Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e8f727-cb23-43ce-85d2-d48b7d2624db/1/scnAcSpLtOBGH5w9IHzMeyi6tos.roa
File: scnAcSpLtOBGH5w9IHzMeyi6tos.roa (raw, json)
Hash identifier: 0zMcRvDZ98K4NKqMCdAJJbQyLWFrg0EpX+n67+HPQ84=
Subject key identifier: B1:C9:C0:71:2A:4B:B4:E0:46:1F:9C:3D:20:7C:CC:7B:28:BA:B6:8B
Certificate issuer: /CN=e3011f0859d06a084975f4e8bd2b556710dd8c30
Certificate serial: 01857355FF6050188473083F373B1E33858D
Authority key identifier: E3:01:1F:08:59:D0:6A:08:49:75:F4:E8:BD:2B:55:67:10:DD:8C:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4wEfCFnQaghJdfTovStVZxDdjDA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e8f727-cb23-43ce-85d2-d48b7d2624db/1/scnAcSpLtOBGH5w9IHzMeyi6tos.roa
Signing time: Mon 02 Jan 2023 16:34:53 +0000
ROA not before: Mon 02 Jan 2023 16:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211696
IP address blocks: 2001:67c:2724::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:55:ff:60:50:18:84:73:08:3f:37:3b:1e:33:85:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3011f0859d06a084975f4e8bd2b556710dd8c30
Validity
Not Before: Jan 2 16:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1c9c0712a4bb4e0461f9c3d207ccc7b28bab68b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:e0:17:3d:16:bc:bb:3b:01:ff:10:ca:4f:e0:
5d:9a:d0:2a:a8:2f:57:89:98:16:85:d4:1b:18:f0:
71:af:9e:4e:d8:73:3b:f7:df:ec:8c:c1:3b:93:cf:
3f:28:e2:1b:c6:36:80:1b:5b:58:38:b6:55:e6:9d:
20:6e:8b:25:97:05:a8:97:a0:f5:a4:a7:cc:ac:4e:
02:96:a3:4e:f1:a7:f7:7e:c1:51:8b:cf:eb:a2:5a:
71:9f:08:67:4a:08:32:dd:bb:8e:aa:4c:88:59:7f:
1d:d2:0d:26:68:a2:c0:67:b1:ab:10:16:34:08:7f:
50:b2:84:90:9b:48:d7:de:92:13:cb:45:44:a2:f3:
32:e4:bc:6c:3b:3e:df:4f:da:44:ab:25:2a:ab:ec:
9c:df:2e:9e:e4:c9:0a:e9:b1:a1:bc:de:19:b3:13:
a2:ca:40:1c:d7:56:91:01:8a:a5:7c:2d:4b:72:65:
3d:2a:c8:a1:98:60:3a:cf:9f:16:91:c4:5b:3c:a3:
a5:76:5c:08:39:a7:94:a5:d2:05:89:7c:1b:27:38:
d5:05:bd:3e:33:ae:f4:a8:51:a7:74:1d:b9:b8:05:
fd:93:0d:61:8e:2f:95:0c:8f:bd:89:44:f3:d5:fb:
f4:4c:c4:68:d6:30:48:1a:9c:5d:e7:80:09:d1:01:
60:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:C9:C0:71:2A:4B:B4:E0:46:1F:9C:3D:20:7C:CC:7B:28:BA:B6:8B
X509v3 Authority Key Identifier:
keyid:E3:01:1F:08:59:D0:6A:08:49:75:F4:E8:BD:2B:55:67:10:DD:8C:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4wEfCFnQaghJdfTovStVZxDdjDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e8f727-cb23-43ce-85d2-d48b7d2624db/1/scnAcSpLtOBGH5w9IHzMeyi6tos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e8f727-cb23-43ce-85d2-d48b7d2624db/1/4wEfCFnQaghJdfTovStVZxDdjDA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2724::/48
