Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/lbpdAYzL7C9GTHfEmoEowTvQDls.roa
File: lbpdAYzL7C9GTHfEmoEowTvQDls.roa (raw, json)
Hash identifier: Lulp1ywKGBavWE+8zKzkJFG4ckSGlB7jMkbHsAdXbhE=
Subject key identifier: 95:BA:5D:01:8C:CB:EC:2F:46:4C:77:C4:9A:81:28:C1:3B:D0:0E:5B
Certificate issuer: /CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Certificate serial: 018699812FCA969404F70AC99F0F60E05AFB
Authority key identifier: 93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/lbpdAYzL7C9GTHfEmoEowTvQDls.roa
Signing time: Tue 28 Feb 2023 19:30:25 +0000
ROA not before: Tue 28 Feb 2023 19:30:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199684
IP address blocks: 2a0e:aa07:e070::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:99:81:2f:ca:96:94:04:f7:0a:c9:9f:0f:60:e0:5a:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9361b5cd696825b74fccba7d97c3d0a2724ef3aa
Validity
Not Before: Feb 28 19:30:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95ba5d018ccbec2f464c77c49a8128c13bd00e5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:93:da:be:e0:d5:4b:d2:bf:68:13:e4:d4:34:
4e:4b:ca:2c:85:40:64:a2:72:9d:95:5d:73:0d:46:
cc:d7:50:0f:ef:49:ec:0f:77:bc:ba:ca:07:37:00:
6c:dd:d9:ec:a0:45:94:8d:ee:2f:44:fa:1b:21:ce:
d1:af:a5:f8:58:30:0c:1f:f1:f7:c9:fa:e3:a9:0b:
cc:52:1a:91:15:8a:30:3d:c1:55:09:dd:07:23:33:
c4:17:7d:6f:88:47:05:b8:59:99:da:a9:c8:c5:31:
70:d2:30:56:19:fa:8b:7b:89:43:65:b7:9e:68:b1:
c8:15:95:fa:95:04:6d:bc:88:fc:c9:cc:a9:d9:0f:
ed:8e:94:b0:ed:a4:b8:da:b8:5e:32:01:3e:5e:21:
c8:93:37:ed:f8:ea:f6:3d:42:1f:31:11:b7:2e:52:
51:f4:c0:cd:68:a0:ad:55:04:e0:1e:86:eb:04:61:
0c:e7:39:88:6b:af:68:d2:36:ea:84:07:b1:1c:ee:
37:f6:31:94:21:3e:85:44:0d:b2:ec:06:70:3d:ff:
ec:79:0a:fa:bd:d1:92:dc:1d:e7:8d:60:86:16:3b:
17:87:9d:d4:3c:cf:1a:10:70:45:e4:ad:f7:07:bb:
c6:68:07:86:99:bf:e9:ee:fe:02:f3:e9:40:8f:05:
c4:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:BA:5D:01:8C:CB:EC:2F:46:4C:77:C4:9A:81:28:C1:3B:D0:0E:5B
X509v3 Authority Key Identifier:
keyid:93:61:B5:CD:69:68:25:B7:4F:CC:BA:7D:97:C3:D0:A2:72:4E:F3:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2G1zWloJbdPzLp9l8PQonJO86o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/lbpdAYzL7C9GTHfEmoEowTvQDls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/72bf2f-8e34-48a2-849a-a541d1bcee19/1/k2G1zWloJbdPzLp9l8PQonJO86o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:aa07:e070::/44
