Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/598e8b-a63f-425e-b4f7-452d6d3826f7/1/zTjy68ohZL5RaGENsk4zBhlOiis.roa
File: zTjy68ohZL5RaGENsk4zBhlOiis.roa (raw, json)
Hash identifier: 5e+MtOySF/bU22R1tvAJ+sl6nDmz9Q5Xd8qaNEMCfM8=
Subject key identifier: CD:38:F2:EB:CA:21:64:BE:51:68:61:0D:B2:4E:33:06:19:4E:8A:2B
Certificate issuer: /CN=468b68141796ca95e4c72f4bfa696acea5083af3
Certificate serial: 01870F01286475FFC5E1CA5295B80C50D7A2
Authority key identifier: 46:8B:68:14:17:96:CA:95:E4:C7:2F:4B:FA:69:6A:CE:A5:08:3A:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RotoFBeWypXkxy9L-mlqzqUIOvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/598e8b-a63f-425e-b4f7-452d6d3826f7/1/zTjy68ohZL5RaGENsk4zBhlOiis.roa
Signing time: Thu 23 Mar 2023 15:05:46 +0000
ROA not before: Thu 23 Mar 2023 15:05:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210560
IP address blocks: 2a11:f740:2::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0f:01:28:64:75:ff:c5:e1:ca:52:95:b8:0c:50:d7:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=468b68141796ca95e4c72f4bfa696acea5083af3
Validity
Not Before: Mar 23 15:05:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd38f2ebca2164be5168610db24e3306194e8a2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b6:2a:36:7d:97:a5:f2:0b:bb:82:3e:ca:33:
ea:71:fa:bd:81:b3:e9:16:ad:5f:6c:bb:91:7b:15:
e7:be:74:34:c9:cb:39:a1:7d:63:60:c1:cd:71:75:
c6:90:91:54:d1:0e:3f:46:fa:6b:37:68:61:6b:c8:
59:60:2e:02:4f:79:72:34:37:49:13:8b:ab:2a:a0:
95:a8:8e:f4:69:49:cc:cf:44:6c:a5:c5:09:51:fb:
10:86:a6:b4:10:a9:43:62:f6:a5:00:50:74:de:6f:
e9:b0:3e:6a:27:91:4f:58:24:d5:85:92:4f:f6:82:
09:16:e9:aa:39:ec:f1:4c:b1:d6:4f:bc:08:45:13:
7a:87:c8:55:ab:d5:a6:53:a7:9c:ed:1f:05:1d:47:
7f:0e:62:7c:a3:66:1e:30:10:a6:2e:52:4e:75:fe:
34:b0:3b:93:b7:60:bd:17:65:48:34:ba:28:ba:f9:
16:6d:97:b3:05:2f:a7:79:b0:37:ef:45:c6:71:c3:
fd:de:e6:37:fc:71:99:da:e7:b3:2d:1d:53:59:2a:
59:de:bb:a2:8f:41:a5:16:0e:95:7e:c3:5a:d1:e1:
7d:f2:43:af:93:a0:e2:f9:0b:59:51:2a:e6:5c:32:
fd:d4:70:ad:fc:91:63:e2:a0:2d:fe:77:12:6c:74:
ba:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:38:F2:EB:CA:21:64:BE:51:68:61:0D:B2:4E:33:06:19:4E:8A:2B
X509v3 Authority Key Identifier:
keyid:46:8B:68:14:17:96:CA:95:E4:C7:2F:4B:FA:69:6A:CE:A5:08:3A:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RotoFBeWypXkxy9L-mlqzqUIOvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/598e8b-a63f-425e-b4f7-452d6d3826f7/1/zTjy68ohZL5RaGENsk4zBhlOiis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/598e8b-a63f-425e-b4f7-452d6d3826f7/1/RotoFBeWypXkxy9L-mlqzqUIOvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f740:2::/48
