Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/798623-6dbe-4688-a465-cec265ddac47/1/ro3Uxo7cSvs7X6_luSlbiZMlKWo.roa
File: ro3Uxo7cSvs7X6_luSlbiZMlKWo.roa (raw, json)
Hash identifier: zCGlzqkEk+oWZOwTh/svMaGU+mMNoU8efejlCcHDMWE=
Subject key identifier: AE:8D:D4:C6:8E:DC:4A:FB:3B:5F:AF:E5:B9:29:5B:89:93:25:29:6A
Certificate issuer: /CN=eb5e28c2eff3cf35c3c1cc3d67baa3df05055f99
Certificate serial: 018570F0D39D48166C51DD51A2A7FA017115
Authority key identifier: EB:5E:28:C2:EF:F3:CF:35:C3:C1:CC:3D:67:BA:A3:DF:05:05:5F:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/614owu_zzzXDwcw9Z7qj3wUFX5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/798623-6dbe-4688-a465-cec265ddac47/1/ro3Uxo7cSvs7X6_luSlbiZMlKWo.roa
Signing time: Mon 02 Jan 2023 05:25:09 +0000
ROA not before: Mon 02 Jan 2023 05:25:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209220
IP address blocks: 2001:678:a38::/48 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:d3:9d:48:16:6c:51:dd:51:a2:a7:fa:01:71:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb5e28c2eff3cf35c3c1cc3d67baa3df05055f99
Validity
Not Before: Jan 2 05:25:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae8dd4c68edc4afb3b5fafe5b9295b899325296a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:80:99:6f:8a:cd:18:55:3e:38:5a:e3:91:68:
02:6d:69:46:98:85:91:a5:77:0e:5e:cb:f7:42:df:
f7:f7:83:a3:76:a1:2d:eb:09:f3:eb:e4:3e:85:de:
00:bc:4d:18:af:b6:31:30:6c:a7:35:c1:e3:ee:ae:
62:92:b4:9f:47:ad:5a:93:4f:be:37:71:12:f8:fa:
c9:1b:cf:52:75:33:2b:49:50:a8:23:ba:9f:c8:39:
3f:8e:3e:e6:a9:ed:a6:a7:c1:35:de:1f:d7:ef:62:
0b:97:19:57:b3:ef:f1:d0:d6:48:9a:b9:de:d2:28:
f4:9c:fa:32:38:8c:07:c0:30:a9:97:36:7a:97:6a:
19:73:00:b3:14:c9:2f:aa:d1:0c:ed:e1:e1:b1:16:
d1:0a:ba:3e:0f:d1:41:74:4a:ee:bb:9a:82:0a:1e:
07:68:02:f1:23:a1:32:d2:53:67:2f:34:8d:c7:11:
df:24:21:8e:d5:4b:80:b1:91:b0:5c:5f:4a:9a:cb:
56:c6:0c:f6:f8:55:f7:d9:e2:b1:23:ff:fb:b6:70:
f6:69:a9:20:51:7b:0d:85:6e:3d:1b:69:11:2b:ba:
f4:fe:86:4c:98:a5:e5:b3:07:e6:5b:fb:46:21:05:
5d:78:78:41:af:86:2b:24:89:b6:bf:c5:58:f9:48:
18:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:8D:D4:C6:8E:DC:4A:FB:3B:5F:AF:E5:B9:29:5B:89:93:25:29:6A
X509v3 Authority Key Identifier:
keyid:EB:5E:28:C2:EF:F3:CF:35:C3:C1:CC:3D:67:BA:A3:DF:05:05:5F:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/614owu_zzzXDwcw9Z7qj3wUFX5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/798623-6dbe-4688-a465-cec265ddac47/1/ro3Uxo7cSvs7X6_luSlbiZMlKWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/798623-6dbe-4688-a465-cec265ddac47/1/614owu_zzzXDwcw9Z7qj3wUFX5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:a38::/48
