Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/f0dd5f-b972-410b-9907-166fb9db6db3/1/9UiTLw69q5dYsHiVCW0Lnvm0XUM.roa
File: 9UiTLw69q5dYsHiVCW0Lnvm0XUM.roa (raw, json)
Hash identifier: v1cNYQ6bNS6IIYa+DB1KYXshSAwkKtNvm7DWcGFAnio=
Subject key identifier: F5:48:93:2F:0E:BD:AB:97:58:B0:78:95:09:6D:0B:9E:F9:B4:5D:43
Certificate issuer: /CN=4d302a2dd517a61a3b952746f2ee9fbe436d6349
Certificate serial: 01857102D45C5BABC883322D7300F18012BF
Authority key identifier: 4D:30:2A:2D:D5:17:A6:1A:3B:95:27:46:F2:EE:9F:BE:43:6D:63:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TTAqLdUXpho7lSdG8u6fvkNtY0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/f0dd5f-b972-410b-9907-166fb9db6db3/1/9UiTLw69q5dYsHiVCW0Lnvm0XUM.roa
Signing time: Mon 02 Jan 2023 05:44:48 +0000
ROA not before: Mon 02 Jan 2023 05:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51603
IP address blocks: 2a01:56f::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:d4:5c:5b:ab:c8:83:32:2d:73:00:f1:80:12:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d302a2dd517a61a3b952746f2ee9fbe436d6349
Validity
Not Before: Jan 2 05:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f548932f0ebdab9758b07895096d0b9ef9b45d43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:c2:77:a2:38:a4:91:0b:60:ff:f4:c1:58:ab:
43:df:4d:c5:52:70:e7:b5:ac:ea:55:43:77:b0:5a:
f9:b3:f5:a9:a9:2c:64:b4:50:b3:0a:3f:08:0e:d3:
46:55:e6:8e:07:bf:6f:02:2c:f3:04:8a:58:e6:95:
d5:3d:0e:20:6d:d7:21:39:d3:3b:6d:09:eb:e6:f8:
da:66:a9:82:0d:b8:9e:10:6d:ea:38:7d:f0:53:35:
0f:3f:52:6e:db:31:47:19:c6:3c:15:60:37:a6:cc:
de:7d:d4:dc:8f:02:97:c6:e5:76:f0:52:a6:7f:b7:
e8:13:9c:b4:22:fd:d1:c0:3b:74:f5:b0:fa:d7:8f:
5d:b1:d8:c0:b1:32:d3:5e:b8:54:43:7f:9f:d6:6d:
dc:5f:1f:ce:a6:8d:3f:55:89:eb:a3:7f:f2:df:86:
92:0a:11:cc:81:01:bb:3b:35:f9:ac:87:c7:af:03:
82:35:82:99:b9:2d:ce:26:fd:e8:9b:be:74:bb:51:
41:ac:14:20:96:87:31:2f:39:aa:a8:9f:f1:c2:25:
fe:53:a8:ff:cf:d8:49:34:cd:29:e6:d7:b4:2a:5d:
ee:24:98:f7:9d:61:d9:39:0b:89:be:88:5c:d7:d7:
41:05:ea:98:63:7d:b5:cf:f4:aa:60:17:47:2a:e8:
25:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:48:93:2F:0E:BD:AB:97:58:B0:78:95:09:6D:0B:9E:F9:B4:5D:43
X509v3 Authority Key Identifier:
keyid:4D:30:2A:2D:D5:17:A6:1A:3B:95:27:46:F2:EE:9F:BE:43:6D:63:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TTAqLdUXpho7lSdG8u6fvkNtY0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/f0dd5f-b972-410b-9907-166fb9db6db3/1/9UiTLw69q5dYsHiVCW0Lnvm0XUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/f0dd5f-b972-410b-9907-166fb9db6db3/1/TTAqLdUXpho7lSdG8u6fvkNtY0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:56f::/48
