Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/8-e73AtV0MZRdgIpoJtPfdoTGzo.roa
File: 8-e73AtV0MZRdgIpoJtPfdoTGzo.roa (raw, json)
Hash identifier: aA6gAmkJ6Is/PVWVfkpaaUgaFaBCcqYatyEpPz+vqhM=
Subject key identifier: F3:E7:BB:DC:0B:55:D0:C6:51:76:02:29:A0:9B:4F:7D:DA:13:1B:3A
Certificate issuer: /CN=57130f799f8a8985502a2ea3356037674085cfca
Certificate serial: 01870A5EA30CD825C08FABDD9AE89110E88E
Authority key identifier: 57:13:0F:79:9F:8A:89:85:50:2A:2E:A3:35:60:37:67:40:85:CF:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/8-e73AtV0MZRdgIpoJtPfdoTGzo.roa
Signing time: Wed 22 Mar 2023 17:29:46 +0000
ROA not before: Wed 22 Mar 2023 17:29:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209527
IP address blocks: 2a0c:d041::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0a:5e:a3:0c:d8:25:c0:8f:ab:dd:9a:e8:91:10:e8:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57130f799f8a8985502a2ea3356037674085cfca
Validity
Not Before: Mar 22 17:29:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3e7bbdc0b55d0c651760229a09b4f7dda131b3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:0d:2c:e2:58:65:81:73:bd:9e:8b:7d:d3:9a:
4a:37:72:af:8b:6a:fb:45:f8:60:fb:6f:f9:58:9d:
99:65:20:0e:7c:fc:b2:60:5c:e0:18:2f:5d:cf:77:
2a:29:53:ae:63:7b:14:ba:c8:97:c6:ec:c7:85:a1:
24:47:a6:10:fb:d9:df:16:b5:be:e9:83:a0:4f:19:
ce:21:01:c9:df:a5:2c:95:9d:8e:90:bf:40:a5:90:
8b:d7:fb:60:38:b4:38:af:96:f3:94:7f:95:23:e0:
7b:ae:72:88:2a:e3:45:4f:6a:26:36:18:8d:fc:a0:
b3:e1:18:01:93:8c:51:b1:c0:7b:59:75:6d:c9:c2:
79:97:c2:43:90:82:7f:c0:14:3a:b1:78:21:e9:bf:
c0:ad:36:c1:b3:a1:90:23:e7:ce:b8:52:e4:36:80:
2b:63:75:cf:c0:71:53:55:de:aa:1e:71:b4:73:9e:
15:75:6e:c1:2d:07:c9:76:b0:ca:a0:56:6f:d4:24:
df:73:06:f0:1d:6d:bd:56:60:5f:26:ef:dc:05:7e:
46:84:c5:0b:17:9c:a9:ef:d0:63:c4:24:a5:5a:6e:
f2:6c:76:f1:46:1e:d9:a3:60:25:41:10:22:14:64:
49:61:83:ac:32:f1:9c:91:25:51:dc:20:0a:0e:af:
99:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:E7:BB:DC:0B:55:D0:C6:51:76:02:29:A0:9B:4F:7D:DA:13:1B:3A
X509v3 Authority Key Identifier:
keyid:57:13:0F:79:9F:8A:89:85:50:2A:2E:A3:35:60:37:67:40:85:CF:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/8-e73AtV0MZRdgIpoJtPfdoTGzo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/5181de-44cd-4654-96fc-d3b90a9b9b41/1/VxMPeZ-KiYVQKi6jNWA3Z0CFz8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:d041::/32
Signature Algorithm: sha256WithRSAEncryption
7a:b3:a9:68:af:1a:ee:a3:9e:8c:15:82:f7:f1:ef:a9:4e:c1:
