Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/ddac0d-3743-4cd2-a6a3-a1246c67d9de/1/uwq0TpMhS87bO7i2me0mmKFFGUA.roa
File: uwq0TpMhS87bO7i2me0mmKFFGUA.roa (raw, json)
Hash identifier: ZFqndt2vTGxDFF2psbhuEOaFp0GGZAHFpafeEcAPeYM=
Subject key identifier: BB:0A:B4:4E:93:21:4B:CE:DB:3B:B8:B6:99:ED:26:98:A1:45:19:40
Certificate issuer: /CN=1b1b4b5c2daaa6fc35071f438f968af6ff6ca4da
Certificate serial: 01856F7988ADE1C29E727E1AB041B6129677
Authority key identifier: 1B:1B:4B:5C:2D:AA:A6:FC:35:07:1F:43:8F:96:8A:F6:FF:6C:A4:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GxtLXC2qpvw1Bx9Dj5aK9v9spNo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/ddac0d-3743-4cd2-a6a3-a1246c67d9de/1/uwq0TpMhS87bO7i2me0mmKFFGUA.roa
Signing time: Sun 01 Jan 2023 22:35:13 +0000
ROA not before: Sun 01 Jan 2023 22:35:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210577
IP address blocks: 2001:67c:13dc::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:88:ad:e1:c2:9e:72:7e:1a:b0:41:b6:12:96:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b1b4b5c2daaa6fc35071f438f968af6ff6ca4da
Validity
Not Before: Jan 1 22:35:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb0ab44e93214bcedb3bb8b699ed2698a1451940
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:b0:08:f1:75:5b:70:2c:11:22:61:bf:5d:ec:
0f:a9:a4:28:5a:23:b2:74:cb:3a:49:a3:92:ca:89:
7d:21:59:23:30:f9:44:ce:67:fe:00:2b:2a:c5:a8:
27:6e:f4:6f:15:1f:94:f3:9f:d0:d7:5d:d6:96:a0:
92:63:e0:2d:64:0a:6d:e6:f6:24:df:20:76:b6:8f:
42:f6:ec:cc:cd:ff:ec:bc:c3:71:13:3f:5f:cd:b8:
52:7f:28:b9:aa:69:30:58:80:fa:dd:33:f5:cd:27:
1f:4b:65:0f:5e:9c:0e:2e:51:88:1a:96:99:35:9a:
bf:09:16:15:76:64:50:a9:f8:8d:44:17:f1:1a:b7:
51:eb:a4:c4:fb:f2:ce:31:f7:31:35:29:fb:40:7d:
75:f0:25:99:31:63:02:cb:a7:73:32:6e:d6:5e:67:
b0:78:37:80:4a:c9:a3:0a:23:1e:19:2f:2e:b8:80:
95:69:e3:4e:84:34:fc:04:03:b5:17:fd:2c:91:ef:
33:9a:7c:e8:66:4b:83:81:4c:18:ee:55:14:09:63:
a7:39:ac:9d:51:f9:65:e2:55:80:09:ac:52:20:24:
82:72:ef:ac:a8:ad:b9:75:89:38:dc:ac:d6:6b:89:
f1:79:bf:7b:b9:fa:46:4b:59:6e:da:7a:34:d6:61:
c7:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:0A:B4:4E:93:21:4B:CE:DB:3B:B8:B6:99:ED:26:98:A1:45:19:40
X509v3 Authority Key Identifier:
keyid:1B:1B:4B:5C:2D:AA:A6:FC:35:07:1F:43:8F:96:8A:F6:FF:6C:A4:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GxtLXC2qpvw1Bx9Dj5aK9v9spNo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/ddac0d-3743-4cd2-a6a3-a1246c67d9de/1/uwq0TpMhS87bO7i2me0mmKFFGUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/ddac0d-3743-4cd2-a6a3-a1246c67d9de/1/GxtLXC2qpvw1Bx9Dj5aK9v9spNo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:13dc::/48
