Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/BIhQ7Mqgey_Sw2m57cGj080MqD0.roa
File: BIhQ7Mqgey_Sw2m57cGj080MqD0.roa (raw, json)
Hash identifier: EYbrkaHWWXFp4ocqrlgCxofNMOBmzv4+RN2p/Eit954=
Subject key identifier: 04:88:50:EC:CA:A0:7B:2F:D2:C3:69:B9:ED:C1:A3:D3:CD:0C:A8:3D
Certificate issuer: /CN=20aa60cb0024332a2db68993f3357158af60c8de
Certificate serial: 0187E1D44CA039A40E1E980F5D36855FF188
Authority key identifier: 20:AA:60:CB:00:24:33:2A:2D:B6:89:93:F3:35:71:58:AF:60:C8:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/BIhQ7Mqgey_Sw2m57cGj080MqD0.roa
Signing time: Wed 03 May 2023 13:36:39 +0000
ROA not before: Wed 03 May 2023 13:36:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 2a02:3040:4e::/48 maxlen: 48
2a02:3040:4f::/50 maxlen: 50
2a02:3040:43:ff00::/56 maxlen: 56
Validation: Failed, certificate revoked on Fri 06 Oct 2023 06:10:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e1:d4:4c:a0:39:a4:0e:1e:98:0f:5d:36:85:5f:f1:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20aa60cb0024332a2db68993f3357158af60c8de
Validity
Not Before: May 3 13:36:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=048850eccaa07b2fd2c369b9edc1a3d3cd0ca83d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:6a:db:44:b5:e6:ed:c9:72:e4:3f:7a:d4:0c:
0f:94:b7:ad:60:4f:3d:63:0f:f3:22:1a:09:54:e5:
db:86:7a:2d:58:f9:63:76:b4:41:86:7a:ad:f9:5c:
54:2f:28:b0:de:51:37:7e:49:54:78:d4:b4:18:5d:
f1:25:8c:64:bc:18:f1:ed:f8:bd:2b:a9:58:02:ff:
5d:93:42:3a:cd:0f:32:d0:0b:2d:36:da:50:4b:ff:
cb:61:3c:31:88:59:e4:13:92:70:2a:d0:80:19:f5:
75:fa:00:7d:7a:12:ff:72:c1:7d:bc:42:11:56:09:
de:a4:5b:4a:d6:9c:37:88:c8:6f:4e:75:c9:18:b0:
ae:81:ca:5d:45:59:0c:89:10:b7:b3:76:4e:aa:d0:
14:90:d9:d7:20:04:de:66:68:dc:39:3c:a4:90:ef:
fa:3c:ec:1f:25:e9:e6:d9:43:0c:80:a3:b1:6b:84:
8f:76:b2:d0:00:52:b0:ac:a5:78:34:6f:76:8c:f5:
75:10:ce:d1:42:df:2b:b1:d8:be:15:5c:50:53:df:
b9:68:74:63:65:13:54:9f:aa:04:3b:1e:82:1e:77:
5c:ab:78:c7:d4:a1:c5:83:08:ef:bd:9b:16:78:32:
75:cc:19:36:a5:29:00:ae:f1:dc:69:ba:c3:f0:54:
10:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:88:50:EC:CA:A0:7B:2F:D2:C3:69:B9:ED:C1:A3:D3:CD:0C:A8:3D
X509v3 Authority Key Identifier:
keyid:20:AA:60:CB:00:24:33:2A:2D:B6:89:93:F3:35:71:58:AF:60:C8:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IKpgywAkMyottomT8zVxWK9gyN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/BIhQ7Mqgey_Sw2m57cGj080MqD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/352431-e694-4412-a766-73f7d110b82a/1/IKpgywAkMyottomT8zVxWK9gyN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:3040:43:ff00::/56
2a02:3040:4e::-2a02:3040:4f:3fff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
