Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/0FN0vogNjtYZUl4bUe_HBcYcEWU.roa
File: 0FN0vogNjtYZUl4bUe_HBcYcEWU.roa (raw, json)
Hash identifier: XpGEwH5ZlZCjO+2UL1gezNAaAurI+KuYjFHPbDqNwyw=
Subject key identifier: D0:53:74:BE:88:0D:8E:D6:19:52:5E:1B:51:EF:C7:05:C6:1C:11:65
Certificate issuer: /CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Certificate serial: 018570671FADD16ED88F483FD8F89F658E61
Authority key identifier: 9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/0FN0vogNjtYZUl4bUe_HBcYcEWU.roa
Signing time: Mon 02 Jan 2023 02:54:44 +0000
ROA not before: Mon 02 Jan 2023 02:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57755
IP address blocks: 2a0a:4e00::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:1f:ad:d1:6e:d8:8f:48:3f:d8:f8:9f:65:8e:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a1e69368abd34538fe77ddaabcdc835af595eba
Validity
Not Before: Jan 2 02:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d05374be880d8ed619525e1b51efc705c61c1165
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:24:74:c9:57:2d:5f:22:df:60:c6:ef:b8:1f:
d8:80:a5:c9:ce:ac:68:86:8f:2c:22:bf:b2:80:03:
0a:b2:88:f4:81:1e:81:5e:62:20:53:9a:4f:e6:a2:
8b:3b:28:58:8f:12:90:0b:73:58:2f:e0:80:75:d3:
5f:a6:49:3f:c9:6a:b0:19:f1:03:da:2a:42:91:b6:
60:03:49:4d:ba:39:80:4e:18:0a:d6:72:ee:14:40:
82:0e:07:4e:8c:ae:30:f7:f3:10:0e:93:46:98:01:
4b:56:1c:c3:48:ba:f5:8e:a3:eb:e8:d9:3e:5a:f0:
07:25:8e:89:b7:c0:1a:4c:ad:52:60:de:bc:7d:8d:
b1:9a:a4:8a:b8:11:bd:c4:1d:e2:ed:cc:f6:f4:63:
42:65:05:e0:08:52:32:b8:f6:f1:db:28:fe:38:ed:
86:c1:9b:8d:22:ba:9e:79:e8:b7:66:cc:ec:66:95:
71:15:f5:57:b9:ef:cf:aa:7c:24:3f:18:3c:40:63:
96:a1:09:34:a6:8f:0f:35:2c:a1:f2:f7:f7:ce:d0:
b8:72:98:be:66:b2:3b:c5:f0:41:79:eb:32:3c:e3:
ae:33:c7:a1:f9:f0:49:23:9b:9e:51:e0:9e:1d:16:
44:f6:b9:41:8f:7f:10:da:78:75:78:96:55:d8:49:
aa:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:53:74:BE:88:0D:8E:D6:19:52:5E:1B:51:EF:C7:05:C6:1C:11:65
X509v3 Authority Key Identifier:
keyid:9A:1E:69:36:8A:BD:34:53:8F:E7:7D:DA:AB:CD:C8:35:AF:59:5E:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mh5pNoq9NFOP533aq83INa9ZXro.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/0FN0vogNjtYZUl4bUe_HBcYcEWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/7886f4-5fcc-4d44-bd62-10982e040d53/1/mh5pNoq9NFOP533aq83INa9ZXro.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:4e00::/29
Signature Algorithm: sha256WithRSAEncryption
86:3b:32:15:8c:56:73:94:d6:08:b9:40:b0:48:00:3e:78:ec:
31:a5:c3:5a:d6:d3:80:c3:58:0c:f3:60:eb:7f:b2:88:6f:89:
b7:f8:c6:3b:52:14:22:4d:03:9d:04:67:78:ab:01:27:9e:59:
fb:7e:25:fb:ce:cc:50:ea:89:85:b1:e0:27:a4:69:d9:1e:3b:
c3:35:2f:aa:5b:f5:38:26:3e:69:dc:d7:16:28:2f:22:75:48:
53:37:82:2d:07:58:ea:7b:e7:e8:f4:af:fb:7e:8a:da:d5:ab:
e2:58:12:af:f2:a2:44:80:d7:56:54:59:03:57:a8:c0:07:f2:
88:5e:35:f2:f4:6a:fa:6d:5a:44:c2:11:a0:02:a1:27:c6:55:
3c:0d:ff:bf:48:52:b0:07:c7:24:60:85:09:e2:2a:29:a2:26:
80:66:e4:8c:6c:43:33:6d:4b:a4:b0:51:b0:b1:c0:ae:8e:e2:
f9:76:2c:65:85:91:aa:31:9f:d2:23:e7:d4:36:e5:8a:8a:3e:
7e:fa:6a:ac:4a:f1:24:e0:86:a1:bd:67:c2:e4:36:f0:a5:73:
9e:94:a9:ce:6c:bf:67:b0:46:38:b9:03:fd:bf:d4:71:4a:2e:
57:7e:b4:47:bd:15:01:f2:c8:55:b8:88:41:cf:a2:ec:23:bf:
95:42:94:cf
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYVwZx+t0W7Yj0g/2PifZY5hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlhMWU2OTM2OGFiZDM0NTM4ZmU3N2RkYWFiY2RjODM1YWY1
OTVlYmEwHhcNMjMwMTAyMDI1NDQ0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMDUzNzRiZTg4MGQ4ZWQ2MTk1MjVlMWI1MWVmYzcwNWM2MWMxMTY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3CR0yVctXyLfYMbvuB/YgKXJzqxo
ho8sIr+ygAMKsoj0gR6BXmIgU5pP5qKLOyhYjxKQC3NYL+CAddNfpkk/yWqwGfED
2ipCkbZgA0lNujmAThgK1nLuFECCDgdOjK4w9/MQDpNGmAFLVhzDSLr1jqPr6Nk+
WvAHJY6Jt8AaTK1SYN68fY2xmqSKuBG9xB3i7cz29GNCZQXgCFIyuPbx2yj+OO2G
wZuNIrqeeei3ZszsZpVxFfVXue/PqnwkPxg8QGOWoQk0po8PNSyh8vf3ztC4cpi+
ZrI7xfBBeesyPOOuM8eh+fBJI5ueUeCeHRZE9rlBj38Q2nh1eJZV2EmqDwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFNBTdL6IDY7WGVJeG1HvxwXGHBFlMB8GA1UdIwQY
MBaAFJoeaTaKvTRTj+d92qvNyDWvWV66MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWg1cE5vcTlORk9QNTMzYXE4M0lOYTlaWHJvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi83ODg2ZjQtNWZjYy00ZDQ0LWJkNjIt
MTA5ODJlMDQwZDUzLzEvMEZOMHZvZ05qdFlaVWw0YlVlX0hCY1ljRVdVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi83ODg2ZjQtNWZjYy00ZDQ0LWJkNjItMTA5ODJlMDQwZDUz
LzEvbWg1cE5vcTlORk9QNTMzYXE4M0lOYTlaWHJvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKgpOADAN
BgkqhkiG9w0BAQsFAAOCAQEAhjsyFYxWc5TWCLlAsEgAPnjsMaXDWtbTgMNYDPNg
63+yiG+Jt/jGO1IUIk0DnQRneKsBJ55Z+34l+87MUOqJhbHgJ6Rp2R47wzUvqlv1
OCY+adzXFigvInVIUzeCLQdY6nvn6PSv+36K2tWr4lgSr/KiRIDXVlRZA1eowAfy
iF418vRq+m1aRMIRoAKhJ8ZVPA3/v0hSsAfHJGCFCeIqKaImgGbkjGxDM21LpLBR
sLHAro7i+XYsZYWRqjGf0iPn1Dblioo+fvpqrErxJOCGob1nwuQ28KVznpSpzmy/
Z7BGOLkD/b/UcUouV360R70VAfLIVbiIQc+i7CO/lUKUzw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:10 2024 by rpki-client on console-fra.rpki-client.org