Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b8072f-f355-4dd6-9393-6a65d8041803/1/oPALf04zZzf1ub9whbfjGDfVtwU.roa
File: oPALf04zZzf1ub9whbfjGDfVtwU.roa (raw, json)
Hash identifier: wY04qURut+9cM0kwY+7R3MGGwK7qRcyHDWgfHMYi/YE=
Subject key identifier: A0:F0:0B:7F:4E:33:67:37:F5:B9:BF:70:85:B7:E3:18:37:D5:B7:05
Certificate issuer: /CN=5e51c193fb7ff1746a215c41817f50ecba5a581a
Certificate serial: 01857139BC0EBC6B0A4A6E47B523F37F6A26
Authority key identifier: 5E:51:C1:93:FB:7F:F1:74:6A:21:5C:41:81:7F:50:EC:BA:5A:58:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XlHBk_t_8XRqIVxBgX9Q7LpaWBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b8072f-f355-4dd6-9393-6a65d8041803/1/oPALf04zZzf1ub9whbfjGDfVtwU.roa
Signing time: Mon 02 Jan 2023 06:44:47 +0000
ROA not before: Mon 02 Jan 2023 06:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 2001:678:f8c::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:bc:0e:bc:6b:0a:4a:6e:47:b5:23:f3:7f:6a:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e51c193fb7ff1746a215c41817f50ecba5a581a
Validity
Not Before: Jan 2 06:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0f00b7f4e336737f5b9bf7085b7e31837d5b705
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:c2:1a:a0:04:5e:30:a8:13:8e:87:94:03:09:
77:7e:73:a4:5e:47:e3:3a:85:16:b9:b4:7f:ec:b8:
81:bc:9a:0c:00:10:3c:53:c9:56:d0:4e:7d:c3:86:
26:34:4b:2f:72:76:a2:05:40:1d:7f:48:ac:5d:3b:
8b:6c:58:27:97:3d:8a:7c:79:89:09:56:95:79:df:
cd:4a:e3:53:d7:a6:55:cc:69:90:18:9a:bf:e1:bb:
15:52:82:a6:e6:a8:91:57:f5:20:6e:64:23:66:fb:
e3:56:3c:79:7c:b5:00:f7:6e:42:17:e1:a5:0b:18:
da:c3:88:35:47:93:cd:53:af:78:a5:91:46:10:44:
a4:c1:ae:a5:57:1a:d7:3a:e6:f9:48:5b:10:f2:55:
90:4d:4b:02:38:70:d1:0e:2e:f4:75:e6:6f:6c:71:
df:92:20:b8:6d:d6:58:fb:ee:5a:fb:9c:f7:e0:bd:
98:86:b9:29:6e:92:00:7e:a9:45:ac:95:5b:85:82:
61:70:9c:90:17:94:9e:14:23:71:8a:47:60:4e:a9:
16:11:09:be:cf:cd:a7:d7:80:8d:91:c6:aa:06:34:
4e:cc:86:af:f3:60:90:f4:bb:92:67:2e:1b:0b:d3:
70:51:d7:1d:2f:9b:a0:99:82:b4:9a:be:1d:73:d2:
df:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:F0:0B:7F:4E:33:67:37:F5:B9:BF:70:85:B7:E3:18:37:D5:B7:05
X509v3 Authority Key Identifier:
keyid:5E:51:C1:93:FB:7F:F1:74:6A:21:5C:41:81:7F:50:EC:BA:5A:58:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlHBk_t_8XRqIVxBgX9Q7LpaWBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b8072f-f355-4dd6-9393-6a65d8041803/1/oPALf04zZzf1ub9whbfjGDfVtwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b8072f-f355-4dd6-9393-6a65d8041803/1/XlHBk_t_8XRqIVxBgX9Q7LpaWBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:f8c::/48
