Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/082f12-513b-4eb9-a171-c6f6d444915f/1/v3LCnf-y7NBG3AElBOXQM8SCXxg.roa
File: v3LCnf-y7NBG3AElBOXQM8SCXxg.roa (raw, json)
Hash identifier: jZ108+qa4oH5lZG+sehfp34X3CUT0HnRuisybIadz2o=
Subject key identifier: BF:72:C2:9D:FF:B2:EC:D0:46:DC:01:25:04:E5:D0:33:C4:82:5F:18
Certificate issuer: /CN=cbd942d96ee94a7a5a652ef7ac855dc9401415df
Certificate serial: 01856C814141ADE89A490A5B162EA9FA2771
Authority key identifier: CB:D9:42:D9:6E:E9:4A:7A:5A:65:2E:F7:AC:85:5D:C9:40:14:15:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9lC2W7pSnpaZS73rIVdyUAUFd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/082f12-513b-4eb9-a171-c6f6d444915f/1/v3LCnf-y7NBG3AElBOXQM8SCXxg.roa
Signing time: Sun 01 Jan 2023 08:44:48 +0000
ROA not before: Sun 01 Jan 2023 08:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64404
IP address blocks: 2001:678:814::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:81:41:41:ad:e8:9a:49:0a:5b:16:2e:a9:fa:27:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbd942d96ee94a7a5a652ef7ac855dc9401415df
Validity
Not Before: Jan 1 08:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf72c29dffb2ecd046dc012504e5d033c4825f18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:26:2a:ca:2a:03:41:29:f2:6c:8f:d7:10:a2:
6d:7f:a8:71:f0:b7:ca:99:13:c3:a6:fd:d6:7e:83:
d2:56:27:e8:d1:21:25:a4:56:dc:d8:6d:9c:0a:df:
74:92:2a:8d:25:50:eb:8b:3e:f8:6e:77:28:b1:d0:
10:02:b4:f1:44:88:f5:b5:94:f5:03:ae:82:fa:49:
f9:e0:97:fe:da:71:a9:f6:79:41:bb:c0:d1:06:a6:
b5:ee:dc:05:9a:49:05:7a:b5:d1:de:1c:ef:18:5f:
93:ff:a3:b5:03:da:de:9b:af:46:38:b5:6f:58:87:
c3:8c:0e:05:96:29:48:c7:8a:a0:8a:cb:a3:8b:28:
bb:f3:aa:90:1e:f5:12:0b:db:89:ea:1d:0b:85:32:
e3:39:ec:fb:b5:19:84:ce:52:79:d4:64:86:50:4d:
a3:cc:5b:3b:33:b3:49:e9:03:c9:ce:68:73:66:68:
8d:94:f6:5f:1d:7a:1f:53:4a:7e:e8:f1:d0:03:f2:
e0:63:2e:01:cb:84:b0:56:41:2c:a2:ca:e1:3e:7a:
8a:ac:9b:fe:47:20:25:c9:48:83:de:68:a1:c4:99:
da:89:55:0b:e6:a3:4c:26:1b:aa:9c:ef:87:20:c1:
40:d7:fc:c5:71:f1:a5:7e:0b:f2:ed:d5:49:78:84:
e9:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:72:C2:9D:FF:B2:EC:D0:46:DC:01:25:04:E5:D0:33:C4:82:5F:18
X509v3 Authority Key Identifier:
keyid:CB:D9:42:D9:6E:E9:4A:7A:5A:65:2E:F7:AC:85:5D:C9:40:14:15:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9lC2W7pSnpaZS73rIVdyUAUFd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/082f12-513b-4eb9-a171-c6f6d444915f/1/v3LCnf-y7NBG3AElBOXQM8SCXxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/082f12-513b-4eb9-a171-c6f6d444915f/1/y9lC2W7pSnpaZS73rIVdyUAUFd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:814::/48
