Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/7c97cf-195c-4fc1-95a3-637fa14656de/1/L6smG1w2GSBmblNTQgLmrfsH5PU.roa
File: L6smG1w2GSBmblNTQgLmrfsH5PU.roa (raw, json)
Hash identifier: OX5j1/2r/ApUzCUc+CIsECQrv4qtjq2teo853dq3OGI=
Subject key identifier: 2F:AB:26:1B:5C:36:19:20:66:6E:53:53:42:02:E6:AD:FB:07:E4:F5
Certificate issuer: /CN=968a17e16196bb7a86718e6b2bd6a07e37b40c65
Certificate serial: 01856B53115DF0AC41ACAED0978951258D49
Authority key identifier: 96:8A:17:E1:61:96:BB:7A:86:71:8E:6B:2B:D6:A0:7E:37:B4:0C:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/looX4WGWu3qGcY5rK9agfje0DGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/7c97cf-195c-4fc1-95a3-637fa14656de/1/L6smG1w2GSBmblNTQgLmrfsH5PU.roa
Signing time: Sun 01 Jan 2023 03:14:43 +0000
ROA not before: Sun 01 Jan 2023 03:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8978
IP address blocks: 212.77.0.0/19 maxlen: 19
2a01:b8::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:53:11:5d:f0:ac:41:ac:ae:d0:97:89:51:25:8d:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=968a17e16196bb7a86718e6b2bd6a07e37b40c65
Validity
Not Before: Jan 1 03:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2fab261b5c361920666e53534202e6adfb07e4f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:47:e1:cf:be:af:7c:1d:54:8c:99:35:92:b8:
a9:eb:fa:21:a7:6c:0a:f5:79:76:35:83:21:02:ac:
68:2c:af:ba:cd:64:28:ed:d7:f2:28:78:32:64:19:
05:62:5c:22:8e:2a:21:4c:71:ff:0b:37:bf:79:65:
a7:d8:c0:f6:0e:d2:a8:08:83:d1:f3:aa:09:01:3d:
01:03:3c:53:b4:9b:ce:b4:6d:fe:9c:1d:0e:fd:6b:
63:e0:3a:30:b7:91:3d:66:d2:5e:75:34:2d:1c:4b:
35:1a:65:44:35:92:b5:d4:f8:48:3b:58:e0:21:ef:
9b:48:88:c1:3e:b9:6b:ce:88:0d:c0:b3:e9:13:b8:
86:c3:c5:85:9a:8c:98:29:91:98:39:42:37:42:9b:
6e:7f:fe:b1:a8:22:5b:8c:d1:ef:86:dc:3d:ff:18:
15:d7:61:7a:90:aa:92:e3:e9:51:29:73:0e:bd:3a:
1f:85:fb:4f:39:f3:21:e6:90:c8:8e:8f:4f:88:79:
86:a4:66:ce:21:a2:2d:cc:d3:9f:b8:e8:40:07:d3:
28:b6:78:4d:22:b4:7f:72:ea:ea:cc:b9:c5:d1:d8:
5b:9f:47:33:b4:4c:aa:43:e0:b2:e5:87:44:d3:8c:
5b:86:97:ca:98:44:e4:c7:49:84:46:6a:cf:c8:3f:
3c:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:AB:26:1B:5C:36:19:20:66:6E:53:53:42:02:E6:AD:FB:07:E4:F5
X509v3 Authority Key Identifier:
keyid:96:8A:17:E1:61:96:BB:7A:86:71:8E:6B:2B:D6:A0:7E:37:B4:0C:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/looX4WGWu3qGcY5rK9agfje0DGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/7c97cf-195c-4fc1-95a3-637fa14656de/1/L6smG1w2GSBmblNTQgLmrfsH5PU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/7c97cf-195c-4fc1-95a3-637fa14656de/1/looX4WGWu3qGcY5rK9agfje0DGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.77.0.0/19
