Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/bpHi2vC4ZXO0ECEc9_ggBE_WaYk.roa
File: bpHi2vC4ZXO0ECEc9_ggBE_WaYk.roa (raw, json)
Hash identifier: zE/TkuOBM0AcY7wFAk2BibyZneoe1qW6DgUG3aNABHs=
Subject key identifier: 6E:91:E2:DA:F0:B8:65:73:B4:10:21:1C:F7:F8:20:04:4F:D6:69:89
Certificate issuer: /CN=5659b0ba8407be11cfc911bd31ed140cd1c6046c
Certificate serial: 0185F867AEEBC4E2F0D2597E0295BBB2A1F6
Authority key identifier: 56:59:B0:BA:84:07:BE:11:CF:C9:11:BD:31:ED:14:0C:D1:C6:04:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VlmwuoQHvhHPyRG9Me0UDNHGBGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/bpHi2vC4ZXO0ECEc9_ggBE_WaYk.roa
Signing time: Sat 28 Jan 2023 12:43:42 +0000
ROA not before: Sat 28 Jan 2023 12:43:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212577
IP address blocks: 2a10:fa81:3::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:f8:67:ae:eb:c4:e2:f0:d2:59:7e:02:95:bb:b2:a1:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5659b0ba8407be11cfc911bd31ed140cd1c6046c
Validity
Not Before: Jan 28 12:43:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e91e2daf0b86573b410211cf7f820044fd66989
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:01:69:de:62:83:0c:c6:4d:c7:a4:57:e0:ff:
5d:df:23:a3:fa:8c:25:e6:94:66:35:f7:78:4e:09:
88:6f:dc:cb:a5:b3:61:87:5d:11:f5:1a:82:6e:36:
63:73:c9:fe:9f:fe:e7:c2:48:b8:f0:65:81:11:14:
8e:b4:18:ff:12:25:1a:fe:90:0c:27:af:3c:a6:5b:
cc:af:90:d8:59:7f:47:83:ce:60:00:00:e0:59:ea:
7c:83:68:db:40:ad:6c:b7:c1:8a:72:83:c1:74:3d:
37:09:d1:bf:c7:8f:91:b1:a0:42:70:0d:e4:82:01:
e4:87:68:78:71:3f:9b:80:60:90:31:0d:ed:f0:46:
6d:cb:75:ed:f2:5b:48:d9:5b:2a:fd:8a:01:55:ad:
aa:de:d5:0c:2b:2e:d3:15:2e:64:4c:87:b2:9f:05:
ec:f5:94:4b:99:8b:eb:28:13:87:38:10:24:22:cd:
a5:38:fc:cd:1a:47:05:6d:59:65:6d:3c:67:84:db:
d2:2f:c0:af:94:25:de:f3:77:db:95:14:10:6b:e9:
02:b9:c1:8a:09:65:a9:4e:8b:d0:c8:5b:29:a3:61:
c1:83:ed:d8:42:5a:d4:2f:32:ff:0b:51:c7:ac:13:
b6:ac:f9:a5:d0:3d:01:5e:ff:7e:6e:ca:5c:ce:0b:
17:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:91:E2:DA:F0:B8:65:73:B4:10:21:1C:F7:F8:20:04:4F:D6:69:89
X509v3 Authority Key Identifier:
keyid:56:59:B0:BA:84:07:BE:11:CF:C9:11:BD:31:ED:14:0C:D1:C6:04:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VlmwuoQHvhHPyRG9Me0UDNHGBGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/bpHi2vC4ZXO0ECEc9_ggBE_WaYk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/dd8e31-00b5-4212-9e01-2394c6600022/1/VlmwuoQHvhHPyRG9Me0UDNHGBGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:fa81:3::/48
