Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/e9cbf3-3a5d-4b74-86d3-cb0f2455cbd6/1/ccOS1GcC9aja1_1i887FheMh3Gc.roa
File: ccOS1GcC9aja1_1i887FheMh3Gc.roa (raw, json)
Hash identifier: POWR+4exWeDHZemPALT/v0yA1pyrbLYeNpOn0zppnQI=
Subject key identifier: 71:C3:92:D4:67:02:F5:A8:DA:D7:FD:62:F3:CE:C5:85:E3:21:DC:67
Certificate issuer: /CN=d2bb66fbdeaafff43b9650b1f6cbe4f29edaf58c
Certificate serial: 01856C13529C02D98910C21F5E1042D2F87B
Authority key identifier: D2:BB:66:FB:DE:AA:FF:F4:3B:96:50:B1:F6:CB:E4:F2:9E:DA:F5:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0rtm-96q__Q7llCx9svk8p7a9Yw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/e9cbf3-3a5d-4b74-86d3-cb0f2455cbd6/1/ccOS1GcC9aja1_1i887FheMh3Gc.roa
Signing time: Sun 01 Jan 2023 06:44:43 +0000
ROA not before: Sun 01 Jan 2023 06:44:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8873
IP address blocks: 2001:678:848::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:13:52:9c:02:d9:89:10:c2:1f:5e:10:42:d2:f8:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2bb66fbdeaafff43b9650b1f6cbe4f29edaf58c
Validity
Not Before: Jan 1 06:44:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=71c392d46702f5a8dad7fd62f3cec585e321dc67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:20:64:07:78:3e:0f:40:94:5f:ea:09:45:cd:
b5:7a:20:e4:40:f3:a9:73:d8:d9:d0:54:f5:be:90:
ae:c7:81:72:5f:55:de:c2:5e:ca:36:53:cb:20:9d:
29:ab:b3:7b:31:99:95:9f:4b:1c:0c:59:fe:e4:ee:
23:3c:e3:3b:d1:e6:ca:15:b8:67:a1:58:37:1a:f8:
2c:11:0e:dc:06:b0:3c:2a:a6:df:0e:3c:bd:3a:81:
3b:d9:2f:67:c8:0e:0e:35:10:ff:48:c1:51:d0:5d:
22:62:1b:9f:0b:63:f1:bb:73:89:d1:59:4a:65:86:
c6:d8:5f:57:ea:12:f3:cf:f1:59:b0:54:e2:0a:3b:
d7:aa:e9:9a:9f:45:55:26:82:23:c1:6d:34:ab:35:
12:15:19:03:cc:2e:1b:65:55:2c:8e:d4:27:d5:66:
97:1a:bb:cd:c0:3b:54:13:d8:6b:75:99:06:bc:ed:
f9:6e:c2:99:46:0b:fe:c5:3c:7d:4b:47:c6:46:8f:
ef:41:83:12:51:96:fc:f8:cc:f4:5b:ea:b5:fb:70:
15:70:9c:11:a4:b2:27:02:2f:96:f3:3b:2f:e0:c7:
94:ff:15:e0:c5:48:1a:f3:87:a2:6d:1c:e9:5b:4e:
b9:87:42:4f:ae:55:bb:02:5d:d3:30:09:e0:f6:38:
66:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:C3:92:D4:67:02:F5:A8:DA:D7:FD:62:F3:CE:C5:85:E3:21:DC:67
X509v3 Authority Key Identifier:
keyid:D2:BB:66:FB:DE:AA:FF:F4:3B:96:50:B1:F6:CB:E4:F2:9E:DA:F5:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0rtm-96q__Q7llCx9svk8p7a9Yw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e9cbf3-3a5d-4b74-86d3-cb0f2455cbd6/1/ccOS1GcC9aja1_1i887FheMh3Gc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/e9cbf3-3a5d-4b74-86d3-cb0f2455cbd6/1/0rtm-96q__Q7llCx9svk8p7a9Yw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:848::/48