Signature Algorithm: sha256WithRSAEncryption
39:51:57:12:d4:c6:37:19:4c:c1:81:c0:03:7d:ae:49:91:e6:
53:3d:68:13:bf:b1:7f:c8:2b:76:ef:3e:5e:3a:7c:58:8e:5e:
fd:97:df:f2:0b:44:43:d6:4a:fa:e6:d3:6d:a8:89:78:84:05:
c8:1d:e8:dd:7c:a0:47:7d:64:a2:9a:1f:9a:88:4e:01:de:55:
98:cc:7c:18:0f:a7:d1:1d:1f:33:38:cd:ca:52:38:28:19:b4:
65:cc:36:77:6f:b6:11:f8:21:de:7f:89:5f:e1:a4:d1:04:40:
b9:fa:a7:40:8e:a6:c1:76:07:e5:65:92:6d:41:f9:ac:46:53:
a1:d1:27:13:c4:6c:82:34:43:e6:1d:45:b4:0f:70:24:3e:4f:
8b:73:83:4a:88:15:e6:28:f0:35:27:94:71:2e:7e:b7:60:d9:
b7:ce:88:32:cd:8c:3c:f5:78:d4:a2:0d:47:25:a3:3a:fb:f1:
a2:a6:68:b7:5c:e5:08:ec:ff:8d:8b:8d:96:de:19:eb:ff:cf:
92:e4:c4:a2:4e:d3:13:4f:9e:f9:70:48:42:c8:3b:30:d0:51:
ab:c6:d9:97:85:d6:f0:c2:57:29:46:8c:6a:d3:33:4f:0e:e3:
77:8d:c4:6a:8d:61:a1:3e:0c:6b:3d:8f:99:fe:70:34:74:e2:
c1:2c:86:23
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVsgUFBreiaSQpbFi6p+idxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiZDk0MmQ5NmVlOTRhN2E1YTY1MmVmN2FjODU1ZGM5NDAx
NDE1ZGYwHhcNMjMwMTAxMDg0NDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiZjcyYzI5ZGZmYjJlY2QwNDZkYzAxMjUwNGU1ZDAzM2M0ODI1ZjE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArSYqyioDQSnybI/XEKJtf6hx8LfK
mRPDpv3WfoPSVifo0SElpFbc2G2cCt90kiqNJVDriz74bncosdAQArTxRIj1tZT1
A66C+kn54Jf+2nGp9nlBu8DRBqa17twFmkkFerXR3hzvGF+T/6O1A9rem69GOLVv
WIfDjA4FlilIx4qgisujiyi786qQHvUSC9uJ6h0LhTLjOez7tRmEzlJ51GSGUE2j
zFs7M7NJ6QPJzmhzZmiNlPZfHXofU0p+6PHQA/LgYy4By4SwVkEsosrhPnqKrJv+
RyAlyUiD3mihxJnaiVUL5qNMJhuqnO+HIMFA1/zFcfGlfgvy7dVJeITpGwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFL9ywp3/suzQRtwBJQTl0DPEgl8YMB8GA1UdIwQY
MBaAFMvZQtlu6Up6WmUu96yFXclAFBXfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveTlsQzJXN3BTbnBhWlM3M3JJVmR5VUFVRmQ4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny8wODJmMTItNTEzYi00ZWI5LWExNzEt
YzZmNmQ0NDQ5MTVmLzEvdjNMQ25mLXk3TkJHM0FFbEJPWFFNOFNDWHhnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny8wODJmMTItNTEzYi00ZWI5LWExNzEtYzZmNmQ0NDQ5MTVm
LzEveTlsQzJXN3BTbnBhWlM3M3JJVmR5VUFVRmQ4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAgU
MA0GCSqGSIb3DQEBCwUAA4IBAQA5UVcS1MY3GUzBgcADfa5JkeZTPWgTv7F/yCt2
7z5eOnxYjl79l9/yC0RD1kr65tNtqIl4hAXIHejdfKBHfWSimh+aiE4B3lWYzHwY
D6fRHR8zOM3KUjgoGbRlzDZ3b7YR+CHef4lf4aTRBEC5+qdAjqbBdgflZZJtQfms
RlOh0ScTxGyCNEPmHUW0D3AkPk+Lc4NKiBXmKPA1J5RxLn63YNm3zogyzYw89XjU
og1HJaM6+/Gipmi3XOUI7P+Ni42W3hnr/8+S5MSiTtMTT575cEhCyDsw0FGrxtmX
hdbwwlcpRoxq0zNPDuN3jcRqjWGhPgxrPY+Z/nA0dOLBLIYj
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:24 2024 by rpki-client on console-fra.rpki-client.org