Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/ruq8bkESNkMgEJlMdxU0OnQ6GyU.roa
File: ruq8bkESNkMgEJlMdxU0OnQ6GyU.roa (raw, json)
Hash identifier: MfyzyyWpce1eY+2jZg4/Pjt46BNBAo5pTJ4DqSxwxeY=
Subject key identifier: AE:EA:BC:6E:41:12:36:43:20:10:99:4C:77:15:34:3A:74:3A:1B:25
Certificate issuer: /CN=0f2f8b2b94721e928f6188b5cf15053144dedf8c
Certificate serial: 018572B4279E7B360A0E71B7C0576F493155
Authority key identifier: 0F:2F:8B:2B:94:72:1E:92:8F:61:88:B5:CF:15:05:31:44:DE:DF:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dy-LK5RyHpKPYYi1zxUFMUTe34w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/ruq8bkESNkMgEJlMdxU0OnQ6GyU.roa
Signing time: Mon 02 Jan 2023 13:38:07 +0000
ROA not before: Mon 02 Jan 2023 13:38:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203764
IP address blocks: 2a06:ee80::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:27:9e:7b:36:0a:0e:71:b7:c0:57:6f:49:31:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f2f8b2b94721e928f6188b5cf15053144dedf8c
Validity
Not Before: Jan 2 13:38:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aeeabc6e411236432010994c7715343a743a1b25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d4:ed:c3:2a:78:04:1f:52:f0:e9:09:7b:0a:
39:e2:ea:f0:5c:23:95:5f:4d:ae:39:e1:73:02:03:
e4:17:85:4a:7e:fc:35:cf:8e:16:55:f0:1b:01:00:
43:8f:87:c5:13:0b:5c:fd:03:86:11:fd:10:9d:c7:
aa:1b:73:28:48:e1:ca:10:e9:26:2f:20:7b:81:81:
bb:30:2e:f9:a4:b4:82:ae:64:ae:38:87:ad:9b:d5:
51:b7:07:4b:cd:3c:8f:24:67:dc:48:d5:4e:41:67:
90:95:09:19:7f:a5:5e:9f:58:f1:ae:c5:65:9c:17:
ac:0c:17:aa:45:11:c2:53:ea:1e:9b:d9:56:ba:fa:
d1:48:1d:da:ae:e3:e2:7c:17:c7:1e:be:6a:63:04:
2a:ac:c3:02:24:e2:9c:b3:cc:6f:fa:3a:83:28:3b:
d2:aa:23:eb:14:2f:27:7e:61:49:13:c4:c0:71:61:
3e:d1:2e:24:1c:21:8e:96:de:fd:cc:2c:de:5f:33:
8a:b7:c8:d8:3f:96:25:4d:03:d4:6b:43:39:2f:f1:
40:37:9f:7e:5a:1f:25:aa:0d:de:48:95:2f:23:5b:
23:40:24:f7:0f:44:9e:30:fe:5f:d9:ed:0a:54:da:
d9:63:7b:0b:0a:2a:44:69:4f:aa:fa:64:da:45:76:
38:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:EA:BC:6E:41:12:36:43:20:10:99:4C:77:15:34:3A:74:3A:1B:25
X509v3 Authority Key Identifier:
keyid:0F:2F:8B:2B:94:72:1E:92:8F:61:88:B5:CF:15:05:31:44:DE:DF:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dy-LK5RyHpKPYYi1zxUFMUTe34w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/ruq8bkESNkMgEJlMdxU0OnQ6GyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/Dy-LK5RyHpKPYYi1zxUFMUTe34w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:ee80::/29
Signature Algorithm: sha256WithRSAEncryption
