Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/35c0b9-2855-4b20-8c80-7e280752da21/1/7S057niKJDcRU3GkZ_ukB6qhdlw.roa
File: 7S057niKJDcRU3GkZ_ukB6qhdlw.roa (raw, json)
Hash identifier: FLms+tHaa3r5Gutzgwk0s8lJhMf3LbWtWCt1OoLOMjg=
Subject key identifier: ED:2D:39:EE:78:8A:24:37:11:53:71:A4:67:FB:A4:07:AA:A1:76:5C
Certificate issuer: /CN=4f672d39929731aed9e01bc5a9e6d680f4659a0b
Certificate serial: 01868348D985A34437C442A59F35D310320D
Authority key identifier: 4F:67:2D:39:92:97:31:AE:D9:E0:1B:C5:A9:E6:D6:80:F4:65:9A:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T2ctOZKXMa7Z4BvFqebWgPRlmgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/35c0b9-2855-4b20-8c80-7e280752da21/1/7S057niKJDcRU3GkZ_ukB6qhdlw.roa
Signing time: Fri 24 Feb 2023 11:57:14 +0000
ROA not before: Fri 24 Feb 2023 11:57:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1764
IP address blocks: 2001:4b60:100::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:83:48:d9:85:a3:44:37:c4:42:a5:9f:35:d3:10:32:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f672d39929731aed9e01bc5a9e6d680f4659a0b
Validity
Not Before: Feb 24 11:57:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed2d39ee788a2437115371a467fba407aaa1765c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:e6:ca:f9:5d:0b:a6:28:27:41:fe:4c:23:f5:
c7:c6:69:90:dd:61:10:14:90:e7:6c:41:4f:7c:60:
93:87:ad:68:8c:97:dc:97:b4:61:1a:cf:99:1d:88:
cf:be:64:7b:02:50:f0:66:56:ce:58:db:bb:be:a4:
1c:51:00:66:f8:04:84:65:60:65:ed:37:ac:37:cf:
40:4d:06:6f:e8:df:54:d3:7d:3f:b9:c7:0e:59:38:
eb:76:72:22:54:11:72:1a:23:4d:de:d5:e1:00:0c:
c5:fe:b0:b8:49:2c:e8:0c:58:0a:ca:ca:44:2c:d6:
62:ef:9b:f1:f6:61:53:78:5b:e1:35:da:af:f8:26:
67:37:f2:9c:ab:2c:a9:01:81:dc:56:e0:25:f6:28:
55:a6:49:9f:1d:be:4a:36:58:dd:51:63:74:a0:3b:
87:f4:a0:05:19:83:77:da:13:b6:14:8a:90:82:0d:
49:84:65:e3:cb:30:48:bd:b0:5e:29:b4:8b:10:72:
23:f6:89:37:02:82:db:28:21:81:98:1e:58:a2:cb:
f0:8d:7f:80:56:aa:34:d3:6c:a9:65:64:26:ae:85:
be:30:ba:7b:2a:27:3d:29:53:2b:e5:d3:18:28:d1:
91:ed:d5:4c:67:69:9e:43:df:3b:c5:99:01:20:45:
ed:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:2D:39:EE:78:8A:24:37:11:53:71:A4:67:FB:A4:07:AA:A1:76:5C
X509v3 Authority Key Identifier:
keyid:4F:67:2D:39:92:97:31:AE:D9:E0:1B:C5:A9:E6:D6:80:F4:65:9A:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T2ctOZKXMa7Z4BvFqebWgPRlmgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/35c0b9-2855-4b20-8c80-7e280752da21/1/7S057niKJDcRU3GkZ_ukB6qhdlw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/35c0b9-2855-4b20-8c80-7e280752da21/1/T2ctOZKXMa7Z4BvFqebWgPRlmgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:4b60:100::/48
