Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/rNDjmlCxl1knmL_rlx_ycZ1vo-Y.roa
File: rNDjmlCxl1knmL_rlx_ycZ1vo-Y.roa (raw, json)
Hash identifier: kcT+Od5oMV9nIVqPgK2E0FHDwa25PsqtyebBTfnLak0=
Subject key identifier: AC:D0:E3:9A:50:B1:97:59:27:98:BF:EB:97:1F:F2:71:9D:6F:A3:E6
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 01856C415AFE3B2AFB56FD5AEE901DC976E4
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/rNDjmlCxl1knmL_rlx_ycZ1vo-Y.roa
Signing time: Sun 01 Jan 2023 07:35:00 +0000
ROA not before: Sun 01 Jan 2023 07:35:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24239
IP address blocks: 2a05:1085::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:5a:fe:3b:2a:fb:56:fd:5a:ee:90:1d:c9:76:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 07:35:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=acd0e39a50b197592798bfeb971ff2719d6fa3e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:fa:c0:cb:60:e2:df:0a:b0:45:05:e9:61:3b:
54:b7:e5:6c:68:5a:8f:48:c0:94:65:97:7b:af:f3:
51:46:98:9a:f0:ee:86:c1:f1:58:ff:5a:78:ec:fb:
ed:de:a4:14:d2:9a:11:9b:eb:7b:f4:14:69:89:b4:
db:64:25:b0:a8:f4:6d:2f:6e:98:24:23:45:e9:b9:
94:3e:4f:6a:ec:3c:88:3c:cc:dd:57:5f:77:01:59:
5b:a0:ad:1a:c6:0a:5b:21:0f:e4:57:43:ad:ee:f1:
f1:e8:d1:c7:6c:18:ab:be:75:5b:c5:21:da:cd:30:
c8:fb:55:bc:28:a4:21:46:db:00:f9:28:16:48:9f:
55:dc:c6:6d:be:a8:cb:35:af:90:e5:e6:9b:db:3d:
ab:2a:d3:c8:d2:ec:30:d5:a1:8e:cb:0e:2e:03:31:
72:39:5c:b3:81:9f:c8:61:84:bc:93:41:df:d9:47:
b5:e3:69:a6:f8:70:71:e6:66:40:eb:c1:85:c2:db:
c0:ea:32:1c:68:58:59:71:aa:75:95:2e:ff:0e:d7:
c8:42:34:f2:59:b7:e4:fe:da:ac:dc:09:40:f9:3f:
dd:b2:88:eb:27:b7:c9:83:91:be:91:a5:bd:a1:d0:
cd:a0:a4:9f:5b:5f:ad:b6:d7:a3:4f:13:17:09:9f:
6c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:D0:E3:9A:50:B1:97:59:27:98:BF:EB:97:1F:F2:71:9D:6F:A3:E6
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/rNDjmlCxl1knmL_rlx_ycZ1vo-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:1085::/32
Signature Algorithm: sha256WithRSAEncryption
2a:28:ea:27:59:15:11:7e:a3:6a:56:8f:a6:56:28:7d:d7:a5:
68:eb:d6:e2:29:7b:9f:1a:ab:4d:92:57:85:8e:58:07:c6:20:
3a:27:45:24:9e:bf:b2:93:79:37:92:16:73:bf:78:63:db:55:
02:b8:d8:e8:bb:54:88:39:ba:e9:06:e3:b8:43:3b:59:6b:38:
00:7c:3b:9f:a4:57:82:4b:8f:d5:6b:df:5b:af:e4:98:5a:5f:
ac:08:71:e5:5f:5e:da:69:b0:3e:7f:75:f3:29:f5:9c:d2:e9:
ca:2a:fe:e1:54:e1:94:1b:5b:3a:f7:99:b6:c5:35:e5:41:b3:
02:eb:1a:e0:69:39:11:bb:55:72:2f:53:32:fa:d4:5c:87:92:
66:f5:7c:ef:be:a8:bc:5c:9b:b4:fa:0f:63:84:8e:67:6e:ff:
33:8d:06:71:23:dc:e1:33:e1:85:80:5f:4c:87:0f:16:d3:ac:
eb:88:ca:ec:91:fe:cf:bb:06:bd:73:9e:93:ed:75:e8:23:16:
69:97:38:e7:59:64:1b:ac:a0:67:3d:47:9f:1d:25:1b:1f:2a:
e3:66:dc:3a:85:1d:28:2e:6f:f8:eb:66:80:3f:95:2d:fa:4d:
2e:47:98:c0:62:81:b2:8f:e8:e8:26:1a:b3:e0:72:a3:de:59:
e0:96:cf:b4
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVsQVr+Oyr7Vv1a7pAdyXbkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczYzY5ZDA0NTgzNTAwYzVlZjgxMTM2ODMxMjM3NTkzZTBi
Yjg2Y2UwHhcNMjMwMTAxMDczNTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhY2QwZTM5YTUwYjE5NzU5Mjc5OGJmZWI5NzFmZjI3MTlkNmZhM2U2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh/rAy2Di3wqwRQXpYTtUt+VsaFqP
SMCUZZd7r/NRRpia8O6GwfFY/1p47Pvt3qQU0poRm+t79BRpibTbZCWwqPRtL26Y
JCNF6bmUPk9q7DyIPMzdV193AVlboK0axgpbIQ/kV0Ot7vHx6NHHbBirvnVbxSHa
zTDI+1W8KKQhRtsA+SgWSJ9V3MZtvqjLNa+Q5eab2z2rKtPI0uww1aGOyw4uAzFy
OVyzgZ/IYYS8k0Hf2Ue142mm+HBx5mZA68GFwtvA6jIcaFhZcap1lS7/DtfIQjTy
Wbfk/tqs3AlA+T/dsojrJ7fJg5G+kaW9odDNoKSfW1+tttejTxMXCZ9sqQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFKzQ45pQsZdZJ5i/65cf8nGdb6PmMB8GA1UdIwQY
MBaAFHPGnQRYNQDF74ETaDEjdZPgu4bOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQt
ZjljYjBhN2IyMDZjLzEvck5Eam1sQ3hsMWtubUxfcmx4X3ljWjF2by1ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQtZjljYjBhN2IyMDZj
LzEvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgUQhTAN
BgkqhkiG9w0BAQsFAAOCAQEAKijqJ1kVEX6jalaPplYofdelaOvW4il7nxqrTZJX
hY5YB8YgOidFJJ6/spN5N5IWc794Y9tVArjY6LtUiDm66QbjuEM7WWs4AHw7n6RX
gkuP1WvfW6/kmFpfrAhx5V9e2mmwPn918yn1nNLpyir+4VThlBtbOveZtsU15UGz
Ausa4Gk5EbtVci9TMvrUXIeSZvV8776ovFybtPoPY4SOZ27/M40GcSPc4TPhhYBf
TIcPFtOs64jK7JH+z7sGvXOek+116CMWaZc451lkG6ygZz1Hnx0lGx8q42bcOoUd
KC5v+OtmgD+VLfpNLkeYwGKBso/o6CYas+Byo95Z4JbPtA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:48 2024 by rpki-client on console-ams.rpki-client.org