Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/Z5ybaWAymGuyhWbTv4NFxr8NwIA.roa
File: Z5ybaWAymGuyhWbTv4NFxr8NwIA.roa (raw, json)
Hash identifier: pvixdyMfPws6LYFZSy0zWKM5HtP8av5XoLmn9vnbt+c=
Subject key identifier: 67:9C:9B:69:60:32:98:6B:B2:85:66:D3:BF:83:45:C6:BF:0D:C0:80
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 018B3D58B9DA859035332D034D1FE012597F
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/Z5ybaWAymGuyhWbTv4NFxr8NwIA.roa
Signing time: Tue 17 Oct 2023 11:15:06 +0000
ROA not before: Tue 17 Oct 2023 11:15:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3058
IP address blocks: 2a00:db8::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:3d:58:b9:da:85:90:35:33:2d:03:4d:1f:e0:12:59:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Oct 17 11:15:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=679c9b696032986bb28566d3bf8345c6bf0dc080
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:27:aa:24:33:c0:09:ef:df:08:05:ff:be:54:
af:37:af:9b:de:c9:f1:c0:bf:a5:d3:82:b6:df:63:
bc:3f:73:50:41:9b:2c:68:75:43:0f:b1:9f:c7:cf:
91:02:c8:a9:29:8d:05:f9:10:0a:62:d7:81:1d:71:
54:40:38:0f:36:f0:a3:d8:15:65:e8:1c:85:b1:d8:
ee:07:a3:16:15:a0:b2:25:cd:b1:77:13:bf:81:56:
08:63:bf:0a:52:24:9b:82:88:45:ff:14:dd:1c:fc:
81:37:40:da:8f:24:a0:d0:5f:74:b2:64:3d:91:1d:
00:89:ba:21:c1:ce:83:5f:ac:c8:a9:83:5a:b3:d4:
7f:ee:f8:f6:aa:75:71:1d:fc:87:23:97:58:a4:9e:
5c:0e:5c:24:57:d8:32:1b:63:54:fc:50:08:f3:83:
d3:08:6b:a3:40:f5:79:bc:90:8c:08:72:2e:81:24:
4b:78:7e:ac:0e:62:42:c9:9f:b0:43:f6:cf:b8:60:
dd:96:bd:ea:1e:a2:8d:20:42:f9:93:19:03:cb:82:
c6:af:4b:bd:b4:d4:f2:a0:3c:f9:5f:2c:53:42:ec:
87:e0:9c:47:8a:8a:bd:99:6f:b7:91:7d:f5:bd:ed:
8d:30:ae:40:ac:b4:aa:cc:c9:22:47:b0:2e:5b:01:
cb:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:9C:9B:69:60:32:98:6B:B2:85:66:D3:BF:83:45:C6:BF:0D:C0:80
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/Z5ybaWAymGuyhWbTv4NFxr8NwIA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:db8::/32
Signature Algorithm: sha256WithRSAEncryption
83:f8:2f:26:0e:a1:29:73:49:e0:37:72:aa:81:d4:90:4b:84:
a2:9f:9b:8e:24:73:60:60:12:67:ea:33:22:d8:25:d6:14:4c:
0a:71:bd:0a:47:14:02:25:5d:02:0f:df:3e:c8:af:51:34:b1:
6a:07:c0:9c:8e:5b:55:27:62:1f:82:29:82:5d:aa:ad:5e:0b:
c6:fd:eb:f3:bd:f5:35:ea:0b:d0:cb:81:55:28:84:47:30:64:
64:21:0b:85:8f:fb:8d:e0:93:2e:30:65:8d:05:00:be:dd:8e:
f3:6e:cd:bc:79:c9:d9:7e:fb:0c:7a:01:de:40:6f:eb:e9:12:
5a:52:c3:c8:65:f9:6c:38:81:81:2a:c1:cf:24:0b:ef:f2:e9:
bf:d0:82:0c:58:80:97:ca:0d:02:b9:23:dc:ec:9f:a8:02:d5:
02:6a:f5:9b:62:74:80:17:95:a7:95:7d:e0:55:fc:40:8a:f5:
ab:4c:56:5b:3a:3f:c1:c7:f0:dd:28:20:01:07:9b:a7:ba:2f:
e8:4b:65:eb:3e:18:f5:f0:40:fd:d6:7e:9a:72:28:e6:9b:7d:
18:7e:7d:b4:df:25:b1:18:ac:3b:02:a0:b5:91:1e:05:35:78:
bf:0d:6c:99:90:c8:03:af:d3:0d:ad:68:71:6c:5d:4a:b6:70:
8e:97:4e:e8
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYs9WLnahZA1My0DTR/gEll/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4YjIyMDIzYjZlYWQ0YzI5NjgzYTlmZWQ0NDkzZDAzZGVl
MmM2ODUwHhcNMjMxMDE3MTExNTA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NzljOWI2OTYwMzI5ODZiYjI4NTY2ZDNiZjgzNDVjNmJmMGRjMDgwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtSeqJDPACe/fCAX/vlSvN6+b3snx
wL+l04K232O8P3NQQZssaHVDD7Gfx8+RAsipKY0F+RAKYteBHXFUQDgPNvCj2BVl
6ByFsdjuB6MWFaCyJc2xdxO/gVYIY78KUiSbgohF/xTdHPyBN0DajySg0F90smQ9
kR0Aibohwc6DX6zIqYNas9R/7vj2qnVxHfyHI5dYpJ5cDlwkV9gyG2NU/FAI84PT
CGujQPV5vJCMCHIugSRLeH6sDmJCyZ+wQ/bPuGDdlr3qHqKNIEL5kxkDy4LGr0u9
tNTyoDz5XyxTQuyH4JxHioq9mW+3kX31ve2NMK5ArLSqzMkiR7AuWwHLXQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFGecm2lgMphrsoVm07+DRca/DcCAMB8GA1UdIwQY
MBaAFDiyICO26tTCloOp/tRJPQPe4saFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0xJZ0k3YnExTUtXZzZuLTFFazlBOTdpeG9VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy84ODEzZjUtNGU3Yi00ZDUxLWI1ZjMt
NDBkOTViZDMzZmNiLzEvWjV5YmFXQXltR3V5aFdiVHY0TkZ4cjhOd0lBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy84ODEzZjUtNGU3Yi00ZDUxLWI1ZjMtNDBkOTViZDMzZmNi
LzEvT0xJZ0k3YnExTUtXZzZuLTFFazlBOTdpeG9VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgANuDAN
BgkqhkiG9w0BAQsFAAOCAQEAg/gvJg6hKXNJ4DdyqoHUkEuEop+bjiRzYGASZ+oz
Itgl1hRMCnG9CkcUAiVdAg/fPsivUTSxagfAnI5bVSdiH4Ipgl2qrV4Lxv3r8731
NeoL0MuBVSiERzBkZCELhY/7jeCTLjBljQUAvt2O827NvHnJ2X77DHoB3kBv6+kS
WlLDyGX5bDiBgSrBzyQL7/Lpv9CCDFiAl8oNArkj3OyfqALVAmr1m2J0gBeVp5V9
4FX8QIr1q0xWWzo/wcfw3SggAQebp7ov6Etl6z4Y9fBA/dZ+mnIo5pt9GH59tN8l
sRisOwKgtZEeBTV4vw1smZDIA6/TDa1ocWxdSrZwjpdO6A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:01 2024 by rpki-client on console-ams.rpki-client.org