Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/853ee3-3a4f-4d95-9bdb-b03c2fbdc644/1/IxsBUn4jsjOEzn1NMSZAtWUVWZQ.roa
File: IxsBUn4jsjOEzn1NMSZAtWUVWZQ.roa (raw, json)
Hash identifier: o+FgkyYgBO9amnzuIyofVMvsGNvepnqBRS76ZTO6B9U=
Subject key identifier: 23:1B:01:52:7E:23:B2:33:84:CE:7D:4D:31:26:40:B5:65:15:59:94
Certificate issuer: /CN=ee0739d0528dcb4fce578d11f7ec34b0e37452cf
Certificate serial: 01856ED4A7880CF2C3C8C0431C91A6013076
Authority key identifier: EE:07:39:D0:52:8D:CB:4F:CE:57:8D:11:F7:EC:34:B0:E3:74:52:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7gc50FKNy0_OV40R9-w0sON0Us8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/853ee3-3a4f-4d95-9bdb-b03c2fbdc644/1/IxsBUn4jsjOEzn1NMSZAtWUVWZQ.roa
Signing time: Sun 01 Jan 2023 19:35:08 +0000
ROA not before: Sun 01 Jan 2023 19:35:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136620
IP address blocks: 2001:67c:17fc::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:a7:88:0c:f2:c3:c8:c0:43:1c:91:a6:01:30:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee0739d0528dcb4fce578d11f7ec34b0e37452cf
Validity
Not Before: Jan 1 19:35:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=231b01527e23b23384ce7d4d312640b565155994
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:0f:3a:44:c1:10:9c:8a:18:06:17:24:26:99:
c5:13:1b:7e:e5:b4:b1:1d:1b:fe:e3:e3:93:eb:bf:
20:da:7b:3f:af:ec:06:35:32:f9:3c:95:65:40:c9:
4c:6b:39:fc:63:2a:67:63:dc:13:ab:b6:52:82:94:
dd:d9:45:9c:d1:20:cb:92:6d:f3:b2:05:75:18:d1:
f7:42:38:79:14:e5:f0:d3:3b:ba:65:a8:73:f5:06:
5e:c2:fb:b1:c2:85:4f:76:27:3d:74:99:ae:5d:24:
64:e8:3a:70:67:a7:77:7f:7a:2e:f8:e7:9c:e9:3a:
a2:61:f6:ce:fb:e7:c6:7f:e2:f8:d2:0b:81:26:09:
96:c5:ee:d9:75:06:4e:47:5f:73:de:7f:1e:21:83:
20:85:ec:2c:eb:24:29:10:33:38:eb:4c:28:3b:00:
7b:1b:f5:83:d4:0a:39:76:61:6c:83:f3:bb:cd:64:
05:6e:b3:57:6a:e6:18:e7:04:ca:2d:a1:e2:42:00:
2b:a1:a1:79:36:8f:fd:7a:a1:7a:e6:ba:d3:c9:dd:
1c:3d:31:87:1f:0c:0b:09:3a:38:a2:6d:5a:69:4b:
39:82:77:8e:39:41:79:35:bb:71:65:5f:c4:03:f5:
42:65:59:e5:65:51:d9:c5:36:8a:dd:27:4b:f6:83:
f7:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:1B:01:52:7E:23:B2:33:84:CE:7D:4D:31:26:40:B5:65:15:59:94
X509v3 Authority Key Identifier:
keyid:EE:07:39:D0:52:8D:CB:4F:CE:57:8D:11:F7:EC:34:B0:E3:74:52:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7gc50FKNy0_OV40R9-w0sON0Us8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/853ee3-3a4f-4d95-9bdb-b03c2fbdc644/1/IxsBUn4jsjOEzn1NMSZAtWUVWZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/853ee3-3a4f-4d95-9bdb-b03c2fbdc644/1/7gc50FKNy0_OV40R9-w0sON0Us8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:17fc::/48