Signature Algorithm: sha256WithRSAEncryption
7c:44:75:92:14:fc:91:9e:bf:15:ad:5b:47:7d:c1:cd:7d:10:
c7:8d:5c:b3:8a:c2:ab:92:cc:64:2a:24:e1:9f:19:af:e1:1d:
84:55:ef:4c:6e:e5:d7:12:af:a0:03:4e:18:1a:13:3f:1a:11:
ea:c4:b2:3f:85:17:79:1a:ff:a9:59:29:87:a9:11:99:7d:37:
ea:2d:06:be:18:ff:69:fc:9a:c1:ab:ff:39:4e:dd:5e:bb:6e:
bc:db:bb:81:7b:65:52:58:9a:fa:7c:4c:99:04:79:05:6f:2e:
87:af:de:1b:27:0e:8e:d6:92:73:50:70:0d:c4:af:85:9b:f6:
43:5c:0f:f6:67:17:83:1f:0d:2b:ad:31:d0:42:a4:af:66:a0:
18:1b:c2:de:da:a9:5b:37:0f:cd:ca:7e:f5:18:9e:a4:59:4c:
2d:43:e0:08:fd:63:89:60:96:58:7f:79:1d:12:53:47:cc:6c:
53:20:c5:8f:6f:ce:d2:fd:28:e1:47:6c:ff:f8:89:06:85:1b:
db:87:49:97:eb:3a:bc:28:bb:c9:01:a9:66:cb:f1:86:2a:53:
aa:1c:c5:27:82:c6:ad:a9:80:f6:1d:90:0c:e0:e2:08:78:26:
ee:83:7d:ec:63:ed:67:9d:b3:44:cf:de:4c:9d:d6:38:f7:4a:
c9:6b:1f:f4
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYcPAShkdf/F4cpSlbgMUNeiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2OGI2ODE0MTc5NmNhOTVlNGM3MmY0YmZhNjk2YWNlYTUw
ODNhZjMwHhcNMjMwMzIzMTUwNTQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZDM4ZjJlYmNhMjE2NGJlNTE2ODYxMGRiMjRlMzMwNjE5NGU4YTJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAprYqNn2XpfILu4I+yjPqcfq9gbPp
Fq1fbLuRexXnvnQ0ycs5oX1jYMHNcXXGkJFU0Q4/RvprN2hha8hZYC4CT3lyNDdJ
E4urKqCVqI70aUnMz0RspcUJUfsQhqa0EKlDYvalAFB03m/psD5qJ5FPWCTVhZJP
9oIJFumqOezxTLHWT7wIRRN6h8hVq9WmU6ec7R8FHUd/DmJ8o2YeMBCmLlJOdf40
sDuTt2C9F2VINLoouvkWbZezBS+nebA370XGccP93uY3/HGZ2uezLR1TWSpZ3rui
j0GlFg6VfsNa0eF98kOvk6Di+QtZUSrmXDL91HCt/JFj4qAt/ncSbHS6kwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFM048uvKIWS+UWhhDbJOMwYZToorMB8GA1UdIwQY
MBaAFEaLaBQXlsqV5McvS/ppas6lCDrzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUm90b0ZCZVd5cFhreHk5TC1tbHF6cVVJT3ZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi81OThlOGItYTYzZi00MjVlLWI0Zjct
NDUyZDZkMzgyNmY3LzEvelRqeTY4b2haTDVSYUdFTnNrNHpCaGxPaWlzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNi81OThlOGItYTYzZi00MjVlLWI0ZjctNDUyZDZkMzgyNmY3
LzEvUm90b0ZCZVd5cFhreHk5TC1tbHF6cVVJT3ZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhH3QAAC
MA0GCSqGSIb3DQEBCwUAA4IBAQB8RHWSFPyRnr8VrVtHfcHNfRDHjVyzisKrksxk
KiThnxmv4R2EVe9MbuXXEq+gA04YGhM/GhHqxLI/hRd5Gv+pWSmHqRGZfTfqLQa+
GP9p/JrBq/85Tt1eu26827uBe2VSWJr6fEyZBHkFby6Hr94bJw6O1pJzUHANxK+F
m/ZDXA/2ZxeDHw0rrTHQQqSvZqAYG8Le2qlbNw/Nyn71GJ6kWUwtQ+AI/WOJYJZY
f3kdElNHzGxTIMWPb87S/SjhR2z/+IkGhRvbh0mX6zq8KLvJAalmy/GGKlOqHMUn
gsatqYD2HZAM4OIIeCbug33sY+1nnbNEz95MndY490rJax/0
-----END CERTIFICATE-----
Generated at Fri Aug 11 12:36:46 2023 by rpki-client on console-fra.rpki-client.org