IPv6:
2a01:b8::/32
Signature Algorithm: sha256WithRSAEncryption
68:a0:27:7d:25:47:77:65:37:33:21:14:81:fb:7c:6b:13:87:
a1:d4:58:6a:0d:0f:0f:b7:a7:0c:f6:cd:f7:07:63:15:7a:f8:
e5:c0:3a:29:75:5c:28:f4:0b:8b:39:59:d4:1a:3f:61:21:f5:
ce:19:8e:61:88:3a:e0:f7:eb:e0:65:ea:2f:b2:54:0a:82:8c:
ed:78:bb:d3:42:d8:92:97:02:53:07:d3:5d:5f:1a:f2:6d:9d:
86:c0:ce:71:e2:0f:d8:05:18:bf:7e:12:04:dd:17:9d:fa:fe:
93:64:94:10:90:5c:25:13:24:89:38:2f:c6:ce:c8:a9:cd:de:
df:e5:fa:f2:c6:20:23:af:0b:c7:8e:40:b0:5c:6d:fa:80:a5:
4c:f9:67:72:d0:b6:4e:f3:33:7f:73:dd:cb:1a:82:23:5b:c6:
16:21:fa:ed:c1:f6:5e:15:83:db:b2:84:49:6d:a7:ae:21:1c:
f2:e8:27:dc:87:70:af:fb:28:d8:d0:8d:5f:c6:97:d2:56:80:
0c:1b:10:bb:0b:a2:cf:38:21:e3:a1:63:e6:99:81:41:b3:78:
9f:ef:ca:ea:96:68:fd:c4:e7:ef:36:db:02:60:d6:f2:b5:40:
5f:5d:93:fd:13:2a:db:ad:65:02:d8:16:a8:f7:f8:68:c1:e8:
c7:20:47:e4
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVrUxFd8KxBrK7Ql4lRJY1JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2OGExN2UxNjE5NmJiN2E4NjcxOGU2YjJiZDZhMDdlMzdi
NDBjNjUwHhcNMjMwMTAxMDMxNDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZmFiMjYxYjVjMzYxOTIwNjY2ZTUzNTM0MjAyZTZhZGZiMDdlNGY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAikfhz76vfB1UjJk1krip6/ohp2wK
9Xl2NYMhAqxoLK+6zWQo7dfyKHgyZBkFYlwijiohTHH/Cze/eWWn2MD2DtKoCIPR
86oJAT0BAzxTtJvOtG3+nB0O/Wtj4Dowt5E9ZtJedTQtHEs1GmVENZK11PhIO1jg
Ie+bSIjBPrlrzogNwLPpE7iGw8WFmoyYKZGYOUI3Qptuf/6xqCJbjNHvhtw9/xgV
12F6kKqS4+lRKXMOvTofhftPOfMh5pDIjo9PiHmGpGbOIaItzNOfuOhAB9MotnhN
IrR/curqzLnF0dhbn0cztEyqQ+Cy5YdE04xbhpfKmETkx0mERmrPyD88qwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFC+rJhtcNhkgZm5TU0IC5q37B+T1MB8GA1UdIwQY
MBaAFJaKF+Fhlrt6hnGOayvWoH43tAxlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbG9vWDRXR1d1M3FHY1k1cks5YWdmamUwREdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS83Yzk3Y2YtMTk1Yy00ZmMxLTk1YTMt
NjM3ZmExNDY1NmRlLzEvTDZzbUcxdzJHU0JtYmxOVFFnTG1yZnNINVBVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS83Yzk3Y2YtMTk1Yy00ZmMxLTk1YTMtNjM3ZmExNDY1NmRl
LzEvbG9vWDRXR1d1M3FHY1k1cks5YWdmamUwREdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQF1E0AMA0E
AgACMAcDBQAqAQC4MA0GCSqGSIb3DQEBCwUAA4IBAQBooCd9JUd3ZTczIRSB+3xr
E4eh1FhqDQ8Pt6cM9s33B2MVevjlwDopdVwo9AuLOVnUGj9hIfXOGY5hiDrg9+vg
ZeovslQKgozteLvTQtiSlwJTB9NdXxrybZ2GwM5x4g/YBRi/fhIE3Red+v6TZJQQ
kFwlEySJOC/Gzsipzd7f5fryxiAjrwvHjkCwXG36gKVM+Wdy0LZO8zN/c93LGoIj
W8YWIfrtwfZeFYPbsoRJbaeuIRzy6Cfch3Cv+yjY0I1fxpfSVoAMGxC7C6LPOCHj
oWPmmYFBs3if78rqlmj9xOfvNtsCYNbytUBfXZP9EyrbrWUC2Bao9/howejHIEfk
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:00 2024 by rpki-client on console-fra.rpki-client.org