Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/67769b-85a5-4a0a-889b-802b6376f743/1/Mh8FOW6QOYaYhNV1YCgKWvCuiWc.roa
File: Mh8FOW6QOYaYhNV1YCgKWvCuiWc.roa (raw, json)
Hash identifier: 0viI3mi8AVPBh/VYjZXqodJE94hVxFQCzW8+/We/y48=
Subject key identifier: 32:1F:05:39:6E:90:39:86:98:84:D5:75:60:28:0A:5A:F0:AE:89:67
Certificate issuer: /CN=1d54be79c892b5356bf1b7bcd131397f2c23adc0
Certificate serial: 0188754711CCC2CD604823D89B3655C6CC31
Authority key identifier: 1D:54:BE:79:C8:92:B5:35:6B:F1:B7:BC:D1:31:39:7F:2C:23:AD:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVS-eciStTVr8be80TE5fywjrcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/67769b-85a5-4a0a-889b-802b6376f743/1/Mh8FOW6QOYaYhNV1YCgKWvCuiWc.roa
Signing time: Thu 01 Jun 2023 04:46:11 +0000
ROA not before: Thu 01 Jun 2023 04:46:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3303
IP address blocks: 2a0d:ed80:101::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:75:47:11:cc:c2:cd:60:48:23:d8:9b:36:55:c6:cc:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d54be79c892b5356bf1b7bcd131397f2c23adc0
Validity
Not Before: Jun 1 04:46:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=321f05396e9039869884d57560280a5af0ae8967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:8d:18:cd:bc:07:2b:ff:54:5e:bd:f9:ea:72:
8c:36:ef:05:ba:a4:79:e0:e4:9f:ac:55:c1:5a:cb:
72:e5:4d:eb:06:5a:e7:d2:ae:3a:7a:3d:df:12:dd:
e7:db:c3:61:c7:97:71:e2:f9:16:f2:e6:e1:bf:f6:
a2:f3:63:f5:05:61:fb:c1:3c:75:96:4f:87:7b:58:
66:c4:5b:de:39:a6:21:67:8f:af:3f:32:2f:b4:d1:
10:00:fc:3b:4d:fe:95:b8:77:77:4a:fb:3d:88:a7:
64:64:f1:a2:9a:dc:de:1f:4e:90:4d:7a:47:e4:1d:
c8:cb:e8:53:b4:1b:ae:56:58:e7:66:f8:09:ff:3d:
b8:97:e5:69:f8:16:7f:0f:17:26:15:ad:f6:e5:69:
9b:ba:fb:64:43:b8:37:8b:b3:09:15:ef:3e:74:d0:
2f:f2:73:f1:4b:7d:e0:03:e5:6d:f4:8d:9a:ea:50:
a4:b6:42:c6:fa:d7:b5:d8:5a:c9:7b:d6:c6:79:0e:
66:26:81:30:d5:e9:aa:20:79:91:7b:0c:ac:e1:c3:
4f:12:22:5e:e0:f0:c5:9d:9d:68:b5:f4:3a:b8:6c:
c5:f1:0b:d5:2c:1c:33:96:b1:5a:ca:e3:73:85:69:
e4:ef:80:97:2e:ac:7e:95:f5:64:74:4d:49:73:7a:
4d:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:1F:05:39:6E:90:39:86:98:84:D5:75:60:28:0A:5A:F0:AE:89:67
X509v3 Authority Key Identifier:
keyid:1D:54:BE:79:C8:92:B5:35:6B:F1:B7:BC:D1:31:39:7F:2C:23:AD:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVS-eciStTVr8be80TE5fywjrcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/67769b-85a5-4a0a-889b-802b6376f743/1/Mh8FOW6QOYaYhNV1YCgKWvCuiWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/67769b-85a5-4a0a-889b-802b6376f743/1/HVS-eciStTVr8be80TE5fywjrcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0d:ed80:101::/48