Signature Algorithm: sha256WithRSAEncryption
5e:56:92:66:4e:9c:3b:ba:bb:19:9b:28:c4:e5:c6:7a:ce:c9:
19:05:83:39:0d:9c:37:73:d8:40:29:5e:7d:54:53:3f:4a:74:
1b:72:08:3e:d2:b9:79:67:c4:a2:7a:1e:63:07:2c:56:04:87:
f0:17:cb:5e:c6:67:8f:b7:54:6c:7c:d0:7b:3c:2a:5e:7c:58:
02:e6:c4:57:13:58:02:53:57:bd:4f:ad:e2:c2:76:99:f0:5d:
96:d5:c0:72:c1:a7:49:b4:ad:e4:2e:8a:4b:58:a6:74:5c:cb:
d0:21:bd:ca:48:16:7e:1f:da:92:93:a6:0d:fa:dd:dc:c9:5f:
49:e2:8f:a1:11:10:6f:f8:9f:67:85:15:0e:ba:09:40:41:8b:
9b:45:08:66:7c:6c:e7:28:f3:ef:86:ed:b9:0e:a6:dc:65:05:
64:ae:d7:57:77:5d:f7:1e:e1:a4:f9:b5:49:49:13:52:e5:ff:
de:4e:74:9e:07:2c:38:a0:e6:80:82:71:9a:f9:1f:87:ca:6c:
21:d4:12:49:f0:df:5b:70:ca:f0:8a:1a:5d:2e:6d:e9:54:c6:
2b:56:f4:d2:a7:da:38:35:81:f1:d3:f0:5e:5c:af:d7:0a:b0:
2b:b7:05:ad:ee:8c:0e:38:8f:64:ff:2f:aa:62:59:30:6a:96:
21:bb:c3:55
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVu1KeIDPLDyMBDHJGmATB2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlMDczOWQwNTI4ZGNiNGZjZTU3OGQxMWY3ZWMzNGIwZTM3
NDUyY2YwHhcNMjMwMTAxMTkzNTA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMzFiMDE1MjdlMjNiMjMzODRjZTdkNGQzMTI2NDBiNTY1MTU1OTk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsg86RMEQnIoYBhckJpnFExt+5bSx
HRv+4+OT678g2ns/r+wGNTL5PJVlQMlMazn8YypnY9wTq7ZSgpTd2UWc0SDLkm3z
sgV1GNH3Qjh5FOXw0zu6Zahz9QZewvuxwoVPdic9dJmuXSRk6DpwZ6d3f3ou+Oec
6TqiYfbO++fGf+L40guBJgmWxe7ZdQZOR19z3n8eIYMghews6yQpEDM460woOwB7
G/WD1Ao5dmFsg/O7zWQFbrNXauYY5wTKLaHiQgAroaF5No/9eqF65rrTyd0cPTGH
HwwLCTo4om1aaUs5gneOOUF5NbtxZV/EA/VCZVnlZVHZxTaK3SdL9oP3XQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFCMbAVJ+I7IzhM59TTEmQLVlFVmUMB8GA1UdIwQY
MBaAFO4HOdBSjctPzleNEffsNLDjdFLPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN2djNTBGS055MF9PVjQwUjktdzBzT04wVXM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni84NTNlZTMtM2E0Zi00ZDk1LTliZGIt
YjAzYzJmYmRjNjQ0LzEvSXhzQlVuNGpzak9Fem4xTk1TWkF0V1VWV1pRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni84NTNlZTMtM2E0Zi00ZDk1LTliZGItYjAzYzJmYmRjNjQ0
LzEvN2djNTBGS055MF9PVjQwUjktdzBzT04wVXM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfBf8
MA0GCSqGSIb3DQEBCwUAA4IBAQBeVpJmTpw7ursZmyjE5cZ6zskZBYM5DZw3c9hA
KV59VFM/SnQbcgg+0rl5Z8Sieh5jByxWBIfwF8texmePt1RsfNB7PCpefFgC5sRX
E1gCU1e9T63iwnaZ8F2W1cBywadJtK3kLopLWKZ0XMvQIb3KSBZ+H9qSk6YN+t3c
yV9J4o+hERBv+J9nhRUOuglAQYubRQhmfGznKPPvhu25DqbcZQVkrtdXd133HuGk
+bVJSRNS5f/eTnSeByw4oOaAgnGa+R+Hymwh1BJJ8N9bcMrwihpdLm3pVMYrVvTS
p9o4NYHx0/BeXK/XCrArtwWt7owOOI9k/y+qYlkwapYhu8NV
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:14 2023 by rpki-client on console-fra.rpki-client.org