Signature Algorithm: sha256WithRSAEncryption
26:cd:4f:a3:ed:fb:f1:4c:db:11:73:4b:c4:1a:1d:28:fb:96:
4b:06:ec:b6:bb:c1:a7:34:99:b6:09:ff:7b:58:65:31:da:9b:
96:69:1e:e4:04:92:30:ad:c8:ef:b3:9f:9a:52:2c:1f:87:9e:
b6:4e:c4:b7:64:0d:bf:d9:4e:0c:67:18:60:7f:e5:48:3f:63:
ef:54:e2:cd:30:5c:32:71:7d:93:a2:53:c0:99:08:df:6c:39:
e6:6b:6a:b6:01:f8:d0:e5:52:1c:24:e8:ca:9d:8e:6e:d7:0d:
99:20:f8:cc:ae:4c:2c:a3:11:8e:c2:96:6f:31:33:9b:48:d5:
8d:c1:19:76:cc:d3:4f:71:6b:6f:ad:70:8b:f1:08:a3:7d:a3:
7a:4b:f9:b6:57:20:2f:4b:86:74:1c:e8:85:00:a4:0b:ae:8b:
cd:89:e5:d5:1b:9b:42:b9:20:a2:cf:b5:cd:7e:00:57:00:6b:
49:c5:a9:6e:ba:dd:78:1c:4b:63:99:b0:25:d2:e4:cd:47:84:
40:79:77:f7:34:e0:be:4a:1c:99:1d:b1:97:da:8f:b3:09:ba:
35:2c:a1:74:e6:72:e1:a4:4c:43:91:fb:a5:fa:47:0b:51:ab:
27:80:6f:d1:fc:51:51:ba:dd:9b:50:80:d6:3d:db:ec:7a:63:
fb:ce:27:2b
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYaDSNmFo0Q3xEKlnzXTEDINMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmNjcyZDM5OTI5NzMxYWVkOWUwMWJjNWE5ZTZkNjgwZjQ2
NTlhMGIwHhcNMjMwMjI0MTE1NzE0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZDJkMzllZTc4OGEyNDM3MTE1MzcxYTQ2N2ZiYTQwN2FhYTE3NjVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkubK+V0LpignQf5MI/XHxmmQ3WEQ
FJDnbEFPfGCTh61ojJfcl7RhGs+ZHYjPvmR7AlDwZlbOWNu7vqQcUQBm+ASEZWBl
7TesN89ATQZv6N9U030/uccOWTjrdnIiVBFyGiNN3tXhAAzF/rC4SSzoDFgKyspE
LNZi75vx9mFTeFvhNdqv+CZnN/KcqyypAYHcVuAl9ihVpkmfHb5KNljdUWN0oDuH
9KAFGYN32hO2FIqQgg1JhGXjyzBIvbBeKbSLEHIj9ok3AoLbKCGBmB5YosvwjX+A
Vqo002ypZWQmroW+MLp7Kic9KVMr5dMYKNGR7dVMZ2meQ987xZkBIEXt2wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFO0tOe54iiQ3EVNxpGf7pAeqoXZcMB8GA1UdIwQY
MBaAFE9nLTmSlzGu2eAbxanm1oD0ZZoLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDJjdE9aS1hNYTdaNEJ2RnFlYldnUFJsbWdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8zNWMwYjktMjg1NS00YjIwLThjODAt
N2UyODA3NTJkYTIxLzEvN1MwNTduaUtKRGNSVTNHa1pfdWtCNnFoZGx3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC8zNWMwYjktMjg1NS00YjIwLThjODAtN2UyODA3NTJkYTIx
LzEvVDJjdE9aS1hNYTdaNEJ2RnFlYldnUFJsbWdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAFLYAEA
MA0GCSqGSIb3DQEBCwUAA4IBAQAmzU+j7fvxTNsRc0vEGh0o+5ZLBuy2u8GnNJm2
Cf97WGUx2puWaR7kBJIwrcjvs5+aUiwfh562TsS3ZA2/2U4MZxhgf+VIP2PvVOLN
MFwycX2TolPAmQjfbDnma2q2AfjQ5VIcJOjKnY5u1w2ZIPjMrkwsoxGOwpZvMTOb
SNWNwRl2zNNPcWtvrXCL8QijfaN6S/m2VyAvS4Z0HOiFAKQLrovNieXVG5tCuSCi
z7XNfgBXAGtJxaluut14HEtjmbAl0uTNR4RAeXf3NOC+ShyZHbGX2o+zCbo1LKF0
5nLhpExDkful+kcLUasngG/R/FFRut2bUIDWPdvsemP7zicr
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:02 2024 by rpki-client on console-fra.rpki-client.org