Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/ivIOgKhzpuMx471qNXNdE14NXVE.roa
File: ivIOgKhzpuMx471qNXNdE14NXVE.roa (raw, json)
Hash identifier: xr2HpDHuckuj7HnueWMPofWGNqS3kE04SH//vQ58fts=
Subject key identifier: 8A:F2:0E:80:A8:73:A6:E3:31:E3:BD:6A:35:73:5D:13:5E:0D:5D:51
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 018571C32421A611883740325A228752CEC1
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/ivIOgKhzpuMx471qNXNdE14NXVE.roa
Signing time: Mon 02 Jan 2023 09:14:52 +0000
ROA not before: Mon 02 Jan 2023 09:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208751
IP address blocks: 2a06:e881:6700::/44 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:c3:24:21:a6:11:88:37:40:32:5a:22:87:52:ce:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 2 09:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8af20e80a873a6e331e3bd6a35735d135e0d5d51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:fb:b4:d1:ea:7b:fe:26:8b:e4:1c:11:9a:2e:
91:3c:48:87:34:18:a3:87:73:58:aa:ff:06:c8:e9:
73:79:bc:f3:7e:8c:19:df:f0:aa:59:0b:af:f6:c9:
05:07:04:75:b8:30:e6:94:7f:55:d6:54:87:73:08:
5e:c9:45:38:71:39:66:5b:1e:28:6c:a2:df:d0:20:
53:98:52:7d:f6:bf:53:94:35:ca:0a:9b:53:8e:65:
15:33:31:d2:1e:74:8b:8b:8a:7b:48:1e:93:88:ea:
85:0b:0c:ba:8d:37:ad:b5:fd:cf:96:f7:ce:6f:03:
97:96:63:56:ff:23:67:44:1d:ac:dc:a0:b7:d8:df:
1b:7b:a9:c9:f9:ed:39:0f:0f:94:35:5f:bc:5e:a9:
b3:65:f0:55:34:79:c6:19:92:cc:3b:63:dc:2b:73:
55:93:54:d1:60:cc:78:6f:4a:02:6a:a8:20:a0:31:
17:72:8a:e1:c1:16:40:f8:18:aa:bd:48:71:c2:d9:
fd:e2:24:a6:b8:14:4e:54:2b:06:db:43:1c:32:8a:
22:31:d2:7c:f3:b2:af:fc:d0:8d:b4:20:ed:03:37:
b6:5d:66:d2:35:6b:74:44:c5:d2:4e:cd:46:ad:86:
6f:3f:10:b0:2d:ec:cb:0b:5f:ee:de:e0:30:9b:6d:
29:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:F2:0E:80:A8:73:A6:E3:31:E3:BD:6A:35:73:5D:13:5E:0D:5D:51
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/ivIOgKhzpuMx471qNXNdE14NXVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:6700::/44
Signature Algorithm: sha256WithRSAEncryption
b9:4d:93:0b:e5:07:69:ee:80:01:de:1d:dc:35:d4:a1:1f:99:
0e:cb:0b:75:5b:5c:a4:09:58:6f:0f:2d:02:56:91:a1:ca:fb:
e8:d4:da:59:f0:c9:1c:12:5e:b2:01:92:00:09:d0:59:b8:5b:
c4:2b:c2:aa:4a:73:89:6b:df:cb:6b:56:3d:f7:a9:ea:fb:49:
4e:b9:79:49:d2:06:6f:18:79:8d:31:e6:cf:b1:36:81:ec:d6:
0f:c0:ea:94:35:28:7f:15:30:ca:fd:ca:e3:fd:43:c4:19:5c:
38:1b:d8:26:d0:19:bb:d5:97:87:dc:fd:c5:76:33:cc:2a:0e:
a7:4e:8d:90:c2:b3:af:68:9e:33:12:89:5d:d0:ee:a3:48:31:
61:24:52:84:92:a5:0b:e0:00:fd:2e:4e:f6:a1:57:38:2d:90:
c0:da:4c:16:a4:7d:2e:e5:4e:0c:37:52:f4:c4:97:f0:56:80:
d6:9a:d1:50:7c:d1:56:16:5e:c2:b8:35:95:1e:76:b1:21:de:
59:a3:52:9b:16:32:05:77:8d:54:28:da:7f:8b:f4:47:c3:20:
b0:ce:8b:c7:a9:ea:b1:c1:cc:c7:32:18:d9:df:4a:29:05:fc:
86:3d:de:7d:b1:31:a4:bc:f6:74:25:83:26:0a:17:2c:cb:dc:
89:23:88:99
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVxwyQhphGIN0AyWiKHUs7BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4MDc0YjQxOWVhZDRjZWZlYTJmMmFkMmMyNTlkOTc4YzVl
ZDc5NTQwHhcNMjMwMTAyMDkxNDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YWYyMGU4MGE4NzNhNmUzMzFlM2JkNmEzNTczNWQxMzVlMGQ1ZDUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq/u00ep7/iaL5BwRmi6RPEiHNBij
h3NYqv8GyOlzebzzfowZ3/CqWQuv9skFBwR1uDDmlH9V1lSHcwheyUU4cTlmWx4o
bKLf0CBTmFJ99r9TlDXKCptTjmUVMzHSHnSLi4p7SB6TiOqFCwy6jTettf3PlvfO
bwOXlmNW/yNnRB2s3KC32N8be6nJ+e05Dw+UNV+8XqmzZfBVNHnGGZLMO2PcK3NV
k1TRYMx4b0oCaqggoDEXcorhwRZA+BiqvUhxwtn94iSmuBROVCsG20McMooiMdJ8
87Kv/NCNtCDtAze2XWbSNWt0RMXSTs1GrYZvPxCwLezLC1/u3uAwm20pdwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFIryDoCoc6bjMeO9ajVzXRNeDV1RMB8GA1UdIwQY
MBaAFLgHS0GerUzv6i8q0sJZ2XjF7XlUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdUFkTFFaNnRUT19xTHlyU3dsblplTVh0ZVZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi8xZTQzZTQtZDA2ZS00YTU1LWJkYjYt
M2Q5MWVkZTViMmIxLzEvaXZJT2dLaHpwdU14NDcxcU5YTmRFMTROWFZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi8xZTQzZTQtZDA2ZS00YTU1LWJkYjYtM2Q5MWVkZTViMmIx
LzEvdUFkTFFaNnRUT19xTHlyU3dsblplTVh0ZVZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKgbogWcA
MA0GCSqGSIb3DQEBCwUAA4IBAQC5TZML5Qdp7oAB3h3cNdShH5kOywt1W1ykCVhv
Dy0CVpGhyvvo1NpZ8MkcEl6yAZIACdBZuFvEK8KqSnOJa9/La1Y996nq+0lOuXlJ
0gZvGHmNMebPsTaB7NYPwOqUNSh/FTDK/crj/UPEGVw4G9gm0Bm71ZeH3P3FdjPM
Kg6nTo2QwrOvaJ4zEold0O6jSDFhJFKEkqUL4AD9Lk72oVc4LZDA2kwWpH0u5U4M
N1L0xJfwVoDWmtFQfNFWFl7CuDWVHnaxId5Zo1KbFjIFd41UKNp/i/RHwyCwzovH
qeqxwczHMhjZ30opBfyGPd59sTGkvPZ0JYMmChcsy9yJI4iZ
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:22:04 2024 by rpki-client on console-ams.rpki-client.org