 03 Dec 2023 08:31:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212330
IP address blocks: 2a04:2dc0:1d::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:2e:cd:b2:56:11:c5:5d:c2:7b:16:be:ba:d7:e2:ce:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=faccbb72aa9884a5bf8d0e757404a17e5e23322c
Validity
Not Before: Dec 3 08:31:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9cef622a44299f68e3efb08afe53b9714ba4eb29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:39:d2:9e:61:0c:29:f9:ac:bb:15:d2:2a:7a:
7c:63:18:f1:e6:6a:40:47:a0:64:49:fc:f1:34:e9:
e5:4e:5b:a7:4c:f6:f0:38:25:dc:91:6c:80:d2:a9:
0a:df:bf:69:db:35:73:af:d6:ad:86:37:a6:c1:ec:
71:ad:8b:e0:50:8a:a2:a8:2e:0c:fb:58:b9:78:1c:
22:e7:1a:a9:cb:2d:2c:7f:31:f7:7d:55:18:d8:ab:
c7:85:b5:f7:6c:dd:ec:f3:52:76:4e:08:ec:95:da:
6a:68:ad:2e:e0:29:30:de:95:17:76:f5:8f:57:b7:
1d:2f:0d:0e:1a:a9:28:f1:bb:67:2a:be:9d:f9:ba:
79:05:08:92:a3:77:5e:6b:a5:bf:9a:57:7f:92:9f:
37:b0:ec:71:8e:74:40:41:dc:85:74:73:ca:0a:67:
22:98:aa:5b:3a:99:fb:6d:15:dc:b9:d2:4d:b8:f6:
0d:b3:d1:9d:34:5b:a7:c7:fd:46:f4:a5:dc:64:2d:
09:da:10:82:94:af:02:4b:8c:74:40:a2:e2:c7:41:
fa:31:19:3d:4e:22:6f:77:e8:f1:08:3b:bc:e3:d6:
77:53:a7:8b:a1:35:96:ec:78:46:93:27:0e:1c:61:
f7:82:82:83:84:de:ea:94:e4:46:c3:b3:1b:e6:55:
4a:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:EF:62:2A:44:29:9F:68:E3:EF:B0:8A:FE:53:B9:71:4B:A4:EB:29
X509v3 Authority Key Identifier:
keyid:FA:CC:BB:72:AA:98:84:A5:BF:8D:0E:75:74:04:A1:7E:5E:23:32:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-sy7cqqYhKW_jQ51dAShfl4jMiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/e8cb44-a954-4672-b9a4-a49e5c6633bd/1/nO9iKkQpn2jj77CK_lO5cUuk6yk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/e8cb44-a954-4672-b9a4-a49e5c6633bd/1/1-sy7cqqYhKW_jQ51dAShfl4jMiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a04:2dc0:1d::/48
Signature Algorithm: sha256WithRSAEncryption
60:a1:2f:18:d1:54:21:2c:e6:8c:1d:af:a7:a6:cf:be:0f:b4:
ff:6b:5b:34:3c:82:c9:a5:11:4e:a9:ab:70:02:03:82:c4:95:
05:06:1f:27:7a:86:62:2b:56:8f:01:ec:2f:8d:59:4e:92:f0:
55:c0:4b:99:94:2c:f4:30:be:c7:0c:fa:26:30:01:a0:2b:24:
ba:10:22:bf:9b:97:ad:0b:cf:8d:e6:ad:0f:d9:f0:1e:89:6c:
c1:81:fc:8d:ee:7b:ba:a7:79:ab:a6:8e:22:d6:f6:c4:85:1b:
03:fb:de:35:81:41:db:56:8c:18:f4:b3:ba:98:29:0a:fc:6c:
7f:94:ff:37:f9:3e:78:5d:ac:71:ef:1b:42:f1:1a:ab:9b:c9:
e3:42:60:34:b6:2c:8a:ff:49:f3:8c:ca:f5:34:f0:92:77:d1:
14:36:e1:e4:01:07:b4:7b:01:7e:5b:1f:e0:da:d9:0a:ff:4b:
75:3a:f2:0d:a4:92:25:8c:96:dd:3b:56:58:1e:a4:ac:18:5f:
ae:f1:00:a2:19:11:2d:d1:06:49:02:ed:f0:67:d0:aa:e8:78:
4d:62:79:8e:cc:46:bc:23:86:1d:c0:fd:93:69:01:dc:ba:bb:
ae:20:09:3b:59:3c:7e:6d:ec:76:b8:49:a5:a3:d3:e9:dd:49:
eb:e3:ce:be
-----BEGIN CERTIFICATE-----
MIIFAjCCA+qgAwIBAgISAYwuzbJWEcVdwnsWvrrX4s64MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhY2NiYjcyYWE5ODg0YTViZjhkMGU3NTc0MDRhMTdlNWUy
MzMyMmMwHhcNMjMxMjAzMDgzMTIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5Y2VmNjIyYTQ0Mjk5ZjY4ZTNlZmIwOGFmZTUzYjk3MTRiYTRlYjI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAojnSnmEMKfmsuxXSKnp8Yxjx5mpA
R6BkSfzxNOnlTlunTPbwOCXckWyA0qkK379p2zVzr9athjemwexxrYvgUIqiqC4M
+1i5eBwi5xqpyy0sfzH3fVUY2KvHhbX3bN3s81J2TgjsldpqaK0u4Ckw3pUXdvWP
V7cdLw0OGqko8btnKr6d+bp5BQiSo3dea6W/mld/kp83sOxxjnRAQdyFdHPKCmci
mKpbOpn7bRXcudJNuPYNs9GdNFunx/1G9KXcZC0J2hCClK8CS4x0QKLix0H6MRk9
TiJvd+jxCDu849Z3U6eLoTWW7HhGkycOHGH3goKDhN7qlORGw7Mb5lVK9wIDAQAB
o4ICDjCCAgowHQYDVR0OBBYEFJzvYipEKZ9o4++wiv5TuXFLpOspMB8GA1UdIwQY
MBaAFPrMu3KqmISlv40OdXQEoX5eIzIsMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1zeTdjcXFZaEtXX2pRNTFkQVNoZmw0ak1pdy5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTMvZThjYjQ0LWE5NTQtNDY3Mi1iOWE0
LWE0OWU1YzY2MzNiZC8xL25POWlLa1FwbjJqajc3Q0tfbE81Y1V1azZ5ay5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNTMvZThjYjQ0LWE5NTQtNDY3Mi1iOWE0LWE0OWU1YzY2MzNi
ZC8xLzEtc3k3Y3FxWWhLV19qUTUxZEFTaGZsNGpNaXcuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqBC3A
AB0wDQYJKoZIhvcNAQELBQADggEBAGChLxjRVCEs5owdr6emz74PtP9rWzQ8gsml
EU6pq3ACA4LElQUGHyd6hmIrVo8B7C+NWU6S8FXAS5mULPQwvscM+iYwAaArJLoQ
Ir+bl60Lz43mrQ/Z8B6JbMGB/I3ue7qneaumjiLW9sSFGwP73jWBQdtWjBj0s7qY
KQr8bH+U/zf5PnhdrHHvG0LxGqubyeNCYDS2LIr/SfOMyvU08JJ30RQ24eQBB7R7
AX5bH+Da2Qr/S3U68g2kkiWMlt07VlgepKwYX67xAKIZES3RBkkC7fBn0KroeE1i
eY7MRrwjhh3A/ZNpAdy6u64gCTtZPH5t7Ha4SaWj0+ndSevjzr4=
-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:31 2024 by rpki-client on console-fra.rpki-client.org