Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/c97fcf-1a8d-4ac9-bfea-b234dd6ed637/1/gm7kyADb8JBxQViuqXoBISkk6C8.roa
File: gm7kyADb8JBxQViuqXoBISkk6C8.roa (raw, json)
Hash identifier: hDnguBG85kAwowCs9wR0ehsLslcVsL2OZU4QOSioIYk=
Subject key identifier: 82:6E:E4:C8:00:DB:F0:90:71:41:58:AE:A9:7A:01:21:29:24:E8:2F
Certificate issuer: /CN=16497d8453c5ee3ebbb388e1a47a195ff30fe009
Certificate serial: 01856C9CC0A8FC3562F21FF40C242E6A23DD
Authority key identifier: 16:49:7D:84:53:C5:EE:3E:BB:B3:88:E1:A4:7A:19:5F:F3:0F:E0:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fkl9hFPF7j67s4jhpHoZX_MP4Ak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/c97fcf-1a8d-4ac9-bfea-b234dd6ed637/1/gm7kyADb8JBxQViuqXoBISkk6C8.roa
Signing time: Sun 01 Jan 2023 09:14:50 +0000
ROA not before: Sun 01 Jan 2023 09:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201086
IP address blocks: 2a0f:641::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:9c:c0:a8:fc:35:62:f2:1f:f4:0c:24:2e:6a:23:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16497d8453c5ee3ebbb388e1a47a195ff30fe009
Validity
Not Before: Jan 1 09:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=826ee4c800dbf090714158aea97a01212924e82f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:3e:a6:50:ad:8c:bf:59:b2:18:a9:e0:91:3c:
e0:de:da:7a:12:da:34:d9:98:4e:21:9b:57:74:d7:
7c:08:01:c7:af:f6:36:fe:61:27:aa:a1:93:4a:79:
6f:ad:3a:62:0c:7e:35:ac:9e:8f:1a:01:18:1e:cd:
4e:4b:64:88:10:8a:f0:6b:17:89:43:1b:6c:27:fb:
89:6d:ff:c5:0c:68:db:1d:ff:a1:b1:8e:fd:56:ba:
7c:c2:0e:60:7f:c9:f1:97:03:67:37:88:9a:21:56:
29:1f:84:78:ea:84:c0:17:33:92:56:a3:5e:0f:11:
51:ee:aa:55:23:a1:dc:a7:58:24:e6:e6:53:bf:ec:
54:09:f6:cb:db:5f:d7:c3:7c:cd:7d:9b:de:cf:53:
ff:77:11:6a:8b:41:6b:cc:75:8b:61:31:c2:61:f4:
23:17:4d:88:38:87:38:73:9a:f9:07:39:e1:74:59:
ab:94:fa:f5:ef:14:f1:1f:23:8d:5c:45:52:3a:60:
88:f6:8c:44:f8:e7:70:c5:94:48:07:23:7a:22:c6:
8f:58:b2:0b:a0:33:93:e8:3d:62:fb:04:df:f8:6d:
05:d8:48:5c:73:37:1c:6f:db:8e:17:b9:bc:30:e7:
d4:ef:f9:78:66:a4:2a:d3:d8:a7:66:87:fa:be:75:
cf:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:6E:E4:C8:00:DB:F0:90:71:41:58:AE:A9:7A:01:21:29:24:E8:2F
X509v3 Authority Key Identifier:
keyid:16:49:7D:84:53:C5:EE:3E:BB:B3:88:E1:A4:7A:19:5F:F3:0F:E0:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fkl9hFPF7j67s4jhpHoZX_MP4Ak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c97fcf-1a8d-4ac9-bfea-b234dd6ed637/1/gm7kyADb8JBxQViuqXoBISkk6C8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c97fcf-1a8d-4ac9-bfea-b234dd6ed637/1/Fkl9hFPF7j67s4jhpHoZX_MP4Ak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:641::/32