Signature Algorithm: sha256WithRSAEncryption
4d:32:e8:c7:f7:b9:70:b5:86:91:5b:b5:12:54:6a:d0:8d:35:
ca:66:7e:75:63:a8:1b:f7:ca:f2:dc:eb:47:5d:7d:df:4d:07:
2c:39:a0:4f:32:f6:d9:53:d4:33:88:a4:12:07:4a:6f:69:49:
35:4b:8d:59:3f:6b:e8:ec:33:92:12:75:6d:25:86:13:47:02:
8f:af:c8:9f:83:a6:8f:ed:80:89:86:23:6a:79:fe:e9:4e:69:
6d:83:1b:98:02:59:76:ef:95:0e:cb:8a:be:6e:55:c7:e0:de:
47:65:1c:6e:db:5d:4a:46:33:fe:de:52:8b:c9:5a:e8:38:95:
3f:0c:e6:59:2f:3b:a0:49:19:ed:6e:69:8d:93:b4:82:56:e9:
b7:0c:82:11:f6:6a:76:c4:5e:3a:04:2a:99:f2:90:64:c6:99:
94:32:b7:14:e7:87:b8:18:9e:bb:61:e0:9a:39:96:74:67:cd:
fe:11:3f:7e:29:b1:09:44:e3:a8:79:28:37:5e:6e:46:f2:c8:
74:64:90:bc:34:61:13:62:38:25:c3:5f:21:8a:9f:2e:fe:00:
44:19:6d:3e:17:f8:ef:c7:44:10:ca:bd:91:16:52:88:7f:00:
b3:c5:fa:65:f0:53:09:57:72:a7:80:95:78:49:b1:5e:a9:ef:
f2:58:cd:46
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVveYit4cKecn4asEG2EpZ3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMWI0YjVjMmRhYWE2ZmMzNTA3MWY0MzhmOTY4YWY2ZmY2
Y2E0ZGEwHhcNMjMwMTAxMjIzNTEzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYjBhYjQ0ZTkzMjE0YmNlZGIzYmI4YjY5OWVkMjY5OGExNDUxOTQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh7AI8XVbcCwRImG/XewPqaQoWiOy
dMs6SaOSyol9IVkjMPlEzmf+ACsqxagnbvRvFR+U85/Q113WlqCSY+AtZApt5vYk
3yB2to9C9uzMzf/svMNxEz9fzbhSfyi5qmkwWID63TP1zScfS2UPXpwOLlGIGpaZ
NZq/CRYVdmRQqfiNRBfxGrdR66TE+/LOMfcxNSn7QH118CWZMWMCy6dzMm7WXmew
eDeASsmjCiMeGS8uuICVaeNOhDT8BAO1F/0ske8zmnzoZkuDgUwY7lUUCWOnOayd
Ufll4lWACaxSICSCcu+sqK25dYk43KzWa4nxeb97ufpGS1lu2no01mHHCwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFLsKtE6TIUvO2zu4tpntJpihRRlAMB8GA1UdIwQY
MBaAFBsbS1wtqqb8NQcfQ4+Wivb/bKTaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3h0TFhDMnFwdncxQng5RGo1YUs5djlzcE5vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy9kZGFjMGQtMzc0My00Y2QyLWE2YTMt
YTEyNDZjNjdkOWRlLzEvdXdxMFRwTWhTODdiTzdpMm1lMG1tS0ZGR1VBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy9kZGFjMGQtMzc0My00Y2QyLWE2YTMtYTEyNDZjNjdkOWRl
LzEvR3h0TFhDMnFwdncxQng5RGo1YUs5djlzcE5vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfBPc
MA0GCSqGSIb3DQEBCwUAA4IBAQBNMujH97lwtYaRW7USVGrQjTXKZn51Y6gb98ry
3OtHXX3fTQcsOaBPMvbZU9QziKQSB0pvaUk1S41ZP2vo7DOSEnVtJYYTRwKPr8if
g6aP7YCJhiNqef7pTmltgxuYAll275UOy4q+blXH4N5HZRxu211KRjP+3lKLyVro
OJU/DOZZLzugSRntbmmNk7SCVum3DIIR9mp2xF46BCqZ8pBkxpmUMrcU54e4GJ67
YeCaOZZ0Z83+ET9+KbEJROOoeSg3Xm5G8sh0ZJC8NGETYjglw18hip8u/gBEGW0+
F/jvx0QQyr2RFlKIfwCzxfpl8FMJV3KngJV4SbFeqe/yWM1G
-----END CERTIFICATE-----
Generated at Mon Jan 1 06:17:08 2024 by rpki-client on console-ams.rpki-client.org