23:c7:34:e9:0f:d5:e5:61:be:c2:11:c0:e0:52:b5:6c:e9:fa:
c2:81:f5:7f:5d:37:9d:6d:be:11:1c:96:b4:03:2c:4c:aa:a2:
cd:7e:2d:3a:1d:27:6c:cd:1a:16:9d:39:63:4b:31:1d:d5:02:
bb:99:1c:f1:ec:00:62:65:70:f8:79:20:d9:ba:e8:01:cb:25:
dd:3f:7a:ca:49:e3:88:76:b8:00:e5:39:3f:91:b5:33:96:15:
6f:5a:75:bb:39:8b:86:d8:1a:66:71:bf:8d:ab:0b:eb:82:90:
08:0f:1d:5f:78:c0:26:3d:7b:fe:80:84:40:8a:27:a8:1f:d9:
d2:61:cf:99:ce:68:28:5d:74:89:eb:69:81:3f:1a:d0:91:dc:
1b:8f:67:19:de:f1:31:18:6f:42:42:bd:be:9f:a8:f8:40:cf:
87:5c:c0:aa:a6:c5:51:11:fa:59:2e:64:f0:ee:59:b2:e7:0b:
3d:25:d9:1e:96:e8:82:b8:32:62:74:06:07:4b:c3:11:33:86:
65:37:34:8f:5e:0e:21:45:f9:7a:d3:3f:be:0b:f1:4d:aa:b3:
03:31:6a:99:67:f8:88:65:57:5c:84:05:d7:02:5b:76:7d:ad:
02:03:65:4f:10:27:83:b6:fd:35:68:b3:54:06:70:a8:85:13:
50:23:7e:94
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAYfh1EygOaQOHpgPXTaFX/GIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIwYWE2MGNiMDAyNDMzMmEyZGI2ODk5M2YzMzU3MTU4YWY2
MGM4ZGUwHhcNMjMwNTAzMTMzNjM5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNDg4NTBlY2NhYTA3YjJmZDJjMzY5YjllZGMxYTNkM2NkMGNhODNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkWrbRLXm7cly5D961AwPlLetYE89
Yw/zIhoJVOXbhnotWPljdrRBhnqt+VxULyiw3lE3fklUeNS0GF3xJYxkvBjx7fi9
K6lYAv9dk0I6zQ8y0AstNtpQS//LYTwxiFnkE5JwKtCAGfV1+gB9ehL/csF9vEIR
VgnepFtK1pw3iMhvTnXJGLCugcpdRVkMiRC3s3ZOqtAUkNnXIATeZmjcOTykkO/6
POwfJenm2UMMgKOxa4SPdrLQAFKwrKV4NG92jPV1EM7RQt8rsdi+FVxQU9+5aHRj
ZRNUn6oEOx6CHndcq3jH1KHFgwjvvZsWeDJ1zBk2pSkArvHcabrD8FQQAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFASIUOzKoHsv0sNpue3Bo9PNDKg9MB8GA1UdIwQY
MBaAFCCqYMsAJDMqLbaJk/M1cVivYMjeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSUtwZ3l3QWtNeW90dG9tVDh6VnhXSzlneU40LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8zNTI0MzEtZTY5NC00NDEyLWE3NjYt
NzNmN2QxMTBiODJhLzEvQkloUTdNcWdleV9TdzJtNTdjR2owODBNcUQwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi8zNTI0MzEtZTY5NC00NDEyLWE3NjYtNzNmN2QxMTBiODJh
LzEvSUtwZ3l3QWtNeW90dG9tVDh6VnhXSzlneU40LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDgGCCsGAQUFBwEHAQH/BCkwJzAlBAIAAjAfAwgAKgIwQABD
/zATAwcBKgIwQABOAwgGKgIwQABPADANBgkqhkiG9w0BAQsFAAOCAQEAI8c06Q/V
5WG+whHA4FK1bOn6woH1f103nW2+ERyWtAMsTKqizX4tOh0nbM0aFp05Y0sxHdUC
u5kc8ewAYmVw+Hkg2broAcsl3T96yknjiHa4AOU5P5G1M5YVb1p1uzmLhtgaZnG/
jasL64KQCA8dX3jAJj17/oCEQIonqB/Z0mHPmc5oKF10ietpgT8a0JHcG49nGd7x
MRhvQkK9vp+o+EDPh1zAqqbFURH6WS5k8O5ZsucLPSXZHpbogrgyYnQGB0vDETOG
ZTc0j14OIUX5etM/vgvxTaqzAzFqmWf4iGVXXIQF1wJbdn2tAgNlTxAng7b9NWiz
VAZwqIUTUCN+lA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:26 2024 by rpki-client on console-ams.rpki-client.org