Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/702a72-3112-4d9f-bba9-8034e2d05d39/1/qAUJEmDPwbiaWTDtEQL7U-QDnpg.roa
File: qAUJEmDPwbiaWTDtEQL7U-QDnpg.roa (raw, json)
Hash identifier: 6dEN8nwxAvbmU/EdRfPlTTOk53gxvrWqQ0hiSxPqbac=
Subject key identifier: A8:05:09:12:60:CF:C1:B8:9A:59:30:ED:11:02:FB:53:E4:03:9E:98
Certificate issuer: /CN=146170cb906ef42d097c6402d83eec3d92677a68
Certificate serial: 01856F9DFC71330F26FB19A074F686CFF081
Authority key identifier: 14:61:70:CB:90:6E:F4:2D:09:7C:64:02:D8:3E:EC:3D:92:67:7A:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FGFwy5Bu9C0JfGQC2D7sPZJnemg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/702a72-3112-4d9f-bba9-8034e2d05d39/1/qAUJEmDPwbiaWTDtEQL7U-QDnpg.roa
Signing time: Sun 01 Jan 2023 23:15:02 +0000
ROA not before: Sun 01 Jan 2023 23:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201690
IP address blocks: 2a03:22e0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:fc:71:33:0f:26:fb:19:a0:74:f6:86:cf:f0:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=146170cb906ef42d097c6402d83eec3d92677a68
Validity
Not Before: Jan 1 23:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a805091260cfc1b89a5930ed1102fb53e4039e98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b2:42:10:a1:30:cf:40:ae:b7:33:61:3d:13:
b3:cf:8c:f7:87:b9:0a:9c:b2:b9:0b:c7:e8:ce:9f:
c5:a5:d7:a2:2c:20:60:8f:e0:fe:3a:e9:d7:5e:e7:
7b:ee:c2:ba:0a:c8:6b:38:d5:35:f7:56:96:45:b5:
70:91:84:2e:07:9f:f8:fe:8e:f4:1e:08:85:b9:b8:
c6:12:88:55:aa:e4:23:ea:b4:51:57:b8:b9:58:5c:
f6:aa:46:9f:80:2a:a9:5e:33:ae:47:90:0a:ee:17:
09:02:c4:96:3d:7a:9f:cd:ec:9a:6f:e6:b5:39:94:
80:a4:d5:f4:49:72:a1:48:33:c1:bc:d4:0c:1a:d7:
9a:8d:7a:97:2f:db:1c:7a:84:6f:53:97:33:24:56:
67:a0:b6:db:02:e4:95:00:1a:9c:ad:fe:74:bb:49:
99:29:8c:0b:41:1b:18:e1:ca:e2:f9:1c:04:55:f0:
38:71:3c:8b:a8:23:0f:46:8d:42:3f:2f:56:78:bd:
f2:b4:73:6c:e4:12:be:e3:73:fc:e1:69:cf:6f:3b:
d4:dc:46:91:a4:4f:80:b3:26:d1:4e:eb:ea:b8:14:
f2:7a:76:36:a6:34:fe:49:c1:e3:0f:cb:7a:fa:4d:
69:77:78:c5:54:fc:c3:e0:34:fa:3a:8f:fe:32:d1:
57:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:05:09:12:60:CF:C1:B8:9A:59:30:ED:11:02:FB:53:E4:03:9E:98
X509v3 Authority Key Identifier:
keyid:14:61:70:CB:90:6E:F4:2D:09:7C:64:02:D8:3E:EC:3D:92:67:7A:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FGFwy5Bu9C0JfGQC2D7sPZJnemg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/702a72-3112-4d9f-bba9-8034e2d05d39/1/qAUJEmDPwbiaWTDtEQL7U-QDnpg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/702a72-3112-4d9f-bba9-8034e2d05d39/1/FGFwy5Bu9C0JfGQC2D7sPZJnemg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:22e0::/32
