Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f0cfa7-6254-4a81-996c-3b7ef25cfe83/1/S2jqusdfghG0zDUK8iyhJJHAQyA.roa
File: S2jqusdfghG0zDUK8iyhJJHAQyA.roa (raw, json)
Hash identifier: /ZKedjQhP39AjSYoErxZal9DyMKYbCBbCPSNcJ7tW64=
Subject key identifier: 4B:68:EA:BA:C7:5F:82:11:B4:CC:35:0A:F2:2C:A1:24:91:C0:43:20
Certificate issuer: /CN=a60e46d63a7183f70da492f02b8098c2bffc28be
Certificate serial: 01856E0ADF9710D350BDBF76C30F407170C4
Authority key identifier: A6:0E:46:D6:3A:71:83:F7:0D:A4:92:F0:2B:80:98:C2:BF:FC:28:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pg5G1jpxg_cNpJLwK4CYwr_8KL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f0cfa7-6254-4a81-996c-3b7ef25cfe83/1/S2jqusdfghG0zDUK8iyhJJHAQyA.roa
Signing time: Sun 01 Jan 2023 15:54:44 +0000
ROA not before: Sun 01 Jan 2023 15:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204660
IP address blocks: 2001:67c:a18::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0a:df:97:10:d3:50:bd:bf:76:c3:0f:40:71:70:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a60e46d63a7183f70da492f02b8098c2bffc28be
Validity
Not Before: Jan 1 15:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b68eabac75f8211b4cc350af22ca12491c04320
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:98:a9:2b:db:25:64:ce:ba:ef:10:84:24:6e:
bb:75:aa:75:45:09:b2:c1:da:e3:20:66:ca:1e:0b:
f6:38:16:a5:ce:ff:00:69:bc:d4:96:18:1b:63:0b:
f8:27:19:c5:a2:04:78:5a:38:95:fd:42:9f:cc:fd:
2a:73:79:c8:30:38:72:4e:03:9d:16:ca:4b:6e:31:
2e:27:4b:d7:c7:18:db:02:3d:55:d6:68:d3:58:44:
ae:84:66:44:eb:1e:4e:c4:50:91:ba:17:c3:bc:40:
57:3e:b2:28:d8:e4:ad:89:17:19:82:a9:76:37:00:
c6:d6:75:61:97:70:7a:54:a3:47:b9:43:40:14:c3:
e0:62:e0:15:8d:0b:26:78:a3:5a:e6:8f:94:54:fb:
1e:ff:ee:0c:51:e1:e2:11:1b:e6:f0:8e:6b:2f:84:
01:c6:88:18:95:ff:b7:06:6e:e9:1f:d8:ca:c7:a8:
ac:28:f3:e4:32:6d:53:dc:93:5b:a6:42:29:f1:8c:
35:43:fc:e8:0c:01:d3:f3:4e:49:5d:c8:32:5a:79:
cf:dd:fb:63:8e:5a:96:d0:db:69:6a:ab:31:ab:3d:
8f:bd:31:9b:a0:29:7c:e1:d2:97:6b:ff:75:7a:f0:
5f:59:d3:98:81:93:da:35:ef:9e:df:3c:0a:cd:71:
dd:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:68:EA:BA:C7:5F:82:11:B4:CC:35:0A:F2:2C:A1:24:91:C0:43:20
X509v3 Authority Key Identifier:
keyid:A6:0E:46:D6:3A:71:83:F7:0D:A4:92:F0:2B:80:98:C2:BF:FC:28:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pg5G1jpxg_cNpJLwK4CYwr_8KL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f0cfa7-6254-4a81-996c-3b7ef25cfe83/1/S2jqusdfghG0zDUK8iyhJJHAQyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f0cfa7-6254-4a81-996c-3b7ef25cfe83/1/pg5G1jpxg_cNpJLwK4CYwr_8KL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:a18::/48
