Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/iQCb_WQ4XQGJK5LBLicc7AD34Oo.roa
File: iQCb_WQ4XQGJK5LBLicc7AD34Oo.roa (raw, json)
Hash identifier: CulykOxz09O6TcfBuTl5WrFvnCy90tD+R0f6j8JT1dU=
Subject key identifier: 89:00:9B:FD:64:38:5D:01:89:2B:92:C1:2E:27:1C:EC:00:F7:E0:EA
Certificate issuer: /CN=884bf80e72f50f09bf563493ebdb11a34bba312d
Certificate serial: 01856E01FEEEC60AB5A511537AD1E14FD4D9
Authority key identifier: 88:4B:F8:0E:72:F5:0F:09:BF:56:34:93:EB:DB:11:A3:4B:BA:31:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iEv4DnL1Dwm_VjST69sRo0u6MS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/iQCb_WQ4XQGJK5LBLicc7AD34Oo.roa
Signing time: Sun 01 Jan 2023 15:45:02 +0000
ROA not before: Sun 01 Jan 2023 15:45:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207954
IP address blocks: 2a0f:24c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:01:fe:ee:c6:0a:b5:a5:11:53:7a:d1:e1:4f:d4:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=884bf80e72f50f09bf563493ebdb11a34bba312d
Validity
Not Before: Jan 1 15:45:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89009bfd64385d01892b92c12e271cec00f7e0ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:49:61:8f:07:80:81:66:85:c9:43:5e:bc:b4:
03:07:cf:8c:1f:ab:0b:d0:d8:28:b5:d0:01:b8:67:
d4:2d:a1:8d:14:d6:e7:d5:45:87:a9:f0:ce:8d:82:
b0:a0:b0:19:5d:56:0a:48:93:03:f5:43:b3:0f:ed:
ae:fc:42:9c:96:8d:9c:e2:f9:78:b4:44:a0:8f:3e:
9d:fd:cd:54:f1:ec:c9:13:ad:01:f6:0a:2a:40:a8:
69:b5:1f:91:0b:43:b7:e3:0d:80:9c:2e:56:ee:3f:
1c:44:3d:fd:6f:fc:0a:c1:2d:77:3a:ee:0a:51:ea:
5a:e5:22:ca:56:79:ba:38:18:07:73:87:fd:94:87:
33:da:84:81:3e:73:ed:11:7c:f6:41:79:63:7f:09:
d0:f5:9e:51:ef:b5:77:d4:55:2f:e6:e3:5a:a7:2d:
a0:4d:2a:60:0c:23:31:6b:3d:08:eb:c3:d9:8d:c3:
e4:b7:d0:95:ba:ef:f3:88:47:17:1f:a0:32:c5:65:
a5:f8:ef:80:a8:c2:44:30:1a:b7:eb:01:15:cd:75:
77:62:da:f6:19:51:7b:fe:25:ee:5e:c2:42:aa:da:
bc:df:49:1f:1f:d9:71:a4:7d:7a:00:d8:c4:3a:b6:
aa:1b:be:1d:80:9a:c3:c5:48:91:94:f3:86:a6:37:
15:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:00:9B:FD:64:38:5D:01:89:2B:92:C1:2E:27:1C:EC:00:F7:E0:EA
X509v3 Authority Key Identifier:
keyid:88:4B:F8:0E:72:F5:0F:09:BF:56:34:93:EB:DB:11:A3:4B:BA:31:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iEv4DnL1Dwm_VjST69sRo0u6MS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/iQCb_WQ4XQGJK5LBLicc7AD34Oo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/iEv4DnL1Dwm_VjST69sRo0u6MS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:24c0::/29
Signature Algorithm: sha256WithRSAEncryption
