Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/a76ac1-5f22-47d1-b8c1-c623ed8f2f28/1/Ad-vlPHxSJps1ePtosRi4iYeR6E.roa
File: Ad-vlPHxSJps1ePtosRi4iYeR6E.roa (raw, json)
Hash identifier: q/P3S3oZ4dgQx8EVmptGzQFGdVTmAp7pewj/w6kovQY=
Subject key identifier: 01:DF:AF:94:F1:F1:48:9A:6C:D5:E3:ED:A2:C4:62:E2:26:1E:47:A1
Certificate issuer: /CN=93503061e1ae503ec63d970b30875dd93ffabbdf
Certificate serial: 0187DB8F22076FB88258AB979C1D1FA60349
Authority key identifier: 93:50:30:61:E1:AE:50:3E:C6:3D:97:0B:30:87:5D:D9:3F:FA:BB:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k1AwYeGuUD7GPZcLMIdd2T_6u98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/a76ac1-5f22-47d1-b8c1-c623ed8f2f28/1/Ad-vlPHxSJps1ePtosRi4iYeR6E.roa
Signing time: Tue 02 May 2023 08:23:23 +0000
ROA not before: Tue 02 May 2023 08:23:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61969
IP address blocks: 2a01:bb20::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:db:8f:22:07:6f:b8:82:58:ab:97:9c:1d:1f:a6:03:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93503061e1ae503ec63d970b30875dd93ffabbdf
Validity
Not Before: May 2 08:23:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01dfaf94f1f1489a6cd5e3eda2c462e2261e47a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:9a:61:41:3e:2c:61:fe:ff:85:45:6c:c9:d0:
6c:49:4e:e2:0b:eb:b3:c6:94:9a:e6:30:97:2f:ac:
6d:89:64:ce:20:58:7f:cf:71:14:10:88:70:21:34:
d4:ef:d3:21:23:e5:71:27:29:11:ac:07:37:5a:d5:
74:c8:8e:12:bc:be:8b:6d:8e:7d:11:bd:ba:12:b9:
35:ab:9d:92:15:25:b5:08:1a:00:3b:68:dd:2f:ca:
aa:55:b7:72:c8:b4:94:5a:7b:38:7a:1e:b4:5e:be:
d2:fd:e8:2b:89:d4:d6:80:6f:05:e6:25:05:3f:cc:
0b:66:99:f9:38:3c:f1:4c:cb:ea:b3:74:da:8a:43:
2c:bf:29:eb:81:da:c6:ce:90:d3:da:e5:67:06:60:
cf:02:ed:14:48:69:9a:b8:6c:82:a9:87:78:9c:e6:
b6:55:0a:80:e6:22:4a:4b:07:29:e8:7e:7d:e4:ab:
53:b0:27:ed:32:46:a9:4b:b3:5b:86:41:2d:9c:ea:
b3:6b:49:d6:3d:50:65:0c:8e:d7:f8:c2:d0:92:0a:
19:f4:c8:28:78:1c:e7:9f:f7:d2:56:ee:e5:95:8a:
5e:ec:e1:72:39:5d:02:7b:5a:c6:cb:b4:5b:aa:6d:
64:2b:7a:6f:b8:90:63:a5:de:7a:06:65:1f:41:36:
b5:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:DF:AF:94:F1:F1:48:9A:6C:D5:E3:ED:A2:C4:62:E2:26:1E:47:A1
X509v3 Authority Key Identifier:
keyid:93:50:30:61:E1:AE:50:3E:C6:3D:97:0B:30:87:5D:D9:3F:FA:BB:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k1AwYeGuUD7GPZcLMIdd2T_6u98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a76ac1-5f22-47d1-b8c1-c623ed8f2f28/1/Ad-vlPHxSJps1ePtosRi4iYeR6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/a76ac1-5f22-47d1-b8c1-c623ed8f2f28/1/k1AwYeGuUD7GPZcLMIdd2T_6u98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:bb20::/32
