Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/2UNtTfON_pVTkOHpFMCcaELHSK0.roa
File: 2UNtTfON_pVTkOHpFMCcaELHSK0.roa (raw, json)
Hash identifier: Jz8ZBAXTmYF+ncFxcU+7dSO0lh/5DjHIltpQtdZaK2Y=
Subject key identifier: D9:43:6D:4D:F3:8D:FE:95:53:90:E1:E9:14:C0:9C:68:42:C7:48:AD
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 01856C417647B803141EDBC7A708524547FF
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/2UNtTfON_pVTkOHpFMCcaELHSK0.roa
Signing time: Sun 01 Jan 2023 07:35:07 +0000
ROA not before: Sun 01 Jan 2023 07:35:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212483
IP address blocks: 2a0d:2587:8900::/40 maxlen: 48
Validation: Failed, certificate revoked on Thu 04 May 2023 08:11:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:76:47:b8:03:14:1e:db:c7:a7:08:52:45:47:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 07:35:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d9436d4df38dfe955390e1e914c09c6842c748ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:20:3a:ed:cc:20:77:35:a5:d2:66:8a:92:ac:
ad:c0:6f:99:98:f5:d2:e4:b2:c2:d8:20:1a:90:24:
29:42:4e:b0:6c:fc:30:a4:7c:5d:d6:6e:48:c9:cd:
fe:99:6b:f7:e4:77:3b:92:5f:d9:f3:72:46:52:1e:
dd:54:89:78:2c:40:57:95:79:c8:6e:e2:7c:50:89:
47:99:01:e9:98:ae:0b:63:71:47:b5:2f:31:8e:a0:
db:d1:0b:6e:11:87:62:11:01:02:ae:45:a4:7b:b8:
0c:2e:a6:24:47:6b:b8:ee:16:ef:c2:3d:01:42:72:
63:24:8f:19:09:4f:ac:74:1d:3e:e9:b0:b4:77:08:
72:f8:a8:e5:bd:34:1b:02:9e:00:67:9e:e7:2b:47:
24:d1:cb:16:27:1f:7d:01:0e:dc:ab:00:8f:12:c2:
ba:88:44:ae:c9:5d:ae:4a:35:55:e9:92:8c:fc:78:
6f:77:d1:77:c6:2e:36:21:b8:ff:6f:bd:39:1e:4a:
9d:e8:55:63:6b:68:3c:c0:98:e7:82:7f:ab:0f:14:
4d:76:58:ad:e7:77:44:64:2f:46:ac:09:01:0e:15:
e2:2e:45:13:1b:29:a6:89:95:a6:7c:ef:06:d7:c6:
50:0c:9a:64:f9:b0:09:58:0a:a5:e0:30:23:e8:d6:
be:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:43:6D:4D:F3:8D:FE:95:53:90:E1:E9:14:C0:9C:68:42:C7:48:AD
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/2UNtTfON_pVTkOHpFMCcaELHSK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2587:8900::/40
Signature Algorithm: sha256WithRSAEncryption
13:ae:c9:0f:c4:06:56:3d:51:92:9a:93:1b:e1:3d:a3:6d:d3:
62:cb:fa:fa:b1:f2:f2:ce:39:f2:1f:b5:64:7d:51:07:e3:03:
93:7a:d6:83:c3:64:ab:38:c6:a9:09:3a:28:74:07:92:6f:02:
04:85:3d:25:0b:ba:d5:06:56:7b:54:d8:8a:ca:37:5b:cc:5c:
f9:22:e6:9a:8c:59:30:bb:26:28:84:20:e6:a7:55:b3:02:ac:
f3:9e:ce:6e:48:ed:aa:a4:fc:ef:97:98:69:fa:36:d3:75:03:
d8:e3:e3:2e:75:8e:66:7d:47:7e:f3:96:64:ab:7a:c8:2f:c7:
8b:db:93:00:41:38:94:77:f2:2d:46:54:73:bb:00:1d:73:f3:
a9:bf:80:27:eb:e3:7a:44:e2:10:9f:0e:e6:eb:5a:b8:f9:6d:
02:75:86:7e:4c:cc:36:3b:26:da:3f:3d:df:31:9b:38:dd:65:
32:9b:fe:9f:28:b9:1e:79:8d:94:ac:26:a1:05:41:64:c2:7b:
92:fa:d6:5e:92:91:79:33:62:c0:b4:33:85:50:6c:c5:f6:10:
b5:50:fb:88:b5:39:5e:75:8d:6d:87:25:8c:5e:57:c2:9f:24:
19:ae:c0:f2:c4:69:d9:0d:d9:2b:58:0e:a0:80:28:d8:83:74:
c3:65:e7:76
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVsQXZHuAMUHtvHpwhSRUf/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczYzY5ZDA0NTgzNTAwYzVlZjgxMTM2ODMxMjM3NTkzZTBi
Yjg2Y2UwHhcNMjMwMTAxMDczNTA3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkOTQzNmQ0ZGYzOGRmZTk1NTM5MGUxZTkxNGMwOWM2ODQyYzc0OGFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhCA67cwgdzWl0maKkqytwG+ZmPXS
5LLC2CAakCQpQk6wbPwwpHxd1m5Iyc3+mWv35Hc7kl/Z83JGUh7dVIl4LEBXlXnI
buJ8UIlHmQHpmK4LY3FHtS8xjqDb0QtuEYdiEQECrkWke7gMLqYkR2u47hbvwj0B
QnJjJI8ZCU+sdB0+6bC0dwhy+KjlvTQbAp4AZ57nK0ck0csWJx99AQ7cqwCPEsK6
iESuyV2uSjVV6ZKM/Hhvd9F3xi42Ibj/b705Hkqd6FVja2g8wJjngn+rDxRNdlit
53dEZC9GrAkBDhXiLkUTGymmiZWmfO8G18ZQDJpk+bAJWAql4DAj6Na+zwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFNlDbU3zjf6VU5Dh6RTAnGhCx0itMB8GA1UdIwQY
MBaAFHPGnQRYNQDF74ETaDEjdZPgu4bOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQt
ZjljYjBhN2IyMDZjLzEvMlVOdFRmT05fcFZUa09IcEZNQ2NhRUxIU0swLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQtZjljYjBhN2IyMDZj
LzEvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKg0lh4kw
DQYJKoZIhvcNAQELBQADggEBABOuyQ/EBlY9UZKakxvhPaNt02LL+vqx8vLOOfIf
tWR9UQfjA5N61oPDZKs4xqkJOih0B5JvAgSFPSULutUGVntU2IrKN1vMXPki5pqM
WTC7JiiEIOanVbMCrPOezm5I7aqk/O+XmGn6NtN1A9jj4y51jmZ9R37zlmSresgv
x4vbkwBBOJR38i1GVHO7AB1z86m/gCfr43pE4hCfDubrWrj5bQJ1hn5MzDY7Jto/
Pd8xmzjdZTKb/p8ouR55jZSsJqEFQWTCe5L61l6SkXkzYsC0M4VQbMX2ELVQ+4i1
OV51jW2HJYxeV8KfJBmuwPLEadkN2StYDqCAKNiDdMNl53Y=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:39 2024 by rpki-client on console-fra.rpki-client.org