Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/32e7dc-bd1a-425b-9ee1-01de2598629f/1/Xohzxr4tstkf4gJUxPOzrXNXpo8.roa
File: Xohzxr4tstkf4gJUxPOzrXNXpo8.roa (raw, json)
Hash identifier: zoPnVHatdH1hypg7uxeYpkMdCnuTiV4o3e+NDdWIIsk=
Subject key identifier: 5E:88:73:C6:BE:2D:B2:D9:1F:E2:02:54:C4:F3:B3:AD:73:57:A6:8F
Certificate issuer: /CN=fb7548da38beb1ce72f8a6933b31da5b5c654834
Certificate serial: 018E61DD6D23511154ACB4F06996C78476A7
Authority key identifier: FB:75:48:DA:38:BE:B1:CE:72:F8:A6:93:3B:31:DA:5B:5C:65:48:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-3VI2ji-sc5y-KaTOzHaW1xlSDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/32e7dc-bd1a-425b-9ee1-01de2598629f/1/Xohzxr4tstkf4gJUxPOzrXNXpo8.roa
Signing time: Thu 21 Mar 2024 16:34:45 +0000
ROA not before: Thu 21 Mar 2024 16:34:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197963
IP address blocks: 2001:67c:e3c::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 23 Mar 2024 21:31:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:61:dd:6d:23:51:11:54:ac:b4:f0:69:96:c7:84:76:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb7548da38beb1ce72f8a6933b31da5b5c654834
Validity
Not Before: Mar 21 16:34:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5e8873c6be2db2d91fe20254c4f3b3ad7357a68f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:53:36:11:2e:e9:f2:82:2c:bf:f5:89:2a:f8:
c4:d2:70:92:4d:2e:f0:bd:43:e9:c7:62:6d:e2:3f:
bf:56:56:6d:39:c9:a9:36:56:c7:22:9a:10:cd:78:
9f:39:f7:2d:06:83:0c:df:bf:cf:f7:44:1a:84:87:
2e:3f:29:7c:c7:9d:a7:af:42:e3:c5:d2:8c:60:42:
0f:8b:83:eb:ae:a7:4e:57:1b:81:f4:66:d6:d0:d8:
77:24:94:83:a2:47:ff:1c:36:95:89:a0:c5:65:c9:
d0:b4:81:f3:20:22:2b:e3:7a:fb:c7:3a:98:49:3b:
a1:d5:30:69:bb:a8:fb:96:13:48:6e:b0:1d:88:66:
ae:cf:0b:9b:be:cb:ee:d4:bc:5c:2c:e9:a0:43:ca:
3a:46:d5:c7:34:bc:8a:1b:ba:59:cd:68:39:a4:e6:
b3:07:62:a6:14:fc:61:a8:f9:df:87:7a:9e:20:2d:
5a:71:77:54:0c:76:bc:c5:ff:a8:37:ff:2f:94:ac:
cc:c9:65:12:45:09:0b:06:8b:6c:39:65:ba:ff:e5:
44:fb:25:d3:c3:11:12:d9:7d:8b:33:bb:57:32:d9:
bb:6d:52:85:93:81:9d:92:2d:40:35:d1:3c:7e:0b:
49:b4:43:22:19:ea:9a:4d:f4:a0:74:e3:1b:bd:5e:
2d:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:88:73:C6:BE:2D:B2:D9:1F:E2:02:54:C4:F3:B3:AD:73:57:A6:8F
X509v3 Authority Key Identifier:
keyid:FB:75:48:DA:38:BE:B1:CE:72:F8:A6:93:3B:31:DA:5B:5C:65:48:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-3VI2ji-sc5y-KaTOzHaW1xlSDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/32e7dc-bd1a-425b-9ee1-01de2598629f/1/Xohzxr4tstkf4gJUxPOzrXNXpo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/32e7dc-bd1a-425b-9ee1-01de2598629f/1/1-3VI2ji-sc5y-KaTOzHaW1xlSDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:e3c::/48
