Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/7da79d-60f4-47a8-813a-99957df4997e/1/03vBgou1NFaN6bh0sxc6s-lhaNM.roa
File: 03vBgou1NFaN6bh0sxc6s-lhaNM.roa (raw, json)
Hash identifier: bcjRnMlAVoOMHxGWiL/NsTDWM4TuhrC8fhdK2Fqd3O8=
Subject key identifier: D3:7B:C1:82:8B:B5:34:56:8D:E9:B8:74:B3:17:3A:B3:E9:61:68:D3
Certificate issuer: /CN=1e8c77336d66f7b0238e6c184c64fa4f24d09f01
Certificate serial: 018571D7C4E8593515FB38C9A8CF6C07BA23
Authority key identifier: 1E:8C:77:33:6D:66:F7:B0:23:8E:6C:18:4C:64:FA:4F:24:D0:9F:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hox3M21m97AjjmwYTGT6TyTQnwE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/7da79d-60f4-47a8-813a-99957df4997e/1/03vBgou1NFaN6bh0sxc6s-lhaNM.roa
Signing time: Mon 02 Jan 2023 09:37:24 +0000
ROA not before: Mon 02 Jan 2023 09:37:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44973
IP address blocks: 2001:678:59c::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:c4:e8:59:35:15:fb:38:c9:a8:cf:6c:07:ba:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e8c77336d66f7b0238e6c184c64fa4f24d09f01
Validity
Not Before: Jan 2 09:37:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d37bc1828bb534568de9b874b3173ab3e96168d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:00:18:c2:db:64:fd:49:a1:58:cc:3b:0d:d7:
05:2c:18:eb:30:bf:a4:dd:07:a8:a0:55:70:2f:0d:
7a:db:11:d5:f9:1f:ac:8a:23:7d:10:87:0f:77:14:
12:b2:71:21:46:30:ec:2d:e6:91:66:73:d8:ca:86:
29:5e:75:08:b9:f5:4f:57:14:d8:7c:69:00:fd:3e:
98:98:3a:a7:a3:07:06:00:bc:39:b2:27:b4:9d:9f:
10:ce:68:44:f9:75:b5:b7:5a:c0:04:96:66:dc:21:
45:c2:d1:02:05:c9:34:8a:f2:8e:07:54:cc:18:7e:
3a:6d:55:d0:66:36:36:d2:72:af:d0:cc:6d:cc:3e:
a7:c7:1b:3a:22:87:eb:5d:48:5e:db:2c:a5:78:16:
7e:42:5e:cb:e9:18:2b:81:db:e2:74:7e:81:a1:4a:
70:aa:7e:e9:ef:7a:ed:bc:c9:9b:68:b6:f8:49:52:
c4:e0:df:87:54:f9:d9:3d:92:e9:ae:15:29:d8:c4:
54:25:22:42:85:7d:75:18:1f:e0:ff:c6:71:64:fa:
4b:3d:74:53:3b:ee:4f:67:51:5f:00:ed:64:0f:89:
df:9b:56:40:f5:1f:e6:4f:3a:d0:e9:55:c4:68:6d:
32:d8:28:85:90:19:9e:a0:a5:3f:2d:45:23:64:e3:
b4:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:7B:C1:82:8B:B5:34:56:8D:E9:B8:74:B3:17:3A:B3:E9:61:68:D3
X509v3 Authority Key Identifier:
keyid:1E:8C:77:33:6D:66:F7:B0:23:8E:6C:18:4C:64:FA:4F:24:D0:9F:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hox3M21m97AjjmwYTGT6TyTQnwE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/7da79d-60f4-47a8-813a-99957df4997e/1/03vBgou1NFaN6bh0sxc6s-lhaNM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/7da79d-60f4-47a8-813a-99957df4997e/1/Hox3M21m97AjjmwYTGT6TyTQnwE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:59c::/48
