Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/s8ijWgUT3AUZJQj60bALRWDP9aQ.roa
File: s8ijWgUT3AUZJQj60bALRWDP9aQ.roa (raw, json)
Hash identifier: 95rTS9CvhahO5dUYKQ1f9VHMkTBR/tfVqlmMgbegxtM=
Subject key identifier: B3:C8:A3:5A:05:13:DC:05:19:25:08:FA:D1:B0:0B:45:60:CF:F5:A4
Certificate issuer: /CN=86cb742a03bc9c85507217a25204dfff82fccdf9
Certificate serial: 0189013FFD92AFECA7F575F66C02043DFD8F
Authority key identifier: 86:CB:74:2A:03:BC:9C:85:50:72:17:A2:52:04:DF:FF:82:FC:CD:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hst0KgO8nIVQcheiUgTf_4L8zfk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/s8ijWgUT3AUZJQj60bALRWDP9aQ.roa
Signing time: Wed 28 Jun 2023 09:05:18 +0000
ROA not before: Wed 28 Jun 2023 09:05:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 135330
IP address blocks: 2a0a:eec0:8::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:01:3f:fd:92:af:ec:a7:f5:75:f6:6c:02:04:3d:fd:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cb742a03bc9c85507217a25204dfff82fccdf9
Validity
Not Before: Jun 28 09:05:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b3c8a35a0513dc05192508fad1b00b4560cff5a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:fe:61:27:d2:4b:00:f6:b3:7a:0a:77:79:4b:
5e:62:ba:bb:fe:fd:2e:4a:19:d7:09:82:6b:08:bd:
19:f1:04:55:f4:ff:0b:3b:ac:5c:24:c6:b3:0c:e4:
ba:c0:91:1a:61:85:db:53:ea:d3:6a:07:fc:b2:0b:
70:6f:f1:e1:ef:b9:4e:5a:6b:3e:f3:fd:41:67:bb:
4a:cb:9a:6b:08:d7:1c:30:d8:88:f9:22:4c:52:1f:
ac:6c:7f:6d:7d:92:13:f8:e9:0a:3f:84:8a:e3:5f:
a9:a4:66:2d:3c:66:96:04:aa:17:35:56:a6:f2:d3:
25:5d:26:f2:53:c9:db:3f:94:53:9e:b4:fe:3f:1d:
8d:16:f2:4b:51:d3:77:73:f9:50:a2:00:af:c3:47:
87:31:1f:5a:b9:76:d5:01:e0:38:70:70:ed:c9:52:
83:6f:52:41:6d:03:22:d6:c5:2f:21:86:2e:0a:33:
b5:58:e4:4b:8b:87:78:08:bd:5c:2b:11:76:2a:f0:
78:b4:ce:75:8f:a2:b7:58:c8:65:3c:82:cf:b5:6b:
6c:ee:f2:3b:d7:03:fe:3a:97:26:58:78:8e:6e:da:
b5:6d:12:bb:7e:b9:b3:ed:ba:40:e1:db:be:ae:a6:
17:52:d2:fb:7e:a5:74:61:f0:7e:b1:d4:ec:57:28:
d0:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:C8:A3:5A:05:13:DC:05:19:25:08:FA:D1:B0:0B:45:60:CF:F5:A4
X509v3 Authority Key Identifier:
keyid:86:CB:74:2A:03:BC:9C:85:50:72:17:A2:52:04:DF:FF:82:FC:CD:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hst0KgO8nIVQcheiUgTf_4L8zfk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/s8ijWgUT3AUZJQj60bALRWDP9aQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/767ae5-b9a2-4993-81a8-05f18fc212a7/1/hst0KgO8nIVQcheiUgTf_4L8zfk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:eec0:8::/48
