Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/4cd064-5e46-4a3f-83c5-86bcb7f59d98/1/N0pliK62BISGaJeFhpJ3QeaiRho.roa
File: N0pliK62BISGaJeFhpJ3QeaiRho.roa (raw, json)
Hash identifier: FkW46OOcU0ni04Gz3sPQVuF3WqARpqiKd9yAvLPAGzo=
Subject key identifier: 37:4A:65:88:AE:B6:04:84:86:68:97:85:86:92:77:41:E6:A2:46:1A
Certificate issuer: /CN=8bcb6154f9c893e0a40b87afa0a2fa27fccf31eb
Certificate serial: 01856CCAF56F377A6B6937FB3220C1827988
Authority key identifier: 8B:CB:61:54:F9:C8:93:E0:A4:0B:87:AF:A0:A2:FA:27:FC:CF:31:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8thVPnIk-CkC4evoKL6J_zPMes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/4cd064-5e46-4a3f-83c5-86bcb7f59d98/1/N0pliK62BISGaJeFhpJ3QeaiRho.roa
Signing time: Sun 01 Jan 2023 10:05:18 +0000
ROA not before: Sun 01 Jan 2023 10:05:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31736
IP address blocks: 2a12:44c0::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:f5:6f:37:7a:6b:69:37:fb:32:20:c1:82:79:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bcb6154f9c893e0a40b87afa0a2fa27fccf31eb
Validity
Not Before: Jan 1 10:05:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=374a6588aeb604848668978586927741e6a2461a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ff:d4:dd:fe:b6:2d:ac:04:b5:fb:95:69:61:
84:23:f4:19:b7:72:ca:01:be:99:0d:3a:bd:5a:f1:
6f:f8:b2:7a:0a:0b:69:82:41:88:a4:dd:94:1f:c0:
15:45:dd:08:3c:50:4e:f5:cf:27:29:82:5b:92:1a:
9f:47:e0:7d:8e:f1:e8:c3:18:d6:2b:c1:f8:ea:0d:
b4:1b:f4:bf:00:57:07:67:23:60:cd:56:99:87:0f:
a5:5c:5b:4e:29:6c:41:2c:97:08:e7:e0:be:29:31:
d3:76:18:83:b9:92:d7:55:dd:46:ae:4c:53:63:17:
83:39:a5:48:50:88:aa:80:57:5c:87:46:e0:95:49:
aa:5d:a9:29:c9:47:98:07:a4:dc:65:52:57:53:d9:
a1:a6:6e:e4:46:0e:18:93:3b:b6:c7:bf:5b:41:c9:
26:97:0b:3d:5b:32:c7:e5:b1:56:43:b9:62:e6:7d:
57:57:59:3e:bb:3d:9e:ad:7e:13:b1:eb:c9:b9:a2:
6d:b3:9f:d7:67:31:af:44:c6:79:84:9c:66:62:d4:
a1:3f:a4:9b:e3:70:16:20:ba:52:89:b9:55:c4:c5:
b3:94:c4:01:03:7e:a8:7a:41:75:60:32:40:ea:73:
4f:12:e0:c3:31:48:18:5d:4e:22:ba:ba:04:b2:eb:
e7:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:4A:65:88:AE:B6:04:84:86:68:97:85:86:92:77:41:E6:A2:46:1A
X509v3 Authority Key Identifier:
keyid:8B:CB:61:54:F9:C8:93:E0:A4:0B:87:AF:A0:A2:FA:27:FC:CF:31:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8thVPnIk-CkC4evoKL6J_zPMes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/4cd064-5e46-4a3f-83c5-86bcb7f59d98/1/N0pliK62BISGaJeFhpJ3QeaiRho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/4cd064-5e46-4a3f-83c5-86bcb7f59d98/1/i8thVPnIk-CkC4evoKL6J_zPMes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:44c0::/29
