Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/m8vCXjWK40FjM11GfMCC6BkQH90.roa
File: m8vCXjWK40FjM11GfMCC6BkQH90.roa (raw, json)
Hash identifier: L78hByDsIIlZgZ51/tHreBVZl9AreiVV8IrcLctucN0=
Subject key identifier: 9B:CB:C2:5E:35:8A:E3:41:63:33:5D:46:7C:C0:82:E8:19:10:1F:DD
Certificate issuer: /CN=835bc9bb547e27788d221bc8bbd5fb02e024480f
Certificate serial: 018571C31149A2B1695643DFDC11768776B4
Authority key identifier: 83:5B:C9:BB:54:7E:27:78:8D:22:1B:C8:BB:D5:FB:02:E0:24:48:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/m8vCXjWK40FjM11GfMCC6BkQH90.roa
Signing time: Mon 02 Jan 2023 09:14:47 +0000
ROA not before: Mon 02 Jan 2023 09:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212232
IP address blocks: 2a0b:6b86:d00::/40 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:c3:11:49:a2:b1:69:56:43:df:dc:11:76:87:76:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=835bc9bb547e27788d221bc8bbd5fb02e024480f
Validity
Not Before: Jan 2 09:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9bcbc25e358ae34163335d467cc082e819101fdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:14:d9:5c:2a:f2:58:c7:a5:1e:06:05:1a:fd:
73:51:9d:41:ee:f4:20:9e:af:c1:2d:2c:ef:41:7c:
95:70:91:b9:8b:0a:fb:3c:8f:29:32:66:f9:ea:4c:
52:61:27:6e:1a:a1:bc:93:c0:20:e2:25:c6:90:13:
39:0e:40:e9:61:9d:ce:24:f6:18:73:22:75:cb:63:
c1:e3:54:5e:be:af:60:30:5f:35:4b:32:7b:b0:6c:
af:4c:14:4b:2a:ca:bf:7b:0b:13:cc:dc:83:b2:9a:
39:b4:21:91:d2:3b:83:67:cd:c5:d7:78:f4:3d:cf:
97:ad:74:94:0a:f8:ba:1f:b3:f3:a4:a4:ee:2c:2a:
13:8b:c1:49:d7:b6:81:3a:cb:0a:23:93:92:f3:d4:
a1:83:9f:db:bf:87:fa:f2:62:4d:62:a3:11:12:82:
cb:8a:f3:a0:b1:92:34:9e:3a:49:a6:2b:26:98:28:
3f:7e:97:28:a2:9f:04:8b:51:a4:09:83:7a:0f:8e:
d0:01:8a:78:03:c8:2b:9f:4e:9d:93:c7:82:d6:ea:
d6:2a:06:fa:6c:82:3a:db:5a:39:34:e9:55:12:16:
ff:f5:d0:5b:47:99:37:59:fa:b4:f2:f8:b1:29:34:
c2:7a:2e:7a:cf:55:21:ec:ac:7a:7b:5b:0e:87:2a:
bc:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:CB:C2:5E:35:8A:E3:41:63:33:5D:46:7C:C0:82:E8:19:10:1F:DD
X509v3 Authority Key Identifier:
keyid:83:5B:C9:BB:54:7E:27:78:8D:22:1B:C8:BB:D5:FB:02:E0:24:48:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g1vJu1R-J3iNIhvIu9X7AuAkSA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/m8vCXjWK40FjM11GfMCC6BkQH90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/962fb1-3df0-4ec2-b50a-b36a24d39427/1/g1vJu1R-J3iNIhvIu9X7AuAkSA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0b:6b86:d00::/40
Signature Algorithm: sha256WithRSAEncryption