Signature Algorithm: sha256WithRSAEncryption
9f:cd:24:04:ec:3b:3f:6f:c6:fe:6d:4f:2a:c5:47:af:b4:ab:
dd:88:04:33:3f:be:dd:e6:a5:76:43:b5:b8:65:25:15:56:a4:
7e:89:74:89:df:37:de:f6:72:95:e4:ce:08:f4:e2:1b:d4:3d:
cc:e0:75:1f:f9:2f:f5:be:6c:c6:09:e3:c4:aa:b8:bf:ac:d7:
f8:4d:d8:76:98:2b:8a:68:c9:54:3a:ca:14:75:2f:76:16:da:
ce:bb:8a:d8:7c:ef:91:4d:16:7b:4c:cc:63:d5:25:ca:e4:3e:
52:9a:50:fa:d5:43:9c:74:43:20:6c:c4:62:b6:cc:a0:bc:77:
4b:35:2a:95:70:0c:df:aa:a7:f8:c7:14:2e:29:5f:8b:9e:48:
e0:45:1b:77:53:ff:f8:d1:35:ca:8f:2a:f8:59:bf:29:f9:cc:
2c:2e:eb:d8:6f:05:df:2d:71:ab:17:50:5e:86:62:b8:9d:38:
95:42:7a:6e:1e:ea:56:ae:52:46:9a:36:1e:d4:bd:3a:24:d2:
c7:00:00:5d:bb:e8:39:5d:e4:a4:1c:20:59:00:41:66:91:9c:
17:3b:4f:ce:13:6d:f4:f4:2e:55:66:a8:b8:d5:40:5d:2a:19:
ba:88:2f:00:21:bc:b7:2a:01:d5:c4:35:1e:3f:ec:3e:64:30:
8d:94:1a:47
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYkBP/2Sr+yn9XX2bAIEPf2PMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg2Y2I3NDJhMDNiYzljODU1MDcyMTdhMjUyMDRkZmZmODJm
Y2NkZjkwHhcNMjMwNjI4MDkwNTE4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiM2M4YTM1YTA1MTNkYzA1MTkyNTA4ZmFkMWIwMGI0NTYwY2ZmNWE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj/5hJ9JLAPazegp3eUteYrq7/v0u
ShnXCYJrCL0Z8QRV9P8LO6xcJMazDOS6wJEaYYXbU+rTagf8sgtwb/Hh77lOWms+
8/1BZ7tKy5prCNccMNiI+SJMUh+sbH9tfZIT+OkKP4SK41+ppGYtPGaWBKoXNVam
8tMlXSbyU8nbP5RTnrT+Px2NFvJLUdN3c/lQogCvw0eHMR9auXbVAeA4cHDtyVKD
b1JBbQMi1sUvIYYuCjO1WORLi4d4CL1cKxF2KvB4tM51j6K3WMhlPILPtWts7vI7
1wP+OpcmWHiObtq1bRK7frmz7bpA4du+rqYXUtL7fqV0YfB+sdTsVyjQwQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFLPIo1oFE9wFGSUI+tGwC0Vgz/WkMB8GA1UdIwQY
MBaAFIbLdCoDvJyFUHIXolIE3/+C/M35MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHN0MEtnTzhuSVZRY2hlaVVnVGZfNEw4emZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOS83NjdhZTUtYjlhMi00OTkzLTgxYTgt
MDVmMThmYzIxMmE3LzEvczhpaldnVVQzQVVaSlFqNjBiQUxSV0RQOWFRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOS83NjdhZTUtYjlhMi00OTkzLTgxYTgtMDVmMThmYzIxMmE3
LzEvaHN0MEtnTzhuSVZRY2hlaVVnVGZfNEw4emZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgruwAAI
MA0GCSqGSIb3DQEBCwUAA4IBAQCfzSQE7Ds/b8b+bU8qxUevtKvdiAQzP77d5qV2
Q7W4ZSUVVqR+iXSJ3zfe9nKV5M4I9OIb1D3M4HUf+S/1vmzGCePEqri/rNf4Tdh2
mCuKaMlUOsoUdS92FtrOu4rYfO+RTRZ7TMxj1SXK5D5SmlD61UOcdEMgbMRitsyg
vHdLNSqVcAzfqqf4xxQuKV+LnkjgRRt3U//40TXKjyr4Wb8p+cwsLuvYbwXfLXGr
F1BehmK4nTiVQnpuHupWrlJGmjYe1L06JNLHAABdu+g5XeSkHCBZAEFmkZwXO0/O
E2309C5VZqi41UBdKhm6iC8AIby3KgHVxDUeP+w+ZDCNlBpH
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:36 2024 by rpki-client on console-ams.rpki-client.org