Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/0f1f9f-5a51-4bd6-bf30-39a24388a5e8/1/lu14v0oBHLCPqtWhMt0OndCSg58.roa
File: lu14v0oBHLCPqtWhMt0OndCSg58.roa (raw, json)
Hash identifier: JaMZcXxjcw35o5pbRZQBlnBTnLzCKrnp9tkzD52mrcQ=
Subject key identifier: 96:ED:78:BF:4A:01:1C:B0:8F:AA:D5:A1:32:DD:0E:9D:D0:92:83:9F
Certificate issuer: /CN=f6137c597d1e30cb75618e51f42b7f79ed5ffc88
Certificate serial: 018C1C55E9ADBB3C3ED7D14DF20CC3840BA1
Authority key identifier: F6:13:7C:59:7D:1E:30:CB:75:61:8E:51:F4:2B:7F:79:ED:5F:FC:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9hN8WX0eMMt1YY5R9Ct_ee1f_Ig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/0f1f9f-5a51-4bd6-bf30-39a24388a5e8/1/lu14v0oBHLCPqtWhMt0OndCSg58.roa
Signing time: Wed 29 Nov 2023 18:27:21 +0000
ROA not before: Wed 29 Nov 2023 18:27:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52041
IP address blocks: 2a0c:7b82::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1c:55:e9:ad:bb:3c:3e:d7:d1:4d:f2:0c:c3:84:0b:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6137c597d1e30cb75618e51f42b7f79ed5ffc88
Validity
Not Before: Nov 29 18:27:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96ed78bf4a011cb08faad5a132dd0e9dd092839f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:44:b8:bd:f7:a2:75:d9:be:d1:a2:1d:d5:4b:
34:8c:b7:0d:5b:83:bf:34:dd:b2:d3:f3:47:5f:4c:
cc:e1:09:63:a6:90:d8:ee:50:4b:86:09:7a:65:e1:
2d:cd:3b:3d:db:aa:ac:ca:e8:05:ce:05:a0:ea:c7:
2c:2b:fd:97:14:34:f0:02:89:85:95:aa:c9:8e:d6:
d0:9e:a2:4f:0f:99:9f:52:f3:f2:0a:02:a0:d8:1a:
67:ce:d0:88:00:0c:1b:c1:49:e5:50:1f:40:f7:3f:
f8:65:ca:8e:c7:2b:6a:e9:2e:d7:83:07:df:ce:90:
06:d2:4c:cd:1a:3d:6b:23:20:1e:0e:c7:ed:3a:24:
f0:d7:a6:bf:10:be:8a:f8:cf:70:9e:d6:4f:93:f5:
af:d7:58:8b:06:94:8f:79:16:93:a4:12:a0:55:b1:
76:f4:f6:d1:e8:bf:d4:cf:9a:7d:ff:ef:e8:39:a9:
21:58:e1:e8:b0:15:9d:4e:be:78:95:13:ee:06:37:
df:b8:1c:a9:f4:7b:7a:eb:02:91:c6:1f:7c:79:01:
eb:60:32:70:77:92:32:c1:6e:ab:bb:72:02:a6:fb:
00:d2:f4:e5:a7:b4:50:14:db:1d:5f:84:b6:e5:76:
f1:43:1e:d7:c7:9c:23:ab:eb:a8:c8:5b:89:47:7a:
b9:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:ED:78:BF:4A:01:1C:B0:8F:AA:D5:A1:32:DD:0E:9D:D0:92:83:9F
X509v3 Authority Key Identifier:
keyid:F6:13:7C:59:7D:1E:30:CB:75:61:8E:51:F4:2B:7F:79:ED:5F:FC:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9hN8WX0eMMt1YY5R9Ct_ee1f_Ig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/0f1f9f-5a51-4bd6-bf30-39a24388a5e8/1/lu14v0oBHLCPqtWhMt0OndCSg58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/0f1f9f-5a51-4bd6-bf30-39a24388a5e8/1/9hN8WX0eMMt1YY5R9Ct_ee1f_Ig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:7b82::/32
