Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/8Ph6A2v_g8SZAecrR-ascPfMj1A.roa
File: 8Ph6A2v_g8SZAecrR-ascPfMj1A.roa (raw, json)
Hash identifier: ZdCybBGQmN5//3CKRwIicRd/VFY48Kd51C+F9WVLC4o=
Subject key identifier: F0:F8:7A:03:6B:FF:83:C4:99:01:E7:2B:47:E6:AC:70:F7:CC:8F:50
Certificate issuer: /CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Certificate serial: 01856F949E2363F6AE3034E34982B16A30C9
Authority key identifier: 29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/8Ph6A2v_g8SZAecrR-ascPfMj1A.roa
Signing time: Sun 01 Jan 2023 23:04:48 +0000
ROA not before: Sun 01 Jan 2023 23:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50716
IP address blocks: 2a00:d8c0:100::/48 maxlen: 128
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:9e:23:63:f6:ae:30:34:e3:49:82:b1:6a:30:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Validity
Not Before: Jan 1 23:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f0f87a036bff83c49901e72b47e6ac70f7cc8f50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:39:28:30:ae:7b:98:2f:77:65:d2:3a:f2:c1:
cc:4b:1f:be:de:c2:d8:58:32:06:c0:b6:4e:45:fa:
4d:3e:25:62:40:51:7b:2d:6d:b1:16:e5:41:2c:c0:
c1:d7:69:dc:53:db:11:d0:38:83:fb:86:1e:8c:26:
03:d7:20:38:2a:06:4d:a4:98:9b:14:86:5c:da:29:
88:87:93:9d:9c:36:a4:92:c7:02:47:73:b7:5a:d3:
5d:6a:3d:bb:8f:3a:c5:ec:d1:58:b3:2b:1b:4a:e4:
d8:36:f9:dc:b6:99:2f:83:34:fb:30:d2:07:2b:bb:
c5:dd:39:05:6c:b3:f7:4c:0a:c0:c4:40:a7:13:9a:
8f:99:69:87:b6:95:9e:ad:eb:db:f2:53:30:6a:b8:
21:4b:ab:59:be:6a:83:08:47:fa:94:63:da:dd:e1:
3a:bb:f2:6e:9e:0b:d3:c4:db:77:2a:1e:18:1e:bc:
0c:d7:5e:9b:ba:f9:79:ea:ca:ef:48:04:20:1b:68:
2f:91:97:8e:f2:5a:a3:87:90:38:94:55:13:4e:39:
e7:03:9b:b0:bb:e7:55:5c:b1:59:db:88:4c:67:c2:
ad:41:fb:a7:bf:62:66:99:bf:6e:e8:57:e4:f2:6e:
e6:37:d3:9a:f5:48:11:ad:ac:8c:fa:91:49:80:10:
69:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:F8:7A:03:6B:FF:83:C4:99:01:E7:2B:47:E6:AC:70:F7:CC:8F:50
X509v3 Authority Key Identifier:
keyid:29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/8Ph6A2v_g8SZAecrR-ascPfMj1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/KUC2lLuglTROS9uZ9R4fECO-V84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:d8c0:100::/48
Signature Algorithm: sha256WithRSAEncryption
a6:ae:60:cb:ff:40:3c:f8:19:b2:1d:dc:8f:88:54:27:3b:f4:
d7:fb:b4:10:fb:5a:ab:5b:43:cd:99:a2:9f:5f:98:4f:2e:37:
17:f0:71:99:19:c1:78:39:a9:30:3c:d8:f2:2e:ef:9f:cf:b4:
a8:af:a5:f8:15:de:89:56:c6:60:28:13:65:c4:6d:4d:49:36:
25:d2:07:59:54:04:a9:9f:99:33:09:44:b6:aa:02:b5:3e:4d:
e3:0e:75:14:b8:7c:84:8d:e1:50:41:e9:9d:ff:53:c9:81:cb:
e1:b9:e8:6b:d3:f6:74:2b:c5:e3:b8:34:49:58:7b:64:b3:ef:
0b:d2:92:d8:3e:fc:0f:89:7f:88:3d:22:3b:42:f5:f9:43:51:
11:80:11:6d:51:48:b1:87:54:35:6b:ee:61:c3:bd:6b:ae:f7:
a8:27:f6:ee:85:a7:13:c9:d2:61:20:7a:c5:c6:81:4a:47:b8:
31:ec:d7:91:4f:9e:d0:76:b9:a0:00:c5:06:67:44:aa:8b:18:
25:21:f5:79:05:b1:64:bf:08:e5:f2:e2:20:15:9b:c5:6d:61:
5f:b5:3f:de:23:51:10:9a:1a:a8:cc:84:fe:46:59:b6:0b:a1:
24:09:0d:8e:d7:17:90:82:ec:48:47:fd:3b:66:de:32:75:3d:
6e:c2:a5:a5
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVvlJ4jY/auMDTjSYKxajDJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5NDBiNjk0YmJhMDk1MzQ0ZTRiZGI5OWY1MWUxZjEwMjNi
ZTU3Y2UwHhcNMjMwMTAxMjMwNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMGY4N2EwMzZiZmY4M2M0OTkwMWU3MmI0N2U2YWM3MGY3Y2M4ZjUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxzkoMK57mC93ZdI68sHMSx++3sLY
WDIGwLZORfpNPiViQFF7LW2xFuVBLMDB12ncU9sR0DiD+4YejCYD1yA4KgZNpJib
FIZc2imIh5OdnDakkscCR3O3WtNdaj27jzrF7NFYsysbSuTYNvnctpkvgzT7MNIH
K7vF3TkFbLP3TArAxECnE5qPmWmHtpWerevb8lMwarghS6tZvmqDCEf6lGPa3eE6
u/JungvTxNt3Kh4YHrwM116buvl56srvSAQgG2gvkZeO8lqjh5A4lFUTTjnnA5uw
u+dVXLFZ24hMZ8KtQfunv2Jmmb9u6Ffk8m7mN9Oa9UgRrayM+pFJgBBpzQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFPD4egNr/4PEmQHnK0fmrHD3zI9QMB8GA1UdIwQY
MBaAFClAtpS7oJU0TkvbmfUeHxAjvlfOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1VDMmxMdWdsVFJPUzl1WjlSNGZFQ08tVjg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi82MTA3ZTQtNDM5My00Y2JlLWE2YzIt
MjdjMWEzNTk3NmRlLzEvOFBoNkEydl9nOFNaQWVjclItYXNjUGZNajFBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi82MTA3ZTQtNDM5My00Y2JlLWE2YzItMjdjMWEzNTk3NmRl
LzEvS1VDMmxMdWdsVFJPUzl1WjlSNGZFQ08tVjg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgDYwAEA
MA0GCSqGSIb3DQEBCwUAA4IBAQCmrmDL/0A8+BmyHdyPiFQnO/TX+7QQ+1qrW0PN
maKfX5hPLjcX8HGZGcF4OakwPNjyLu+fz7Sor6X4Fd6JVsZgKBNlxG1NSTYl0gdZ
VASpn5kzCUS2qgK1Pk3jDnUUuHyEjeFQQemd/1PJgcvhuehr0/Z0K8XjuDRJWHtk
s+8L0pLYPvwPiX+IPSI7QvX5Q1ERgBFtUUixh1Q1a+5hw71rrveoJ/buhacTydJh
IHrFxoFKR7gx7NeRT57QdrmgAMUGZ0SqixglIfV5BbFkvwjl8uIgFZvFbWFftT/e
I1EQmhqozIT+Rlm2C6EkCQ2O1xeQguxIR/07Zt4ydT1uwqWl
-----END CERTIFICATE-----
Generated at Mon Jan 1 21:28:32 2024 by rpki-client on console-fra.rpki-client.org