Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/ayvpa3Y6sPSJRvNZoLuTQtgT4mg.roa
File: ayvpa3Y6sPSJRvNZoLuTQtgT4mg.roa (raw, json)
Hash identifier: CRLbSbOeLi8NT+L5ITm2FdD9WPpJYxgaN+vqhbuDcDw=
Subject key identifier: 6B:2B:E9:6B:76:3A:B0:F4:89:46:F3:59:A0:BB:93:42:D8:13:E2:68
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 01856C417489781CA46C729EE2FEBA49B7CF
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/ayvpa3Y6sPSJRvNZoLuTQtgT4mg.roa
Signing time: Sun 01 Jan 2023 07:35:07 +0000
ROA not before: Sun 01 Jan 2023 07:35:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211481
IP address blocks: 2a0d:2686::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:74:89:78:1c:a4:6c:72:9e:e2:fe:ba:49:b7:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 07:35:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b2be96b763ab0f48946f359a0bb9342d813e268
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:14:15:0b:c7:81:69:76:a0:a7:47:92:2d:ce:
5e:ea:b2:aa:dd:5e:5a:5f:ca:ae:35:45:5e:a9:fa:
a6:5a:e5:fe:25:f4:18:a0:c9:00:c5:ce:09:0c:21:
2d:4b:d5:f9:da:00:23:e5:b6:48:28:0c:34:46:bb:
f6:1e:32:a9:3e:df:67:34:da:f8:1c:8f:62:8d:c0:
dd:a3:9d:20:d7:8b:de:cb:d5:18:87:28:7e:a4:24:
c1:4e:d4:7c:1a:60:80:b2:b7:5e:ab:d6:ed:b2:a6:
69:9b:3b:f5:f9:00:82:ba:bb:ed:88:5e:66:2c:4b:
30:45:dd:b3:bd:12:17:f1:d9:34:44:0a:67:11:f5:
ab:bf:b6:d0:b0:f7:a0:af:b8:26:18:10:b0:3c:ea:
f9:e7:f6:14:84:33:c1:74:22:ca:f1:8a:07:c6:f5:
21:0d:04:d0:4e:44:81:1f:db:c2:fb:c8:8a:ad:76:
92:2a:05:65:00:29:c2:05:8b:96:09:58:54:d0:c9:
76:46:11:79:6a:ce:6e:51:c7:39:44:7a:ff:95:8d:
98:6d:24:ba:c7:37:6c:d6:8d:7a:01:7d:3a:68:00:
11:27:da:45:b2:59:48:b2:e3:07:28:e8:28:8a:20:
9c:44:47:71:fb:48:d8:fa:a6:76:ec:6e:8d:c5:25:
b9:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:2B:E9:6B:76:3A:B0:F4:89:46:F3:59:A0:BB:93:42:D8:13:E2:68
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/ayvpa3Y6sPSJRvNZoLuTQtgT4mg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:2686::/32
Signature Algorithm: sha256WithRSAEncryption
94:af:30:8d:a5:d3:f1:64:03:bf:98:a1:59:e2:f7:00:67:05:
60:66:dd:df:76:39:08:a4:5f:40:a2:1e:58:e8:cb:e5:9f:25:
de:0f:56:8f:75:1d:d5:22:d3:26:aa:f1:18:2a:5e:db:56:8c:
27:5d:10:41:65:b1:bf:6a:54:d0:e5:0a:33:df:68:49:47:8b:
dd:b7:34:d0:99:36:f6:11:39:16:f4:b6:c6:cf:1f:c3:8a:43:
b4:b8:c2:d3:0f:35:22:c7:10:cc:f3:9f:6f:47:b4:fd:6f:28:
d5:02:80:85:ed:8a:ca:7b:70:a9:a0:66:20:7d:4d:ec:80:1c:
71:fb:4e:a5:a4:c4:01:ca:0c:1a:19:45:94:45:67:d0:0d:92:
7d:d7:53:3d:2d:bc:af:4e:45:19:ab:24:75:42:98:77:51:f6:
f2:15:1e:ac:35:0a:fb:60:bf:2d:17:88:37:61:19:65:49:08:
5a:b7:9d:04:d9:67:8b:c0:18:87:44:c0:98:20:ef:b6:41:b8:
00:7c:c1:56:be:8d:20:27:22:21:b6:e5:bd:31:33:ac:c8:95:
41:c3:3a:fd:89:1e:f6:20:89:a5:6e:6f:12:15:db:a6:23:84:
62:74:98:80:60:e3:34:3b:fb:16:b9:b1:55:da:d5:4a:a6:15:
b4:10:05:6f
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVsQXSJeBykbHKe4v66SbfPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczYzY5ZDA0NTgzNTAwYzVlZjgxMTM2ODMxMjM3NTkzZTBi
Yjg2Y2UwHhcNMjMwMTAxMDczNTA3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YjJiZTk2Yjc2M2FiMGY0ODk0NmYzNTlhMGJiOTM0MmQ4MTNlMjY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzxQVC8eBaXagp0eSLc5e6rKq3V5a
X8quNUVeqfqmWuX+JfQYoMkAxc4JDCEtS9X52gAj5bZIKAw0Rrv2HjKpPt9nNNr4
HI9ijcDdo50g14vey9UYhyh+pCTBTtR8GmCAsrdeq9btsqZpmzv1+QCCurvtiF5m
LEswRd2zvRIX8dk0RApnEfWrv7bQsPegr7gmGBCwPOr55/YUhDPBdCLK8YoHxvUh
DQTQTkSBH9vC+8iKrXaSKgVlACnCBYuWCVhU0Ml2RhF5as5uUcc5RHr/lY2YbSS6
xzds1o16AX06aAARJ9pFsllIsuMHKOgoiiCcREdx+0jY+qZ27G6NxSW5WwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFGsr6Wt2OrD0iUbzWaC7k0LYE+JoMB8GA1UdIwQY
MBaAFHPGnQRYNQDF74ETaDEjdZPgu4bOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQt
ZjljYjBhN2IyMDZjLzEvYXl2cGEzWTZzUFNKUnZOWm9MdVRRdGdUNG1nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQtZjljYjBhN2IyMDZj
LzEvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKg0mhjAN
BgkqhkiG9w0BAQsFAAOCAQEAlK8wjaXT8WQDv5ihWeL3AGcFYGbd33Y5CKRfQKIe
WOjL5Z8l3g9Wj3Ud1SLTJqrxGCpe21aMJ10QQWWxv2pU0OUKM99oSUeL3bc00Jk2
9hE5FvS2xs8fw4pDtLjC0w81IscQzPOfb0e0/W8o1QKAhe2KyntwqaBmIH1N7IAc
cftOpaTEAcoMGhlFlEVn0A2SfddTPS28r05FGaskdUKYd1H28hUerDUK+2C/LReI
N2EZZUkIWredBNlni8AYh0TAmCDvtkG4AHzBVr6NICciIbblvTEzrMiVQcM6/Yke
9iCJpW5vEhXbpiOEYnSYgGDjNDv7FrmxVdrVSqYVtBAFbw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:48 2024 by rpki-client on console-ams.rpki-client.org