Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/8jMSCVkVhLpByIySYpxa7LfNm-M.roa
File: 8jMSCVkVhLpByIySYpxa7LfNm-M.roa (raw, json)
Hash identifier: S8BlBavUc3UE07L6pjS89HFVjNZUa51dXupkg8xAk3A=
Subject key identifier: F2:33:12:09:59:15:84:BA:41:C8:8C:92:62:9C:5A:EC:B7:CD:9B:E3
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 018CC8DF97AF3FF84CDB1A8F21CD9DE3D6C3
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/8jMSCVkVhLpByIySYpxa7LfNm-M.roa
Signing time: Tue 02 Jan 2024 06:32:25 +0000
ROA not before: Tue 02 Jan 2024 06:32:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44812
IP address blocks: 2a0e:d604:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 13 Jan 2024 15:22:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:97:af:3f:f8:4c:db:1a:8f:21:cd:9d:e3:d6:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 2 06:32:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f2331209591584ba41c88c92629c5aecb7cd9be3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:23:ff:04:5f:76:5f:78:f6:f9:6b:23:08:27:
81:3a:31:34:c3:68:dd:c2:d6:05:28:0c:58:4e:a3:
28:9d:d8:50:12:70:f8:0d:74:2f:2a:b1:5c:a8:eb:
30:01:0a:e1:98:ad:89:21:cb:d9:36:7c:8c:e9:54:
77:1c:0e:22:21:52:10:47:b0:6d:04:c1:10:fe:3f:
01:a7:bb:8e:8a:51:76:6e:69:d2:8d:e3:98:10:88:
18:da:b4:a1:cf:d7:c2:e1:67:e6:6e:5b:e2:00:0a:
41:84:4f:c6:e0:f9:ec:fd:1d:01:35:a0:d6:d6:9e:
f9:20:47:60:1e:8c:af:ee:47:b3:ce:77:d1:4f:d8:
5f:fa:42:d1:c2:34:43:ef:c4:b5:e8:09:f1:4d:90:
cb:ba:24:9b:cd:91:cf:e8:7b:53:3b:d1:c4:84:2b:
32:2b:57:19:69:41:08:39:f0:75:38:77:50:0f:7c:
a4:6a:a4:8c:03:34:5f:6e:76:d5:a8:c4:d1:fc:86:
34:05:c7:17:bc:8d:4c:81:01:6a:17:d6:bd:47:ae:
99:9b:75:8d:a6:13:08:7e:52:98:67:fc:5c:ea:74:
8a:11:55:89:bf:71:b9:16:2d:e6:71:49:ea:05:7d:
dd:0d:0d:75:c1:c2:e9:04:00:5b:72:75:39:83:7a:
28:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:33:12:09:59:15:84:BA:41:C8:8C:92:62:9C:5A:EC:B7:CD:9B:E3
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/8jMSCVkVhLpByIySYpxa7LfNm-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:d604:1::/48
Signature Algorithm: sha256WithRSAEncryption
0f:69:ec:2f:8f:0a:7e:90:21:d7:0f:44:40:6b:bd:44:93:9f:
f0:b3:11:fb:4d:67:1b:d2:63:f9:16:9d:fb:c9:9f:13:cc:5a:
81:c1:a5:6d:7c:c1:f2:d9:81:37:c9:d5:d1:91:d2:5c:29:e9:
e3:92:3a:ff:38:b7:19:6d:62:a5:a7:e7:e2:90:dc:34:4b:4c:
16:f8:a9:8d:38:12:94:78:ab:f1:e1:35:09:d4:4e:30:40:4b:
31:6f:b6:85:67:02:fc:ae:51:7e:a4:42:6f:23:69:7c:b2:7f:
ce:fe:ab:c2:cd:44:10:2d:b9:76:6c:c4:1b:3a:bb:45:af:05:
47:d6:5f:c4:70:e3:e5:f9:fd:c8:9c:20:6b:ce:51:2a:17:01:
2c:9a:70:4f:cb:fa:57:3b:59:bd:c1:cb:40:ad:14:40:19:0d:
41:3f:71:20:cd:33:56:cb:7f:7b:e8:84:74:c7:8f:2f:8e:c4:
4b:09:9e:65:63:97:0c:02:c3:cd:61:2b:80:a5:3f:e7:8a:83:
42:0e:29:3b:12:b4:5d:ea:9a:da:a9:af:02:cd:4f:66:a6:7c:
6f:74:51:7f:f9:f6:08:09:d1:b4:43:50:7a:63:20:7e:ce:10:
4a:5f:a0:e8:73:bd:db:16:75:e2:06:8a:16:28:b3:93:2a:90:
d4:b6:16:1d
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYzI35evP/hM2xqPIc2d49bDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0Zjk2MzQ1ZDNmMjJlZGIzOTVkMjQ3ZjdiODZkMmQ3M2U0
YTAwOTEwHhcNMjQwMTAyMDYzMjI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMjMzMTIwOTU5MTU4NGJhNDFjODhjOTI2MjljNWFlY2I3Y2Q5YmUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoyP/BF92X3j2+WsjCCeBOjE0w2jd
wtYFKAxYTqMondhQEnD4DXQvKrFcqOswAQrhmK2JIcvZNnyM6VR3HA4iIVIQR7Bt
BMEQ/j8Bp7uOilF2bmnSjeOYEIgY2rShz9fC4WfmblviAApBhE/G4Pns/R0BNaDW
1p75IEdgHoyv7kezznfRT9hf+kLRwjRD78S16AnxTZDLuiSbzZHP6HtTO9HEhCsy
K1cZaUEIOfB1OHdQD3ykaqSMAzRfbnbVqMTR/IY0BccXvI1MgQFqF9a9R66Zm3WN
phMIflKYZ/xc6nSKEVWJv3G5Fi3mcUnqBX3dDQ11wcLpBABbcnU5g3oo/wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFPIzEglZFYS6QciMkmKcWuy3zZvjMB8GA1UdIwQY
MBaAFLT5Y0XT8i7bOV0kf3uG0tc+SgCRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQt
NmZjMzQzZDc3Y2QyLzEvOGpNU0NWa1ZoTHBCeUl5U1lweGE3TGZObS1NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQtNmZjMzQzZDc3Y2Qy
LzEvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg7WBAAB
MA0GCSqGSIb3DQEBCwUAA4IBAQAPaewvjwp+kCHXD0RAa71Ek5/wsxH7TWcb0mP5
Fp37yZ8TzFqBwaVtfMHy2YE3ydXRkdJcKenjkjr/OLcZbWKlp+fikNw0S0wW+KmN
OBKUeKvx4TUJ1E4wQEsxb7aFZwL8rlF+pEJvI2l8sn/O/qvCzUQQLbl2bMQbOrtF
rwVH1l/EcOPl+f3InCBrzlEqFwEsmnBPy/pXO1m9wctArRRAGQ1BP3EgzTNWy397
6IR0x48vjsRLCZ5lY5cMAsPNYSuApT/nioNCDik7ErRd6praqa8CzU9mpnxvdFF/
+fYICdG0Q1B6YyB+zhBKX6Doc73bFnXiBooWKLOTKpDUthYd
-----END CERTIFICATE-----
Generated at Sat Jan 13 19:48:21 2024 by rpki-client on console-ams.rpki-client.org