69:30:a5:f3:c9:f3:20:e3:2f:54:81:5b:5c:1a:6f:7d:19:7a:
e5:e0:a3:6e:e8:59:23:e6:22:4f:03:bf:64:e2:d7:10:80:7b:
ca:23:4f:79:ce:97:97:bb:b4:3b:c2:d8:fb:fb:38:6d:7d:9e:
f2:ba:75:6d:cd:48:c5:15:9e:a0:c9:5a:2c:a8:96:e3:e6:8a:
d8:39:09:e6:b6:3e:2e:2a:46:88:74:c0:f5:2d:be:5a:77:f9:
b9:f5:59:69:3b:da:05:e5:23:87:de:b3:27:11:c8:1a:5f:74:
50:33:a9:bb:67:e9:b0:0d:f2:f5:91:0d:23:a7:95:94:ca:8c:
ca:cb:21:80:83:c2:6e:aa:3c:71:9e:c8:14:05:bc:73:78:c2:
ed:58:33:58:89:f9:be:d5:dc:85:b9:26:f2:af:b2:06:09:a1:
a5:32:ae:e2:0f:47:6e:b6:e9:74:bb:07:d0:04:f3:7f:f2:68:
b9:be:36:1a:60:1b:cf:21:e1:6d:18:ca:24:76:f9:67:09:46:
a2:6a:bb:0f:0c:cf:59:23:2d:1a:1a:39:88:89:bc:58:d7:3e:
a8:20:94:9d:d1:84:55:ac:17:b3:88:6a:f5:91:d5:44:47:ef:
ff:a1:e9:d1:b0:c5:69:ee:8d:62:f3:76:0f:c1:60:47:3d:8b:
b3:6e:a1:a8
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVxwxFJorFpVkPf3BF2h3a0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzNWJjOWJiNTQ3ZTI3Nzg4ZDIyMWJjOGJiZDVmYjAyZTAy
NDQ4MGYwHhcNMjMwMTAyMDkxNDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YmNiYzI1ZTM1OGFlMzQxNjMzMzVkNDY3Y2MwODJlODE5MTAxZmRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkxTZXCryWMelHgYFGv1zUZ1B7vQg
nq/BLSzvQXyVcJG5iwr7PI8pMmb56kxSYSduGqG8k8Ag4iXGkBM5DkDpYZ3OJPYY
cyJ1y2PB41Revq9gMF81SzJ7sGyvTBRLKsq/ewsTzNyDspo5tCGR0juDZ83F13j0
Pc+XrXSUCvi6H7PzpKTuLCoTi8FJ17aBOssKI5OS89Shg5/bv4f68mJNYqMREoLL
ivOgsZI0njpJpismmCg/fpcoop8Ei1GkCYN6D47QAYp4A8grn06dk8eC1urWKgb6
bII621o5NOlVEhb/9dBbR5k3Wfq08vixKTTCei56z1Uh7Kx6e1sOhyq8awIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFJvLwl41iuNBYzNdRnzAgugZEB/dMB8GA1UdIwQY
MBaAFINbybtUfid4jSIbyLvV+wLgJEgPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZzF2SnUxUi1KM2lOSWh2SXU5WDdBdUFrU0E4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC85NjJmYjEtM2RmMC00ZWMyLWI1MGEt
YjM2YTI0ZDM5NDI3LzEvbTh2Q1hqV0s0MEZqTTExR2ZNQ0M2QmtRSDkwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC85NjJmYjEtM2RmMC00ZWMyLWI1MGEtYjM2YTI0ZDM5NDI3
LzEvZzF2SnUxUi1KM2lOSWh2SXU5WDdBdUFrU0E4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgtrhg0w
DQYJKoZIhvcNAQELBQADggEBAGkwpfPJ8yDjL1SBW1wab30ZeuXgo27oWSPmIk8D
v2Ti1xCAe8ojT3nOl5e7tDvC2Pv7OG19nvK6dW3NSMUVnqDJWiyoluPmitg5Cea2
Pi4qRoh0wPUtvlp3+bn1WWk72gXlI4fesycRyBpfdFAzqbtn6bAN8vWRDSOnlZTK
jMrLIYCDwm6qPHGeyBQFvHN4wu1YM1iJ+b7V3IW5JvKvsgYJoaUyruIPR2626XS7
B9AE83/yaLm+NhpgG88h4W0YyiR2+WcJRqJquw8Mz1kjLRoaOYiJvFjXPqgglJ3R
hFWsF7OIavWR1URH7/+h6dGwxWnujWLzdg/BYEc9i7Nuoag=
-----END CERTIFICATE-----
Generated at Tue Jan 2 01:50:08 2024 by rpki-client on console-fra.rpki-client.org