Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/gH3CadPbnjEK1eounLDyprVgbYI.roa
File: gH3CadPbnjEK1eounLDyprVgbYI.roa (raw, json)
Hash identifier: TsLfIncDBFd6oV3z3nN0soT9fohO8sv/TRaCCJj2Y+Q=
Subject key identifier: 80:7D:C2:69:D3:DB:9E:31:0A:D5:EA:2E:9C:B0:F2:A6:B5:60:6D:82
Certificate issuer: /CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Certificate serial: 018BAF6693C590A5DA5DE0FF1C64C4CA4841
Authority key identifier: EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/gH3CadPbnjEK1eounLDyprVgbYI.roa
Signing time: Wed 08 Nov 2023 14:46:57 +0000
ROA not before: Wed 08 Nov 2023 14:46:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52016
IP address blocks: 2001:6d0:4001::/48 maxlen: 48
2001:6d0:4002::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:af:66:93:c5:90:a5:da:5d:e0:ff:1c:64:c4:ca:48:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef1c665b038692b93bdf5d1d8f3cea3e98697a03
Validity
Not Before: Nov 8 14:46:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=807dc269d3db9e310ad5ea2e9cb0f2a6b5606d82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:32:4c:02:8a:dd:c8:ed:2b:d9:e7:39:b6:07:
30:51:93:b6:e6:c2:41:45:7c:bd:27:47:82:30:27:
ff:b4:ee:8b:4a:74:4d:f0:3a:23:5d:4b:1c:b4:1d:
77:f4:93:80:b0:1d:ad:0c:ba:d1:37:ad:a1:98:ff:
ef:b7:1f:96:a1:9a:3e:7b:07:b3:63:8b:a6:4f:8b:
e6:82:0a:24:1f:b3:1c:76:6d:3d:f3:0c:1f:ca:03:
29:fb:e5:45:61:e3:af:5a:ca:34:ca:62:9b:8f:21:
ab:34:8f:9c:58:3a:94:27:9e:77:23:bd:d8:93:99:
5a:ba:d3:a1:6e:bd:5d:b9:bc:78:ea:f9:35:8a:c9:
ba:0c:0a:2c:df:1f:c5:39:c5:cb:f1:e9:90:50:96:
f8:3b:7b:aa:a6:bc:ca:29:27:ec:49:81:88:02:89:
3c:04:74:10:3c:c2:b4:68:dd:4e:34:40:4f:42:ab:
2b:e1:96:90:76:dc:57:37:eb:6a:ba:64:1b:5e:77:
01:3d:17:67:37:e4:09:7d:a7:47:ec:f6:91:91:b4:
97:ff:b0:cf:62:00:af:08:d1:88:8d:04:7e:89:b0:
c4:97:dc:4d:d8:55:c5:39:ac:4e:82:10:54:80:b8:
27:d8:91:e1:89:74:25:94:be:55:d2:61:94:c0:d7:
05:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:7D:C2:69:D3:DB:9E:31:0A:D5:EA:2E:9C:B0:F2:A6:B5:60:6D:82
X509v3 Authority Key Identifier:
keyid:EF:1C:66:5B:03:86:92:B9:3B:DF:5D:1D:8F:3C:EA:3E:98:69:7A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7xxmWwOGkrk7310djzzqPphpegM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/gH3CadPbnjEK1eounLDyprVgbYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2925a3-871b-4676-ae10-688d333ed9d5/1/7xxmWwOGkrk7310djzzqPphpegM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:6d0:4001::-2001:6d0:4002:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
6c:7c:27:3d:74:1d:b2:07:53:5f:aa:d6:32:a9:d6:5a:01:58:
