Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/2dc136-400d-40e7-ad86-8ce60a5c8b1f/1/HOb7lDKz3BVjRMW0VvMD8yT-tIU.roa
File: HOb7lDKz3BVjRMW0VvMD8yT-tIU.roa (raw, json)
Hash identifier: pEyLDdyovehqBVNtAGZlz6XhHH4plBF+h2ycU0jIbKo=
Subject key identifier: 1C:E6:FB:94:32:B3:DC:15:63:44:C5:B4:56:F3:03:F3:24:FE:B4:85
Certificate issuer: /CN=f80e017cf1711519b0ff9f65858c491b2fa5d40b
Certificate serial: 01856ED4C99C07D92CD86BB5D680E1340124
Authority key identifier: F8:0E:01:7C:F1:71:15:19:B0:FF:9F:65:85:8C:49:1B:2F:A5:D4:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-A4BfPFxFRmw_59lhYxJGy-l1As.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/2dc136-400d-40e7-ad86-8ce60a5c8b1f/1/HOb7lDKz3BVjRMW0VvMD8yT-tIU.roa
Signing time: Sun 01 Jan 2023 19:35:17 +0000
ROA not before: Sun 01 Jan 2023 19:35:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49689
IP address blocks: 2a10:8b40:1001::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:c9:9c:07:d9:2c:d8:6b:b5:d6:80:e1:34:01:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f80e017cf1711519b0ff9f65858c491b2fa5d40b
Validity
Not Before: Jan 1 19:35:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ce6fb9432b3dc156344c5b456f303f324feb485
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4a:86:c7:4c:6d:fb:a6:fc:05:98:3c:45:84:
49:13:32:44:57:17:ec:1b:3a:46:12:05:e6:2b:28:
0a:95:11:1f:06:7b:0c:74:f3:9a:81:ea:d4:a6:66:
10:fa:de:63:98:db:76:66:8e:dd:62:a7:e4:15:2c:
45:fe:62:8f:35:a5:dd:4f:b8:3e:7e:a9:e5:81:00:
f9:dd:95:be:57:6c:4b:e3:ad:0c:aa:85:5c:f6:25:
8e:66:05:9b:89:fc:8e:8c:ea:9d:32:6c:b8:6f:af:
95:06:a9:ca:d9:d7:e3:71:f2:e7:c3:24:62:66:37:
40:12:80:8f:6f:1d:37:51:0e:de:e9:f7:36:e8:60:
b8:e4:b8:c4:48:48:79:b1:7d:e2:f5:42:d8:93:99:
73:5d:61:0c:92:9a:46:f9:49:00:57:04:6b:ce:28:
19:bd:d4:a6:60:25:87:cc:c2:72:fd:e4:fa:23:1a:
d3:e3:e1:54:87:34:3b:ff:14:98:f4:ef:5a:24:92:
9c:79:97:bb:f0:8c:69:ad:0a:aa:e9:23:c4:2a:bf:
9a:2e:09:ca:5a:d6:04:39:26:f6:54:20:9a:2f:91:
24:3d:b1:37:31:c1:ee:31:c1:cb:f4:f0:60:a0:3b:
f7:1d:19:4f:e7:d4:00:72:7f:36:8f:dc:1a:a6:5d:
93:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:E6:FB:94:32:B3:DC:15:63:44:C5:B4:56:F3:03:F3:24:FE:B4:85
X509v3 Authority Key Identifier:
keyid:F8:0E:01:7C:F1:71:15:19:B0:FF:9F:65:85:8C:49:1B:2F:A5:D4:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-A4BfPFxFRmw_59lhYxJGy-l1As.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/2dc136-400d-40e7-ad86-8ce60a5c8b1f/1/HOb7lDKz3BVjRMW0VvMD8yT-tIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/2dc136-400d-40e7-ad86-8ce60a5c8b1f/1/1-A4BfPFxFRmw_59lhYxJGy-l1As.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:8b40:1001::/48