Signature Algorithm: sha256WithRSAEncryption
23:da:52:03:c1:7f:af:d9:1f:1b:26:4a:29:3c:18:47:f1:66:
65:c9:54:cd:2c:bd:80:7a:8d:92:99:e1:a4:af:50:6a:b0:a4:
1a:40:f6:6c:b3:99:50:72:38:c3:5c:81:2d:40:e5:c3:92:31:
ec:40:33:68:d2:56:2d:61:5e:7a:b1:30:97:be:e0:c9:2f:e2:
b5:56:60:f7:bd:29:1d:ee:e8:c1:99:98:62:5d:e6:26:ab:87:
e8:12:83:79:9f:20:38:95:2a:0f:bf:91:da:ab:3c:f3:02:ad:
e2:ed:b8:9c:da:ad:26:ff:f8:20:08:61:74:79:ee:83:02:2c:
5c:b4:1b:e6:55:eb:5f:8b:6d:73:54:d2:08:72:40:f1:99:ac:
77:a6:54:c2:cb:d4:73:81:6d:0e:6b:bb:ac:86:da:76:c6:5f:
c8:27:a4:23:67:6e:2d:dc:48:98:5c:90:44:36:5c:84:54:72:
ed:0a:46:f8:28:72:a9:02:d8:a0:e5:7c:70:22:d2:26:8d:17:
47:cb:33:15:2a:c5:52:b2:be:42:03:67:06:24:63:6a:66:85:
8f:49:07:bc:12:f3:3b:a6:2a:1e:25:78:47:11:4b:54:c6:2e:
90:30:8a:f5:9d:52:ab:7e:a7:51:9c:ea:7d:b2:b3:3d:6c:03:
30:f4:ca:d6
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYVzVf9gUBiEcwg/NzseM4WNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUzMDExZjA4NTlkMDZhMDg0OTc1ZjRlOGJkMmI1NTY3MTBk
ZDhjMzAwHhcNMjMwMTAyMTYzNDUzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMWM5YzA3MTJhNGJiNGUwNDYxZjljM2QyMDdjY2M3YjI4YmFiNjhiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhuAXPRa8uzsB/xDKT+BdmtAqqC9X
iZgWhdQbGPBxr55O2HM799/sjME7k88/KOIbxjaAG1tYOLZV5p0gbosllwWol6D1
pKfMrE4ClqNO8af3fsFRi8/rolpxnwhnSggy3buOqkyIWX8d0g0maKLAZ7GrEBY0
CH9QsoSQm0jX3pITy0VEovMy5LxsOz7fT9pEqyUqq+yc3y6e5MkK6bGhvN4ZsxOi
ykAc11aRAYqlfC1LcmU9KsihmGA6z58WkcRbPKOldlwIOaeUpdIFiXwbJzjVBb0+
M670qFGndB25uAX9kw1hji+VDI+9iUTz1fv0TMRo1jBIGpxd54AJ0QFg8wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFLHJwHEqS7TgRh+cPSB8zHsouraLMB8GA1UdIwQY
MBaAFOMBHwhZ0GoISXX06L0rVWcQ3YwwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHdFZkNGblFhZ2hKZGZUb3ZTdFZaeERkakRBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9lOGY3MjctY2IyMy00M2NlLTg1ZDIt
ZDQ4YjdkMjYyNGRiLzEvc2NuQWNTcEx0T0JHSDV3OUlIek1leWk2dG9zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9lOGY3MjctY2IyMy00M2NlLTg1ZDItZDQ4YjdkMjYyNGRi
LzEvNHdFZkNGblFhZ2hKZGZUb3ZTdFZaeERkakRBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCck
MA0GCSqGSIb3DQEBCwUAA4IBAQAj2lIDwX+v2R8bJkopPBhH8WZlyVTNLL2Aeo2S
meGkr1BqsKQaQPZss5lQcjjDXIEtQOXDkjHsQDNo0lYtYV56sTCXvuDJL+K1VmD3
vSkd7ujBmZhiXeYmq4foEoN5nyA4lSoPv5HaqzzzAq3i7bic2q0m//ggCGF0ee6D
AixctBvmVetfi21zVNIIckDxmax3plTCy9RzgW0Oa7ushtp2xl/IJ6QjZ24t3EiY
XJBENlyEVHLtCkb4KHKpAtig5XxwItImjRdHyzMVKsVSsr5CA2cGJGNqZoWPSQe8
EvM7pioeJXhHEUtUxi6QMIr1nVKrfqdRnOp9srM9bAMw9MrW
-----END CERTIFICATE-----
Generated at Mon Jan 1 02:13:28 2024 by rpki-client on console.sobornost.net