Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/9ZFeyd4U2GIVQQn-L_AI6F4dGTk.roa
File: 9ZFeyd4U2GIVQQn-L_AI6F4dGTk.roa (raw, json)
Hash identifier: DUiuibs6NwHnoMYP2CBQyq0fOZ7v8h3ZjU0OkyCtcg0=
Subject key identifier: F5:91:5E:C9:DE:14:D8:62:15:41:09:FE:2F:F0:08:E8:5E:1D:19:39
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 018636C8B2F54B4E65A4AB4FF123915A7946
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/9ZFeyd4U2GIVQQn-L_AI6F4dGTk.roa
Signing time: Thu 09 Feb 2023 15:26:08 +0000
ROA not before: Thu 09 Feb 2023 15:26:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208022
IP address blocks: 2a12:ef40::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:36:c8:b2:f5:4b:4e:65:a4:ab:4f:f1:23:91:5a:79:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Feb 9 15:26:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5915ec9de14d862154109fe2ff008e85e1d1939
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:02:ad:55:bf:05:bb:b8:05:4a:cd:9f:f4:6d:
6a:74:ea:c7:1a:61:37:a6:77:51:cb:41:39:0f:31:
1f:0d:a0:cb:62:c9:09:ab:91:cf:f0:cc:1a:0d:ee:
ff:b0:75:f6:4c:41:ac:27:f1:1f:f6:7c:0d:f8:cc:
fc:12:47:1f:f1:63:13:03:81:62:8b:ba:51:6c:c6:
ab:be:11:ae:e3:78:af:d1:bc:27:1c:fb:7e:4a:dd:
41:f2:fa:79:f5:4c:8d:f1:37:77:56:81:23:bc:a4:
41:d1:d2:9d:cc:c2:e8:75:c9:b8:f0:32:8b:77:24:
83:fd:58:3a:09:0a:38:44:7f:76:d6:74:9a:07:fb:
dd:87:09:ea:6c:91:4f:8b:44:ab:7a:3f:97:72:27:
1a:fa:e5:26:b0:30:56:35:6c:6a:78:95:6a:13:52:
fd:e0:06:5a:02:76:d3:9f:70:f3:03:e2:63:1c:91:
a1:cd:6a:92:06:d0:0f:23:fa:6a:9a:2a:52:32:b3:
31:3e:a6:33:69:b1:1c:d4:3b:ce:84:b3:68:e0:f0:
f4:09:d5:33:89:09:16:0b:26:f3:17:7a:ca:5d:72:
7b:8b:8d:43:03:05:46:9b:39:f5:49:1a:2a:99:4d:
27:17:48:ce:cb:2c:44:ab:d5:f0:b1:86:a5:e2:a7:
16:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:91:5E:C9:DE:14:D8:62:15:41:09:FE:2F:F0:08:E8:5E:1D:19:39
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/9ZFeyd4U2GIVQQn-L_AI6F4dGTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:ef40::/29
Signature Algorithm: sha256WithRSAEncryption
4c:f8:a4:16:d8:59:5c:54:93:4a:3f:8b:e7:ee:31:cc:f8:88:
c1:18:91:52:e7:bf:f0:e6:f7:64:42:d8:b9:e8:a0:b2:72:48:
c9:94:3c:21:88:b8:c7:30:af:42:b7:1f:c2:12:6e:dd:ce:46:
c0:f2:a8:f6:55:94:e1:b1:46:a9:82:30:72:ac:3a:ad:35:6e:
b8:aa:6b:9b:63:35:9d:dd:25:99:7f:fe:da:ec:04:af:8e:aa:
8b:53:99:b5:99:4b:bd:d9:a2:e0:60:96:95:71:0c:91:c3:c1:
df:0e:b5:0a:20:08:14:57:f2:02:12:1a:bc:98:c2:d7:c1:39:
89:cc:3d:4f:03:04:11:0f:94:a9:89:eb:0f:f6:2d:a3:87:1d:
c6:e3:cc:6e:1c:38:01:d0:9d:34:6d:71:89:19:2c:69:be:d6:
94:a3:7b:c8:04:72:65:aa:84:6f:43:26:93:ea:8c:9d:2b:9a:
86:62:60:32:f4:07:5b:9d:54:34:7b:32:13:6b:1b:ea:6f:e6:
80:6e:4a:3b:e1:b8:49:28:6b:d8:14:bb:dd:b3:63:30:7a:14:
41:df:41:46:fe:05:a6:58:33:89:b1:ad:7c:26:66:0e:c9:a6:
64:95:4a:9c:a8:30:9e:79:e6:6f:22:d6:9e:fe:12:5d:4a:54:
f7:b8:22:e9
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYY2yLL1S05lpKtP8SORWnlGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiOWYyMWJhMDRlNWUzMDc3YjM5MWUzZDQ4ZmY1YjBhNTBi
MzM2OWYwHhcNMjMwMjA5MTUyNjA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNTkxNWVjOWRlMTRkODYyMTU0MTA5ZmUyZmYwMDhlODVlMWQxOTM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApwKtVb8Fu7gFSs2f9G1qdOrHGmE3
pndRy0E5DzEfDaDLYskJq5HP8MwaDe7/sHX2TEGsJ/Ef9nwN+Mz8Ekcf8WMTA4Fi
i7pRbMarvhGu43iv0bwnHPt+St1B8vp59UyN8Td3VoEjvKRB0dKdzMLodcm48DKL
dySD/Vg6CQo4RH921nSaB/vdhwnqbJFPi0Srej+Xcica+uUmsDBWNWxqeJVqE1L9
4AZaAnbTn3DzA+JjHJGhzWqSBtAPI/pqmipSMrMxPqYzabEc1DvOhLNo4PD0CdUz
iQkWCybzF3rKXXJ7i41DAwVGmzn1SRoqmU0nF0jOyyxEq9XwsYal4qcWowIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPWRXsneFNhiFUEJ/i/wCOheHRk5MB8GA1UdIwQY
MBaAFBufIboE5eMHezkePUj/WwpQszafMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRzU4aHVnVGw0d2Q3T1I0OVNQOWJDbEN6TnA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9mNjdhNzgtMTgzZC00OTRhLTk5NWUt
ZjUxYzVmYjNkZjlhLzEvOVpGZXlkNFUyR0lWUVFuLUxfQUk2RjRkR1RrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi9mNjdhNzgtMTgzZC00OTRhLTk5NWUtZjUxYzVmYjNkZjlh
LzEvRzU4aHVnVGw0d2Q3T1I0OVNQOWJDbEN6TnA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhLvQDAN
BgkqhkiG9w0BAQsFAAOCAQEATPikFthZXFSTSj+L5+4xzPiIwRiRUue/8Ob3ZELY
ueigsnJIyZQ8IYi4xzCvQrcfwhJu3c5GwPKo9lWU4bFGqYIwcqw6rTVuuKprm2M1
nd0lmX/+2uwEr46qi1OZtZlLvdmi4GCWlXEMkcPB3w61CiAIFFfyAhIavJjC18E5
icw9TwMEEQ+UqYnrD/Yto4cdxuPMbhw4AdCdNG1xiRksab7WlKN7yARyZaqEb0Mm
k+qMnSuahmJgMvQHW51UNHsyE2sb6m/mgG5KO+G4SShr2BS73bNjMHoUQd9BRv4F
plgzibGtfCZmDsmmZJVKnKgwnnnmbyLWnv4SXUpU97gi6Q==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:40 2023 by rpki-client on console.sobornost.net