Signature Algorithm: sha256WithRSAEncryption
3d:3b:81:04:c5:00:28:e3:e1:f8:13:bd:a9:f8:af:c3:75:2b:
68:c1:f7:f8:a8:e6:4d:68:91:49:6a:e6:b8:4f:df:5d:80:8d:
b1:7e:87:3a:a4:db:4a:7e:29:47:60:bd:17:8d:51:cc:36:1a:
38:54:9e:8c:c3:a9:86:11:69:63:6a:08:fa:bb:09:5d:da:69:
d7:18:d9:48:dd:46:1f:b9:89:3c:8c:25:79:17:3d:55:30:64:
ef:1d:a7:d7:ab:1c:a5:c7:0d:16:45:aa:fc:2d:f3:aa:00:80:
aa:3e:ad:82:39:48:b1:cc:a9:35:43:c0:7e:d6:ed:7b:7e:97:
64:86:57:b8:42:7e:f3:44:a1:7c:36:10:a4:04:bb:d4:7f:9b:
99:55:b9:c0:ae:35:ee:86:51:3c:e4:10:fa:cd:34:09:c1:40:
66:c5:9e:ba:bf:15:07:41:f3:0d:05:b6:bf:af:b2:7b:fd:6d:
47:b0:34:9e:2c:f6:50:d7:3b:b2:80:9d:98:25:16:1f:d0:37:
39:57:38:40:52:ed:a1:be:6b:d5:02:0e:c6:f0:10:c7:a3:44:
56:8f:64:0b:2e:df:0e:8c:aa:18:a3:00:96:e0:13:9f:52:fb:
ee:71:10:68:a8:cf:22:cf:70:04:6a:ad:54:0b:f9:b8:8a:76:
c0:d2:d2:c8
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYX4Z67rxOLw0ll+ApW7sqH2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU2NTliMGJhODQwN2JlMTFjZmM5MTFiZDMxZWQxNDBjZDFj
NjA0NmMwHhcNMjMwMTI4MTI0MzQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZTkxZTJkYWYwYjg2NTczYjQxMDIxMWNmN2Y4MjAwNDRmZDY2OTg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5wFp3mKDDMZNx6RX4P9d3yOj+owl
5pRmNfd4TgmIb9zLpbNhh10R9RqCbjZjc8n+n/7nwki48GWBERSOtBj/EiUa/pAM
J688plvMr5DYWX9Hg85gAADgWep8g2jbQK1st8GKcoPBdD03CdG/x4+RsaBCcA3k
ggHkh2h4cT+bgGCQMQ3t8EZty3Xt8ltI2Vsq/YoBVa2q3tUMKy7TFS5kTIeynwXs
9ZRLmYvrKBOHOBAkIs2lOPzNGkcFbVllbTxnhNvSL8CvlCXe83fblRQQa+kCucGK
CWWpTovQyFspo2HBg+3YQlrULzL/C1HHrBO2rPml0D0BXv9+bspczgsX9wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFG6R4trwuGVztBAhHPf4IARP1mmJMB8GA1UdIwQY
MBaAFFZZsLqEB74Rz8kRvTHtFAzRxgRsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVmxtd3VvUUh2aEhQeVJHOU1lMFVETkhHQkd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi9kZDhlMzEtMDBiNS00MjEyLTllMDEt
MjM5NGM2NjAwMDIyLzEvYnBIaTJ2QzRaWE8wRUNFYzlfZ2dCRV9XYVlrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYi9kZDhlMzEtMDBiNS00MjEyLTllMDEtMjM5NGM2NjAwMDIy
LzEvVmxtd3VvUUh2aEhQeVJHOU1lMFVETkhHQkd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhD6gQAD
MA0GCSqGSIb3DQEBCwUAA4IBAQA9O4EExQAo4+H4E72p+K/DdStowff4qOZNaJFJ
aua4T99dgI2xfoc6pNtKfilHYL0XjVHMNho4VJ6Mw6mGEWljagj6uwld2mnXGNlI
3UYfuYk8jCV5Fz1VMGTvHafXqxylxw0WRar8LfOqAICqPq2COUixzKk1Q8B+1u17
fpdkhle4Qn7zRKF8NhCkBLvUf5uZVbnArjXuhlE85BD6zTQJwUBmxZ66vxUHQfMN
Bba/r7J7/W1HsDSeLPZQ1zuygJ2YJRYf0Dc5VzhAUu2hvmvVAg7G8BDHo0RWj2QL
Lt8OjKoYowCW4BOfUvvucRBoqM8iz3AEaq1UC/m4inbA0tLI
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:38 2024 by rpki-client on console-fra.rpki-client.org