Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/5c9bd9-09ad-4fac-bbbc-3f15f8836dbb/1/F_sCUz2q5ASRagKK2Gjw6-KfkXQ.roa
File: F_sCUz2q5ASRagKK2Gjw6-KfkXQ.roa (raw, json)
Hash identifier: tNs1AIa9o1T5INim4FcO7XjmUEBcKpMX+Smggy4rRLg=
Subject key identifier: 17:FB:02:53:3D:AA:E4:04:91:6A:02:8A:D8:68:F0:EB:E2:9F:91:74
Certificate issuer: /CN=8d337c0c856946b8fbdaf285f52caddcf38ad0a8
Certificate serial: 01856CAF289DB52F4A1C1DD755BCA07776A1
Authority key identifier: 8D:33:7C:0C:85:69:46:B8:FB:DA:F2:85:F5:2C:AD:DC:F3:8A:D0:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jTN8DIVpRrj72vKF9Syt3POK0Kg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/5c9bd9-09ad-4fac-bbbc-3f15f8836dbb/1/F_sCUz2q5ASRagKK2Gjw6-KfkXQ.roa
Signing time: Sun 01 Jan 2023 09:34:56 +0000
ROA not before: Sun 01 Jan 2023 09:34:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213092
IP address blocks: 2001:678:d90::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:28:9d:b5:2f:4a:1c:1d:d7:55:bc:a0:77:76:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d337c0c856946b8fbdaf285f52caddcf38ad0a8
Validity
Not Before: Jan 1 09:34:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=17fb02533daae404916a028ad868f0ebe29f9174
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e5:ff:ff:5c:ce:48:32:de:71:8b:e6:98:3a:
35:36:22:4f:03:b8:a8:a7:cf:e0:a3:a6:c2:6a:27:
df:a4:84:a4:1a:59:36:4f:20:22:77:0d:e8:2a:f2:
1b:d0:62:69:9d:22:81:ef:1a:5b:55:f2:24:23:b8:
6c:7d:5e:43:af:5f:75:9e:57:f8:a1:b5:a6:d9:ec:
fc:36:3d:e3:cf:cb:b3:08:96:38:19:5c:18:b2:c6:
8f:78:fb:bc:5d:dd:57:71:6f:75:17:c2:50:e3:0c:
4c:60:47:46:4b:3c:48:4e:71:93:61:2f:59:d5:78:
a1:37:63:e1:55:a7:06:2b:37:ee:66:99:08:a8:ac:
c7:9a:a2:3d:27:30:58:2c:d1:46:80:f0:5d:5d:a4:
d7:99:8e:04:8b:a2:b5:32:e9:88:4f:25:e6:b7:5f:
0f:73:1a:59:2a:f2:68:ef:56:fd:29:4b:8a:8a:48:
0a:9e:4a:7a:4e:d1:12:b5:39:f5:8e:e0:ac:83:07:
de:44:1b:52:0e:d5:38:ba:ce:53:99:f7:d4:df:d5:
3b:f0:be:a6:3a:b3:0c:a9:3a:2b:7f:25:a3:46:72:
52:df:62:e2:b3:91:ab:a6:5a:9c:5d:f0:8e:b0:cf:
76:14:3f:9e:97:61:46:1f:b4:3b:37:6a:e8:94:63:
b3:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:FB:02:53:3D:AA:E4:04:91:6A:02:8A:D8:68:F0:EB:E2:9F:91:74
X509v3 Authority Key Identifier:
keyid:8D:33:7C:0C:85:69:46:B8:FB:DA:F2:85:F5:2C:AD:DC:F3:8A:D0:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jTN8DIVpRrj72vKF9Syt3POK0Kg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/5c9bd9-09ad-4fac-bbbc-3f15f8836dbb/1/F_sCUz2q5ASRagKK2Gjw6-KfkXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/5c9bd9-09ad-4fac-bbbc-3f15f8836dbb/1/jTN8DIVpRrj72vKF9Syt3POK0Kg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:d90::/48
