Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/f66ca9-3bdc-4294-ad62-7bcefa9f59e8/1/58OrNXALGxQkWNj2TfIjFKCH4b0.roa
File: 58OrNXALGxQkWNj2TfIjFKCH4b0.roa (raw, json)
Hash identifier: 7Oj82tngHLbURoGEHpN8lQLkjB3tsBgC1tK6ZziRA/o=
Subject key identifier: E7:C3:AB:35:70:0B:1B:14:24:58:D8:F6:4D:F2:23:14:A0:87:E1:BD
Certificate issuer: /CN=5f0fd90d987297cb5dd4e07be840d280d1e2cc4a
Certificate serial: 0186A24AF8C7AC8DB824409BD0CC21E18FEE
Authority key identifier: 5F:0F:D9:0D:98:72:97:CB:5D:D4:E0:7B:E8:40:D2:80:D1:E2:CC:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xw_ZDZhyl8td1OB76EDSgNHizEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/f66ca9-3bdc-4294-ad62-7bcefa9f59e8/1/58OrNXALGxQkWNj2TfIjFKCH4b0.roa
Signing time: Thu 02 Mar 2023 12:27:47 +0000
ROA not before: Thu 02 Mar 2023 12:27:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2001:67c:1980::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a2:4a:f8:c7:ac:8d:b8:24:40:9b:d0:cc:21:e1:8f:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f0fd90d987297cb5dd4e07be840d280d1e2cc4a
Validity
Not Before: Mar 2 12:27:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7c3ab35700b1b142458d8f64df22314a087e1bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:27:c7:5d:1a:af:f2:a5:00:c8:9d:61:09:9e:
6c:30:40:c0:f9:03:4c:66:73:80:84:be:c5:d5:62:
70:01:9c:9f:d7:78:ca:41:7b:d9:67:85:b7:97:27:
e3:45:3e:8c:3a:4e:3a:a5:91:af:c4:75:f4:f7:f0:
83:70:c8:9d:70:21:05:17:16:0f:be:2c:5a:f4:04:
eb:4a:9c:5e:c7:6a:75:39:19:7e:ed:37:71:ad:41:
9f:de:ed:a9:e9:b3:a2:ad:cb:9b:a4:72:8d:db:33:
ee:7b:5c:99:28:5a:30:35:e5:cd:91:e1:05:ec:66:
60:99:a5:9e:37:11:24:48:e8:e5:91:66:27:8f:95:
87:2e:d2:0b:3d:ea:87:d8:cc:6b:2b:ce:31:fc:7a:
e9:83:8f:08:7d:6d:fb:0e:a0:41:b9:32:f3:45:24:
37:f3:49:99:0b:4d:02:4c:ed:8e:83:a7:d8:8b:db:
8c:ae:f6:ac:a7:e6:47:64:83:fb:82:4d:49:89:83:
a8:34:59:cf:14:62:22:c6:69:ba:47:1e:5d:63:10:
4e:de:94:c7:a1:55:03:81:21:3b:2a:bb:56:d5:7f:
cd:b9:d2:a0:be:d6:6e:42:32:ae:4e:6d:e1:2e:9a:
c2:f2:83:aa:cf:d1:84:6a:97:8b:20:86:f3:ff:65:
1d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:C3:AB:35:70:0B:1B:14:24:58:D8:F6:4D:F2:23:14:A0:87:E1:BD
X509v3 Authority Key Identifier:
keyid:5F:0F:D9:0D:98:72:97:CB:5D:D4:E0:7B:E8:40:D2:80:D1:E2:CC:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xw_ZDZhyl8td1OB76EDSgNHizEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f66ca9-3bdc-4294-ad62-7bcefa9f59e8/1/58OrNXALGxQkWNj2TfIjFKCH4b0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/f66ca9-3bdc-4294-ad62-7bcefa9f59e8/1/Xw_ZDZhyl8td1OB76EDSgNHizEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:1980::/48
