Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/fa342e-b3bc-4373-8c6b-8854c82b545d/1/fL-40BXpbOo_mNeD9VO1-4ol3wc.roa
File: fL-40BXpbOo_mNeD9VO1-4ol3wc.roa (raw, json)
Hash identifier: PY7kxwT0hJ+jtVGzQYVBvKRpJTBeEKL9UMyi2N0TMHA=
Subject key identifier: 7C:BF:B8:D0:15:E9:6C:EA:3F:98:D7:83:F5:53:B5:FB:8A:25:DF:07
Certificate issuer: /CN=cb335dc6feb385f6a23344056a13c2c595028e91
Certificate serial: 01856FE724231AF0514F3CC464B31A3D2550
Authority key identifier: CB:33:5D:C6:FE:B3:85:F6:A2:33:44:05:6A:13:C2:C5:95:02:8E:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yzNdxv6zhfaiM0QFahPCxZUCjpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/fa342e-b3bc-4373-8c6b-8854c82b545d/1/fL-40BXpbOo_mNeD9VO1-4ol3wc.roa
Signing time: Mon 02 Jan 2023 00:34:57 +0000
ROA not before: Mon 02 Jan 2023 00:34:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206059
IP address blocks: 2a0e:3780:8150::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:e7:24:23:1a:f0:51:4f:3c:c4:64:b3:1a:3d:25:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb335dc6feb385f6a23344056a13c2c595028e91
Validity
Not Before: Jan 2 00:34:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7cbfb8d015e96cea3f98d783f553b5fb8a25df07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:0a:d3:3d:96:a4:03:96:04:5e:53:28:a9:2b:
5d:fc:ae:96:da:93:9c:0b:bb:82:ae:4e:14:62:55:
53:33:c0:ea:7c:2b:cc:41:36:56:7e:6a:2e:e5:59:
37:5f:6d:f2:0b:ca:00:e6:f4:f3:a2:ec:8e:51:85:
b5:da:17:22:88:e4:74:7c:f3:51:60:74:50:0c:9f:
32:36:50:a3:da:83:0b:dd:6a:6d:ee:cf:e1:8a:ae:
15:0c:f5:5c:d1:3b:b1:ba:1e:d0:5d:5c:87:bd:71:
d6:ab:d2:9a:57:67:d6:1e:a2:b1:81:60:c5:c4:05:
f4:db:db:60:46:2c:4c:f5:29:69:2b:b5:6a:ec:19:
b6:0e:6c:3e:c5:ee:c1:9d:2c:90:be:f8:c8:70:70:
8b:00:17:80:a9:2b:54:71:1f:c3:66:87:7d:26:cc:
18:7d:ff:8f:b4:86:a6:66:fb:63:4d:3f:f1:cc:47:
c6:bd:e5:9b:46:bb:b5:05:e0:15:a5:ba:63:f7:ad:
6c:db:4a:2e:e5:11:76:17:e2:2c:36:32:df:6d:11:
3c:25:74:13:ed:11:1d:47:1f:00:c7:1f:19:c5:ef:
9c:1d:d1:90:59:1c:26:2c:3e:1d:b1:98:1b:15:50:
53:b4:c7:4a:e3:23:fb:06:28:f4:a0:c7:f2:f7:99:
6e:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:BF:B8:D0:15:E9:6C:EA:3F:98:D7:83:F5:53:B5:FB:8A:25:DF:07
X509v3 Authority Key Identifier:
keyid:CB:33:5D:C6:FE:B3:85:F6:A2:33:44:05:6A:13:C2:C5:95:02:8E:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yzNdxv6zhfaiM0QFahPCxZUCjpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/fa342e-b3bc-4373-8c6b-8854c82b545d/1/fL-40BXpbOo_mNeD9VO1-4ol3wc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/fa342e-b3bc-4373-8c6b-8854c82b545d/1/yzNdxv6zhfaiM0QFahPCxZUCjpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:3780:8150::/48