Signature Algorithm: sha256WithRSAEncryption
00:bf:55:f9:b4:5c:eb:94:27:b2:be:f1:9e:bb:3a:4b:fd:11:
f3:af:89:8c:be:a8:d8:80:07:de:ce:af:c3:2a:8d:db:2c:0c:
31:f8:e8:2e:80:04:f5:d6:57:c4:3d:bf:8e:d8:03:b6:b4:39:
aa:a4:c2:45:cd:92:d4:d7:56:94:44:84:cd:d5:c2:99:9b:f7:
e3:30:11:0e:7c:66:cc:8d:94:6f:29:a7:51:b3:83:9b:a6:99:
49:d3:5c:a9:c3:64:e0:35:47:26:1a:7b:db:8d:b4:47:84:43:
52:d4:ac:0d:ee:c9:4f:4b:5a:c3:05:05:b4:89:fd:af:ef:92:
7b:81:24:ad:7a:6a:c5:91:73:fc:a2:59:6a:e0:e8:e3:bc:47:
7c:24:82:40:90:a7:a2:2d:bf:a5:79:ac:d5:f0:da:62:7e:ac:
da:02:ec:01:df:b1:02:94:be:24:8c:d0:af:8e:10:18:47:e2:
a1:71:a9:24:64:f2:ce:22:08:eb:74:21:f2:1d:ff:69:0c:f6:
1d:ad:62:50:ee:bb:30:34:5b:b9:2e:84:74:21:43:80:30:83:
d8:7f:dc:04:42:fb:cd:bd:d2:2f:62:fd:8d:14:97:a4:57:46:
cc:04:ce:0c:64:10:61:6d:be:51:84:71:e8:4d:b5:b1:60:c8:
60:55:c8:96
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVvnfxxMw8m+xmgdPaGz/CBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE0NjE3MGNiOTA2ZWY0MmQwOTdjNjQwMmQ4M2VlYzNkOTI2
NzdhNjgwHhcNMjMwMTAxMjMxNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhODA1MDkxMjYwY2ZjMWI4OWE1OTMwZWQxMTAyZmI1M2U0MDM5ZTk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApbJCEKEwz0CutzNhPROzz4z3h7kK
nLK5C8fozp/FpdeiLCBgj+D+OunXXud77sK6CshrONU191aWRbVwkYQuB5/4/o70
HgiFubjGEohVquQj6rRRV7i5WFz2qkafgCqpXjOuR5AK7hcJAsSWPXqfzeyab+a1
OZSApNX0SXKhSDPBvNQMGteajXqXL9sceoRvU5czJFZnoLbbAuSVABqcrf50u0mZ
KYwLQRsY4cri+RwEVfA4cTyLqCMPRo1CPy9WeL3ytHNs5BK+43P84WnPbzvU3EaR
pE+AsybRTuvquBTyenY2pjT+ScHjD8t6+k1pd3jFVPzD4DT6Oo/+MtFX8QIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFKgFCRJgz8G4mlkw7REC+1PkA56YMB8GA1UdIwQY
MBaAFBRhcMuQbvQtCXxkAtg+7D2SZ3poMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRkdGd3k1QnU5QzBKZkdRQzJEN3NQWkpuZW1nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC83MDJhNzItMzExMi00ZDlmLWJiYTkt
ODAzNGUyZDA1ZDM5LzEvcUFVSkVtRFB3YmlhV1REdEVRTDdVLVFEbnBnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC83MDJhNzItMzExMi00ZDlmLWJiYTktODAzNGUyZDA1ZDM5
LzEvRkdGd3k1QnU5QzBKZkdRQzJEN3NQWkpuZW1nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgMi4DAN
BgkqhkiG9w0BAQsFAAOCAQEAAL9V+bRc65Qnsr7xnrs6S/0R86+JjL6o2IAH3s6v
wyqN2ywMMfjoLoAE9dZXxD2/jtgDtrQ5qqTCRc2S1NdWlESEzdXCmZv34zARDnxm
zI2UbymnUbODm6aZSdNcqcNk4DVHJhp72420R4RDUtSsDe7JT0tawwUFtIn9r++S
e4EkrXpqxZFz/KJZauDo47xHfCSCQJCnoi2/pXms1fDaYn6s2gLsAd+xApS+JIzQ
r44QGEfioXGpJGTyziII63Qh8h3/aQz2Ha1iUO67MDRbuS6EdCFDgDCD2H/cBEL7
zb3SL2L9jRSXpFdGzATODGQQYW2+UYRx6E21sWDIYFXIlg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:28 2024 by rpki-client on console-ams.rpki-client.org