Signature Algorithm: sha256WithRSAEncryption
5d:12:fa:de:47:20:40:55:07:3f:8e:8b:49:31:2d:48:ee:78:
f4:e3:62:07:5f:3b:23:98:3d:f3:3b:53:82:3f:b9:7c:e7:36:
12:81:66:48:0c:5f:0e:7d:69:40:ac:f7:52:71:d2:19:3d:4a:
a3:11:8c:8f:72:6f:e0:1c:fc:9c:95:88:a3:ca:40:f6:bf:d0:
23:fe:b1:f8:f9:d3:65:9a:63:38:7b:17:49:0b:c0:b3:da:e6:
62:d2:46:0a:d5:e5:cc:67:ef:61:3d:31:d1:46:6f:83:e2:fc:
39:14:e5:e7:9c:52:d2:eb:ea:06:08:06:e7:7c:20:76:81:2e:
cb:b5:1f:4d:df:ab:d4:ab:13:ef:f4:13:65:19:ff:e6:1d:4c:
75:e7:04:a0:53:8e:0d:5a:e6:88:7f:bd:f6:c7:50:89:93:6c:
b2:a0:3e:40:80:02:4e:72:4d:28:64:97:b5:9c:08:ba:dc:ea:
ac:35:ae:c6:e8:6f:43:af:1e:33:9c:67:a1:fb:1d:25:f5:c8:
ef:93:c3:c4:77:18:69:bc:d5:9f:f9:f9:bd:16:13:cf:c5:c7:
88:1e:b7:f0:5c:5c:ae:83:03:e0:6e:a6:30:ac:17:4d:de:d8:
7f:6d:e8:49:bd:82:2d:b5:bb:62:c0:42:b8:b9:b6:87:08:f6:
57:48:67:9c
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYwcVemtuzw+19FN8gzDhAuhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY2MTM3YzU5N2QxZTMwY2I3NTYxOGU1MWY0MmI3Zjc5ZWQ1
ZmZjODgwHhcNMjMxMTI5MTgyNzIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NmVkNzhiZjRhMDExY2IwOGZhYWQ1YTEzMmRkMGU5ZGQwOTI4MzlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhkS4vfeiddm+0aId1Us0jLcNW4O/
NN2y0/NHX0zM4QljppDY7lBLhgl6ZeEtzTs926qsyugFzgWg6scsK/2XFDTwAomF
larJjtbQnqJPD5mfUvPyCgKg2BpnztCIAAwbwUnlUB9A9z/4ZcqOxytq6S7Xgwff
zpAG0kzNGj1rIyAeDsftOiTw16a/EL6K+M9wntZPk/Wv11iLBpSPeRaTpBKgVbF2
9PbR6L/Uz5p9/+/oOakhWOHosBWdTr54lRPuBjffuByp9Ht66wKRxh98eQHrYDJw
d5IywW6ru3ICpvsA0vTlp7RQFNsdX4S25XbxQx7Xx5wjq+uoyFuJR3q56QIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFJbteL9KARywj6rVoTLdDp3QkoOfMB8GA1UdIwQY
MBaAFPYTfFl9HjDLdWGOUfQrf3ntX/yIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOWhOOFdYMGVNTXQxWVk1UjlDdF9lZTFmX0lnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi8wZjFmOWYtNWE1MS00YmQ2LWJmMzAt
MzlhMjQzODhhNWU4LzEvbHUxNHYwb0JITENQcXRXaE10ME9uZENTZzU4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi8wZjFmOWYtNWE1MS00YmQ2LWJmMzAtMzlhMjQzODhhNWU4
LzEvOWhOOFdYMGVNTXQxWVk1UjlDdF9lZTFmX0lnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgx7gjAN
BgkqhkiG9w0BAQsFAAOCAQEAXRL63kcgQFUHP46LSTEtSO549ONiB187I5g98ztT
gj+5fOc2EoFmSAxfDn1pQKz3UnHSGT1KoxGMj3Jv4Bz8nJWIo8pA9r/QI/6x+PnT
ZZpjOHsXSQvAs9rmYtJGCtXlzGfvYT0x0UZvg+L8ORTl55xS0uvqBggG53wgdoEu
y7UfTd+r1KsT7/QTZRn/5h1MdecEoFOODVrmiH+99sdQiZNssqA+QIACTnJNKGSX
tZwIutzqrDWuxuhvQ68eM5xnofsdJfXI75PDxHcYabzVn/n5vRYTz8XHiB638Fxc
roMD4G6mMKwXTd7Yf23oSb2CLbW7YsBCuLm2hwj2V0hnnA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:45 2024 by rpki-client on console-ams.rpki-client.org