Signature Algorithm: sha256WithRSAEncryption
0d:ef:e8:ff:ce:98:3e:de:c1:a6:93:58:40:ee:ee:19:69:a9:
9b:3c:41:bd:8e:1d:c8:12:26:26:d9:cd:32:25:a1:51:c8:dd:
f6:ae:f3:49:8b:57:ed:e7:73:15:96:12:ff:5b:a5:cb:94:6a:
e3:e5:8e:50:de:0b:70:81:97:99:bb:3b:2e:43:37:08:ba:46:
1a:66:88:7c:71:39:84:63:ec:71:a6:43:4d:1a:33:db:7c:8f:
b8:97:a1:89:0d:c7:8f:ef:9a:0b:9a:05:41:69:1f:cf:9c:ea:
c1:f8:26:4d:9f:49:4b:9e:29:c4:c9:e8:99:c5:43:8c:5a:b1:
00:7f:18:4a:bc:03:71:36:05:32:92:d2:d3:50:6b:84:c4:63:
e3:97:c1:e1:9f:d0:5b:e7:1d:af:55:f8:69:30:7b:69:42:46:
fb:e6:f7:96:06:fe:01:54:89:d1:0c:9f:cd:bd:d1:1f:b8:11:
3b:53:bb:41:d3:33:8d:70:f6:20:bd:85:2c:1a:2c:8e:96:14:
13:9b:fd:60:61:b8:20:f3:f3:be:d2:37:58:d4:30:ae:4c:87:
7b:87:f2:44:83:e3:31:ca:ad:24:d8:0a:ce:14:47:b6:b8:3a:
19:b1:cb:71:ca:e4:18:a8:3b:e9:d7:06:aa:58:56:a1:7b:74:
88:c1:6a:49
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVv5yQjGvBRTzzEZLMaPSVQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiMzM1ZGM2ZmViMzg1ZjZhMjMzNDQwNTZhMTNjMmM1OTUw
MjhlOTEwHhcNMjMwMTAyMDAzNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3Y2JmYjhkMDE1ZTk2Y2VhM2Y5OGQ3ODNmNTUzYjVmYjhhMjVkZjA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgQrTPZakA5YEXlMoqStd/K6W2pOc
C7uCrk4UYlVTM8DqfCvMQTZWfmou5Vk3X23yC8oA5vTzouyOUYW12hciiOR0fPNR
YHRQDJ8yNlCj2oML3Wpt7s/hiq4VDPVc0Tuxuh7QXVyHvXHWq9KaV2fWHqKxgWDF
xAX029tgRixM9SlpK7Vq7Bm2Dmw+xe7BnSyQvvjIcHCLABeAqStUcR/DZod9JswY
ff+PtIamZvtjTT/xzEfGveWbRru1BeAVpbpj961s20ou5RF2F+IsNjLfbRE8JXQT
7REdRx8Axx8Zxe+cHdGQWRwmLD4dsZgbFVBTtMdK4yP7Bij0oMfy95lu0wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFHy/uNAV6WzqP5jXg/VTtfuKJd8HMB8GA1UdIwQY
MBaAFMszXcb+s4X2ojNEBWoTwsWVAo6RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveXpOZHh2NnpoZmFpTTBRRmFoUEN4WlVDanBFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC9mYTM0MmUtYjNiYy00MzczLThjNmIt
ODg1NGM4MmI1NDVkLzEvZkwtNDBCWHBiT29fbU5lRDlWTzEtNG9sM3djLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MC9mYTM0MmUtYjNiYy00MzczLThjNmItODg1NGM4MmI1NDVk
LzEveXpOZHh2NnpoZmFpTTBRRmFoUEN4WlVDanBFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg43gIFQ
MA0GCSqGSIb3DQEBCwUAA4IBAQAN7+j/zpg+3sGmk1hA7u4ZaambPEG9jh3IEiYm
2c0yJaFRyN32rvNJi1ft53MVlhL/W6XLlGrj5Y5Q3gtwgZeZuzsuQzcIukYaZoh8
cTmEY+xxpkNNGjPbfI+4l6GJDceP75oLmgVBaR/PnOrB+CZNn0lLninEyeiZxUOM
WrEAfxhKvANxNgUyktLTUGuExGPjl8Hhn9Bb5x2vVfhpMHtpQkb75veWBv4BVInR
DJ/NvdEfuBE7U7tB0zONcPYgvYUsGiyOlhQTm/1gYbgg8/O+0jdY1DCuTId7h/JE
g+Mxyq0k2ArOFEe2uDoZsctxyuQYqDvp1waqWFahe3SIwWpJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:19 2024 by rpki-client on console-fra.rpki-client.org