Signature Algorithm: sha256WithRSAEncryption
71:e9:73:4d:9a:e4:c9:77:e5:05:36:b5:6a:fe:a0:98:79:a1:
b9:69:ef:93:bb:6d:44:03:d3:80:5b:4d:a3:0e:79:fc:f5:ca:
db:97:b8:a0:ea:55:00:fe:78:34:c3:f9:c4:96:a0:45:72:bf:
69:ea:cc:88:f0:f5:51:44:fc:fc:62:ed:43:39:66:90:c9:91:
e3:23:04:4e:47:6f:10:a2:c2:7b:ef:2f:66:d4:9e:e0:b8:f9:
54:3d:fc:20:ae:c0:cb:d7:db:6b:81:ec:a7:19:e1:d6:1e:3a:
4a:65:aa:14:28:b9:41:d7:c8:57:d5:c6:d5:bc:fd:0f:6d:6b:
ef:db:8a:b1:48:6b:87:8e:b8:d8:c3:f3:66:de:af:d4:98:c8:
28:bc:3b:0a:f6:fb:db:28:8c:b9:ef:1e:9f:f0:31:53:fb:2f:
b8:2a:74:18:c7:38:69:45:10:cf:ef:b2:1d:1f:52:54:44:88:
bc:be:23:7b:08:c2:fe:99:06:6b:eb:b1:07:8f:1d:ed:65:11:
14:67:e4:ba:93:96:1f:d9:da:b8:5f:04:7b:d8:a6:e0:73:82:
2e:70:60:aa:8e:49:91:18:37:10:b4:26:00:a2:f5:be:e5:1c:
46:ec:a6:42:57:a4:b6:14:4d:bc:ed:91:49:51:03:47:a8:30:
47:3b:e1:a0
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVxObwOvGsKSm5HtSPzf2omMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlNTFjMTkzZmI3ZmYxNzQ2YTIxNWM0MTgxN2Y1MGVjYmE1
YTU4MWEwHhcNMjMwMTAyMDY0NDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMGYwMGI3ZjRlMzM2NzM3ZjViOWJmNzA4NWI3ZTMxODM3ZDViNzA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsMIaoAReMKgTjoeUAwl3fnOkXkfj
OoUWubR/7LiBvJoMABA8U8lW0E59w4YmNEsvcnaiBUAdf0isXTuLbFgnlz2KfHmJ
CVaVed/NSuNT16ZVzGmQGJq/4bsVUoKm5qiRV/UgbmQjZvvjVjx5fLUA925CF+Gl
Cxjaw4g1R5PNU694pZFGEESkwa6lVxrXOub5SFsQ8lWQTUsCOHDRDi70deZvbHHf
kiC4bdZY++5a+5z34L2YhrkpbpIAfqlFrJVbhYJhcJyQF5SeFCNxikdgTqkWEQm+
z82n14CNkcaqBjROzIav82CQ9LuSZy4bC9NwUdcdL5ugmYK0mr4dc9LfswIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFKDwC39OM2c39bm/cIW34xg31bcFMB8GA1UdIwQY
MBaAFF5RwZP7f/F0aiFcQYF/UOy6WlgaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGxIQmtfdF84WFJxSVZ4QmdYOVE3THBhV0JvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9iODA3MmYtZjM1NS00ZGQ2LTkzOTMt
NmE2NWQ4MDQxODAzLzEvb1BBTGYwNHpaemYxdWI5d2hiZmpHRGZWdHdVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOC9iODA3MmYtZjM1NS00ZGQ2LTkzOTMtNmE2NWQ4MDQxODAz
LzEvWGxIQmtfdF84WFJxSVZ4QmdYOVE3THBhV0JvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeA+M
MA0GCSqGSIb3DQEBCwUAA4IBAQBx6XNNmuTJd+UFNrVq/qCYeaG5ae+Tu21EA9OA
W02jDnn89crbl7ig6lUA/ng0w/nElqBFcr9p6syI8PVRRPz8Yu1DOWaQyZHjIwRO
R28QosJ77y9m1J7guPlUPfwgrsDL19trgeynGeHWHjpKZaoUKLlB18hX1cbVvP0P
bWvv24qxSGuHjrjYw/Nm3q/UmMgovDsK9vvbKIy57x6f8DFT+y+4KnQYxzhpRRDP
77IdH1JURIi8viN7CML+mQZr67EHjx3tZREUZ+S6k5Yf2dq4XwR72Kbgc4IucGCq
jkmRGDcQtCYAovW+5RxG7KZCV6S2FE287ZFJUQNHqDBHO+Gg
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:28 2024 by rpki-client on console-ams.rpki-client.org