Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/pH1lM-2VqLrQo4AXkzHdXTcvi7s.roa
File: pH1lM-2VqLrQo4AXkzHdXTcvi7s.roa (raw, json)
Hash identifier: BaLD+97vzFOvuG13lcrN9PRYK6LZHc8R/CmhT+2lIHI=
Subject key identifier: A4:7D:65:33:ED:95:A8:BA:D0:A3:80:17:93:31:DD:5D:37:2F:8B:BB
Certificate issuer: /CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8
Certificate serial: 01856FD533C739B2AA0BF778937247F74CA0
Authority key identifier: 38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/pH1lM-2VqLrQo4AXkzHdXTcvi7s.roa
Signing time: Mon 02 Jan 2023 00:15:21 +0000
ROA not before: Mon 02 Jan 2023 00:15:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210596
IP address blocks: 2a0a:d6c0:9145::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:33:c7:39:b2:aa:0b:f7:78:93:72:47:f7:4c:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8
Validity
Not Before: Jan 2 00:15:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a47d6533ed95a8bad0a380179331dd5d372f8bbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ca:3e:40:eb:b6:0f:13:69:54:60:c7:52:0e:
81:f4:8c:d2:4a:9b:84:cd:23:c4:f3:a2:bc:f2:49:
ce:e7:a0:48:f6:da:6e:c7:c2:15:cb:ad:78:99:53:
03:eb:8f:1c:df:07:15:53:22:25:93:14:b5:b0:c3:
de:65:9c:16:73:fb:5a:20:a3:5b:8f:73:62:e4:f2:
7c:64:d4:e7:2a:11:ba:6b:b3:d0:5c:21:06:53:60:
8d:9e:b9:8d:af:2c:b7:e2:2a:0f:a1:87:bc:76:40:
64:e2:e4:bd:97:0c:03:4e:8d:09:78:c8:52:48:dd:
ba:57:b1:02:56:4f:af:eb:01:1c:53:8b:58:93:c3:
db:21:d7:17:ec:96:4e:29:8a:24:e1:52:1a:8c:10:
b4:be:68:9d:64:5d:31:b2:ab:0b:ed:66:51:54:be:
83:23:6a:09:27:48:11:c1:51:4f:4e:d7:6b:05:7f:
11:03:cb:26:5b:06:27:e6:42:b3:a9:d7:45:d0:5d:
b9:c6:70:7a:c3:ed:3a:90:58:8d:55:84:24:3d:c0:
10:a1:33:29:be:30:4c:f4:01:17:3d:75:f5:13:5a:
b3:02:d3:32:ae:b9:89:7d:e2:7f:b5:5e:a3:a8:51:
d0:2f:20:89:50:20:74:da:74:1f:ef:8d:8b:80:21:
e6:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:7D:65:33:ED:95:A8:BA:D0:A3:80:17:93:31:DD:5D:37:2F:8B:BB
X509v3 Authority Key Identifier:
keyid:38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/pH1lM-2VqLrQo4AXkzHdXTcvi7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:d6c0:9145::/48
Signature Algorithm: sha256WithRSAEncryption
47:4b:1c:60:1c:ad:55:2e:fa:59:61:1f:69:23:19:6a:08:ec:
ae:de:ec:ec:ab:ef:4f:a9:78:49:32:0d:bc:ff:ce:d8:ce:c3:
6f:c7:4e:26:bc:b2:87:2f:7f:73:ed:9e:d2:d5:07:00:67:71:
99:07:8d:8a:ca:77:7a:a6:17:c0:4f:95:33:73:f9:ce:d7:2a:
4f:a2:03:d0:5f:4c:15:1a:e0:f9:4d:b1:34:67:72:b1:f1:8b:
5d:6d:d6:7a:63:a1:d1:2b:99:ca:42:90:23:dd:eb:0e:18:72:
2a:94:29:1c:2f:c5:41:3d:d4:c1:29:f8:58:91:4b:d7:4e:3c:
06:f9:12:39:b2:c1:4b:5f:da:a8:3c:75:07:ce:09:f7:69:33:
c0:7c:9b:cc:f3:7d:21:c1:86:a3:2a:e1:89:b0:3b:34:cc:c4:
97:94:f4:4d:4a:e3:05:6c:57:48:80:2f:f5:60:95:31:0f:5d:
94:4a:a5:3d:8b:3a:89:66:85:7b:76:14:6a:2f:81:03:88:ce:
e5:70:22:57:b4:de:d0:72:cb:9a:10:33:90:a9:99:69:86:79:
50:e5:60:32:dc:e8:f4:57:91:84:1c:7e:40:9a:d3:16:3a:34:
3b:56:20:c5:ea:bb:6a:6e:92:b5:72:4e:38:33:28:f1:14:84:
d3:dc:0d:05
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVv1TPHObKqC/d4k3JH90ygMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4N2Q2ZGY3ZWI3NTQyZTAzMzNhZWVkZDE0YWRmZjhmNTFm
OGNiZDgwHhcNMjMwMTAyMDAxNTIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNDdkNjUzM2VkOTVhOGJhZDBhMzgwMTc5MzMxZGQ1ZDM3MmY4YmJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArMo+QOu2DxNpVGDHUg6B9IzSSpuE
zSPE86K88knO56BI9tpux8IVy614mVMD648c3wcVUyIlkxS1sMPeZZwWc/taIKNb
j3Ni5PJ8ZNTnKhG6a7PQXCEGU2CNnrmNryy34ioPoYe8dkBk4uS9lwwDTo0JeMhS
SN26V7ECVk+v6wEcU4tYk8PbIdcX7JZOKYok4VIajBC0vmidZF0xsqsL7WZRVL6D
I2oJJ0gRwVFPTtdrBX8RA8smWwYn5kKzqddF0F25xnB6w+06kFiNVYQkPcAQoTMp
vjBM9AEXPXX1E1qzAtMyrrmJfeJ/tV6jqFHQLyCJUCB02nQf742LgCHmFwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFKR9ZTPtlai60KOAF5Mx3V03L4u7MB8GA1UdIwQY
MBaAFDh9bffrdULgMzru3RSt/49R+MvYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2Mt
NjA5YTQ4YjJiMTRkLzEvcEgxbE0tMlZxTHJRbzRBWGt6SGRYVGN2aTdzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2MtNjA5YTQ4YjJiMTRk
LzEvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgrWwJFF
MA0GCSqGSIb3DQEBCwUAA4IBAQBHSxxgHK1VLvpZYR9pIxlqCOyu3uzsq+9PqXhJ
Mg28/87YzsNvx04mvLKHL39z7Z7S1QcAZ3GZB42Kynd6phfAT5Uzc/nO1ypPogPQ
X0wVGuD5TbE0Z3Kx8YtdbdZ6Y6HRK5nKQpAj3esOGHIqlCkcL8VBPdTBKfhYkUvX
TjwG+RI5ssFLX9qoPHUHzgn3aTPAfJvM830hwYajKuGJsDs0zMSXlPRNSuMFbFdI
gC/1YJUxD12USqU9izqJZoV7dhRqL4EDiM7lcCJXtN7QcsuaEDOQqZlphnlQ5WAy
3Oj0V5GEHH5AmtMWOjQ7ViDF6rtqbpK1ck44MyjxFITT3A0F
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:53 2024 by rpki-client on console-ams.rpki-client.org