Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/EIbw9bMXcjhAhgT3pLd2Qn56L5o.roa
File: EIbw9bMXcjhAhgT3pLd2Qn56L5o.roa (raw, json)
Hash identifier: VrnrQyqnnZHJjouPNlzVDoopbiHgd46YfQRzN06DeCA=
Subject key identifier: 10:86:F0:F5:B3:17:72:38:40:86:04:F7:A4:B7:76:42:7E:7A:2F:9A
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01856F2FF11D32CEF7D4001F6AF0EB1D11C6
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/EIbw9bMXcjhAhgT3pLd2Qn56L5o.roa
Signing time: Sun 01 Jan 2023 21:14:50 +0000
ROA not before: Sun 01 Jan 2023 21:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208217
IP address blocks: 2a0e:aa01:fe00::/44 maxlen: 48
2a0e:aa01:fe80::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:f1:1d:32:ce:f7:d4:00:1f:6a:f0:eb:1d:11:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 21:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1086f0f5b3177238408604f7a4b776427e7a2f9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ad:20:62:0d:71:f9:9f:b3:1c:ce:74:84:ac:
4c:0d:4e:c5:7c:b8:0a:6e:05:ab:05:5d:7c:33:aa:
af:8c:cd:44:3b:df:06:bc:e6:da:eb:60:8a:1a:73:
f8:92:b9:d0:4b:96:f8:29:26:25:30:12:ab:b7:60:
64:3e:c5:8c:39:21:4f:e6:d2:eb:d1:fc:6a:fb:62:
42:f2:71:b1:a6:42:76:72:0d:44:e1:50:17:16:b3:
51:cc:cc:37:74:c9:1a:de:1b:21:30:00:ca:1c:74:
4d:0a:bf:7a:2f:85:c1:ee:c8:fe:05:43:16:52:e4:
89:49:49:da:42:fa:bc:12:42:d3:3f:bf:14:47:57:
8d:d2:49:da:de:04:8c:f7:6d:66:a2:b3:0a:bd:03:
5d:71:3b:4b:fd:4f:c4:9c:d4:30:0e:ca:2e:be:e6:
58:1f:df:b7:e3:c1:ad:5f:f4:49:77:fd:2b:af:aa:
84:0c:ac:c5:8f:ad:6c:64:51:9a:62:6c:e9:b9:70:
9e:53:69:41:a8:62:8d:6d:fc:28:5f:46:18:5f:3f:
54:d3:cc:a5:a1:fa:6b:f5:e8:f0:53:f5:b3:8a:08:
77:42:9f:7c:08:32:3a:84:88:c0:c9:db:7d:f8:54:
98:b1:97:c6:17:5c:18:f7:e6:fe:63:b6:7f:55:6c:
21:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:86:F0:F5:B3:17:72:38:40:86:04:F7:A4:B7:76:42:7E:7A:2F:9A
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/EIbw9bMXcjhAhgT3pLd2Qn56L5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa01:fe00::/44
2a0e:aa01:fe80::/48
Signature Algorithm: sha256WithRSAEncryption
32:5f:9a:d4:61:5d:12:e8:93:18:f6:6f:f9:44:69:3f:03:57:
42:af:f6:1a:67:1a:dc:cb:86:cd:f6:4e:9f:10:d1:fc:a8:c7:
75:7a:50:1a:55:91:43:15:6d:85:58:90:9a:ab:1f:2f:a9:ae:
87:e5:cb:bc:93:b4:44:8c:05:60:04:f8:51:79:d1:4a:52:69:
00:b1:88:f9:8c:fd:21:3a:21:72:f3:c4:f3:8d:bc:0a:b5:17:
69:9d:f8:22:cd:e1:00:be:5f:2b:df:de:f8:0a:95:a0:fb:79:
9f:33:d8:96:83:20:c9:c6:9b:0b:9b:62:c1:67:f0:59:7d:37:
32:39:d6:37:1a:cd:f7:95:c3:2c:5b:cf:a9:e8:75:d9:1d:75:
6b:7e:39:d6:60:1a:72:46:28:49:05:a2:e5:08:9d:19:6b:54:
97:31:8d:f4:5e:aa:0d:84:a1:0a:e8:0a:be:5a:b0:30:13:85:
f6:01:40:01:20:5c:70:98:ce:7d:86:a8:8e:65:df:eb:26:9c:
23:ac:64:20:69:47:55:36:4d:a2:2b:31:f3:ed:9e:4e:bc:b6:
2e:62:bf:45:30:dc:78:ce:db:59:b3:75:e7:b9:35:01:80:62:
44:44:e0:6a:05:b6:c7:4b:1e:a0:99:f6:6e:14:b1:5a:3f:3d:
7f:1e:cb:ba
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYVvL/EdMs731AAfavDrHRHGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzNjFiNWNkNjk2ODI1Yjc0ZmNjYmE3ZDk3YzNkMGEyNzI0
ZWYzYWEwHhcNMjMwMTAxMjExNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMDg2ZjBmNWIzMTc3MjM4NDA4NjA0ZjdhNGI3NzY0MjdlN2EyZjlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkq0gYg1x+Z+zHM50hKxMDU7FfLgK
bgWrBV18M6qvjM1EO98GvOba62CKGnP4krnQS5b4KSYlMBKrt2BkPsWMOSFP5tLr
0fxq+2JC8nGxpkJ2cg1E4VAXFrNRzMw3dMka3hshMADKHHRNCr96L4XB7sj+BUMW
UuSJSUnaQvq8EkLTP78UR1eN0kna3gSM921morMKvQNdcTtL/U/EnNQwDsouvuZY
H9+348GtX/RJd/0rr6qEDKzFj61sZFGaYmzpuXCeU2lBqGKNbfwoX0YYXz9U08yl
ofpr9ejwU/Wzigh3Qp98CDI6hIjAydt9+FSYsZfGF1wY9+b+Y7Z/VWwhPQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFBCG8PWzF3I4QIYE96S3dkJ+ei+aMB8GA1UdIwQY
MBaAFJNhtc1paCW3T8y6fZfD0KJyTvOqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEt
YTU0MWQxYmNlZTE5LzEvRUlidzliTVhjamhBaGdUM3BMZDJRbjU2TDVvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEtYTU0MWQxYmNlZTE5
LzEvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAAjASAwcEKg6qAf4A
AwcAKg6qAf6AMA0GCSqGSIb3DQEBCwUAA4IBAQAyX5rUYV0S6JMY9m/5RGk/A1dC
r/YaZxrcy4bN9k6fENH8qMd1elAaVZFDFW2FWJCaqx8vqa6H5cu8k7REjAVgBPhR
edFKUmkAsYj5jP0hOiFy88TzjbwKtRdpnfgizeEAvl8r3974CpWg+3mfM9iWgyDJ
xpsLm2LBZ/BZfTcyOdY3Gs33lcMsW8+p6HXZHXVrfjnWYBpyRihJBaLlCJ0Za1SX
MY30XqoNhKEK6Aq+WrAwE4X2AUABIFxwmM59hqiOZd/rJpwjrGQgaUdVNk2iKzHz
7Z5OvLYuYr9FMNx4zttZs3XnuTUBgGJEROBqBbbHSx6gmfZuFLFaPz1/Hsu6
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org