b7:f0:bd:51:36:b4:24:81:35:5f:73:f1:9c:b3:92:39:30:2f:
80:6b:d9:5c:88:5e:dc:31:62:8e:ae:f4:5b:c8:23:d5:7e:6f:
f8:d9:75:19:68:ea:21:5e:7a:ca:ff:c0:bb:94:db:16:5b:a8:
7d:0b:82:1f:b1:f1:35:2c:3a:24:62:92:cd:c3:4a:de:f3:14:
21:43:a0:31:88:d1:38:c5:3e:8d:e2:8a:48:92:c1:58:80:62:
5d:f3:f5:ea:21:f6:88:f3:81:b5:d4:b3:4e:75:2a:8e:9b:12:
ab:91:65:bc:bf:b2:b3:8c:8e:24:17:19:dc:59:69:50:0e:52:
ad:bc:12:3a:10:2c:0f:ac:09:20:71:e5:4a:a7:0b:19:82:ca:
34:22:69:59:f6:61:ca:c0:ff:77:e9:f7:6c:8b:2f:85:2b:14:
8f:f4:57:36:cc:05:eb:f8:ef:dd:98:5b:fb:0e:eb:96:00:66:
35:69:8d:66:ac:eb:cd:38:db:f1:78:80:f3:05:01:72:b8:d2:
cb:c6:73:f2:46:70:7e:ae:1b:92:03:53:89:1b:6c:cd:7a:57:
ee:3c:92:3d:5d:eb:44:34:34:cf:38:25:4a:b6:ab:7a:80:1c:
ad:92:ac:26
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgISAYuvZpPFkKXaXeD/HGTEykhBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVmMWM2NjViMDM4NjkyYjkzYmRmNWQxZDhmM2NlYTNlOTg2
OTdhMDMwHhcNMjMxMTA4MTQ0NjU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MDdkYzI2OWQzZGI5ZTMxMGFkNWVhMmU5Y2IwZjJhNmI1NjA2ZDgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjTJMAordyO0r2ec5tgcwUZO25sJB
RXy9J0eCMCf/tO6LSnRN8DojXUsctB139JOAsB2tDLrRN62hmP/vtx+WoZo+ewez
Y4umT4vmggokH7Mcdm098wwfygMp++VFYeOvWso0ymKbjyGrNI+cWDqUJ553I73Y
k5lautOhbr1dubx46vk1ism6DAos3x/FOcXL8emQUJb4O3uqprzKKSfsSYGIAok8
BHQQPMK0aN1ONEBPQqsr4ZaQdtxXN+tqumQbXncBPRdnN+QJfadH7PaRkbSX/7DP
YgCvCNGIjQR+ibDEl9xN2FXFOaxOghBUgLgn2JHhiXQllL5V0mGUwNcFiwIDAQAB
o4ICFzCCAhMwHQYDVR0OBBYEFIB9wmnT254xCtXqLpyw8qa1YG2CMB8GA1UdIwQY
MBaAFO8cZlsDhpK5O99dHY886j6YaXoDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3h4bVd3T0drcms3MzEwZGp6enFQcGhwZWdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC8yOTI1YTMtODcxYi00Njc2LWFlMTAt
Njg4ZDMzM2VkOWQ1LzEvZ0gzQ2FkUGJuakVLMWVvdW5MRHlwclZnYllJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC8yOTI1YTMtODcxYi00Njc2LWFlMTAtNjg4ZDMzM2VkOWQ1
LzEvN3h4bVd3T0drcms3MzEwZGp6enFQcGhwZWdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC0GCCsGAQUFBwEHAQH/BB4wHDAaBAIAAjAUMBIDBwAgAQbQ
QAEDBwAgAQbQQAIwDQYJKoZIhvcNAQELBQADggEBAGx8Jz10HbIHU1+q1jKp1loB
WLfwvVE2tCSBNV9z8ZyzkjkwL4Br2VyIXtwxYo6u9FvII9V+b/jZdRlo6iFeesr/
wLuU2xZbqH0Lgh+x8TUsOiRiks3DSt7zFCFDoDGI0TjFPo3iikiSwViAYl3z9eoh
9ojzgbXUs051Ko6bEquRZby/srOMjiQXGdxZaVAOUq28EjoQLA+sCSBx5UqnCxmC
yjQiaVn2YcrA/3fp92yLL4UrFI/0VzbMBev4792YW/sO65YAZjVpjWas68042/F4
gPMFAXK40svGc/JGcH6uG5IDU4kbbM16V+48kj1d60Q0NM84JUq2q3qAHK2SrCY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:51 2024 by rpki-client on console-fra.rpki-client.org