Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/bd0384-805d-48a1-bf09-3c14621ecfc5/1/GD3u8GZJ47vOWe3ZghFJ18qbM_Y.roa
File: GD3u8GZJ47vOWe3ZghFJ18qbM_Y.roa (raw, json)
Hash identifier: zzL/hfvmKcvQF7XN38YsSxLeo8BXjQLFLmWEU2B8URA=
Subject key identifier: 18:3D:EE:F0:66:49:E3:BB:CE:59:ED:D9:82:11:49:D7:CA:9B:33:F6
Certificate issuer: /CN=e81393bdff601462a55591d26acb3d8c923ff26d
Certificate serial: 018BD98607DF7D494832919F6B06059EA384
Authority key identifier: E8:13:93:BD:FF:60:14:62:A5:55:91:D2:6A:CB:3D:8C:92:3F:F2:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6BOTvf9gFGKlVZHSass9jJI_8m0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/bd0384-805d-48a1-bf09-3c14621ecfc5/1/GD3u8GZJ47vOWe3ZghFJ18qbM_Y.roa
Signing time: Thu 16 Nov 2023 19:05:21 +0000
ROA not before: Thu 16 Nov 2023 19:05:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211922
IP address blocks: 2a10:5fc7::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d9:86:07:df:7d:49:48:32:91:9f:6b:06:05:9e:a3:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e81393bdff601462a55591d26acb3d8c923ff26d
Validity
Not Before: Nov 16 19:05:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=183deef06649e3bbce59edd9821149d7ca9b33f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:8a:c7:17:7f:95:6f:09:f1:69:0e:b1:03:63:
27:c5:c2:db:10:d8:fb:ed:bb:f4:10:03:2d:c3:1f:
25:16:8d:96:bb:65:38:39:09:cc:12:59:2d:ac:de:
04:a5:0e:53:ac:71:38:79:40:16:f9:79:5c:75:a6:
1b:cc:b0:29:6b:e3:c7:1d:3c:19:29:62:25:4b:2d:
29:85:7e:4d:31:c2:fa:d1:6e:49:0e:bb:df:cb:f2:
0c:67:e5:36:9e:5f:32:0a:51:7c:99:bf:21:ac:e6:
e3:6d:56:c1:4f:95:e9:25:9a:9e:d2:ad:34:47:40:
38:0d:91:80:2e:15:19:84:84:04:82:79:39:70:b1:
c0:89:3d:a1:ca:61:a0:84:56:96:1d:07:e0:69:ab:
0a:e6:87:62:83:d4:ac:64:f7:ff:73:53:04:e5:99:
8c:fc:0e:cc:aa:b7:90:e3:fb:3f:5a:d3:49:65:44:
8c:a7:ef:a1:c5:5d:71:f1:e2:35:32:87:3a:15:43:
04:02:0d:9c:0b:06:97:d1:15:83:bc:1c:51:c1:b6:
02:18:41:a7:21:97:4c:db:36:80:c9:a8:e3:51:d6:
d9:5e:9a:8c:a6:cd:f9:17:66:07:15:dc:30:19:9b:
43:fa:ca:b7:36:dd:fb:d5:b8:00:a7:24:6d:43:43:
8e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:3D:EE:F0:66:49:E3:BB:CE:59:ED:D9:82:11:49:D7:CA:9B:33:F6
X509v3 Authority Key Identifier:
keyid:E8:13:93:BD:FF:60:14:62:A5:55:91:D2:6A:CB:3D:8C:92:3F:F2:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6BOTvf9gFGKlVZHSass9jJI_8m0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/bd0384-805d-48a1-bf09-3c14621ecfc5/1/GD3u8GZJ47vOWe3ZghFJ18qbM_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/bd0384-805d-48a1-bf09-3c14621ecfc5/1/6BOTvf9gFGKlVZHSass9jJI_8m0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a10:5fc7::/48
