Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/VQHU6Riisqas-DtyFi6eM2_CdDI.roa
File: VQHU6Riisqas-DtyFi6eM2_CdDI.roa (raw, json)
Hash identifier: WpGKUk5nJUo569ktK8GRzS7/WR2mAG03xW4sm9zIheE=
Subject key identifier: 55:01:D4:E9:18:A2:B2:A6:AC:F8:3B:72:16:2E:9E:33:6F:C2:74:32
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 0185707995FB234C8466765496FBD060154F
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/VQHU6Riisqas-DtyFi6eM2_CdDI.roa
Signing time: Mon 02 Jan 2023 03:14:54 +0000
ROA not before: Mon 02 Jan 2023 03:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209263
IP address blocks: 2a12:bec0:60::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:95:fb:23:4c:84:66:76:54:96:fb:d0:60:15:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Jan 2 03:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5501d4e918a2b2a6acf83b72162e9e336fc27432
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:6b:d7:7a:b1:3f:d6:33:d7:32:97:20:25:9d:
66:81:cf:cc:0f:c1:b0:7b:51:2d:bf:5e:4c:c8:44:
22:6f:2a:bd:c1:7e:2a:d5:4d:d4:19:15:c3:90:50:
53:4b:24:85:bb:d3:e8:97:7e:81:dc:74:54:65:54:
43:b4:66:5b:8f:2b:87:bc:c4:e9:a1:db:d6:27:7b:
a4:7c:0a:63:c4:bd:41:e6:c6:af:b5:ef:36:83:96:
23:cb:66:48:d7:08:f2:d5:91:fc:ad:62:fc:ff:d8:
89:63:13:10:ac:fa:f0:a2:6f:1f:01:b4:9f:11:63:
4b:cb:36:eb:fb:c7:a2:88:0b:c9:53:a2:99:0d:98:
84:75:50:2a:31:62:9c:f7:28:d0:86:23:d5:c8:88:
8c:7b:a3:50:f8:8f:b1:e7:27:b4:6d:f3:ca:8c:9c:
6d:36:ed:72:82:4d:10:9a:51:3a:23:96:df:ce:b7:
5b:05:df:85:09:61:7e:e8:96:e0:37:ed:49:4d:aa:
8c:97:04:dc:e8:d2:67:52:18:d4:fd:aa:a7:94:ef:
51:56:38:f1:57:ab:a7:41:53:48:cc:78:5d:32:64:
aa:89:27:fb:44:89:47:85:d7:05:20:8c:30:03:48:
5a:78:03:dd:50:e7:e9:cd:12:14:42:90:de:12:98:
3c:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:01:D4:E9:18:A2:B2:A6:AC:F8:3B:72:16:2E:9E:33:6F:C2:74:32
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/VQHU6Riisqas-DtyFi6eM2_CdDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:bec0:60::/48
Signature Algorithm: sha256WithRSAEncryption
43:d8:45:30:59:49:80:c0:9a:8e:30:ca:a2:53:c1:9d:36:84:
08:d0:d1:b1:83:01:89:7a:70:23:2c:ef:17:35:65:3d:24:7e:
b5:4d:f5:64:cd:bf:ae:6b:fd:26:bb:1c:a1:78:5c:b8:dc:7d:
15:eb:48:4f:56:85:fb:60:d4:31:e2:02:9e:43:67:93:a2:36:
87:e0:71:b6:06:eb:3d:5b:a0:da:e3:1f:8f:63:03:34:ea:42:
67:2d:14:49:62:3b:fb:c6:67:42:23:f8:a9:6a:b6:7f:2d:24:
6b:4c:e3:9c:5b:5b:aa:a8:1c:5d:29:cd:64:89:82:73:86:98:
e1:26:92:25:b5:fa:d4:83:81:37:59:f0:1f:c1:32:50:71:ec:
75:71:50:53:e4:97:52:a4:3c:42:38:d7:89:19:2a:b7:fd:39:
a7:de:57:23:3e:df:a7:18:c8:63:31:25:f0:4c:af:ac:42:d8:
5e:ab:57:d2:46:84:9c:0a:d9:02:bc:36:dd:f8:62:19:c7:06:
fc:dd:7c:03:7c:5d:3c:5f:b0:a6:d5:a0:88:e6:7f:b6:df:fe:
c1:1a:48:f2:0d:3f:dc:65:73:c1:cd:fc:14:9c:7a:eb:85:a9:
e3:f7:5f:b0:dc:d0:4d:0c:c3:2d:fc:84:18:aa:1b:c7:7c:9a:
74:e0:26:f6
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVweZX7I0yEZnZUlvvQYBVPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj
M2Q2NmYwHhcNMjMwMTAyMDMxNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NTAxZDRlOTE4YTJiMmE2YWNmODNiNzIxNjJlOWUzMzZmYzI3NDMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6WvXerE/1jPXMpcgJZ1mgc/MD8Gw
e1Etv15MyEQibyq9wX4q1U3UGRXDkFBTSySFu9Pol36B3HRUZVRDtGZbjyuHvMTp
odvWJ3ukfApjxL1B5savte82g5Yjy2ZI1wjy1ZH8rWL8/9iJYxMQrPrwom8fAbSf
EWNLyzbr+8eiiAvJU6KZDZiEdVAqMWKc9yjQhiPVyIiMe6NQ+I+x5ye0bfPKjJxt
Nu1ygk0QmlE6I5bfzrdbBd+FCWF+6JbgN+1JTaqMlwTc6NJnUhjU/aqnlO9RVjjx
V6unQVNIzHhdMmSqiSf7RIlHhdcFIIwwA0haeAPdUOfpzRIUQpDeEpg84QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFUB1OkYorKmrPg7chYunjNvwnQyMB8GA1UdIwQY
MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt
NTUzNjljZjUwN2VlLzEvVlFIVTZSaWlzcWFzLUR0eUZpNmVNMl9DZERJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl
LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhK+wABg
MA0GCSqGSIb3DQEBCwUAA4IBAQBD2EUwWUmAwJqOMMqiU8GdNoQI0NGxgwGJenAj
LO8XNWU9JH61TfVkzb+ua/0muxyheFy43H0V60hPVoX7YNQx4gKeQ2eTojaH4HG2
Bus9W6Da4x+PYwM06kJnLRRJYjv7xmdCI/iparZ/LSRrTOOcW1uqqBxdKc1kiYJz
hpjhJpIltfrUg4E3WfAfwTJQcex1cVBT5JdSpDxCONeJGSq3/Tmn3lcjPt+nGMhj
MSXwTK+sQtheq1fSRoScCtkCvDbd+GIZxwb83XwDfF08X7Cm1aCI5n+23/7BGkjy
DT/cZXPBzfwUnHrrhanj91+w3NBNDMMt/IQYqhvHfJp04Cb2
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org