Signature Algorithm: sha256WithRSAEncryption
25:5c:28:3c:ad:3c:bb:2f:77:c8:20:d7:1e:c2:f9:87:07:38:
fc:6c:7b:a5:7c:b2:92:0a:26:28:27:2d:55:09:fd:af:a1:8e:
cb:22:2a:85:88:77:13:85:e9:de:88:81:b3:b1:c7:7d:7b:b5:
cf:c1:93:95:a8:58:1b:6f:18:19:19:45:92:18:94:31:ce:13:
55:1a:14:ba:4d:3a:de:57:43:9d:c3:ae:fc:16:94:a1:e9:87:
8b:2b:90:eb:52:18:c3:93:42:3c:3e:80:8e:fe:22:5c:1c:f6:
8c:24:a2:20:19:64:75:05:43:65:5c:34:71:4c:7a:3d:c4:1b:
d9:ad:b5:f6:4e:b5:fd:bc:eb:48:fb:5c:8c:1a:65:c8:c7:9e:
6a:20:8c:2a:13:27:9a:26:5b:30:d6:ca:7e:3f:99:34:4f:ae:
41:2e:ca:15:8d:34:8e:fa:cb:ea:41:50:81:ef:b7:9c:4f:fc:
a4:80:64:46:51:4d:f9:53:d2:e2:34:3b:7f:3c:fb:8f:da:6a:
31:1a:af:e5:95:a0:11:2b:84:f3:7d:21:a0:c1:bd:5d:b8:6a:
07:09:82:af:7e:ab:a7:b3:6b:9e:cd:21:06:25:72:91:10:6b:
95:a4:1e:50:56:97:1b:6f:3a:2b:a5:a1:e9:b1:ff:a7:04:a3:
93:91:ba:c6
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVsnMCo/DVi8h/0DCQuaiPdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE2NDk3ZDg0NTNjNWVlM2ViYmIzODhlMWE0N2ExOTVmZjMw
ZmUwMDkwHhcNMjMwMTAxMDkxNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MjZlZTRjODAwZGJmMDkwNzE0MTU4YWVhOTdhMDEyMTI5MjRlODJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmT6mUK2Mv1myGKngkTzg3tp6Eto0
2ZhOIZtXdNd8CAHHr/Y2/mEnqqGTSnlvrTpiDH41rJ6PGgEYHs1OS2SIEIrwaxeJ
QxtsJ/uJbf/FDGjbHf+hsY79Vrp8wg5gf8nxlwNnN4iaIVYpH4R46oTAFzOSVqNe
DxFR7qpVI6Hcp1gk5uZTv+xUCfbL21/Xw3zNfZvez1P/dxFqi0FrzHWLYTHCYfQj
F02IOIc4c5r5BznhdFmrlPr17xTxHyONXEVSOmCI9oxE+OdwxZRIByN6IsaPWLIL
oDOT6D1i+wTf+G0F2Ehcczccb9uOF7m8MOfU7/l4ZqQq09inZof6vnXPFwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFIJu5MgA2/CQcUFYrql6ASEpJOgvMB8GA1UdIwQY
MBaAFBZJfYRTxe4+u7OI4aR6GV/zD+AJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRmtsOWhGUEY3ajY3czRqaHBIb1pYX01QNEFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC9jOTdmY2YtMWE4ZC00YWM5LWJmZWEt
YjIzNGRkNmVkNjM3LzEvZ203a3lBRGI4SkJ4UVZpdXFYb0JJU2trNkM4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC9jOTdmY2YtMWE4ZC00YWM5LWJmZWEtYjIzNGRkNmVkNjM3
LzEvRmtsOWhGUEY3ajY3czRqaHBIb1pYX01QNEFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKg8GQTAN
BgkqhkiG9w0BAQsFAAOCAQEAJVwoPK08uy93yCDXHsL5hwc4/Gx7pXyykgomKCct
VQn9r6GOyyIqhYh3E4Xp3oiBs7HHfXu1z8GTlahYG28YGRlFkhiUMc4TVRoUuk06
3ldDncOu/BaUoemHiyuQ61IYw5NCPD6Ajv4iXBz2jCSiIBlkdQVDZVw0cUx6PcQb
2a219k61/bzrSPtcjBplyMeeaiCMKhMnmiZbMNbKfj+ZNE+uQS7KFY00jvrL6kFQ
ge+3nE/8pIBkRlFN+VPS4jQ7fzz7j9pqMRqv5ZWgESuE830hoMG9XbhqBwmCr36r
p7Nrns0hBiVykRBrlaQeUFaXG286K6Wh6bH/pwSjk5G6xg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:22 2024 by rpki-client on console-fra.rpki-client.org