Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/c1f90a-2bad-41b4-b1a6-46b3028a03b0/1/8PUiR0uCs_8JriZ4qkYr8q2X450.roa
File: 8PUiR0uCs_8JriZ4qkYr8q2X450.roa (raw, json)
Hash identifier: tbfTdfz91aM9bynzOzTPI7jz2rJP56M4ISM3+WNlAvk=
Subject key identifier: F0:F5:22:47:4B:82:B3:FF:09:AE:26:78:AA:46:2B:F2:AD:97:E3:9D
Certificate issuer: /CN=bbd351b274fc23a42728303638a0d62b606401b4
Certificate serial: 01856DC1CA0B66B27AFEC33F777361D39D55
Authority key identifier: BB:D3:51:B2:74:FC:23:A4:27:28:30:36:38:A0:D6:2B:60:64:01:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u9NRsnT8I6QnKDA2OKDWK2BkAbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/c1f90a-2bad-41b4-b1a6-46b3028a03b0/1/8PUiR0uCs_8JriZ4qkYr8q2X450.roa
Signing time: Sun 01 Jan 2023 14:34:54 +0000
ROA not before: Sun 01 Jan 2023 14:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35003
IP address blocks: 2001:1578:400::/40 maxlen: 40
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:ca:0b:66:b2:7a:fe:c3:3f:77:73:61:d3:9d:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbd351b274fc23a42728303638a0d62b606401b4
Validity
Not Before: Jan 1 14:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f0f522474b82b3ff09ae2678aa462bf2ad97e39d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:62:68:e6:5f:bb:8d:e0:b6:26:b7:af:ed:52:
d8:72:27:50:ca:4f:2f:5b:8c:83:34:f9:f2:90:22:
d2:01:63:02:bb:0d:64:72:37:a8:40:b6:f9:f6:aa:
52:9d:cb:ed:1a:59:d5:84:65:48:3c:a5:d3:1f:8a:
cc:79:64:49:72:85:70:d2:86:ad:4d:bd:4d:ed:17:
c7:61:76:eb:72:4f:53:5f:c7:45:5f:43:d9:ba:bd:
b1:23:4e:8c:2d:b8:d8:64:b5:d9:a1:9c:de:d3:9c:
68:2a:0c:aa:9d:e3:3a:2a:f3:b9:63:e6:74:92:08:
c8:d7:7f:0e:ef:82:34:77:b8:96:af:69:83:61:7b:
82:d8:8b:1b:9a:40:77:04:70:4c:05:f1:ec:71:b9:
01:97:ff:46:ca:d0:2d:ba:bc:7f:10:33:d3:60:6d:
7e:87:ac:af:e1:5a:19:3c:01:e7:02:25:05:38:c9:
42:f3:bc:30:73:38:84:ad:a0:68:49:be:94:ed:ea:
44:b3:b3:8d:11:0a:51:31:69:bd:ff:aa:88:f9:88:
80:20:b0:fc:31:6d:a3:5c:7c:a1:28:10:91:3f:32:
30:ef:d5:62:9b:3d:65:6b:30:24:2e:0a:2c:6b:c3:
4e:e8:9a:3b:42:2a:06:6e:55:f4:2b:fe:d9:8a:f5:
b7:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:F5:22:47:4B:82:B3:FF:09:AE:26:78:AA:46:2B:F2:AD:97:E3:9D
X509v3 Authority Key Identifier:
keyid:BB:D3:51:B2:74:FC:23:A4:27:28:30:36:38:A0:D6:2B:60:64:01:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u9NRsnT8I6QnKDA2OKDWK2BkAbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/c1f90a-2bad-41b4-b1a6-46b3028a03b0/1/8PUiR0uCs_8JriZ4qkYr8q2X450.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/c1f90a-2bad-41b4-b1a6-46b3028a03b0/1/u9NRsnT8I6QnKDA2OKDWK2BkAbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:1578:400::/40
