Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/8QLLz30vXnc0PW0EXT6XvskihpQ.roa
File: 8QLLz30vXnc0PW0EXT6XvskihpQ.roa (raw, json)
Hash identifier: jNhrSNpAPMdSVtZBl8+OIRW2wVaFd4pOm4xL1E2/Vls=
Subject key identifier: F1:02:CB:CF:7D:2F:5E:77:34:3D:6D:04:5D:3E:97:BE:C9:22:86:94
Certificate issuer: /CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Certificate serial: 018B81C5A70E3B5509DA9C55CBBDECCDAD5C
Authority key identifier: B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/8QLLz30vXnc0PW0EXT6XvskihpQ.roa
Signing time: Mon 30 Oct 2023 18:08:16 +0000
ROA not before: Mon 30 Oct 2023 18:08:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44812
IP address blocks: 2a0a:f583::/32 maxlen: 32
2a11:8f86::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 11 Nov 2023 14:56:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:81:c5:a7:0e:3b:55:09:da:9c:55:cb:bd:ec:cd:ad:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Validity
Not Before: Oct 30 18:08:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f102cbcf7d2f5e77343d6d045d3e97bec9228694
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:0c:88:d9:eb:72:30:86:9d:6b:c7:f8:6a:f2:
0d:7a:4c:2d:13:19:fc:fe:13:4b:40:e6:3b:86:7f:
28:8b:e7:d9:f3:7e:31:5e:98:6a:c5:70:b8:40:f8:
44:f7:d9:d0:ab:f9:e2:ab:d4:f4:f1:d6:16:d0:83:
b7:82:c5:b6:48:9f:b3:1d:56:b8:81:2a:41:ec:3d:
dd:a0:20:07:d9:44:6c:54:0b:f7:07:86:1b:98:a2:
85:10:a3:f8:67:e9:d8:b9:ef:71:ac:6c:72:9e:bd:
22:7d:ab:4b:35:2f:84:07:be:0c:c6:c6:c3:53:db:
a9:ac:a2:84:8c:64:eb:79:34:b0:54:1d:f1:90:61:
0e:6e:09:0f:b0:e1:44:41:6d:86:28:65:31:02:ee:
b0:47:cc:45:88:cc:41:e8:68:5b:1f:96:ae:c9:7a:
f3:99:98:23:29:90:d1:d7:0c:7e:94:32:f8:4d:42:
6b:7d:0c:74:85:63:b7:41:8a:10:63:85:29:45:69:
f6:fc:7f:99:e7:13:64:74:5b:a9:45:d9:1a:ee:a5:
96:e5:1c:0c:8d:b4:83:24:74:f2:55:83:0d:89:e1:
97:f0:14:3c:01:36:75:cc:7b:69:b2:91:ac:ec:61:
68:7d:7e:a4:50:72:4c:04:56:8c:b5:57:e0:b7:e5:
52:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:02:CB:CF:7D:2F:5E:77:34:3D:6D:04:5D:3E:97:BE:C9:22:86:94
X509v3 Authority Key Identifier:
keyid:B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/8QLLz30vXnc0PW0EXT6XvskihpQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:f583::/32
2a11:8f86::/32
Signature Algorithm: sha256WithRSAEncryption
2f:3c:07:0a:56:73:ae:35:84:ea:b4:75:df:0c:83:40:b9:91:
b2:06:83:1d:cd:c4:34:fd:67:2a:00:27:30:77:9b:0a:8b:49:
38:f3:d0:d7:51:7f:87:a6:3a:5b:1e:93:16:11:ac:5b:c7:ce:
90:96:e0:a5:41:c3:5d:9f:43:37:74:cb:dc:cf:a3:67:a1:92:
b6:12:a1:65:23:bb:94:90:4d:98:01:a4:fa:e0:9b:c4:79:2d:
a0:34:42:a0:18:c0:68:d0:e2:71:2e:d1:a5:59:74:09:46:98:
33:d6:a7:ef:4f:ff:d4:d1:48:5e:34:9a:03:aa:df:93:8d:aa:
f8:54:13:9f:3c:bd:c1:62:97:07:e3:e0:84:b9:63:2d:99:5c:
6c:f7:49:c6:bc:28:93:d7:b7:f8:c3:70:ae:55:c0:f2:d7:43:
d3:a7:5a:04:f7:23:c9:af:e8:4f:01:10:6b:54:6c:41:29:ad:
80:3e:7f:16:47:05:79:b2:39:a1:f2:c7:fc:a1:82:b5:13:40:
c4:24:ed:8b:67:ab:38:c1:f4:54:49:35:03:ee:68:5e:31:ca:
e7:c6:3b:12:ad:6b:ef:ad:f3:eb:da:72:6c:60:9a:90:a7:17:
9c:6d:df:b7:9c:7d:27:cd:5d:55:4b:19:98:cc:b1:67:74:4d:
f7:81:ce:fd
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYuBxacOO1UJ2pxVy73sza1cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwZjYxOWVmMjAwODQwZGZhOGZkNDM1NjdjN2E5NzhjMTUz
MTJkN2YwHhcNMjMxMDMwMTgwODE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMTAyY2JjZjdkMmY1ZTc3MzQzZDZkMDQ1ZDNlOTdiZWM5MjI4Njk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4AyI2etyMIada8f4avINekwtExn8
/hNLQOY7hn8oi+fZ834xXphqxXC4QPhE99nQq/niq9T08dYW0IO3gsW2SJ+zHVa4
gSpB7D3doCAH2URsVAv3B4YbmKKFEKP4Z+nYue9xrGxynr0ifatLNS+EB74MxsbD
U9uprKKEjGTreTSwVB3xkGEObgkPsOFEQW2GKGUxAu6wR8xFiMxB6GhbH5auyXrz
mZgjKZDR1wx+lDL4TUJrfQx0hWO3QYoQY4UpRWn2/H+Z5xNkdFupRdka7qWW5RwM
jbSDJHTyVYMNieGX8BQ8ATZ1zHtpspGs7GFofX6kUHJMBFaMtVfgt+VSGwIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFPECy899L153ND1tBF0+l77JIoaUMB8GA1UdIwQY
MBaAFLD2Ge8gCEDfqP1DVnx6l4wVMS1/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1BZWjd5QUlRTi1vX1VOV2ZIcVhqQlV4TFg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8wZTE4ZDItZDgwYi00YWEwLWFhZWYt
MDY5NjYxNjc1MTA2LzEvOFFMTHozMHZYbmMwUFcwRVhUNlh2c2tpaHBRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yi8wZTE4ZDItZDgwYi00YWEwLWFhZWYtMDY5NjYxNjc1MTA2
LzEvc1BZWjd5QUlRTi1vX1VOV2ZIcVhqQlV4TFg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAAjAOAwUAKgr1gwMF
ACoRj4YwDQYJKoZIhvcNAQELBQADggEBAC88BwpWc641hOq0dd8Mg0C5kbIGgx3N
xDT9ZyoAJzB3mwqLSTjz0NdRf4emOlsekxYRrFvHzpCW4KVBw12fQzd0y9zPo2eh
krYSoWUju5SQTZgBpPrgm8R5LaA0QqAYwGjQ4nEu0aVZdAlGmDPWp+9P/9TRSF40
mgOq35ONqvhUE588vcFilwfj4IS5Yy2ZXGz3Sca8KJPXt/jDcK5VwPLXQ9OnWgT3
I8mv6E8BEGtUbEEprYA+fxZHBXmyOaHyx/yhgrUTQMQk7YtnqzjB9FRJNQPuaF4x
yufGOxKta++t8+vacmxgmpCnF5xt37ecfSfNXVVLGZjMsWd0TfeBzv0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:18 2024 by rpki-client on console-ams.rpki-client.org