Signature Algorithm: sha256WithRSAEncryption
7f:17:d2:8c:2e:42:ed:9c:33:98:16:55:a2:6e:e6:c4:a6:99:
4a:1c:87:3c:01:ae:eb:11:ed:52:f2:bd:76:c9:a3:7a:ae:3a:
98:7a:7d:53:42:0a:aa:80:dc:f7:3a:be:ee:14:36:65:48:44:
fc:5d:14:59:0a:ba:5b:8e:d8:96:0c:ea:d1:d9:b0:7c:63:2a:
f2:b8:66:c1:f2:13:5a:a8:d9:ca:fc:66:f1:d3:e4:23:ad:8f:
01:f9:3b:8c:3b:57:d3:2c:67:9b:9b:16:f4:ae:db:5d:88:39:
3b:31:38:2a:c9:57:89:3f:38:b2:b2:3e:11:99:fa:db:76:b1:
a9:3d:69:67:2b:54:41:e9:4f:bc:7d:e2:f2:78:f7:ea:f3:df:
f3:55:c9:5a:1b:7e:fc:d6:6b:b2:45:6b:de:b4:29:d7:eb:71:
cf:89:2d:74:fd:c4:c7:21:9d:c7:93:82:3e:10:55:df:7d:b8:
4f:17:67:d0:8c:60:95:4d:6a:23:de:7e:24:41:bf:95:27:d3:
cf:8a:ba:90:2a:92:eb:3b:fe:ab:8e:4d:8a:95:42:64:a5:7d:
25:c8:4b:6b:d2:77:49:e2:b4:8d:1c:f3:ee:19:a7:62:54:8e:
99:3d:1c:3f:53:8a:b8:79:d6:a3:4d:b8:2c:5f:02:0a:28:4a:
a0:1d:0d:fd
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYfbjyIHb7iCWKuXnB0fpgNJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzNTAzMDYxZTFhZTUwM2VjNjNkOTcwYjMwODc1ZGQ5M2Zm
YWJiZGYwHhcNMjMwNTAyMDgyMzIzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMWRmYWY5NGYxZjE0ODlhNmNkNWUzZWRhMmM0NjJlMjI2MWU0N2ExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhpphQT4sYf7/hUVsydBsSU7iC+uz
xpSa5jCXL6xtiWTOIFh/z3EUEIhwITTU79MhI+VxJykRrAc3WtV0yI4SvL6LbY59
Eb26Erk1q52SFSW1CBoAO2jdL8qqVbdyyLSUWns4eh60Xr7S/egridTWgG8F5iUF
P8wLZpn5ODzxTMvqs3TaikMsvynrgdrGzpDT2uVnBmDPAu0USGmauGyCqYd4nOa2
VQqA5iJKSwcp6H595KtTsCftMkapS7NbhkEtnOqza0nWPVBlDI7X+MLQkgoZ9Mgo
eBznn/fSVu7llYpe7OFyOV0Ce1rGy7Rbqm1kK3pvuJBjpd56BmUfQTa1cQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFAHfr5Tx8UiabNXj7aLEYuImHkehMB8GA1UdIwQY
MBaAFJNQMGHhrlA+xj2XCzCHXdk/+rvfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazFBd1llR3VVRDdHUFpjTE1JZGQyVF82dTk4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9hNzZhYzEtNWYyMi00N2QxLWI4YzEt
YzYyM2VkOGYyZjI4LzEvQWQtdmxQSHhTSnBzMWVQdG9zUmk0aVllUjZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi9hNzZhYzEtNWYyMi00N2QxLWI4YzEtYzYyM2VkOGYyZjI4
LzEvazFBd1llR3VVRDdHUFpjTE1JZGQyVF82dTk4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgG7IDAN
BgkqhkiG9w0BAQsFAAOCAQEAfxfSjC5C7ZwzmBZVom7mxKaZShyHPAGu6xHtUvK9
dsmjeq46mHp9U0IKqoDc9zq+7hQ2ZUhE/F0UWQq6W47Ylgzq0dmwfGMq8rhmwfIT
WqjZyvxm8dPkI62PAfk7jDtX0yxnm5sW9K7bXYg5OzE4KslXiT84srI+EZn623ax
qT1pZytUQelPvH3i8nj36vPf81XJWht+/NZrskVr3rQp1+txz4ktdP3ExyGdx5OC
PhBV3324Txdn0IxglU1qI95+JEG/lSfTz4q6kCqS6zv+q45NipVCZKV9JchLa9J3
SeK0jRzz7hmnYlSOmT0cP1OKuHnWo024LF8CCihKoB0N/Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:52 2024 by rpki-client on console-fra.rpki-client.org