Signature Algorithm: sha256WithRSAEncryption
b5:64:4a:86:23:3b:1f:b2:8c:e3:de:3e:64:47:09:fc:95:3e:
65:0e:b5:2c:0e:09:82:89:41:a7:c7:55:93:0f:b4:1c:f3:0f:
a8:2f:8d:f2:2b:77:3e:e2:29:db:25:70:8f:f2:9c:6c:2f:6c:
f5:49:90:8f:3c:fc:b4:7c:70:80:0d:7e:b3:98:4f:9c:c2:62:
fe:ab:40:d5:0e:38:eb:12:c0:ad:50:b0:74:2d:90:db:db:33:
25:65:59:0b:0d:cd:8b:6e:d6:5a:d9:14:3a:c3:d7:36:8b:b1:
9a:d2:c3:65:24:b6:93:5d:ef:a2:92:7c:45:38:c7:b4:54:6f:
be:2a:a7:30:69:b1:85:1b:17:a7:62:06:23:c5:7c:a5:76:09:
1e:9f:e8:70:7a:fb:98:a4:66:6c:d5:1a:bd:da:6e:c9:1a:5f:
92:de:40:d2:d6:fd:90:1e:75:48:eb:53:57:01:4e:6d:28:14:
a1:2a:0f:0f:6b:40:51:c1:51:38:23:29:e2:37:17:17:64:85:
9d:79:ad:ca:7d:ad:93:44:af:c8:94:9c:f2:da:05:03:b8:2f:
b0:aa:f6:13:c3:d3:b2:a1:17:46:aa:9f:4e:7a:05:72:6b:70:
cf:a1:12:00:b1:4d:da:85:78:e2:6b:67:9d:5c:91:68:75:28:
50:57:8c:57
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVsyvVvN3praTf7MiDBgnmIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiY2I2MTU0ZjljODkzZTBhNDBiODdhZmEwYTJmYTI3ZmNj
ZjMxZWIwHhcNMjMwMTAxMTAwNTE4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNzRhNjU4OGFlYjYwNDg0ODY2ODk3ODU4NjkyNzc0MWU2YTI0NjFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1P/U3f62LawEtfuVaWGEI/QZt3LK
Ab6ZDTq9WvFv+LJ6CgtpgkGIpN2UH8AVRd0IPFBO9c8nKYJbkhqfR+B9jvHowxjW
K8H46g20G/S/AFcHZyNgzVaZhw+lXFtOKWxBLJcI5+C+KTHTdhiDuZLXVd1GrkxT
YxeDOaVIUIiqgFdch0bglUmqXakpyUeYB6TcZVJXU9mhpm7kRg4Ykzu2x79bQckm
lws9WzLH5bFWQ7li5n1XV1k+uz2erX4TsevJuaJts5/XZzGvRMZ5hJxmYtShP6Sb
43AWILpSiblVxMWzlMQBA36oekF1YDJA6nNPEuDDMUgYXU4iuroEsuvnzwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFDdKZYiutgSEhmiXhYaSd0HmokYaMB8GA1UdIwQY
MBaAFIvLYVT5yJPgpAuHr6Ci+if8zzHrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTh0aFZQbklrLUNrQzRldm9LTDZKX3pQTWVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy80Y2QwNjQtNWU0Ni00YTNmLTgzYzUt
ODZiY2I3ZjU5ZDk4LzEvTjBwbGlLNjJCSVNHYUplRmhwSjNRZWFpUmhvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy80Y2QwNjQtNWU0Ni00YTNmLTgzYzUtODZiY2I3ZjU5ZDk4
LzEvaTh0aFZQbklrLUNrQzRldm9LTDZKX3pQTWVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhJEwDAN
BgkqhkiG9w0BAQsFAAOCAQEAtWRKhiM7H7KM494+ZEcJ/JU+ZQ61LA4JgolBp8dV
kw+0HPMPqC+N8it3PuIp2yVwj/KcbC9s9UmQjzz8tHxwgA1+s5hPnMJi/qtA1Q44
6xLArVCwdC2Q29szJWVZCw3Ni27WWtkUOsPXNouxmtLDZSS2k13vopJ8RTjHtFRv
viqnMGmxhRsXp2IGI8V8pXYJHp/ocHr7mKRmbNUavdpuyRpfkt5A0tb9kB51SOtT
VwFObSgUoSoPD2tAUcFROCMp4jcXF2SFnXmtyn2tk0SvyJSc8toFA7gvsKr2E8PT
sqEXRqqfTnoFcmtwz6ESALFN2oV44mtnnVyRaHUoUFeMVw==
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:10:34 2024 by rpki-client on console-ams.rpki-client.org