Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/qJU-SYdBbhBQpT_qHO5ZXEy7lsM.roa
File: qJU-SYdBbhBQpT_qHO5ZXEy7lsM.roa (raw, json)
Hash identifier: NkP9AJFcTjEXwJZWRetsUFKh7Dwoim75RQvuJFxAnHc=
Subject key identifier: A8:95:3E:49:87:41:6E:10:50:A5:3F:EA:1C:EE:59:5C:4C:BB:96:C3
Certificate issuer: /CN=1fb5c1bbaed44c8b6ae3f2b566d01cc258dfc2ce
Certificate serial: 01856F94AF43BD696A44BB8535A621F08007
Authority key identifier: 1F:B5:C1:BB:AE:D4:4C:8B:6A:E3:F2:B5:66:D0:1C:C2:58:DF:C2:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H7XBu67UTItq4_K1ZtAcwljfws4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/qJU-SYdBbhBQpT_qHO5ZXEy7lsM.roa
Signing time: Sun 01 Jan 2023 23:04:53 +0000
ROA not before: Sun 01 Jan 2023 23:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211638
IP address blocks: 2001:678:f0c::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:af:43:bd:69:6a:44:bb:85:35:a6:21:f0:80:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fb5c1bbaed44c8b6ae3f2b566d01cc258dfc2ce
Validity
Not Before: Jan 1 23:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a8953e4987416e1050a53fea1cee595c4cbb96c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:80:c4:4f:97:39:2b:52:a9:3f:00:a7:88:c7:
ce:d1:aa:0f:4f:57:48:cb:8d:e7:7e:a6:09:94:76:
0d:e7:9d:d3:f5:1e:40:01:c2:62:8d:8d:23:7e:e7:
bf:5a:d2:2f:47:6f:8b:0d:c7:e1:3f:d3:b3:2c:d0:
44:ad:37:a7:8d:d1:36:41:6f:0e:bb:a7:d3:68:ce:
a1:ad:46:11:da:c0:c1:06:50:d4:0d:a7:1b:85:12:
b7:f3:93:a1:da:72:db:95:3f:72:63:6d:23:ac:5c:
6c:a6:b8:db:80:42:48:ab:9a:04:e5:cc:70:85:ea:
65:74:27:20:d8:bf:b5:c4:a7:26:33:48:f0:6d:eb:
df:7b:b3:f2:e3:43:cc:38:5c:8e:2c:4a:8b:85:46:
72:be:94:e8:df:13:b2:41:b4:54:50:3b:86:3c:d9:
61:5e:ee:67:4f:0e:82:bf:78:75:f0:13:57:f3:29:
f5:9e:62:c9:07:2f:e6:20:9c:c5:71:c2:43:3f:ca:
e2:74:fd:00:65:52:e2:2c:4d:e6:df:f6:9a:79:b4:
34:84:2f:62:a6:e9:33:d5:02:00:67:3f:d9:61:bb:
9a:3c:58:71:bf:98:c4:3b:fe:e0:13:1a:db:f5:1c:
dc:92:4c:18:d5:69:3e:71:74:f0:0b:07:56:7a:f3:
0c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:95:3E:49:87:41:6E:10:50:A5:3F:EA:1C:EE:59:5C:4C:BB:96:C3
X509v3 Authority Key Identifier:
keyid:1F:B5:C1:BB:AE:D4:4C:8B:6A:E3:F2:B5:66:D0:1C:C2:58:DF:C2:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H7XBu67UTItq4_K1ZtAcwljfws4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/qJU-SYdBbhBQpT_qHO5ZXEy7lsM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/3c4b53-eca3-4599-9d94-d71fc90c7b16/1/H7XBu67UTItq4_K1ZtAcwljfws4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:f0c::/48
Signature Algorithm: sha256WithRSAEncryption