Signature Algorithm: sha256WithRSAEncryption
9b:58:5a:a1:b7:cb:a1:d0:0b:94:0e:78:a2:6d:1b:1c:47:b5:
81:ea:71:5c:a8:9f:65:b5:63:b2:fd:33:53:b7:57:35:78:65:
3a:ff:c4:85:98:42:7d:d9:e7:fe:02:f8:dd:26:72:58:72:bd:
91:fc:fa:b0:02:89:b7:d6:ec:a0:44:6f:37:5a:64:37:85:86:
27:99:54:de:bf:4b:f2:78:96:53:84:d1:0f:d5:59:54:e8:ff:
03:19:fe:67:4a:ab:fb:b9:80:fb:d7:d3:eb:ca:27:40:22:25:
4d:c3:f9:9f:a8:21:36:99:28:82:f6:5a:6c:26:a9:e6:2c:f7:
8d:60:6f:fb:6a:b1:65:05:cc:5f:13:e6:d1:3c:fc:97:47:e2:
1a:3a:82:9a:21:56:d0:70:f5:6c:90:35:fa:4d:15:08:42:9c:
75:a0:d3:f0:b9:69:4e:3e:9f:5f:41:74:c2:14:44:eb:c6:ec:
dc:52:f8:82:f4:be:dd:22:0e:0b:c9:80:94:aa:a4:bc:36:37:
0b:29:91:87:31:70:ac:26:ea:7f:ff:0d:57:cb:83:ab:48:2d:
7c:86:cf:4f:6f:77:00:c7:0e:a6:48:3b:6d:0a:f8:82:8d:c9:
0d:28:15:72:4a:50:b5:a9:b5:da:d3:9c:04:65:fb:62:08:67:
e9:0e:9b:8c
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVuCt+XENNQvb92ww9AcXDEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE2MGU0NmQ2M2E3MTgzZjcwZGE0OTJmMDJiODA5OGMyYmZm
YzI4YmUwHhcNMjMwMTAxMTU1NDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YjY4ZWFiYWM3NWY4MjExYjRjYzM1MGFmMjJjYTEyNDkxYzA0MzIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApZipK9slZM667xCEJG67dap1RQmy
wdrjIGbKHgv2OBalzv8AabzUlhgbYwv4JxnFogR4WjiV/UKfzP0qc3nIMDhyTgOd
FspLbjEuJ0vXxxjbAj1V1mjTWESuhGZE6x5OxFCRuhfDvEBXPrIo2OStiRcZgql2
NwDG1nVhl3B6VKNHuUNAFMPgYuAVjQsmeKNa5o+UVPse/+4MUeHiERvm8I5rL4QB
xogYlf+3Bm7pH9jKx6isKPPkMm1T3JNbpkIp8Yw1Q/zoDAHT805JXcgyWnnP3ftj
jlqW0Ntpaqsxqz2PvTGboCl84dKXa/91evBfWdOYgZPaNe+e3zwKzXHd+wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFEto6rrHX4IRtMw1CvIsoSSRwEMgMB8GA1UdIwQY
MBaAFKYORtY6cYP3DaSS8CuAmMK//Ci+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcGc1RzFqcHhnX2NOcEpMd0s0Q1l3cl84S0w0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC9mMGNmYTctNjI1NC00YTgxLTk5NmMt
M2I3ZWYyNWNmZTgzLzEvUzJqcXVzZGZnaEcwekRVSzhpeWhKSkhBUXlBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC9mMGNmYTctNjI1NC00YTgxLTk5NmMtM2I3ZWYyNWNmZTgz
LzEvcGc1RzFqcHhnX2NOcEpMd0s0Q1l3cl84S0w0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAoY
MA0GCSqGSIb3DQEBCwUAA4IBAQCbWFqht8uh0AuUDniibRscR7WB6nFcqJ9ltWOy
/TNTt1c1eGU6/8SFmEJ92ef+AvjdJnJYcr2R/PqwAom31uygRG83WmQ3hYYnmVTe
v0vyeJZThNEP1VlU6P8DGf5nSqv7uYD719PryidAIiVNw/mfqCE2mSiC9lpsJqnm
LPeNYG/7arFlBcxfE+bRPPyXR+IaOoKaIVbQcPVskDX6TRUIQpx1oNPwuWlOPp9f
QXTCFETrxuzcUviC9L7dIg4LyYCUqqS8NjcLKZGHMXCsJup//w1Xy4OrSC18hs9P
b3cAxw6mSDttCviCjckNKBVySlC1qbXa05wEZftiCGfpDpuM
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:44 2024 by rpki-client on console-ams.rpki-client.org