Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/1601e6-c5b9-4322-89f9-4bd14e7a85cf/1/JmuqV1XXGQ6D56XMiC83nBnKC_k.roa
File: JmuqV1XXGQ6D56XMiC83nBnKC_k.roa (raw, json)
Hash identifier: G7QktxycpKqgCkzOXdOpSzNFJAD9wT69TJpKNsNRz8I=
Subject key identifier: 26:6B:AA:57:55:D7:19:0E:83:E7:A5:CC:88:2F:37:9C:19:CA:0B:F9
Certificate issuer: /CN=7668fe49ae9747257150015be43e29628c6316c4
Certificate serial: 018FAA8AEDB77EC5AF8186B7C51C678EA631
Authority key identifier: 76:68:FE:49:AE:97:47:25:71:50:01:5B:E4:3E:29:62:8C:63:16:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dmj-Sa6XRyVxUAFb5D4pYoxjFsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/1601e6-c5b9-4322-89f9-4bd14e7a85cf/1/JmuqV1XXGQ6D56XMiC83nBnKC_k.roa
Signing time: Fri 24 May 2024 12:19:42 +0000
ROA not before: Fri 24 May 2024 12:19:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203692
IP address blocks: 2001:67c:2f0c::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 01:49:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:aa:8a:ed:b7:7e:c5:af:81:86:b7:c5:1c:67:8e:a6:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7668fe49ae9747257150015be43e29628c6316c4
Validity
Not Before: May 24 12:19:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=266baa5755d7190e83e7a5cc882f379c19ca0bf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:95:fd:ef:28:2e:83:4b:23:27:ec:ee:6b:ad:
05:a5:00:65:26:69:d8:2c:ed:fd:45:73:fe:ac:51:
cd:61:9b:7d:51:0d:dd:9e:91:b9:f0:30:7d:56:5a:
c8:2b:d5:dd:23:b2:74:4d:cc:f0:55:f3:20:cd:ef:
23:8e:ee:81:7e:4b:f1:33:1c:29:9f:93:6e:b5:35:
02:2c:44:be:f1:d2:6f:0b:22:48:e8:38:a7:51:93:
46:ba:94:d6:e6:c8:2e:41:7c:94:92:fb:df:32:37:
4b:02:ef:8f:e0:e7:1c:a3:52:6f:14:c5:99:17:38:
59:d3:46:43:b7:63:80:a8:e3:0f:ca:88:7d:00:0f:
f6:53:b2:3a:79:c6:25:c4:c3:75:95:57:84:46:fd:
17:df:2c:90:62:22:d3:6b:a5:fd:7c:bc:09:1e:81:
66:21:67:f6:53:2b:29:b9:eb:a1:2c:3a:e0:13:ab:
fa:a4:64:e8:9c:6c:15:e3:4d:6c:3c:8d:75:ee:30:
c6:9c:e6:05:67:e6:f9:01:60:2c:8a:e7:c1:00:5e:
e7:84:16:98:7e:52:45:76:0f:1d:82:af:89:dd:0a:
c7:45:a4:03:71:e0:7b:26:f2:bd:46:39:4d:e2:44:
e6:09:e4:f5:ee:66:9e:a2:87:c7:eb:0c:7e:03:7d:
76:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:6B:AA:57:55:D7:19:0E:83:E7:A5:CC:88:2F:37:9C:19:CA:0B:F9
X509v3 Authority Key Identifier:
keyid:76:68:FE:49:AE:97:47:25:71:50:01:5B:E4:3E:29:62:8C:63:16:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dmj-Sa6XRyVxUAFb5D4pYoxjFsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/1601e6-c5b9-4322-89f9-4bd14e7a85cf/1/JmuqV1XXGQ6D56XMiC83nBnKC_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/1601e6-c5b9-4322-89f9-4bd14e7a85cf/1/dmj-Sa6XRyVxUAFb5D4pYoxjFsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2f0c::/48