Signature Algorithm: sha256WithRSAEncryption
21:62:b7:f4:ac:61:ad:a5:20:f4:ea:69:a3:5c:b6:bc:03:e6:
ed:a1:5f:76:d3:28:1f:37:44:97:9c:06:9b:35:d9:05:99:d9:
c4:84:63:3e:50:94:60:45:2f:11:59:43:20:29:bf:60:a9:5c:
29:1b:7e:07:63:87:bd:8f:9b:4b:83:58:fc:af:ae:56:0e:8d:
7f:26:ad:aa:32:75:e8:7f:e0:3d:6f:90:37:c5:f5:12:09:33:
ce:92:8a:3d:83:bd:73:4d:65:32:39:76:b3:7e:c7:89:62:dc:
36:2b:9b:c1:5f:17:6b:8e:fb:d8:2f:0f:9b:dc:9d:65:0f:c5:
70:51:48:29:94:32:57:82:5c:15:0b:a8:a5:26:5a:09:35:e7:
55:ed:31:bf:05:b9:6c:55:67:4a:4e:a9:07:d3:04:a1:12:69:
f3:b7:1c:5e:05:96:55:3c:15:56:ef:48:89:e2:d8:e5:7f:6f:
61:3b:29:94:e8:49:7b:91:1c:d7:c8:13:6d:54:65:ff:82:8b:
c6:00:d6:29:0a:fa:8f:cc:1b:33:ab:9d:f6:a9:49:4b:79:82:
13:fd:ab:54:40:d8:ef:d8:55:56:1c:cf:ba:35:b4:c3:4f:f9:
57:6d:93:55:46:9c:39:ad:d4:91:40:de:11:e3:7f:f6:e4:37:
d6:f5:bb:09
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVsryidtS9KHB3XVbygd3ahMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkMzM3YzBjODU2OTQ2YjhmYmRhZjI4NWY1MmNhZGRjZjM4
YWQwYTgwHhcNMjMwMTAxMDkzNDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxN2ZiMDI1MzNkYWFlNDA0OTE2YTAyOGFkODY4ZjBlYmUyOWY5MTc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArOX//1zOSDLecYvmmDo1NiJPA7io
p8/go6bCaiffpISkGlk2TyAidw3oKvIb0GJpnSKB7xpbVfIkI7hsfV5Dr191nlf4
obWm2ez8Nj3jz8uzCJY4GVwYssaPePu8Xd1XcW91F8JQ4wxMYEdGSzxITnGTYS9Z
1XihN2PhVacGKzfuZpkIqKzHmqI9JzBYLNFGgPBdXaTXmY4Ei6K1MumITyXmt18P
cxpZKvJo71b9KUuKikgKnkp6TtEStTn1juCsgwfeRBtSDtU4us5TmffU39U78L6m
OrMMqTorfyWjRnJS32Lis5GrplqcXfCOsM92FD+el2FGH7Q7N2rolGOznQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFBf7AlM9quQEkWoCitho8Ovin5F0MB8GA1UdIwQY
MBaAFI0zfAyFaUa4+9ryhfUsrdzzitCoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvalROOERJVnBScmo3MnZLRjlTeXQzUE9LMEtnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Ni81YzliZDktMDlhZC00ZmFjLWJiYmMt
M2YxNWY4ODM2ZGJiLzEvRl9zQ1V6MnE1QVNSYWdLSzJHanc2LUtma1hRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Ni81YzliZDktMDlhZC00ZmFjLWJiYmMtM2YxNWY4ODM2ZGJi
LzEvalROOERJVnBScmo3MnZLRjlTeXQzUE9LMEtnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeA2Q
MA0GCSqGSIb3DQEBCwUAA4IBAQAhYrf0rGGtpSD06mmjXLa8A+btoV920ygfN0SX
nAabNdkFmdnEhGM+UJRgRS8RWUMgKb9gqVwpG34HY4e9j5tLg1j8r65WDo1/Jq2q
MnXof+A9b5A3xfUSCTPOkoo9g71zTWUyOXazfseJYtw2K5vBXxdrjvvYLw+b3J1l
D8VwUUgplDJXglwVC6ilJloJNedV7TG/BblsVWdKTqkH0wShEmnztxxeBZZVPBVW
70iJ4tjlf29hOymU6El7kRzXyBNtVGX/govGANYpCvqPzBszq532qUlLeYIT/atU
QNjv2FVWHM+6NbTDT/lXbZNVRpw5rdSRQN4R43/25DfW9bsJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:54 2024 by rpki-client on console-fra.rpki-client.org