Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/8PZJAlYGdXs4ZqQGBjpGHcdKvVc.roa
File: 8PZJAlYGdXs4ZqQGBjpGHcdKvVc.roa (raw, json)
Hash identifier: a5yQtqVbCEdynYDQeQCGOgg0GFHVaj/RQhYu4S2HSTE=
Subject key identifier: F0:F6:49:02:56:06:75:7B:38:66:A4:06:06:3A:46:1D:C7:4A:BD:57
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01856F2FF3905A3A7064C49276518AFA72CA
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/8PZJAlYGdXs4ZqQGBjpGHcdKvVc.roa
Signing time: Sun 01 Jan 2023 21:14:51 +0000
ROA not before: Sun 01 Jan 2023 21:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208602
IP address blocks: 2a0e:aa01:aa00::/40 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:f3:90:5a:3a:70:64:c4:92:76:51:8a:fa:72:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 21:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f0f649025606757b3866a406063a461dc74abd57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:1e:8f:a2:30:e7:9b:58:87:8e:d8:ea:1e:0b:
62:c5:5b:84:73:0f:cf:b2:19:b7:d6:94:cb:f3:49:
f0:8e:39:15:9a:22:8c:ff:96:8f:a3:a0:6a:3d:f5:
b4:87:7d:64:eb:db:d1:81:0c:5a:dc:3a:14:76:4f:
aa:34:6b:79:5f:47:9b:55:8d:f1:10:88:7e:2b:d8:
59:27:48:c3:ff:16:5f:6a:3d:4e:3d:21:f7:1b:b8:
4f:7f:95:e1:0f:4c:64:ce:74:38:f0:73:72:73:05:
fe:29:09:7d:d2:fe:35:1a:9b:e8:ff:55:6c:66:f3:
06:87:ef:a5:24:8b:47:2b:51:6c:09:d2:bf:88:54:
d4:b7:f5:64:a8:13:e2:4c:3d:0a:98:9f:72:d4:f6:
86:64:62:35:eb:6a:9e:79:1c:15:fb:51:b6:0d:ea:
cb:55:31:76:60:32:4f:fa:b1:a7:32:ee:0a:13:68:
b5:0b:b7:c7:c9:16:74:0e:e0:45:dc:b5:7e:e6:04:
b4:86:d4:57:30:4d:2e:31:cf:8b:51:68:66:39:83:
9d:89:7c:45:63:70:dc:6f:1f:dd:8d:e3:93:ca:c9:
65:66:0f:a9:c6:4f:3e:e1:43:c4:0b:1f:10:a9:7b:
24:25:fc:86:9c:c0:60:02:14:63:87:bd:d7:3c:ea:
fe:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:F6:49:02:56:06:75:7B:38:66:A4:06:06:3A:46:1D:C7:4A:BD:57
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/8PZJAlYGdXs4ZqQGBjpGHcdKvVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa01:aa00::/40
Signature Algorithm: sha256WithRSAEncryption
55:22:94:3a:b4:6a:59:53:98:11:d1:4f:36:44:2d:de:23:0a:
09:10:30:e5:30:3e:b1:97:f9:92:4f:d9:37:b0:35:e3:29:7c:
33:77:33:f6:56:47:ae:10:1a:5c:ed:e8:d3:94:e1:2a:0c:94:
d0:c0:be:13:c1:33:97:5a:4b:e1:f1:5c:b2:71:72:6b:1d:b2:
7e:4c:57:13:f5:43:9d:df:d6:61:04:f9:3e:12:4f:23:ae:f3:
56:4c:e0:cc:e6:11:32:4d:07:1c:2c:53:dd:0e:cc:e0:85:1d:
f4:6d:56:56:7d:ad:b8:f9:8b:34:b0:da:69:83:3c:c6:cd:25:
fc:81:eb:40:4b:4c:50:de:7f:45:92:2b:a4:8c:9a:3e:35:dd:
fc:c8:11:0c:c5:d3:5e:f9:1b:e3:6f:3d:c5:d0:f4:78:17:47:
9b:19:b3:67:62:00:87:55:1b:a0:22:eb:5c:e0:f7:46:b0:bc:
e7:fa:bf:20:fb:25:70:64:3f:1c:c5:47:3d:ad:7c:ad:bd:be:
b5:e8:de:37:bb:42:7d:14:77:9a:3c:76:4c:36:8b:de:65:4e:
8f:be:8f:ac:a2:02:43:7c:9a:10:de:2b:c0:8e:04:95:21:98:
e1:30:35:96:f0:9c:99:f3:78:53:39:aa:c3:07:16:0d:2a:b7:
38:03:13:0a
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVvL/OQWjpwZMSSdlGK+nLKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzNjFiNWNkNjk2ODI1Yjc0ZmNjYmE3ZDk3YzNkMGEyNzI0
ZWYzYWEwHhcNMjMwMTAxMjExNDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMGY2NDkwMjU2MDY3NTdiMzg2NmE0MDYwNjNhNDYxZGM3NGFiZDU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiR6PojDnm1iHjtjqHgtixVuEcw/P
shm31pTL80nwjjkVmiKM/5aPo6BqPfW0h31k69vRgQxa3DoUdk+qNGt5X0ebVY3x
EIh+K9hZJ0jD/xZfaj1OPSH3G7hPf5XhD0xkznQ48HNycwX+KQl90v41Gpvo/1Vs
ZvMGh++lJItHK1FsCdK/iFTUt/VkqBPiTD0KmJ9y1PaGZGI162qeeRwV+1G2DerL
VTF2YDJP+rGnMu4KE2i1C7fHyRZ0DuBF3LV+5gS0htRXME0uMc+LUWhmOYOdiXxF
Y3Dcbx/djeOTysllZg+pxk8+4UPECx8QqXskJfyGnMBgAhRjh73XPOr+OwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFPD2SQJWBnV7OGakBgY6Rh3HSr1XMB8GA1UdIwQY
MBaAFJNhtc1paCW3T8y6fZfD0KJyTvOqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEt
YTU0MWQxYmNlZTE5LzEvOFBaSkFsWUdkWHM0WnFRR0JqcEdIY2RLdlZjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEtYTU0MWQxYmNlZTE5
LzEvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKg6qAaow
DQYJKoZIhvcNAQELBQADggEBAFUilDq0allTmBHRTzZELd4jCgkQMOUwPrGX+ZJP
2TewNeMpfDN3M/ZWR64QGlzt6NOU4SoMlNDAvhPBM5daS+HxXLJxcmsdsn5MVxP1
Q53f1mEE+T4STyOu81ZM4MzmETJNBxwsU90OzOCFHfRtVlZ9rbj5izSw2mmDPMbN
JfyB60BLTFDef0WSK6SMmj413fzIEQzF0175G+NvPcXQ9HgXR5sZs2diAIdVG6Ai
61zg90awvOf6vyD7JXBkPxzFRz2tfK29vrXo3je7Qn0Ud5o8dkw2i95lTo++j6yi
AkN8mhDeK8COBJUhmOEwNZbwnJnzeFM5qsMHFg0qtzgDEwo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org