Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/MmWXQR0q0Qo_HzA2BX0fWno4IjE.roa
File: MmWXQR0q0Qo_HzA2BX0fWno4IjE.roa (raw, json)
Hash identifier: GpWdat0y67ioFwpVOM1IydFPs8jvHjPoSy2Ov+BB5x4=
Subject key identifier: 32:65:97:41:1D:2A:D1:0A:3F:1F:30:36:05:7D:1F:5A:7A:38:22:31
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 01856C53F7E755837F42627EB78827984146
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/MmWXQR0q0Qo_HzA2BX0fWno4IjE.roa
Signing time: Sun 01 Jan 2023 07:55:20 +0000
ROA not before: Sun 01 Jan 2023 07:55:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49094
IP address blocks: 2a0c:da04::/38 maxlen: 128
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:f7:e7:55:83:7f:42:62:7e:b7:88:27:98:41:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 07:55:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=326597411d2ad10a3f1f3036057d1f5a7a382231
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:c0:f1:b4:a7:d9:13:3a:83:38:6b:4d:08:6c:
28:83:11:57:ff:6f:18:7b:07:0d:03:c2:03:ea:82:
b7:bc:96:7d:74:23:fe:aa:3f:12:94:20:33:77:8c:
1f:71:a9:c9:f1:79:fd:0a:d3:e2:37:87:0d:44:f4:
dc:6e:45:f7:28:d9:0b:f8:c6:80:81:2d:88:cd:76:
51:63:40:16:53:5c:83:d2:51:e4:b4:19:f3:dc:8a:
c7:0a:3c:21:12:ff:b1:8a:4a:fc:20:ca:2c:bf:5c:
b6:de:53:90:96:dc:88:58:7a:52:22:ae:e3:55:68:
97:ae:03:cd:07:bf:1c:34:5b:b5:9b:0b:1d:c7:40:
e2:5f:19:86:5a:77:73:98:6d:7c:87:93:0b:6f:41:
00:e2:bb:7d:9c:72:d4:14:f7:a8:3e:19:6f:00:d6:
ea:9d:13:90:10:6e:02:b5:d8:66:7b:44:c8:95:8b:
22:51:4b:a2:7b:08:37:45:63:b3:6f:2e:6a:3e:7e:
e5:27:78:c0:8c:2f:48:34:b8:d1:49:e5:76:8a:9a:
2c:3a:73:a6:cb:e3:0a:8e:aa:43:49:8e:55:3f:92:
fb:c4:03:c8:45:ca:27:c0:04:37:d6:40:73:9e:60:
ab:6b:09:f1:b5:7f:4a:81:90:d3:07:12:89:0d:e5:
b0:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:65:97:41:1D:2A:D1:0A:3F:1F:30:36:05:7D:1F:5A:7A:38:22:31
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/MmWXQR0q0Qo_HzA2BX0fWno4IjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:da04::/38
Signature Algorithm: sha256WithRSAEncryption
97:9d:97:96:67:93:9c:20:8d:56:a1:82:76:f6:a1:c6:26:8a:
59:b3:1b:8f:63:e3:22:22:a6:77:be:51:6c:10:fa:e0:4e:64:
ba:31:12:bf:d1:25:8b:74:3a:4c:91:b9:a2:2c:60:25:eb:d2:
de:96:f5:ee:bb:44:91:a2:c4:1f:6d:ab:36:52:75:41:30:dc:
20:a9:8d:f3:f8:34:f5:79:29:ec:4c:15:2f:e4:6b:94:6a:fd:
3d:54:3f:bb:37:da:38:ab:9f:7a:1a:a3:1c:4e:4f:c5:3d:72:
d3:b7:7c:b1:74:7f:7a:62:91:25:29:d2:9b:0d:7b:e4:ae:0c:
26:83:a5:d3:2a:48:16:8b:b8:24:02:1d:4b:bd:cd:47:d7:7b:
d3:f9:1b:d3:43:c5:fd:f2:6a:8e:d4:63:42:dd:d6:cc:f6:06:
5c:e5:a1:94:58:e5:67:f2:59:ee:98:a8:c5:0f:6f:77:71:12:
db:2f:10:78:b2:0c:9a:39:4e:75:49:8a:90:0e:c6:75:20:94:
4e:40:ea:48:3a:70:42:f8:d5:fd:06:77:4c:72:01:00:c4:71:
80:57:1e:65:d4:52:dd:fd:4c:00:b5:a0:2e:32:85:44:47:71:
f5:9b:cc:43:2c:13:4a:77:23:cc:3b:9a:1f:d4:31:92:08:54:
81:bb:b9:7f
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVsU/fnVYN/QmJ+t4gnmEFGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjOGZkMWE4YWU1OTk2YzFlNTY5MmMxYThjNDJiZmU5YzNi
YTU3NDUwHhcNMjMwMTAxMDc1NTIwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMjY1OTc0MTFkMmFkMTBhM2YxZjMwMzYwNTdkMWY1YTdhMzgyMjMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgsDxtKfZEzqDOGtNCGwogxFX/28Y
ewcNA8ID6oK3vJZ9dCP+qj8SlCAzd4wfcanJ8Xn9CtPiN4cNRPTcbkX3KNkL+MaA
gS2IzXZRY0AWU1yD0lHktBnz3IrHCjwhEv+xikr8IMosv1y23lOQltyIWHpSIq7j
VWiXrgPNB78cNFu1mwsdx0DiXxmGWndzmG18h5MLb0EA4rt9nHLUFPeoPhlvANbq
nROQEG4Ctdhme0TIlYsiUUuiewg3RWOzby5qPn7lJ3jAjC9INLjRSeV2iposOnOm
y+MKjqpDSY5VP5L7xAPIRconwAQ31kBznmCrawnxtX9KgZDTBxKJDeWwAQIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFDJll0EdKtEKPx8wNgV9H1p6OCIxMB8GA1UdIwQY
MBaAFGyP0aiuWZbB5WksGoxCv+nDuldFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMt
ZmVhYzI2ZWFlY2MyLzEvTW1XWFFSMHEwUW9fSHpBMkJYMGZXbm80SWpFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMtZmVhYzI2ZWFlY2My
LzEvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYCKgzaBAAw
DQYJKoZIhvcNAQELBQADggEBAJedl5Znk5wgjVahgnb2ocYmilmzG49j4yIipne+
UWwQ+uBOZLoxEr/RJYt0OkyRuaIsYCXr0t6W9e67RJGixB9tqzZSdUEw3CCpjfP4
NPV5KexMFS/ka5Rq/T1UP7s32jirn3oaoxxOT8U9ctO3fLF0f3pikSUp0psNe+Su
DCaDpdMqSBaLuCQCHUu9zUfXe9P5G9NDxf3yao7UY0Ld1sz2BlzloZRY5WfyWe6Y
qMUPb3dxEtsvEHiyDJo5TnVJipAOxnUglE5A6kg6cEL41f0Gd0xyAQDEcYBXHmXU
Ut39TAC1oC4yhURHcfWbzEMsE0p3I8w7mh/UMZIIVIG7uX8=
-----END CERTIFICATE-----
Generated at Tue Jan 2 15:23:00 2024 by rpki-client on console-ams.rpki-client.org