Signature Algorithm: sha256WithRSAEncryption
72:22:36:2b:dd:43:1f:6f:ed:81:d9:d8:2e:51:c8:28:43:88:
e1:4f:b8:fd:6a:57:58:38:27:8e:b1:c1:f3:6e:66:04:d7:5c:
d6:cd:92:5c:2c:e1:43:62:53:c3:7d:51:20:c1:4f:cf:05:cd:
2e:8e:5f:5d:fd:0a:cb:f5:f3:f8:e4:e8:e1:2a:bc:cd:bf:00:
75:99:a6:80:cb:1f:a3:a2:a2:d6:41:df:38:67:09:76:b9:12:
b1:06:cd:ac:0d:fc:75:f8:e1:78:08:9f:f1:b2:b9:5b:74:e3:
b6:22:94:7b:85:a6:56:c1:4c:98:52:3b:3e:ab:dd:2d:e9:71:
02:41:3a:94:97:b0:6b:9a:e9:88:d8:f9:5f:e6:9d:b2:4f:0f:
19:f6:59:22:91:92:64:c6:c0:4a:51:d3:58:20:fd:e4:e4:88:
fa:10:ed:63:2e:5d:99:66:c0:08:48:ac:2f:4d:a6:66:bb:11:
f5:7f:93:bd:51:18:55:2f:10:7e:92:5d:27:12:0d:0f:2a:8f:
8d:0c:84:10:bf:68:d5:66:55:19:b1:43:88:53:15:3e:e8:e7:
ec:44:80:e3:48:58:73:f4:09:9e:98:3c:6e:44:a1:7d:de:56:
4b:dd:fb:11:c1:39:f8:53:98:ce:89:1d:b3:f4:4a:c1:bf:c4:
9d:7c:1c:b8
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYaiSvjHrI24JECb0Mwh4Y/uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVmMGZkOTBkOTg3Mjk3Y2I1ZGQ0ZTA3YmU4NDBkMjgwZDFl
MmNjNGEwHhcNMjMwMzAyMTIyNzQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlN2MzYWIzNTcwMGIxYjE0MjQ1OGQ4ZjY0ZGYyMjMxNGEwODdlMWJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmSfHXRqv8qUAyJ1hCZ5sMEDA+QNM
ZnOAhL7F1WJwAZyf13jKQXvZZ4W3lyfjRT6MOk46pZGvxHX09/CDcMidcCEFFxYP
vixa9ATrSpxex2p1ORl+7TdxrUGf3u2p6bOircubpHKN2zPue1yZKFowNeXNkeEF
7GZgmaWeNxEkSOjlkWYnj5WHLtILPeqH2MxrK84x/Hrpg48IfW37DqBBuTLzRSQ3
80mZC00CTO2Og6fYi9uMrvasp+ZHZIP7gk1JiYOoNFnPFGIixmm6Rx5dYxBO3pTH
oVUDgSE7KrtW1X/NudKgvtZuQjKuTm3hLprC8oOqz9GEapeLIIbz/2UdtwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFOfDqzVwCxsUJFjY9k3yIxSgh+G9MB8GA1UdIwQY
MBaAFF8P2Q2YcpfLXdTge+hA0oDR4sxKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWHdfWkRaaHlsOHRkMU9CNzZFRFNnTkhpekVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny9mNjZjYTktM2JkYy00Mjk0LWFkNjIt
N2JjZWZhOWY1OWU4LzEvNThPck5YQUxHeFFrV05qMlRmSWpGS0NINGIwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny9mNjZjYTktM2JkYy00Mjk0LWFkNjItN2JjZWZhOWY1OWU4
LzEvWHdfWkRaaHlsOHRkMU9CNzZFRFNnTkhpekVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfBmA
MA0GCSqGSIb3DQEBCwUAA4IBAQByIjYr3UMfb+2B2dguUcgoQ4jhT7j9aldYOCeO
scHzbmYE11zWzZJcLOFDYlPDfVEgwU/PBc0ujl9d/QrL9fP45OjhKrzNvwB1maaA
yx+joqLWQd84Zwl2uRKxBs2sDfx1+OF4CJ/xsrlbdOO2IpR7haZWwUyYUjs+q90t
6XECQTqUl7BrmumI2Plf5p2yTw8Z9lkikZJkxsBKUdNYIP3k5Ij6EO1jLl2ZZsAI
SKwvTaZmuxH1f5O9URhVLxB+kl0nEg0PKo+NDIQQv2jVZlUZsUOIUxU+6OfsRIDj
SFhz9AmemDxuRKF93lZL3fsRwTn4U5jOiR2z9ErBv8SdfBy4
-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:17 2024 by rpki-client on console-fra.rpki-client.org