Signature Algorithm: sha256WithRSAEncryption
9f:4d:f8:fc:98:dc:be:e4:dc:74:35:36:4d:de:e6:45:1a:6f:
6b:ea:82:6b:f5:88:bc:0e:fe:f2:2b:d3:f6:29:e0:58:57:3f:
da:72:06:76:a1:b1:f0:7b:eb:64:32:9d:24:2a:a2:10:8a:a5:
a6:58:ee:b2:b6:71:ca:bf:3e:ab:94:76:08:d4:2f:47:3c:e1:
4a:39:73:ec:2e:d4:cb:70:73:e2:f8:a0:19:3c:75:81:47:0b:
2a:49:a7:6f:f9:49:41:f8:96:e8:f3:0f:3d:a2:63:6a:ad:d2:
e8:8a:52:b2:a9:86:ab:2a:5f:d5:4c:d2:98:b6:21:76:3f:a1:
ad:7d:84:f8:57:c3:0a:7a:b4:08:9d:dd:7a:61:ff:61:cb:59:
3c:f8:74:c7:36:c4:92:84:00:c3:da:99:7e:b7:1d:d8:e7:95:
8a:e3:9c:f9:79:79:0d:23:37:aa:e4:fe:93:03:ae:98:ef:3e:
53:ac:65:96:99:5b:d4:57:c4:62:26:a9:c5:b4:24:08:96:b7:
49:b2:e8:1f:16:1e:6b:22:de:4f:e3:3b:00:a4:db:83:a8:86:
5f:34:10:ea:8a:7d:dc:63:46:10:d5:d7:15:56:5c:ab:cb:c1:
18:95:de:a9:75:58:f0:4e:ca:ea:ad:91:da:dc:84:e5:5a:0a:
46:d2:2b:c0
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVx18ToWTUV+zjJqM9sB7ojMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlOGM3NzMzNmQ2NmY3YjAyMzhlNmMxODRjNjRmYTRmMjRk
MDlmMDEwHhcNMjMwMTAyMDkzNzI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMzdiYzE4MjhiYjUzNDU2OGRlOWI4NzRiMzE3M2FiM2U5NjE2OGQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkAAYwttk/UmhWMw7DdcFLBjrML+k
3QeooFVwLw162xHV+R+siiN9EIcPdxQSsnEhRjDsLeaRZnPYyoYpXnUIufVPVxTY
fGkA/T6YmDqnowcGALw5sie0nZ8QzmhE+XW1t1rABJZm3CFFwtECBck0ivKOB1TM
GH46bVXQZjY20nKv0MxtzD6nxxs6IofrXUhe2yyleBZ+Ql7L6RgrgdvidH6BoUpw
qn7p73rtvMmbaLb4SVLE4N+HVPnZPZLprhUp2MRUJSJChX11GB/g/8ZxZPpLPXRT
O+5PZ1FfAO1kD4nfm1ZA9R/mTzrQ6VXEaG0y2CiFkBmeoKU/LUUjZOO0DQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFNN7wYKLtTRWjem4dLMXOrPpYWjTMB8GA1UdIwQY
MBaAFB6MdzNtZvewI45sGExk+k8k0J8BMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSG94M00yMW05N0Fqam13WVRHVDZUeVRRbndFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC83ZGE3OWQtNjBmNC00N2E4LTgxM2Et
OTk5NTdkZjQ5OTdlLzEvMDN2QmdvdTFORmFONmJoMHN4YzZzLWxoYU5NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNC83ZGE3OWQtNjBmNC00N2E4LTgxM2EtOTk5NTdkZjQ5OTdl
LzEvSG94M00yMW05N0Fqam13WVRHVDZUeVRRbndFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAWc
MA0GCSqGSIb3DQEBCwUAA4IBAQCfTfj8mNy+5Nx0NTZN3uZFGm9r6oJr9Yi8Dv7y
K9P2KeBYVz/acgZ2obHwe+tkMp0kKqIQiqWmWO6ytnHKvz6rlHYI1C9HPOFKOXPs
LtTLcHPi+KAZPHWBRwsqSadv+UlB+Jbo8w89omNqrdLoilKyqYarKl/VTNKYtiF2
P6GtfYT4V8MKerQInd16Yf9hy1k8+HTHNsSShADD2pl+tx3Y55WK45z5eXkNIzeq
5P6TA66Y7z5TrGWWmVvUV8RiJqnFtCQIlrdJsugfFh5rIt5P4zsApNuDqIZfNBDq
in3cY0YQ1dcVVlyry8EYld6pdVjwTsrqrZHa3ITlWgpG0ivA
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:56 2024 by rpki-client on console-ams.rpki-client.org