Signature Algorithm: sha256WithRSAEncryption
8b:6b:ac:9a:e4:79:13:9a:11:81:d9:a2:bb:14:37:74:09:43:
41:51:3c:da:2d:41:c6:e2:10:6b:60:1a:54:85:ab:3e:96:05:
8e:ae:71:10:ac:8b:0f:95:95:18:19:04:05:9d:64:05:8a:2b:
e0:4b:17:63:3f:66:96:61:aa:5e:c8:3a:5d:53:a5:b5:a1:94:
5e:e3:1f:1a:fe:8c:e7:73:50:5d:a6:83:cc:81:2e:a1:5c:f4:
47:f3:83:9a:89:bf:a0:65:a2:c1:7d:24:1a:85:f1:b1:30:f9:
da:49:42:88:6a:ab:d5:24:2f:1f:e9:da:06:83:99:22:f9:bf:
4c:9e:96:9a:57:17:4f:e4:6a:3a:3d:2c:ee:f7:3c:fa:bd:99:
b2:fd:44:be:58:0d:e4:25:f9:c0:19:42:59:ec:be:50:75:8c:
21:54:93:15:cf:49:a2:9d:10:6c:a3:d6:1a:d2:ee:f4:85:98:
a8:61:a5:1b:2b:29:20:7b:61:9e:4e:bc:7e:80:70:39:e3:f2:
29:45:83:0e:fb:bb:3f:63:f3:d8:86:6e:60:2e:fa:8b:3f:35:
2d:d9:91:72:da:9e:08:54:4a:f9:dd:13:71:f8:5f:72:e2:82:
53:40:d5:98:24:ab:0c:5f:81:f5:82:13:78:b2:d4:b7:b3:fe:
90:87:25:7a
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVw8NOdSBZsUd1Roqf6AXEVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGViNWUyOGMyZWZmM2NmMzVjM2MxY2MzZDY3YmFhM2RmMDUw
NTVmOTkwHhcNMjMwMTAyMDUyNTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZThkZDRjNjhlZGM0YWZiM2I1ZmFmZTViOTI5NWI4OTkzMjUyOTZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnICZb4rNGFU+OFrjkWgCbWlGmIWR
pXcOXsv3Qt/394OjdqEt6wnz6+Q+hd4AvE0Yr7YxMGynNcHj7q5ikrSfR61ak0++
N3ES+PrJG89SdTMrSVCoI7qfyDk/jj7mqe2mp8E13h/X72ILlxlXs+/x0NZImrne
0ij0nPoyOIwHwDCplzZ6l2oZcwCzFMkvqtEM7eHhsRbRCro+D9FBdEruu5qCCh4H
aALxI6Ey0lNnLzSNxxHfJCGO1UuAsZGwXF9KmstWxgz2+FX32eKxI//7tnD2aakg
UXsNhW49G2kRK7r0/oZMmKXlswfmW/tGIQVdeHhBr4YrJIm2v8VY+UgYAwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFK6N1MaO3Er7O1+v5bkpW4mTJSlqMB8GA1UdIwQY
MBaAFOteKMLv8881w8HMPWe6o98FBV+ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNjE0b3d1X3p6elhEd2N3OVo3cWozd1VGWDVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC83OTg2MjMtNmRiZS00Njg4LWE0NjUt
Y2VjMjY1ZGRhYzQ3LzEvcm8zVXhvN2NTdnM3WDZfbHVTbGJpWk1sS1dvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC83OTg2MjMtNmRiZS00Njg4LWE0NjUtY2VjMjY1ZGRhYzQ3
LzEvNjE0b3d1X3p6elhEd2N3OVo3cWozd1VGWDVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAo4
MA0GCSqGSIb3DQEBCwUAA4IBAQCLa6ya5HkTmhGB2aK7FDd0CUNBUTzaLUHG4hBr
YBpUhas+lgWOrnEQrIsPlZUYGQQFnWQFiivgSxdjP2aWYapeyDpdU6W1oZRe4x8a
/oznc1BdpoPMgS6hXPRH84Oaib+gZaLBfSQahfGxMPnaSUKIaqvVJC8f6doGg5ki
+b9MnpaaVxdP5Go6PSzu9zz6vZmy/US+WA3kJfnAGUJZ7L5QdYwhVJMVz0minRBs
o9Ya0u70hZioYaUbKykge2GeTrx+gHA54/IpRYMO+7s/Y/PYhm5gLvqLPzUt2ZFy
2p4IVEr53RNx+F9y4oJTQNWYJKsMX4H1ghN4stS3s/6QhyV6
-----END CERTIFICATE-----
Generated at Mon Jan 1 11:40:11 2024 by rpki-client on console-fra.rpki-client.org