Signature Algorithm: sha256WithRSAEncryption
22:12:41:24:ab:f0:f5:e4:89:e3:e0:1b:39:e5:f7:8c:a3:d5:
8e:d0:8b:4d:a3:a4:4a:ef:db:d3:5a:01:73:26:a7:4c:85:9f:
04:93:fc:53:d2:8e:c2:de:a2:f9:ca:7c:65:62:29:b0:f6:b8:
af:32:e1:83:f1:64:75:61:81:77:98:6d:84:ab:2f:a9:55:d4:
67:97:74:07:97:3e:61:3c:cf:e5:19:83:8c:1a:6c:83:8e:67:
7c:bf:21:d8:10:95:80:af:7b:f9:e8:c2:85:0e:14:99:10:5a:
9e:cb:e4:91:a0:90:9f:84:3e:ca:ec:63:c5:0a:23:e9:fe:97:
f4:80:b7:66:9c:95:1a:a0:dd:69:ec:35:97:d6:e8:81:62:f0:
95:48:26:61:33:32:b0:35:88:27:f9:2d:78:29:9a:03:49:23:
4d:63:77:73:90:23:35:28:06:a0:75:53:2c:c5:a4:95:66:3b:
51:5f:60:60:a8:b3:e5:84:09:f1:13:90:c0:55:74:5d:9e:58:
23:91:8c:d0:b8:b5:81:8e:c6:e9:2c:00:a5:b3:36:ba:6b:77:
74:80:24:fa:75:53:d2:57:6f:47:76:46:97:a1:c2:c6:1f:6b:
e1:4a:98:f8:bb:cf:67:56:bf:c8:9f:78:65:84:eb:6c:f7:df:
87:7c:27:7c
-----BEGIN CERTIFICATE-----
MIIFAjCCA+qgAwIBAgISAY5h3W0jURFUrLTwaZbHhHanMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZiNzU0OGRhMzhiZWIxY2U3MmY4YTY5MzNiMzFkYTViNWM2
NTQ4MzQwHhcNMjQwMzIxMTYzNDQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZTg4NzNjNmJlMmRiMmQ5MWZlMjAyNTRjNGYzYjNhZDczNTdhNjhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvVM2ES7p8oIsv/WJKvjE0nCSTS7w
vUPpx2Jt4j+/VlZtOcmpNlbHIpoQzXifOfctBoMM37/P90QahIcuPyl8x52nr0Lj
xdKMYEIPi4PrrqdOVxuB9GbW0Nh3JJSDokf/HDaViaDFZcnQtIHzICIr43r7xzqY
STuh1TBpu6j7lhNIbrAdiGauzwubvsvu1LxcLOmgQ8o6RtXHNLyKG7pZzWg5pOaz
B2KmFPxhqPnfh3qeIC1acXdUDHa8xf+oN/8vlKzMyWUSRQkLBotsOWW6/+VE+yXT
wxES2X2LM7tXMtm7bVKFk4Gdki1ANdE8fgtJtEMiGeqaTfSgdOMbvV4tjQIDAQAB
o4ICDjCCAgowHQYDVR0OBBYEFF6Ic8a+LbLZH+ICVMTzs61zV6aPMB8GA1UdIwQY
MBaAFPt1SNo4vrHOcvimkzsx2ltcZUg0MA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS0zVkkyamktc2M1eS1LYVRPekhhVzF4bFNEUS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjAvMzJlN2RjLWJkMWEtNDI1Yi05ZWUx
LTAxZGUyNTk4NjI5Zi8xL1hvaHp4cjR0c3RrZjRnSlV4UE96clhOWHBvOC5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvZjAvMzJlN2RjLWJkMWEtNDI1Yi05ZWUxLTAxZGUyNTk4NjI5
Zi8xLzEtM1ZJMmppLXNjNXktS2FUT3pIYVcxeGxTRFEuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAgAQZ8
DjwwDQYJKoZIhvcNAQELBQADggEBACISQSSr8PXkiePgGznl94yj1Y7Qi02jpErv
29NaAXMmp0yFnwST/FPSjsLeovnKfGViKbD2uK8y4YPxZHVhgXeYbYSrL6lV1GeX
dAeXPmE8z+UZg4wabIOOZ3y/IdgQlYCve/nowoUOFJkQWp7L5JGgkJ+EPsrsY8UK
I+n+l/SAt2aclRqg3WnsNZfW6IFi8JVIJmEzMrA1iCf5LXgpmgNJI01jd3OQIzUo
BqB1UyzFpJVmO1FfYGCos+WECfETkMBVdF2eWCORjNC4tYGOxuksAKWzNrprd3SA
JPp1U9JXb0d2RpehwsYfa+FKmPi7z2dWv8ifeGWE62z334d8J3w=
-----END CERTIFICATE-----
Generated at Sat Mar 23 22:22:07 2024 by rpki-client on console-fra.rpki-client.org