Signature Algorithm: sha256WithRSAEncryption
71:18:48:e9:44:e2:56:98:52:3e:5d:62:53:aa:bf:14:e1:3b:
3e:91:2e:86:f6:dd:bc:36:42:23:8d:b8:49:c4:64:be:f6:51:
94:cf:ba:3c:cd:5b:0f:8c:12:3d:f7:d0:95:da:1f:a7:fb:48:
22:4c:14:00:24:53:c6:30:12:1a:72:ae:35:1b:b1:5a:a5:07:
f8:59:57:30:cd:da:56:f6:3f:6f:d1:86:b8:4b:ee:39:72:d4:
86:2b:0d:56:29:b3:63:08:c2:0b:86:f7:51:b5:f4:75:27:da:
e8:0e:55:ac:b9:a8:85:e3:c4:a2:ca:97:e7:1c:87:9e:b8:46:
78:a3:fb:39:d6:37:c1:a9:63:0a:71:27:4c:b9:66:79:ab:ee:
19:b8:25:fd:ba:b1:ec:55:43:5d:82:df:f7:07:ea:91:ee:01:
f4:4d:dc:25:62:94:56:d4:ea:8b:a2:e2:ba:5a:e9:86:84:df:
4f:b9:3e:a5:0e:b1:cb:08:3c:d1:84:b0:e3:ef:47:b6:17:79:
c8:8e:52:d5:33:30:ff:06:36:c5:af:62:4c:70:72:98:38:1d:
af:99:1d:c4:e4:c3:17:bd:a9:35:1e:5a:39:29:e6:1e:82:75:
d7:4a:7a:d1:fa:77:80:8f:fd:33:9f:26:63:48:a5:bd:43:42:
f7:09:d0:ca
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY+qiu23fsWvgYa3xRxnjqYxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2NjhmZTQ5YWU5NzQ3MjU3MTUwMDE1YmU0M2UyOTYyOGM2
MzE2YzQwHhcNMjQwNTI0MTIxOTQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNjZiYWE1NzU1ZDcxOTBlODNlN2E1Y2M4ODJmMzc5YzE5Y2EwYmY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr5X97ygug0sjJ+zua60FpQBlJmnY
LO39RXP+rFHNYZt9UQ3dnpG58DB9VlrIK9XdI7J0TczwVfMgze8jju6BfkvxMxwp
n5NutTUCLES+8dJvCyJI6DinUZNGupTW5sguQXyUkvvfMjdLAu+P4Occo1JvFMWZ
FzhZ00ZDt2OAqOMPyoh9AA/2U7I6ecYlxMN1lVeERv0X3yyQYiLTa6X9fLwJHoFm
IWf2UyspueuhLDrgE6v6pGTonGwV401sPI117jDGnOYFZ+b5AWAsiufBAF7nhBaY
flJFdg8dgq+J3QrHRaQDceB7JvK9RjlN4kTmCeT17maeoofH6wx+A312OwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFCZrqldV1xkOg+elzIgvN5wZygv5MB8GA1UdIwQY
MBaAFHZo/kmul0clcVABW+Q+KWKMYxbEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZG1qLVNhNlhSeVZ4VUFGYjVENHBZb3hqRnNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS8xNjAxZTYtYzViOS00MzIyLTg5Zjkt
NGJkMTRlN2E4NWNmLzEvSm11cVYxWFhHUTZENTZYTWlDODNuQm5LQ19rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS8xNjAxZTYtYzViOS00MzIyLTg5ZjktNGJkMTRlN2E4NWNm
LzEvZG1qLVNhNlhSeVZ4VUFGYjVENHBZb3hqRnNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfC8M
MA0GCSqGSIb3DQEBCwUAA4IBAQBxGEjpROJWmFI+XWJTqr8U4Ts+kS6G9t28NkIj
jbhJxGS+9lGUz7o8zVsPjBI999CV2h+n+0giTBQAJFPGMBIacq41G7FapQf4WVcw
zdpW9j9v0Ya4S+45ctSGKw1WKbNjCMILhvdRtfR1J9roDlWsuaiF48SiypfnHIee
uEZ4o/s51jfBqWMKcSdMuWZ5q+4ZuCX9urHsVUNdgt/3B+qR7gH0TdwlYpRW1OqL
ouK6WumGhN9PuT6lDrHLCDzRhLDj70e2F3nIjlLVMzD/BjbFr2JMcHKYOB2vmR3E
5MMXvak1Hlo5KeYegnXXSnrR+neAj/0znyZjSKW9Q0L3CdDK
-----END CERTIFICATE-----
Generated at Fri Apr 18 19:17:02 2025 by rpki-client