Signature Algorithm: sha256WithRSAEncryption
0f:83:88:27:10:57:4c:a3:8c:0e:ee:2d:51:2d:19:af:2c:b8:
3b:12:a1:d3:03:ca:e2:a0:ca:70:43:63:cb:dc:b4:ee:42:a1:
73:3e:71:ab:58:9e:70:d7:1c:14:ee:74:a3:01:93:64:08:87:
a1:61:b3:46:35:b9:73:1c:35:6d:56:1c:3b:f5:56:67:2b:76:
78:6f:53:b4:7b:15:76:64:1d:e5:b3:53:b3:e1:74:a0:52:16:
5d:99:f9:47:d3:7f:ac:f1:1d:33:cf:4a:42:43:70:d5:64:1a:
4f:40:34:2d:33:a9:f0:62:39:f9:ad:13:6a:80:dc:42:cc:c2:
39:65:3f:04:0b:fe:16:09:f2:83:15:dd:e2:78:d6:c6:8d:b5:
9b:39:8b:20:3d:be:8b:bb:33:73:79:e8:fb:3d:18:80:96:84:
6f:84:76:e9:2f:b8:ad:b5:0b:7b:ed:00:b2:ed:1b:1b:5b:a7:
6f:de:c3:05:7a:7d:ee:62:b2:6b:81:05:4f:23:00:41:8b:13:
0c:52:9a:84:e2:92:ad:83:a8:b3:22:ef:59:b0:64:8d:23:55:
4b:b3:28:dd:b8:e4:69:02:69:21:0d:ad:a1:2c:9d:65:8c:a7:
e8:40:f4:d3:0d:15:32:16:c2:37:76:44:d1:ca:84:fb:be:df:
6a:24:b7:ce
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVxAtRcW6vIgzItcwDxgBK/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkMzAyYTJkZDUxN2E2MWEzYjk1Mjc0NmYyZWU5ZmJlNDM2
ZDYzNDkwHhcNMjMwMTAyMDU0NDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNTQ4OTMyZjBlYmRhYjk3NThiMDc4OTUwOTZkMGI5ZWY5YjQ1ZDQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi8J3ojikkQtg//TBWKtD303FUnDn
tazqVUN3sFr5s/WpqSxktFCzCj8IDtNGVeaOB79vAizzBIpY5pXVPQ4gbdchOdM7
bQnr5vjaZqmCDbieEG3qOH3wUzUPP1Ju2zFHGcY8FWA3pszefdTcjwKXxuV28FKm
f7foE5y0Iv3RwDt09bD6149dsdjAsTLTXrhUQ3+f1m3cXx/Opo0/VYnro3/y34aS
ChHMgQG7OzX5rIfHrwOCNYKZuS3OJv3om750u1FBrBQglocxLzmqqJ/xwiX+U6j/
z9hJNM0p5te0Kl3uJJj3nWHZOQuJvohc19dBBeqYY321z/SqYBdHKuglWwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFPVIky8OvauXWLB4lQltC575tF1DMB8GA1UdIwQY
MBaAFE0wKi3VF6YaO5UnRvLun75DbWNJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVFRBcUxkVVhwaG83bFNkRzh1NmZ2a050WTBrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9mMGRkNWYtYjk3Mi00MTBiLTk5MDct
MTY2ZmI5ZGI2ZGIzLzEvOVVpVEx3NjlxNWRZc0hpVkNXMExudm0wWFVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi9mMGRkNWYtYjk3Mi00MTBiLTk5MDctMTY2ZmI5ZGI2ZGIz
LzEvVFRBcUxkVVhwaG83bFNkRzh1NmZ2a050WTBrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKgEFbwAA
MA0GCSqGSIb3DQEBCwUAA4IBAQAPg4gnEFdMo4wO7i1RLRmvLLg7EqHTA8rioMpw
Q2PL3LTuQqFzPnGrWJ5w1xwU7nSjAZNkCIehYbNGNblzHDVtVhw79VZnK3Z4b1O0
exV2ZB3ls1Oz4XSgUhZdmflH03+s8R0zz0pCQ3DVZBpPQDQtM6nwYjn5rRNqgNxC
zMI5ZT8EC/4WCfKDFd3ieNbGjbWbOYsgPb6LuzNzeej7PRiAloRvhHbpL7ittQt7
7QCy7RsbW6dv3sMFen3uYrJrgQVPIwBBixMMUpqE4pKtg6izIu9ZsGSNI1VLsyjd
uORpAmkhDa2hLJ1ljKfoQPTTDRUyFsI3dkTRyoT7vt9qJLfO
-----END CERTIFICATE-----
Generated at Mon Jan 1 06:17:10 2024 by rpki-client on console-ams.rpki-client.org