d0:db:2c:e2:74:18:a3:19:b2:b1:23:02:ac:3c:c9:3b:80:6e:
c4:fc:d9:8d:63:d2:08:2a:f2:76:c9:0a:92:f8:22:09:54:6e:
a2:d1:cd:2b:85:ca:eb:41:58:74:09:41:83:a5:8b:41:a3:fe:
cd:f5:d3:b8:83:5c:b0:51:a9:c1:5a:40:7b:a7:32:4f:cd:5d:
7b:2f:63:65:5d:7a:1d:f5:ec:f6:94:d3:22:1f:26:8a:fa:35:
d8:99:dd:4b:b6:3d:61:8d:ad:8a:b7:19:03:e8:7f:fa:32:85:
73:88:e4:2e:2e:93:f8:db:16:70:89:cc:eb:18:16:51:f7:19:
70:b1:68:97:06:ba:73:6c:2a:20:64:00:16:ba:f3:f6:aa:f7:
5f:fa:cf:77:8d:96:72:99:1b:8b:83:59:02:58:7a:5d:fc:7b:
fa:df:fa:c2:ce:12:9d:41:91:1b:7b:65:92:12:41:6d:54:ed:
5c:e1:b2:44:80:a7:59:b3:8b:a5:e8:54:88:18:2c:b8:d3:f7:
28:9a:5e:ed:d7:a1:37:69:1d:b2:ae:fb:66:e5:77:b9:c3:87:
cb:7f:fd:ee:c2:68:7f:1a:b6:a2:45:12:f7:1a:1e:63:6c:bd:
54:ec:77:c9
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYcKXqMM2CXAj6vdmuiREOiOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU3MTMwZjc5OWY4YTg5ODU1MDJhMmVhMzM1NjAzNzY3NDA4
NWNmY2EwHhcNMjMwMzIyMTcyOTQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmM2U3YmJkYzBiNTVkMGM2NTE3NjAyMjlhMDliNGY3ZGRhMTMxYjNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkg0s4lhlgXO9not905pKN3Kvi2r7
Rfhg+2/5WJ2ZZSAOfPyyYFzgGC9dz3cqKVOuY3sUusiXxuzHhaEkR6YQ+9nfFrW+
6YOgTxnOIQHJ36UslZ2OkL9ApZCL1/tgOLQ4r5bzlH+VI+B7rnKIKuNFT2omNhiN
/KCz4RgBk4xRscB7WXVtycJ5l8JDkIJ/wBQ6sXgh6b/ArTbBs6GQI+fOuFLkNoAr
Y3XPwHFTVd6qHnG0c54VdW7BLQfJdrDKoFZv1CTfcwbwHW29VmBfJu/cBX5GhMUL
F5yp79BjxCSlWm7ybHbxRh7Zo2AlQRAiFGRJYYOsMvGckSVR3CAKDq+Z3wIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPPnu9wLVdDGUXYCKaCbT33aExs6MB8GA1UdIwQY
MBaAFFcTD3mfiomFUCouozVgN2dAhc/KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVnhNUGVaLUtpWVZRS2k2ak5XQTNaMENGejhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi81MTgxZGUtNDRjZC00NjU0LTk2ZmMt
ZDNiOTBhOWI5YjQxLzEvOC1lNzNBdFYwTVpSZGdJcG9KdFBmZG9UR3pvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Zi81MTgxZGUtNDRjZC00NjU0LTk2ZmMtZDNiOTBhOWI5YjQx
LzEvVnhNUGVaLUtpWVZRS2k2ak5XQTNaMENGejhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgzQQTAN
BgkqhkiG9w0BAQsFAAOCAQEAerOpaK8a7qOejBWC9/HvqU7B0Nss4nQYoxmysSMC
rDzJO4BuxPzZjWPSCCrydskKkvgiCVRuotHNK4XK60FYdAlBg6WLQaP+zfXTuINc
sFGpwVpAe6cyT81dey9jZV16HfXs9pTTIh8mivo12JndS7Y9YY2tircZA+h/+jKF
c4jkLi6T+NsWcInM6xgWUfcZcLFolwa6c2wqIGQAFrrz9qr3X/rPd42Wcpkbi4NZ
Alh6Xfx7+t/6ws4SnUGRG3tlkhJBbVTtXOGyRICnWbOLpehUiBgsuNP3KJpe7deh
N2kdsq77ZuV3ucOHy3/97sJofxq2okUS9xoeY2y9VOx3yQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:29 2024 by rpki-client on console-ams.rpki-client.org