Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/siBQFLHsdlsvOqXqZW80iM8uGjI.roa
File: siBQFLHsdlsvOqXqZW80iM8uGjI.roa (raw, json)
Hash identifier: ozyDptVexNAwpeYWFDdBzWTlR8ooseoOBjSs4DhqlzY=
Subject key identifier: B2:20:50:14:B1:EC:76:5B:2F:3A:A5:EA:65:6F:34:88:CF:2E:1A:32
Certificate issuer: /CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Certificate serial: 01856BDC777ACB5A98D4778756BCE73D1955
Authority key identifier: 0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/siBQFLHsdlsvOqXqZW80iM8uGjI.roa
Signing time: Sun 01 Jan 2023 05:44:48 +0000
ROA not before: Sun 01 Jan 2023 05:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212534
IP address blocks: 2a0f:607:1200::/44 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:dc:77:7a:cb:5a:98:d4:77:87:56:bc:e7:3d:19:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c21b925b4c4bcc30f77c9c41ba8d040ac95dfc6
Validity
Not Before: Jan 1 05:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2205014b1ec765b2f3aa5ea656f3488cf2e1a32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:25:77:9b:0d:5c:88:5f:0a:09:68:b4:a9:53:
f4:63:f4:7f:21:8a:51:ca:15:1e:c1:37:5c:ee:09:
59:d7:96:fe:e1:08:81:fa:f0:c1:f7:3f:6d:69:ea:
f9:a6:dd:c6:b9:8a:01:5b:60:6a:6e:d1:80:55:6d:
7f:9f:73:bc:c9:46:56:0a:c9:6b:28:36:24:bc:13:
d4:11:6e:a7:a9:40:91:92:7d:d2:81:ef:ae:68:e0:
26:15:0f:0a:96:28:d6:0f:cc:5b:0f:75:e3:2c:25:
84:69:7f:a5:3e:ba:d7:26:92:87:1d:b6:c8:61:19:
a2:7e:f6:37:88:a3:ef:9c:39:41:ea:fa:e0:79:aa:
cc:ce:93:92:76:64:15:fa:2b:7b:5a:fd:41:84:2d:
73:75:02:fa:1e:c9:34:41:d8:a2:72:7b:c9:44:b8:
d3:e3:85:5b:5e:b7:d2:ff:60:db:5c:a0:e4:27:82:
4d:52:60:90:24:cc:a0:09:d2:4b:8a:4d:a6:bf:78:
61:1a:78:fd:2c:90:4c:65:5c:cc:b9:15:7e:ba:26:
8a:bb:a9:22:87:13:de:c6:88:4f:fc:61:32:52:56:
62:59:76:e8:33:67:dd:e2:d6:5f:09:b7:3c:be:51:
b2:e3:4e:0c:1e:d3:67:82:0b:1f:70:cb:0b:35:1c:
47:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:20:50:14:B1:EC:76:5B:2F:3A:A5:EA:65:6F:34:88:CF:2E:1A:32
X509v3 Authority Key Identifier:
keyid:0C:21:B9:25:B4:C4:BC:C3:0F:77:C9:C4:1B:A8:D0:40:AC:95:DF:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DCG5JbTEvMMPd8nEG6jQQKyV38Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/siBQFLHsdlsvOqXqZW80iM8uGjI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/c0bd67-f7dd-4ce2-ab7e-a347564158f8/1/DCG5JbTEvMMPd8nEG6jQQKyV38Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:607:1200::/44
Signature Algorithm: sha256WithRSAEncryption
6f:8c:be:9c:e9:29:f2:de:c2:40:54:6e:42:bb:bc:cd:9f:63:
51:b2:19:7c:49:c5:45:ab:a1:5a:e8:e6:88:b6:ae:23:2f:2c:
d1:2e:ba:61:92:ff:0e:a0:d5:9d:7b:0d:22:d8:47:c4:10:61:
ac:9a:96:93:3d:46:c2:ce:0a:0b:f4:7b:f2:59:61:11:ef:f5:
7a:37:50:49:20:53:ee:a0:2a:4e:df:3e:d3:96:cb:7a:bf:a7:
fa:08:24:b6:1b:7b:1e:9f:39:15:b3:ee:d7:75:ef:a3:f2:69:
85:80:a8:ed:8b:fa:54:33:ef:12:9f:81:11:a8:a9:2a:f3:79:
7e:f5:46:b1:69:a9:0e:b9:0a:89:7a:e8:83:6c:8d:fd:51:4e:
f7:3c:e2:6f:b7:96:13:15:dc:25:2b:7b:2e:3c:5d:39:b8:86:
24:52:64:86:41:06:f7:da:d2:ee:fc:46:5b:8f:28:ac:81:18:
31:68:70:26:24:b0:ba:50:51:8f:34:25:3c:47:8d:62:ca:0a:
1c:38:dc:59:9d:5c:a9:ee:21:e3:c9:7e:23:62:eb:c9:07:14:
30:89:89:de:10:5b:bc:dc:9a:7f:fa:5c:86:5a:dc:ac:89:09:
87:29:f0:76:13:df:d3:31:9f:24:9b:2f:f0:05:85:b8:46:43:
db:9e:0a:34
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVr3Hd6y1qY1HeHVrznPRlVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjMjFiOTI1YjRjNGJjYzMwZjc3YzljNDFiYThkMDQwYWM5
NWRmYzYwHhcNMjMwMTAxMDU0NDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMjIwNTAxNGIxZWM3NjViMmYzYWE1ZWE2NTZmMzQ4OGNmMmUxYTMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtiV3mw1ciF8KCWi0qVP0Y/R/IYpR
yhUewTdc7glZ15b+4QiB+vDB9z9taer5pt3GuYoBW2BqbtGAVW1/n3O8yUZWCslr
KDYkvBPUEW6nqUCRkn3Sge+uaOAmFQ8KlijWD8xbD3XjLCWEaX+lPrrXJpKHHbbI
YRmifvY3iKPvnDlB6vrgearMzpOSdmQV+it7Wv1BhC1zdQL6Hsk0QdiicnvJRLjT
44VbXrfS/2DbXKDkJ4JNUmCQJMygCdJLik2mv3hhGnj9LJBMZVzMuRV+uiaKu6ki
hxPexohP/GEyUlZiWXboM2fd4tZfCbc8vlGy404MHtNnggsfcMsLNRxHkQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFLIgUBSx7HZbLzql6mVvNIjPLhoyMB8GA1UdIwQY
MBaAFAwhuSW0xLzDD3fJxBuo0ECsld/GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRENHNUpiVEV2TU1QZDhuRUc2alFRS3lWMzhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9jMGJkNjctZjdkZC00Y2UyLWFiN2Ut
YTM0NzU2NDE1OGY4LzEvc2lCUUZMSHNkbHN2T3FYcVpXODBpTTh1R2pJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9jMGJkNjctZjdkZC00Y2UyLWFiN2UtYTM0NzU2NDE1OGY4
LzEvRENHNUpiVEV2TU1QZDhuRUc2alFRS3lWMzhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKg8GBxIA
MA0GCSqGSIb3DQEBCwUAA4IBAQBvjL6c6Sny3sJAVG5Cu7zNn2NRshl8ScVFq6Fa
6OaItq4jLyzRLrphkv8OoNWdew0i2EfEEGGsmpaTPUbCzgoL9HvyWWER7/V6N1BJ
IFPuoCpO3z7Tlst6v6f6CCS2G3senzkVs+7Xde+j8mmFgKjti/pUM+8Sn4ERqKkq
83l+9UaxaakOuQqJeuiDbI39UU73POJvt5YTFdwlK3suPF05uIYkUmSGQQb32tLu
/EZbjyisgRgxaHAmJLC6UFGPNCU8R41iygocONxZnVyp7iHjyX4jYuvJBxQwiYne
EFu83Jp/+lyGWtysiQmHKfB2E9/TMZ8kmy/wBYW4RkPbngo0
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:14 2024 by rpki-client on console-fra.rpki-client.org