Signature Algorithm: sha256WithRSAEncryption
60:dc:19:fb:6e:d8:31:9a:61:3b:ff:47:71:14:24:ae:6b:31:
3b:78:ed:e4:98:ae:6d:f9:68:ba:53:ee:a1:ba:a3:24:3b:23:
18:6d:5c:f9:94:b1:9a:dc:ab:b3:11:6e:95:30:33:2a:3b:f7:
bf:7e:c9:90:6c:dc:db:45:85:4b:b4:33:fb:5a:f6:fb:67:0b:
cc:00:f6:62:ac:50:30:4e:00:9a:6e:85:d7:ee:f8:91:e7:c3:
8a:d7:6f:2a:56:61:bf:b9:96:b7:d2:a9:6e:0b:fd:d7:b5:58:
de:38:d6:ec:0d:65:8d:a3:11:f6:1e:33:90:90:e3:87:78:05:
10:aa:ae:40:15:d2:49:c8:06:5c:10:62:17:cf:bd:d2:22:88:
a1:64:a0:82:f0:b9:fb:29:ea:c9:4d:fe:a2:39:c8:8b:a6:c0:
80:18:88:1c:da:f3:20:6e:c8:f1:db:69:5f:87:24:bc:6c:39:
4e:ca:a8:0c:8a:26:53:59:13:16:93:a5:32:bc:ce:ab:4f:ed:
ac:f0:a7:84:ee:a6:57:25:c9:43:6f:be:f4:57:f4:de:62:f7:
6d:91:af:cf:c3:d4:e1:9f:00:18:96:6b:cd:38:a6:b5:32:5a:
0c:b4:ec:f0:d6:44:31:bd:2e:64:eb:b4:cf:83:fe:9d:f5:36:
94:96:8c:e4
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYVtwcoLZrJ6/sM/d3Nh051VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJiZDM1MWIyNzRmYzIzYTQyNzI4MzAzNjM4YTBkNjJiNjA2
NDAxYjQwHhcNMjMwMTAxMTQzNDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMGY1MjI0NzRiODJiM2ZmMDlhZTI2NzhhYTQ2MmJmMmFkOTdlMzlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA12Jo5l+7jeC2Jrev7VLYcidQyk8v
W4yDNPnykCLSAWMCuw1kcjeoQLb59qpSncvtGlnVhGVIPKXTH4rMeWRJcoVw0oat
Tb1N7RfHYXbrck9TX8dFX0PZur2xI06MLbjYZLXZoZze05xoKgyqneM6KvO5Y+Z0
kgjI138O74I0d7iWr2mDYXuC2IsbmkB3BHBMBfHscbkBl/9GytAturx/EDPTYG1+
h6yv4VoZPAHnAiUFOMlC87wwcziEraBoSb6U7epEs7ONEQpRMWm9/6qI+YiAILD8
MW2jXHyhKBCRPzIw79Vimz1lazAkLgosa8NO6Jo7QioGblX0K/7ZivW3UwIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFPD1IkdLgrP/Ca4meKpGK/Ktl+OdMB8GA1UdIwQY
MBaAFLvTUbJ0/COkJygwNjig1itgZAG0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdTlOUnNuVDhJNlFuS0RBMk9LRFdLMkJrQWJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC9jMWY5MGEtMmJhZC00MWI0LWIxYTYt
NDZiMzAyOGEwM2IwLzEvOFBVaVIwdUNzXzhKcmlaNHFrWXI4cTJYNDUwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC9jMWY5MGEtMmJhZC00MWI0LWIxYTYtNDZiMzAyOGEwM2Iw
LzEvdTlOUnNuVDhJNlFuS0RBMk9LRFdLMkJrQWJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAIAEVeAQw
DQYJKoZIhvcNAQELBQADggEBAGDcGftu2DGaYTv/R3EUJK5rMTt47eSYrm35aLpT
7qG6oyQ7IxhtXPmUsZrcq7MRbpUwMyo7979+yZBs3NtFhUu0M/ta9vtnC8wA9mKs
UDBOAJpuhdfu+JHnw4rXbypWYb+5lrfSqW4L/de1WN441uwNZY2jEfYeM5CQ44d4
BRCqrkAV0knIBlwQYhfPvdIiiKFkoILwufsp6slN/qI5yIumwIAYiBza8yBuyPHb
aV+HJLxsOU7KqAyKJlNZExaTpTK8zqtP7azwp4TuplclyUNvvvRX9N5i922Rr8/D
1OGfABiWa804prUyWgy07PDWRDG9LmTrtM+D/p31NpSWjOQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:48 2024 by rpki-client on console-fra.rpki-client.org