0c:82:cf:26:9a:e5:0e:c7:a1:5f:2a:0e:ec:ce:72:1b:10:87:
bf:32:54:72:5f:77:5e:f9:c9:b2:f6:26:8a:62:e4:69:bd:09:
2e:62:57:1d:a0:5c:2d:a8:07:8d:03:33:80:a4:cc:04:9f:ba:
95:9e:d4:9a:60:90:dc:41:80:ef:5f:42:52:36:ea:40:fe:45:
52:d6:91:15:f1:36:c0:81:f1:33:08:20:4f:62:f7:d9:b5:32:
0f:2b:f5:5e:50:99:b6:f9:89:7f:f8:cd:97:49:ba:9a:da:6a:
3c:11:4c:91:a6:72:e0:86:b6:c7:06:5b:e9:e6:65:65:05:92:
cd:1e:b1:f6:29:0e:6e:7a:e8:10:c6:68:83:0f:a7:81:ef:81:
20:9f:1f:39:b5:a8:7c:5f:dd:52:89:15:ab:dd:af:a3:b6:d7:
2f:bd:90:69:af:16:f9:4f:0e:42:60:0a:cb:bd:2b:5c:a5:30:
42:6e:6c:5f:bf:e9:83:c0:58:fa:b9:a7:0c:76:c2:1a:19:65:
29:ca:ec:08:0a:7e:79:75:19:51:55:69:13:97:f6:0c:27:7e:
94:22:32:e1:43:a0:a7:80:9f:90:2b:53:fc:f4:ab:df:41:a0:
0a:92:8a:c8:b2:10:cb:0c:20:61:39:3c:ee:f4:7a:d7:e3:1a:
3b:2e:8f:2f
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVuAf7uxgq1pRFTetHhT9TZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg4NGJmODBlNzJmNTBmMDliZjU2MzQ5M2ViZGIxMWEzNGJi
YTMxMmQwHhcNMjMwMTAxMTU0NTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OTAwOWJmZDY0Mzg1ZDAxODkyYjkyYzEyZTI3MWNlYzAwZjdlMGVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5klhjweAgWaFyUNevLQDB8+MH6sL
0NgotdABuGfULaGNFNbn1UWHqfDOjYKwoLAZXVYKSJMD9UOzD+2u/EKclo2c4vl4
tESgjz6d/c1U8ezJE60B9goqQKhptR+RC0O34w2AnC5W7j8cRD39b/wKwS13Ou4K
Uepa5SLKVnm6OBgHc4f9lIcz2oSBPnPtEXz2QXljfwnQ9Z5R77V31FUv5uNapy2g
TSpgDCMxaz0I68PZjcPkt9CVuu/ziEcXH6AyxWWl+O+AqMJEMBq36wEVzXV3Ytr2
GVF7/iXuXsJCqtq830kfH9lxpH16ANjEOraqG74dgJrDxUiRlPOGpjcVqQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFIkAm/1kOF0BiSuSwS4nHOwA9+DqMB8GA1UdIwQY
MBaAFIhL+A5y9Q8Jv1Y0k+vbEaNLujEtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaUV2NERuTDFEd21fVmpTVDY5c1JvMHU2TVMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9iMTJlNGQtOGExYS00MDEwLTlhOGIt
MzZmOTg0N2FjMzViLzEvaVFDYl9XUTRYUUdKSzVMQkxpY2M3QUQzNE9vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi9iMTJlNGQtOGExYS00MDEwLTlhOGItMzZmOTg0N2FjMzVi
LzEvaUV2NERuTDFEd21fVmpTVDY5c1JvMHU2TVMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKg8kwDAN
BgkqhkiG9w0BAQsFAAOCAQEADILPJprlDsehXyoO7M5yGxCHvzJUcl93XvnJsvYm
imLkab0JLmJXHaBcLagHjQMzgKTMBJ+6lZ7UmmCQ3EGA719CUjbqQP5FUtaRFfE2
wIHxMwggT2L32bUyDyv1XlCZtvmJf/jNl0m6mtpqPBFMkaZy4Ia2xwZb6eZlZQWS
zR6x9ikObnroEMZogw+nge+BIJ8fObWofF/dUokVq92vo7bXL72Qaa8W+U8OQmAK
y70rXKUwQm5sX7/pg8BY+rmnDHbCGhllKcrsCAp+eXUZUVVpE5f2DCd+lCIy4UOg
p4CfkCtT/PSr30GgCpKKyLIQywwgYTk87vR61+MaOy6PLw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:52 2024 by rpki-client on console-ams.rpki-client.org