22:59:23:1d:7b:41:a2:0d:c3:e9:b4:29:2f:b9:64:9e:17:68:
8b:fe:94:6f:b4:31:7a:4a:9e:71:e7:cc:88:d4:36:14:91:8f:
77:e9:92:ce:82:e2:f0:a0:e2:29:81:b2:63:36:44:ae:c0:ca:
04:72:af:13:6e:83:f7:e9:e7:1d:f8:9d:26:5b:e0:fb:9a:88:
27:57:29:01:2b:f6:9d:6c:af:38:c5:ba:5e:6f:ae:61:2d:39:
ed:c8:bb:df:e2:df:ea:49:26:06:24:e0:71:02:cf:c4:c8:7b:
05:45:4e:4c:f7:a2:5e:e3:35:92:77:06:aa:0d:e6:1c:fb:b1:
b9:29:33:ef:ce:64:e2:d5:d9:1a:8c:70:3e:10:d0:c6:67:6a:
8e:06:91:ce:d7:64:3a:df:fe:3a:d5:12:99:b3:1f:f7:62:5c:
56:6c:f7:c7:ef:1e:56:10:21:f8:d4:d7:a3:57:34:d4:19:5d:
33:ae:57:41:f2:6c:cb:d7:32:19:c9:a0:d9:e5:fb:40:e3:87:
29:e6:24:19:46:be:ed:5d:dd:8c:ce:3f:81:8d:f1:2a:92:b8:
80:90:2b:cd:93:cb:20:2e:50:15:86:fd:1e:81:2f:5f:c6:f6:
5b:50:44:8b:db:c1:91:bb:34:fc:ac:63:9e:7d:17:64:49:a4:
72:0b:5c:99
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVvlK9DvWlqRLuFNaYh8IAHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFmYjVjMWJiYWVkNDRjOGI2YWUzZjJiNTY2ZDAxY2MyNThk
ZmMyY2UwHhcNMjMwMTAxMjMwNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhODk1M2U0OTg3NDE2ZTEwNTBhNTNmZWExY2VlNTk1YzRjYmI5NmMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl4DET5c5K1KpPwCniMfO0aoPT1dI
y43nfqYJlHYN553T9R5AAcJijY0jfue/WtIvR2+LDcfhP9OzLNBErTenjdE2QW8O
u6fTaM6hrUYR2sDBBlDUDacbhRK385Oh2nLblT9yY20jrFxsprjbgEJIq5oE5cxw
hepldCcg2L+1xKcmM0jwbevfe7Py40PMOFyOLEqLhUZyvpTo3xOyQbRUUDuGPNlh
Xu5nTw6Cv3h18BNX8yn1nmLJBy/mIJzFccJDP8ridP0AZVLiLE3m3/aaebQ0hC9i
pukz1QIAZz/ZYbuaPFhxv5jEO/7gExrb9RzckkwY1Wk+cXTwCwdWevMMRwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFKiVPkmHQW4QUKU/6hzuWVxMu5bDMB8GA1UdIwQY
MBaAFB+1wbuu1EyLauPytWbQHMJY38LOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSDdYQnU2N1VUSXRxNF9LMVp0QWN3bGpmd3M0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS8zYzRiNTMtZWNhMy00NTk5LTlkOTQt
ZDcxZmM5MGM3YjE2LzEvcUpVLVNZZEJiaEJRcFRfcUhPNVpYRXk3bHNNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS8zYzRiNTMtZWNhMy00NTk5LTlkOTQtZDcxZmM5MGM3YjE2
LzEvSDdYQnU2N1VUSXRxNF9LMVp0QWN3bGpmd3M0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeA8M
MA0GCSqGSIb3DQEBCwUAA4IBAQAiWSMde0GiDcPptCkvuWSeF2iL/pRvtDF6Sp5x
58yI1DYUkY936ZLOguLwoOIpgbJjNkSuwMoEcq8TboP36ecd+J0mW+D7mognVykB
K/adbK84xbpeb65hLTntyLvf4t/qSSYGJOBxAs/EyHsFRU5M96Je4zWSdwaqDeYc
+7G5KTPvzmTi1dkajHA+ENDGZ2qOBpHO12Q63/461RKZsx/3YlxWbPfH7x5WECH4
1NejVzTUGV0zrldB8mzL1zIZyaDZ5ftA44cp5iQZRr7tXd2Mzj+BjfEqkriAkCvN
k8sgLlAVhv0egS9fxvZbUESL28GRuzT8rGOefRdkSaRyC1yZ
-----END CERTIFICATE-----
Generated at Tue Jan 2 04:11:00 2024 by rpki-client on console-ams.rpki-client.org