Signature Algorithm: sha256WithRSAEncryption
31:fa:a6:97:cc:28:48:fc:e9:89:a8:ee:1b:13:98:45:ff:7a:
7c:23:7b:b2:c0:ba:55:d1:b5:8b:36:1d:f3:71:5b:04:de:f1:
6a:6d:e2:b3:79:9f:4f:c8:64:9a:54:c7:53:dd:25:36:9b:5a:
88:2c:4d:a5:3e:bf:b7:26:b3:ad:b9:9f:69:4d:68:59:ef:2c:
cf:96:f3:71:b2:8e:e7:2a:2c:2e:c7:ad:9a:2e:17:d7:c8:77:
7b:f7:51:0f:b2:18:e0:ad:f9:68:81:cc:13:2b:11:6a:9d:95:
5c:d5:bd:2a:94:83:b4:1e:67:ec:cb:67:16:f8:9f:91:24:5e:
20:95:b4:83:40:24:15:62:30:06:6a:fa:b2:23:6e:e5:06:28:
9d:13:75:33:63:c2:84:ee:3b:9d:25:ae:0d:14:2e:8d:27:2a:
bd:95:03:08:2b:1c:d3:e0:70:c2:d2:87:aa:d8:55:0f:bd:e3:
b5:ff:e3:84:00:29:76:6b:d7:81:ab:b5:ba:43:71:d8:06:e9:
c3:61:03:60:04:e4:a9:df:13:a7:f0:c5:f1:b1:fc:39:c4:92:
3c:d6:8f:2c:b2:40:7d:9b:78:c8:70:5e:85:1a:a3:1f:0a:13:
7e:6e:41:80:a6:f6:2d:a3:03:81:99:38:bd:c7:e7:a9:b2:3f:
5b:c0:94:89
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYaZgS/KlpQE9wrJnw9g4Fr7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzNjFiNWNkNjk2ODI1Yjc0ZmNjYmE3ZDk3YzNkMGEyNzI0
ZWYzYWEwHhcNMjMwMjI4MTkzMDI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NWJhNWQwMThjY2JlYzJmNDY0Yzc3YzQ5YTgxMjhjMTNiZDAwZTViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgpPavuDVS9K/aBPk1DROS8oshUBk
onKdlV1zDUbM11AP70nsD3e8usoHNwBs3dnsoEWUje4vRPobIc7Rr6X4WDAMH/H3
yfrjqQvMUhqRFYowPcFVCd0HIzPEF31viEcFuFmZ2qnIxTFw0jBWGfqLe4lDZbee
aLHIFZX6lQRtvIj8ycyp2Q/tjpSw7aS42rheMgE+XiHIkzft+Or2PUIfMRG3LlJR
9MDNaKCtVQTgHobrBGEM5zmIa69o0jbqhAexHO439jGUIT6FRA2y7AZwPf/seQr6
vdGS3B3njWCGFjsXh53UPM8aEHBF5K33B7vGaAeGmb/p7v4C8+lAjwXEWQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFJW6XQGMy+wvRkx3xJqBKME70A5bMB8GA1UdIwQY
MBaAFJNhtc1paCW3T8y6fZfD0KJyTvOqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEt
YTU0MWQxYmNlZTE5LzEvbGJwZEFZekw3QzlHVEhmRW1vRW93VHZRRGxzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi83MmJmMmYtOGUzNC00OGEyLTg0OWEtYTU0MWQxYmNlZTE5
LzEvazJHMXpXbG9KYmRQekxwOWw4UFFvbkpPODZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg6qB+Bw
MA0GCSqGSIb3DQEBCwUAA4IBAQAx+qaXzChI/OmJqO4bE5hF/3p8I3uywLpV0bWL
Nh3zcVsE3vFqbeKzeZ9PyGSaVMdT3SU2m1qILE2lPr+3JrOtuZ9pTWhZ7yzPlvNx
so7nKiwux62aLhfXyHd791EPshjgrflogcwTKxFqnZVc1b0qlIO0Hmfsy2cW+J+R
JF4glbSDQCQVYjAGavqyI27lBiidE3UzY8KE7judJa4NFC6NJyq9lQMIKxzT4HDC
0oeq2FUPveO1/+OEACl2a9eBq7W6Q3HYBunDYQNgBOSp3xOn8MXxsfw5xJI81o8s
skB9m3jIcF6FGqMfChN+bkGApvYtowOBmTi9x+epsj9bwJSJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:37 2024 by rpki-client on console-fra.rpki-client.org