Signature Algorithm: sha256WithRSAEncryption
c4:f1:47:28:02:1c:8c:90:bd:0f:df:c6:9d:79:0b:ae:2b:a8:
a3:43:3c:2e:bc:20:31:9d:5e:be:d9:e0:b1:ee:b7:20:29:2a:
0f:e2:2b:cb:dc:a4:fc:b2:25:81:3b:af:a0:d1:f8:27:18:aa:
bf:ae:5c:64:b5:6f:8a:36:2b:17:8a:b5:5c:d5:79:81:a0:c9:
27:93:c2:aa:b5:00:e7:75:5a:e9:4f:2d:3c:c1:3b:c0:97:fb:
6a:de:8e:61:56:3b:de:c1:1a:78:e4:ed:24:de:11:00:1e:fe:
9d:ac:00:1c:9a:58:d7:aa:7a:c0:f4:f1:ee:5f:62:ac:16:0b:
01:0e:d2:36:55:cb:3d:49:c0:f0:1f:fd:99:41:40:47:9c:c3:
98:15:35:14:fb:39:3c:91:7b:a3:89:0f:09:5a:fb:2a:b0:20:
89:f6:ce:64:0b:4b:4a:5d:91:49:f9:b4:12:2c:f4:d0:51:20:
2f:02:79:58:0c:4c:e3:2a:53:11:5a:8c:85:9c:0f:4c:fd:68:
9d:02:80:37:da:ea:49:da:43:a2:8f:bc:42:e1:04:49:b5:6b:
b9:0b:d4:14:bd:a1:48:65:f6:16:20:6a:2f:fe:5d:9f:94:d5:
b0:34:78:b4:39:67:7d:87:9a:c1:84:2c:83:f6:89:97:cc:58:
4d:14:7c:40
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYh1RxHMws1gSCPYmzZVxswxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkNTRiZTc5Yzg5MmI1MzU2YmYxYjdiY2QxMzEzOTdmMmMy
M2FkYzAwHhcNMjMwNjAxMDQ0NjExWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMjFmMDUzOTZlOTAzOTg2OTg4NGQ1NzU2MDI4MGE1YWYwYWU4OTY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmI0YzbwHK/9UXr356nKMNu8FuqR5
4OSfrFXBWsty5U3rBlrn0q46ej3fEt3n28Nhx5dx4vkW8ubhv/ai82P1BWH7wTx1
lk+He1hmxFveOaYhZ4+vPzIvtNEQAPw7Tf6VuHd3Svs9iKdkZPGimtzeH06QTXpH
5B3Iy+hTtBuuVljnZvgJ/z24l+Vp+BZ/DxcmFa325WmbuvtkQ7g3i7MJFe8+dNAv
8nPxS33gA+Vt9I2a6lCktkLG+te12FrJe9bGeQ5mJoEw1emqIHmRewys4cNPEiJe
4PDFnZ1otfQ6uGzF8QvVLBwzlrFayuNzhWnk74CXLqx+lfVkdE1Jc3pNHwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFDIfBTlukDmGmITVdWAoClrwrolnMB8GA1UdIwQY
MBaAFB1UvnnIkrU1a/G3vNExOX8sI63AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFZTLWVjaVN0VFZyOGJlODBURTVmeXdqcmNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82Nzc2OWItODVhNS00YTBhLTg4OWIt
ODAyYjYzNzZmNzQzLzEvTWg4Rk9XNlFPWWFZaE5WMVlDZ0tXdkN1aVdjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC82Nzc2OWItODVhNS00YTBhLTg4OWItODAyYjYzNzZmNzQz
LzEvSFZTLWVjaVN0VFZyOGJlODBURTVmeXdqcmNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg3tgAEB
MA0GCSqGSIb3DQEBCwUAA4IBAQDE8UcoAhyMkL0P38adeQuuK6ijQzwuvCAxnV6+
2eCx7rcgKSoP4ivL3KT8siWBO6+g0fgnGKq/rlxktW+KNisXirVc1XmBoMknk8Kq
tQDndVrpTy08wTvAl/tq3o5hVjvewRp45O0k3hEAHv6drAAcmljXqnrA9PHuX2Ks
FgsBDtI2Vcs9ScDwH/2ZQUBHnMOYFTUU+zk8kXujiQ8JWvsqsCCJ9s5kC0tKXZFJ
+bQSLPTQUSAvAnlYDEzjKlMRWoyFnA9M/WidAoA32upJ2kOij7xC4QRJtWu5C9QU
vaFIZfYWIGov/l2flNWwNHi0OWd9h5rBhCyD9omXzFhNFHxA
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:47 2024 by rpki-client on console-ams.rpki-client.org