Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/DXAIhIOL9OCrxcgHXzO3uLGD6Vk.roa
File: DXAIhIOL9OCrxcgHXzO3uLGD6Vk.roa (raw, json)
Hash identifier: eNqEOiRKVDEf8G+15u6zky31PtsINyMXle7e6yygoPA=
Subject key identifier: 0D:70:08:84:83:8B:F4:E0:AB:C5:C8:07:5F:33:B7:B8:B1:83:E9:59
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 018C92590BB42B87761CB83A03AB1D0B5636
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/DXAIhIOL9OCrxcgHXzO3uLGD6Vk.roa
Signing time: Fri 22 Dec 2023 16:25:58 +0000
ROA not before: Fri 22 Dec 2023 16:25:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44812
IP address blocks: 2a0e:d604:1::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:92:59:0b:b4:2b:87:76:1c:b8:3a:03:ab:1d:0b:56:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Dec 22 16:25:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d700884838bf4e0abc5c8075f33b7b8b183e959
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ac:bf:dd:69:03:31:b3:4b:34:17:d1:1c:4f:
18:b8:9f:43:ba:3b:0c:cc:8d:a6:31:df:ef:69:0c:
cd:9e:2c:67:f0:ab:ed:42:c9:52:f0:bb:d7:5e:9b:
ef:44:3f:28:ff:2c:1b:82:f1:e2:af:a9:b5:04:16:
e8:b1:60:77:a0:60:e9:a7:b3:4a:f7:9e:9d:b7:cc:
09:5a:e7:cd:90:97:56:27:79:44:3f:44:93:b8:c0:
75:fb:f8:15:16:f1:37:64:eb:de:f4:70:77:25:25:
fd:16:0f:de:e2:d6:eb:31:07:35:76:5c:c5:ba:14:
d6:a3:81:cb:4d:09:33:30:d4:66:7a:5a:81:48:25:
7f:cb:81:d3:09:f7:9c:7a:97:c1:f8:46:e0:95:79:
67:1c:b2:22:6c:13:b8:bb:fa:41:97:39:73:81:2d:
4a:bc:0c:b8:d7:47:34:42:34:22:8a:c4:c4:5c:cd:
a9:ea:1a:86:73:cc:09:ba:81:8d:40:9d:d8:62:34:
ab:b9:17:d4:0e:ab:86:92:94:fe:05:34:1e:ec:7d:
63:16:cd:77:e0:7c:a3:08:67:6a:6e:32:24:cc:22:
81:c2:12:11:26:7e:20:dc:3e:f0:92:3d:fc:51:74:
f8:fe:9e:f7:69:c4:fa:f0:00:5b:f8:60:97:92:9e:
1f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:70:08:84:83:8B:F4:E0:AB:C5:C8:07:5F:33:B7:B8:B1:83:E9:59
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/DXAIhIOL9OCrxcgHXzO3uLGD6Vk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:d604:1::/48
Signature Algorithm: sha256WithRSAEncryption
32:ec:8a:e9:6b:f2:61:26:fe:bc:75:bf:c7:98:49:84:c9:a8:
05:9a:3c:bc:c7:2a:35:29:b9:c1:0c:a2:d7:11:c7:a1:9c:a0:
ad:20:ef:8f:f2:30:ce:59:97:03:f8:e4:98:d9:8c:8a:47:65:
96:25:87:72:62:14:5e:69:79:1e:da:8e:9c:53:63:d3:ee:39:
38:09:ea:4a:3f:41:73:56:e4:ac:81:56:07:08:fa:df:14:ac:
f0:b8:30:96:f8:db:cb:16:b1:94:c0:90:d7:4d:da:62:54:6f:
e8:cb:31:2a:20:1e:a7:d3:88:cf:4a:1d:4b:53:83:69:50:ab:
8b:b4:18:a7:b1:4a:1e:99:99:7f:6e:73:99:e7:a2:88:04:f2:
dc:b6:89:63:ae:95:54:f6:9c:66:44:7b:bf:f4:1b:d4:a0:f7:
8a:cb:ac:a3:89:98:df:39:33:f2:46:e5:0e:27:72:cb:21:a0:
38:62:6e:06:02:13:57:52:aa:63:26:2c:27:07:24:18:6b:3e:
32:74:cb:2b:1c:23:3a:6a:f6:cf:7f:01:ca:1c:ca:82:46:d2:
c9:c5:ce:52:b3:fc:fa:13:1c:7e:02:f3:f8:e0:80:90:84:08:
4b:b1:68:af:2e:ca:f7:23:a6:5a:5a:1f:c6:96:ae:84:f5:ce:
58:f4:f7:be
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYySWQu0K4d2HLg6A6sdC1Y2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0Zjk2MzQ1ZDNmMjJlZGIzOTVkMjQ3ZjdiODZkMmQ3M2U0
YTAwOTEwHhcNMjMxMjIyMTYyNTU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZDcwMDg4NDgzOGJmNGUwYWJjNWM4MDc1ZjMzYjdiOGIxODNlOTU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsKy/3WkDMbNLNBfRHE8YuJ9DujsM
zI2mMd/vaQzNnixn8KvtQslS8LvXXpvvRD8o/ywbgvHir6m1BBbosWB3oGDpp7NK
956dt8wJWufNkJdWJ3lEP0STuMB1+/gVFvE3ZOve9HB3JSX9Fg/e4tbrMQc1dlzF
uhTWo4HLTQkzMNRmelqBSCV/y4HTCfecepfB+EbglXlnHLIibBO4u/pBlzlzgS1K
vAy410c0QjQiisTEXM2p6hqGc8wJuoGNQJ3YYjSruRfUDquGkpT+BTQe7H1jFs13
4HyjCGdqbjIkzCKBwhIRJn4g3D7wkj38UXT4/p73acT68ABb+GCXkp4fvwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFA1wCISDi/Tgq8XIB18zt7ixg+lZMB8GA1UdIwQY
MBaAFLT5Y0XT8i7bOV0kf3uG0tc+SgCRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQt
NmZjMzQzZDc3Y2QyLzEvRFhBSWhJT0w5T0NyeGNnSFh6TzN1TEdENlZrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQtNmZjMzQzZDc3Y2Qy
LzEvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg7WBAAB
MA0GCSqGSIb3DQEBCwUAA4IBAQAy7Irpa/JhJv68db/HmEmEyagFmjy8xyo1KbnB
DKLXEcehnKCtIO+P8jDOWZcD+OSY2YyKR2WWJYdyYhReaXke2o6cU2PT7jk4CepK
P0FzVuSsgVYHCPrfFKzwuDCW+NvLFrGUwJDXTdpiVG/oyzEqIB6n04jPSh1LU4Np
UKuLtBinsUoemZl/bnOZ56KIBPLctoljrpVU9pxmRHu/9BvUoPeKy6yjiZjfOTPy
RuUOJ3LLIaA4Ym4GAhNXUqpjJiwnByQYaz4ydMsrHCM6avbPfwHKHMqCRtLJxc5S
s/z6Exx+AvP44ICQhAhLsWivLsr3I6ZaWh/Glq6E9c5Y9Pe+
-----END CERTIFICATE-----
Generated at Tue Jan 2 09:02:23 2024 by rpki-client on console-ams.rpki-client.org