Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/OX5jHYy2Osxq68LJAn-nq1LMN94.roa
File: OX5jHYy2Osxq68LJAn-nq1LMN94.roa (raw, json)
Hash identifier: 8ZhUa1N8KY71kICtCw2qsnx6xZIzHnz9xKfuiSyTGHo=
Subject key identifier: 39:7E:63:1D:8C:B6:3A:CC:6A:EB:C2:C9:02:7F:A7:AB:52:CC:37:DE
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 01856F2FEB539F396727DDFCE4C364C5081E
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/OX5jHYy2Osxq68LJAn-nq1LMN94.roa
Signing time: Sun 01 Jan 2023 21:14:49 +0000
ROA not before: Sun 01 Jan 2023 21:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204721
IP address blocks: 2a0e:aa07:e040::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:eb:53:9f:39:67:27:dd:fc:e4:c3:64:c5:08:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Jan 1 21:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=397e631d8cb63acc6aebc2c9027fa7ab52cc37de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:77:62:4c:9f:80:08:33:ad:05:e4:d4:4f:4d:
07:3a:d6:39:8d:49:56:b5:9f:d7:af:21:9b:b6:bf:
1f:ea:33:a6:c3:54:14:cf:66:d1:67:52:69:90:9b:
8f:0b:2c:0a:8e:77:fd:19:13:95:93:60:40:28:66:
82:07:77:01:5a:90:b2:57:6a:fd:49:91:87:b7:0c:
3f:08:20:c4:d9:69:11:c2:5b:24:eb:d3:88:23:34:
91:88:4e:07:74:ed:21:9a:aa:04:e0:d1:c5:0f:68:
f8:f3:8d:18:8c:cc:6b:3a:a9:e8:af:99:8d:1b:89:
f0:25:8d:29:9d:06:4c:e9:c6:80:cd:f3:65:2f:d7:
11:bd:d5:fc:bc:fc:2c:f5:94:df:c1:c0:06:66:ab:
de:75:8b:d6:85:b2:d5:6f:95:4a:a6:39:9d:72:8a:
a4:b6:f4:71:7d:d0:5a:06:71:30:8b:1e:f5:a0:98:
d4:00:94:28:28:73:fe:b0:d1:0a:22:f9:30:ee:52:
77:29:94:b8:bb:49:74:5d:7b:e4:de:04:43:d9:4b:
6a:df:4e:85:d1:3a:ef:a1:fa:05:d5:7f:69:23:d6:
20:69:82:40:a3:5f:02:d8:11:0c:c6:7b:07:1a:24:
20:3f:fc:51:5c:49:48:fe:ef:54:32:6a:3f:69:5b:
23:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:7E:63:1D:8C:B6:3A:CC:6A:EB:C2:C9:02:7F:A7:AB:52:CC:37:DE
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/OX5jHYy2Osxq68LJAn-nq1LMN94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e040::/48
Signature Algorithm: sha256WithRSAEncryption
2f:c3:9d:db:e7:e6:d4:94:44:d5:72:e9:67:08:35:a0:db:2b:
25:7b:3c:52:66:df:8a:d6:d4:1c:ab:24:63:8d:73:36:4d:96:
82:50:1f:95:65:52:c2:a8:33:ba:5e:c8:af:e0:01:ca:1f:72:
a9:b9:d9:5f:d7:95:2a:76:48:ea:06:92:0d:90:83:fa:60:24:
92:c1:58:d8:60:75:f6:0e:ee:b5:18:12:c4:02:5d:57:13:21:
75:1f:e7:18:d4:25:ef:9c:69:e5:47:1c:4a:a8:68:81:7e:1b:
23:3e:b0:fa:c2:f2:49:62:e5:0e:c3:17:64:81:94:09:2d:db:
a2:55:88:9c:18:67:b5:3c:56:00:37:ee:79:c3:65:3c:f4:23:
84:41:2e:c4:fe:21:0f:bf:a3:e5:b6:7f:0b:4b:5f:73:6c:6b:
c0:b4:7e:d8:64:9a:b8:25:d6:0a:01:56:d1:d7:a9:58:b5:bb:
1c:83:55:26:af:dd:a5:bc:ec:88:77:31:28:8e:11:41:9d:bf:
96:22:c8:0e:da:44:3d:2b:09:63:27:4b:35:eb:62:a2:1d:60:
a2:90:ac:58:f2:45:76:16:33:b0:65:e2:0b:54:1e:bc:79:e7:
34:01:b6:24:1e:66:c1:fc:02:3b:c6:53:88:cb:13:14:c4:bd:
c5:27:b3:a3
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVvL+tTnzlnJ9385MNkxQgeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzNjFiNWNkNjk2ODI1Yjc0ZmNjYmE3ZDk3YzNkMGEyNzI0
ZWYzYWEwHhcNMjMwMTAxMjExNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOTdlNjMxZDhjYjYzYWNjNmFlYmMyYzkwMjdmYTdhYjUyY2MzN2RlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgndiTJ+ACDOtBeTUT00HOtY5jUlW
tZ/XryGbtr8f6jOmw1QUz2bRZ1JpkJuPCywKjnf9GROVk2BAKGaCB3cBWpCyV2r9
SZGHtww/CCDE2WkRwlsk69OIIzSRiE4HdO0hmqoE4NHFD2j4840YjMxrOqnor5mN
G4nwJY0pnQZM6caAzfNlL9cRvdX8vPws9ZTfwcAGZqvedYvWhbLVb5VKpjmdcoqk
tvRxfdBaBnEwix71oJjUAJQoKHP+sNEKIvkw7lJ3KZS4u0l0XXvk3gRD2Utq306F
0TrvofoF1X9pI9YgaYJAo18C2BEMxnsHGiQgP/xRXElI/u9UMmo/aVsjvwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFDl+Yx2MtjrMauvCyQJ/p6tSzDfeMB8GA1UdIwQY
MBaAFJNhtc1paCW3T8y6fZfD0KJyTvOqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEt
YTU0MWQxYmNlZTE5LzEvT1g1akhZeTJPc3hxNjhMSkFuLW5xMUxNTjk0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEtYTU0MWQxYmNlZTE5
LzEvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg6qB+BA
MA0GCSqGSIb3DQEBCwUAA4IBAQAvw53b5+bUlETVculnCDWg2yslezxSZt+K1tQc
qyRjjXM2TZaCUB+VZVLCqDO6Xsiv4AHKH3Kpudlf15UqdkjqBpINkIP6YCSSwVjY
YHX2Du61GBLEAl1XEyF1H+cY1CXvnGnlRxxKqGiBfhsjPrD6wvJJYuUOwxdkgZQJ
LduiVYicGGe1PFYAN+55w2U89COEQS7E/iEPv6Pltn8LS19zbGvAtH7YZJq4JdYK
AVbR16lYtbscg1Umr92lvOyIdzEojhFBnb+WIsgO2kQ9KwljJ0s162KiHWCikKxY
8kV2FjOwZeILVB68eec0AbYkHmbB/AI7xlOIyxMUxL3FJ7Oj
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:11 2024 by rpki-client on console-ams.rpki-client.org