Signature Algorithm: sha256WithRSAEncryption
06:f2:c8:83:5c:ee:30:7d:76:59:49:8a:db:54:1d:ef:ff:60:
30:5e:b1:51:65:e4:96:d0:22:56:63:1b:0d:33:32:eb:81:63:
e7:6f:94:26:10:08:25:ff:36:63:e4:b8:10:7b:e2:a3:fd:29:
c7:a6:ac:22:7c:3c:6a:b0:c0:6b:5a:de:c9:06:5a:6a:27:fb:
01:79:81:26:e5:ca:93:58:2e:8c:d9:39:ed:93:b3:9a:d7:fc:
b5:6e:61:4f:6a:4e:12:9f:85:b3:dc:43:fb:1d:4f:12:ec:98:
05:cb:9c:8e:07:19:5b:1a:c5:bf:b9:7f:da:6a:c4:ae:6e:dc:
70:20:40:44:d2:c5:37:9f:3e:bf:e5:58:a3:4f:bd:4b:36:0c:
5b:14:d6:63:19:0a:fb:5f:fe:5f:69:71:b7:7e:ce:e3:43:e6:
c1:6f:e9:f4:be:de:ff:ac:28:46:cd:00:d3:8a:87:da:f8:21:
a1:47:f6:e5:2e:71:83:69:35:4a:3a:a4:ad:ac:b4:52:a7:b7:
d5:ef:5d:86:e3:f0:72:1c:ed:fd:d2:bb:02:3b:7b:1a:fd:25:
5d:b5:03:ba:6c:11:be:2a:5f:d8:ac:33:b7:03:65:a1:3f:0d:
f1:7a:11:46:ba:2f:ec:8b:ea:47:d4:51:ee:67:51:fc:f3:a7:
a3:bf:18:e1
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYvZhgfffUlIMpGfawYFnqOEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU4MTM5M2JkZmY2MDE0NjJhNTU1OTFkMjZhY2IzZDhjOTIz
ZmYyNmQwHhcNMjMxMTE2MTkwNTIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxODNkZWVmMDY2NDllM2JiY2U1OWVkZDk4MjExNDlkN2NhOWIzM2Y2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiIrHF3+VbwnxaQ6xA2MnxcLbENj7
7bv0EAMtwx8lFo2Wu2U4OQnMElktrN4EpQ5TrHE4eUAW+XlcdaYbzLApa+PHHTwZ
KWIlSy0phX5NMcL60W5JDrvfy/IMZ+U2nl8yClF8mb8hrObjbVbBT5XpJZqe0q00
R0A4DZGALhUZhIQEgnk5cLHAiT2hymGghFaWHQfgaasK5odig9SsZPf/c1ME5ZmM
/A7MqreQ4/s/WtNJZUSMp++hxV1x8eI1Moc6FUMEAg2cCwaX0RWDvBxRwbYCGEGn
IZdM2zaAyajjUdbZXpqMps35F2YHFdwwGZtD+sq3Nt371bgApyRtQ0OOvwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFBg97vBmSeO7zlnt2YIRSdfKmzP2MB8GA1UdIwQY
MBaAFOgTk73/YBRipVWR0mrLPYySP/JtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNkJPVHZmOWdGR0tsVlpIU2FzczlqSklfOG0wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS9iZDAzODQtODA1ZC00OGExLWJmMDkt
M2MxNDYyMWVjZmM1LzEvR0QzdThHWko0N3ZPV2UzWmdoRkoxOHFiTV9ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS9iZDAzODQtODA1ZC00OGExLWJmMDktM2MxNDYyMWVjZmM1
LzEvNkJPVHZmOWdGR0tsVlpIU2FzczlqSklfOG0wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhBfxwAA
MA0GCSqGSIb3DQEBCwUAA4IBAQAG8siDXO4wfXZZSYrbVB3v/2AwXrFRZeSW0CJW
YxsNMzLrgWPnb5QmEAgl/zZj5LgQe+Kj/SnHpqwifDxqsMBrWt7JBlpqJ/sBeYEm
5cqTWC6M2Tntk7Oa1/y1bmFPak4Sn4Wz3EP7HU8S7JgFy5yOBxlbGsW/uX/aasSu
btxwIEBE0sU3nz6/5VijT71LNgxbFNZjGQr7X/5faXG3fs7jQ+bBb+n0vt7/rChG
zQDTiofa+CGhR/blLnGDaTVKOqStrLRSp7fV712G4/ByHO390rsCO3sa/SVdtQO6
bBG+Kl/YrDO3A2WhPw3xehFGui/si+pH1FHuZ1H886ejvxjh
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:33:16 2024 by rpki-client on console-ams.rpki-client.org