Signature Algorithm: sha256WithRSAEncryption
48:df:54:5b:be:1b:c1:c0:a7:0b:83:c0:ca:fe:93:ce:b0:84:
4b:2a:95:f0:62:c6:6e:79:f8:d9:e7:d9:b1:de:b7:60:e6:e3:
d9:1f:3f:ef:09:cd:49:98:6a:3f:df:8b:f6:bb:01:4f:76:b4:
72:ff:2d:80:9d:19:18:7e:0a:e3:3f:21:08:51:9f:18:89:c0:
d9:71:83:ec:55:3c:75:82:e5:5b:a5:77:9d:bb:c5:12:78:bf:
cc:4c:5b:05:1d:5e:99:96:8d:0b:be:95:30:97:e2:b1:db:e1:
e2:b4:e0:8d:c7:d5:49:25:e9:16:39:90:07:9e:b3:6d:33:71:
1a:5f:b7:ac:ab:69:e9:aa:fd:53:16:e8:0c:0a:e3:ab:14:b1:
ee:b2:f6:91:1f:95:2e:5b:4d:fb:5d:fb:a4:cc:95:a0:e7:a0:
79:4f:c1:e2:53:7d:63:c5:80:cc:11:44:1e:24:ba:26:10:f3:
07:84:b4:35:be:1e:8d:69:66:da:fb:d8:b9:de:aa:db:ee:14:
89:35:bd:63:07:5e:2b:cb:4e:39:36:60:e7:35:df:ce:01:2f:
c3:80:90:61:20:05:6b:af:11:b6:19:d1:ec:dd:31:dc:6b:60:
87:7f:af:0c:94:88:df:68:dc:c2:f7:3a:99:3e:61:42:54:05:
89:c1:98:59
-----BEGIN CERTIFICATE-----
MIIFAjCCA+qgAwIBAgISAYVu1MmcB9ks2Gu11oDhNAEkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4MGUwMTdjZjE3MTE1MTliMGZmOWY2NTg1OGM0OTFiMmZh
NWQ0MGIwHhcNMjMwMTAxMTkzNTE3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxY2U2ZmI5NDMyYjNkYzE1NjM0NGM1YjQ1NmYzMDNmMzI0ZmViNDg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApkqGx0xt+6b8BZg8RYRJEzJEVxfs
GzpGEgXmKygKlREfBnsMdPOagerUpmYQ+t5jmNt2Zo7dYqfkFSxF/mKPNaXdT7g+
fqnlgQD53ZW+V2xL460MqoVc9iWOZgWbifyOjOqdMmy4b6+VBqnK2dfjcfLnwyRi
ZjdAEoCPbx03UQ7e6fc26GC45LjESEh5sX3i9ULYk5lzXWEMkppG+UkAVwRrzigZ
vdSmYCWHzMJy/eT6IxrT4+FUhzQ7/xSY9O9aJJKceZe78IxprQqq6SPEKr+aLgnK
WtYEOSb2VCCaL5EkPbE3McHuMcHL9PBgoDv3HRlP59QAcn82j9wapl2TYwIDAQAB
o4ICDjCCAgowHQYDVR0OBBYEFBzm+5Qys9wVY0TFtFbzA/Mk/rSFMB8GA1UdIwQY
MBaAFPgOAXzxcRUZsP+fZYWMSRsvpdQLMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1BNEJmUEZ4RlJtd181OWxoWXhKR3ktbDFBcy5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODcvMmRjMTM2LTQwMGQtNDBlNy1hZDg2
LThjZTYwYTVjOGIxZi8xL0hPYjdsREt6M0JWalJNVzBWdk1EOHlULXRJVS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvODcvMmRjMTM2LTQwMGQtNDBlNy1hZDg2LThjZTYwYTVjOGIx
Zi8xLzEtQTRCZlBGeEZSbXdfNTlsaFl4Skd5LWwxQXMuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAqEItA
EAEwDQYJKoZIhvcNAQELBQADggEBAEjfVFu+G8HApwuDwMr+k86whEsqlfBixm55
+Nnn2bHet2Dm49kfP+8JzUmYaj/fi/a7AU92tHL/LYCdGRh+CuM/IQhRnxiJwNlx
g+xVPHWC5Vuld527xRJ4v8xMWwUdXpmWjQu+lTCX4rHb4eK04I3H1Ukl6RY5kAee
s20zcRpft6yraemq/VMW6AwK46sUse6y9pEflS5bTftd+6TMlaDnoHlPweJTfWPF
gMwRRB4kuiYQ8weEtDW+Ho1pZtr72LneqtvuFIk1vWMHXivLTjk2YOc1384BL8OA
kGEgBWuvEbYZ0ezdMdxrYId/rwyUiN9o3ML3Opk+YUJUBYnBmFk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:42 2024 by rpki-client on console-ams.rpki-client.org