76:2c:7e:e4:e1:35:8b:a0:32:7e:ed:4b:d2:03:b7:50:a8:5b:
e3:3d:9b:44:e7:ad:86:b5:b8:63:69:1d:81:9b:86:c2:58:10:
a8:15:94:8f:0a:b3:80:d1:18:32:35:b4:95:78:3d:ff:02:5f:
e4:ad:7c:e0:ff:84:c1:ef:b1:c9:2c:7b:5b:04:fe:1d:bc:63:
e8:5d:64:b5:50:6c:45:65:65:82:35:07:04:6d:21:9f:9d:4d:
03:b5:03:bd:e0:6d:29:47:d8:1b:ed:83:26:8f:cd:a9:cb:d8:
bd:a9:73:d7:dd:bf:43:2d:3b:7a:f9:e9:a9:fe:21:d0:a1:2a:
29:2d:c8:a5:5f:35:24:87:c9:64:cd:69:c0:16:8b:15:59:b1:
74:d2:2b:30:a9:15:2b:65:2a:c4:cd:2a:61:3f:68:b4:bd:7c:
c5:30:fe:47:90:a2:de:e0:33:81:20:1b:ce:d4:6d:68:78:6a:
12:b6:fd:a2:6e:70:fb:de:bc:b2:71:91:6b:7d:b3:9a:de:dd:
1c:1d:b7:7d:bb:a9:d5:1b:d9:f1:9e:b0:ad:37:b1:a7:80:fe:
3d:4c:b6:0d:fa:c3:8e:93:7f:9a:2d:6c:dc:d4:fc:c0:a3:ce:
ff:ce:59:88:60:cf:c7:b5:e0:b7:73:36:ca:db:34:32:e9:6c:
c9:4e:0a:a4
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVytCeeezYKDnG3wFdvSTFVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBmMmY4YjJiOTQ3MjFlOTI4ZjYxODhiNWNmMTUwNTMxNDRk
ZWRmOGMwHhcNMjMwMTAyMTMzODA3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZWVhYmM2ZTQxMTIzNjQzMjAxMDk5NGM3NzE1MzQzYTc0M2ExYjI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtdTtwyp4BB9S8OkJewo54urwXCOV
X02uOeFzAgPkF4VKfvw1z44WVfAbAQBDj4fFEwtc/QOGEf0QnceqG3MoSOHKEOkm
LyB7gYG7MC75pLSCrmSuOIetm9VRtwdLzTyPJGfcSNVOQWeQlQkZf6Ven1jxrsVl
nBesDBeqRRHCU+oem9lWuvrRSB3aruPifBfHHr5qYwQqrMMCJOKcs8xv+jqDKDvS
qiPrFC8nfmFJE8TAcWE+0S4kHCGOlt79zCzeXzOKt8jYP5YlTQPUa0M5L/FAN59+
Wh8lqg3eSJUvI1sjQCT3D0SeMP5f2e0KVNrZY3sLCipEaU+q+mTaRXY4CwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFK7qvG5BEjZDIBCZTHcVNDp0OhslMB8GA1UdIwQY
MBaAFA8viyuUch6Sj2GItc8VBTFE3t+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRHktTEs1UnlIcEtQWVlpMXp4VUZNVVRlMzR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi80ZTU5MDItZTI4My00OTE2LWEzM2Mt
NzIyNmE4ODQ1ZTAxLzEvcnVxOGJrRVNOa01nRUpsTWR4VTBPblE2R3lVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi80ZTU5MDItZTI4My00OTE2LWEzM2MtNzIyNmE4ODQ1ZTAx
LzEvRHktTEs1UnlIcEtQWVlpMXp4VUZNVVRlMzR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgbugDAN
BgkqhkiG9w0BAQsFAAOCAQEAdix+5OE1i6Ayfu1L0gO3UKhb4z2bROethrW4Y2kd
gZuGwlgQqBWUjwqzgNEYMjW0lXg9/wJf5K184P+Ewe+xySx7WwT+Hbxj6F1ktVBs
RWVlgjUHBG0hn51NA7UDveBtKUfYG+2DJo/NqcvYvalz192/Qy07evnpqf4h0KEq
KS3IpV81JIfJZM1pwBaLFVmxdNIrMKkVK2UqxM0qYT9otL18xTD+R5Ci3uAzgSAb
ztRtaHhqErb9om5w+968snGRa32zmt7dHB23fbup1RvZ8Z6wrTexp4D+PUy2DfrD
jpN/mi1s3NT8wKPO/85ZiGDPx7Xgt3M2yts0MulsyU4KpA==
-----END CERTIFICATE-----
Generated at Wed Dec 20 19:29:27 2023 by rpki-client on console-ams.rpki-client.org