Signature Algorithm: sha256WithRSAEncryption
6f:e9:16:90:a9:95:8b:61:59:05:b5:3c:e5:b6:1c:e3:46:26:
01:71:25:26:e3:f1:81:a5:6b:01:a8:d1:b0:2d:cf:b7:b8:f5:
51:8c:36:45:43:b1:7e:32:ee:73:c5:81:e4:4d:2a:00:53:53:
e8:25:20:87:8b:7f:73:4c:56:77:7d:0f:2c:cd:4e:6e:e7:1d:
16:b6:33:7b:5e:32:77:25:88:d0:89:78:38:54:7c:81:7d:b9:
c6:96:e7:02:e5:13:02:d0:54:60:f5:27:97:95:01:88:a1:d4:
81:96:db:cc:e9:fb:1d:0e:21:02:50:2c:86:4f:c2:d2:0b:ff:
cb:0e:99:53:04:2c:46:47:33:3d:15:c8:b7:72:68:96:87:71:
45:02:88:d7:9a:8b:d1:42:80:f5:56:63:28:2d:ae:80:1d:60:
1f:f2:61:25:23:f3:ed:9e:9f:27:f4:0a:00:ed:1a:e2:a0:e3:
ac:ec:d5:85:ba:1f:a0:de:32:20:6c:e6:cb:86:2a:70:13:e1:
50:f6:e4:a8:03:cb:6a:4a:c6:13:42:f3:b2:45:a2:9c:94:86:
d5:71:12:c5:3a:f2:ab:bf:77:f7:63:7b:03:4a:08:14:24:95:
97:3b:1b:76:20:e4:1c:32:90:33:ec:ee:6a:96:66:a3:ce:db:
2b:a3:5e:ef
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVsE1KcAtmJEMIfXhBC0vh7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyYmI2NmZiZGVhYWZmZjQzYjk2NTBiMWY2Y2JlNGYyOWVk
YWY1OGMwHhcNMjMwMTAxMDY0NDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3MWMzOTJkNDY3MDJmNWE4ZGFkN2ZkNjJmM2NlYzU4NWUzMjFkYzY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkCBkB3g+D0CUX+oJRc21eiDkQPOp
c9jZ0FT1vpCux4FyX1Xewl7KNlPLIJ0pq7N7MZmVn0scDFn+5O4jPOM70ebKFbhn
oVg3GvgsEQ7cBrA8KqbfDjy9OoE72S9nyA4ONRD/SMFR0F0iYhufC2Pxu3OJ0VlK
ZYbG2F9X6hLzz/FZsFTiCjvXquman0VVJoIjwW00qzUSFRkDzC4bZVUsjtQn1WaX
GrvNwDtUE9hrdZkGvO35bsKZRgv+xTx9S0fGRo/vQYMSUZb8+Mz0W+q1+3AVcJwR
pLInAi+W8zsv4MeU/xXgxUga84eibRzpW065h0JPrlW7Al3TMAng9jhm8wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFHHDktRnAvWo2tf9YvPOxYXjIdxnMB8GA1UdIwQY
MBaAFNK7Zvveqv/0O5ZQsfbL5PKe2vWMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMHJ0bS05NnFfX1E3bGxDeDlzdms4cDdhOVl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC9lOWNiZjMtM2E1ZC00Yjc0LTg2ZDMt
Y2IwZjI0NTVjYmQ2LzEvY2NPUzFHY0M5YWphMV8xaTg4N0ZoZU1oM0djLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC9lOWNiZjMtM2E1ZC00Yjc0LTg2ZDMtY2IwZjI0NTVjYmQ2
LzEvMHJ0bS05NnFfX1E3bGxDeDlzdms4cDdhOVl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAhI
MA0GCSqGSIb3DQEBCwUAA4IBAQBv6RaQqZWLYVkFtTzlthzjRiYBcSUm4/GBpWsB
qNGwLc+3uPVRjDZFQ7F+Mu5zxYHkTSoAU1PoJSCHi39zTFZ3fQ8szU5u5x0WtjN7
XjJ3JYjQiXg4VHyBfbnGlucC5RMC0FRg9SeXlQGIodSBltvM6fsdDiECUCyGT8LS
C//LDplTBCxGRzM9Fci3cmiWh3FFAojXmovRQoD1VmMoLa6AHWAf8mElI/Ptnp8n
9AoA7RrioOOs7NWFuh+g3jIgbObLhipwE+FQ9uSoA8tqSsYTQvOyRaKclIbVcRLF
OvKrv3f3Y3sDSggUJJWXOxt2IOQcMpAz7O5qlmajztsro17v
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:49 2024 by rpki-client on console-fra.rpki-client.org