Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/30f69c-410e-46d4-b6db-ff8658e1356c/1/4sPXttSzPY2ozf00TDytLtZ-1tQ.roa
File: 4sPXttSzPY2ozf00TDytLtZ-1tQ.roa (raw, json)
Hash identifier: UMoPJWKeaJGUBbNW+DXUS/7EQVyXhC7CsN2sve6lVQ4=
Subject key identifier: E2:C3:D7:B6:D4:B3:3D:8D:A8:CD:FD:34:4C:3C:AD:2E:D6:7E:D6:D4
Certificate issuer: /CN=78167dd9603b9fb7af501559cb3737d47a2d5437
Certificate serial: 0187423628262308CC498A9B525FFA265ADC
Authority key identifier: 78:16:7D:D9:60:3B:9F:B7:AF:50:15:59:CB:37:37:D4:7A:2D:54:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eBZ92WA7n7evUBVZyzc31HotVDc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/30f69c-410e-46d4-b6db-ff8658e1356c/1/4sPXttSzPY2ozf00TDytLtZ-1tQ.roa
Signing time: Sun 02 Apr 2023 13:44:18 +0000
ROA not before: Sun 02 Apr 2023 13:44:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60265
IP address blocks: 2a01:bf00::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:42:36:28:26:23:08:cc:49:8a:9b:52:5f:fa:26:5a:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78167dd9603b9fb7af501559cb3737d47a2d5437
Validity
Not Before: Apr 2 13:44:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e2c3d7b6d4b33d8da8cdfd344c3cad2ed67ed6d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d6:81:6e:ab:57:60:ad:d2:f6:ff:b9:61:a1:
ad:2e:87:d2:cd:30:c0:ae:a1:9c:5e:1a:a5:4f:93:
b5:5b:27:aa:a9:ff:7d:0c:bf:88:07:b3:a7:11:ba:
34:85:b7:f3:91:5a:29:75:77:c1:18:73:0b:c0:9b:
48:0a:c2:13:6a:79:2e:76:a8:07:28:c8:e5:d2:fc:
ec:8f:94:8e:37:ee:a4:6f:ed:24:bc:b5:5f:72:39:
fc:cc:05:49:8a:5c:a3:dc:64:aa:84:50:71:7c:b9:
a5:b4:9a:25:4b:a9:fd:e9:3b:f8:70:2a:1d:f3:f0:
6c:f0:1f:b0:e6:15:f3:b6:9d:87:11:62:fc:5e:df:
ad:8b:f9:bb:68:c0:5f:a1:ce:d4:cb:ba:f3:3b:3b:
0e:92:b9:ab:90:cb:c9:65:4b:59:06:c2:62:c5:de:
f9:ce:50:74:f7:d6:a0:0e:f2:9f:0d:d6:fc:19:cd:
39:bb:15:57:57:7e:20:72:76:f3:d6:08:10:1a:f8:
84:dc:74:f1:66:f0:24:48:9e:b2:c8:f5:89:03:5f:
ff:27:97:c3:2f:40:72:97:f7:f3:1a:b2:ca:05:6c:
d0:27:aa:9a:04:72:af:8e:be:b6:e7:fe:f8:bc:dd:
70:9f:66:a3:18:86:e0:b9:5b:f6:97:7a:48:c3:31:
92:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:C3:D7:B6:D4:B3:3D:8D:A8:CD:FD:34:4C:3C:AD:2E:D6:7E:D6:D4
X509v3 Authority Key Identifier:
keyid:78:16:7D:D9:60:3B:9F:B7:AF:50:15:59:CB:37:37:D4:7A:2D:54:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eBZ92WA7n7evUBVZyzc31HotVDc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/30f69c-410e-46d4-b6db-ff8658e1356c/1/4sPXttSzPY2ozf00TDytLtZ-1tQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/30f69c-410e-46d4-b6db-ff8658e1356c/1/eBZ92WA7n7evUBVZyzc31HotVDc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:bf00::/32
Signature Algorithm: sha256WithRSAEncryption
df:92:07:22:1e:44:b7:75:8b:84:20:03:c0:a1:a3:b6:8b:82:
96:7b:63:c6:52:e9:20:f3:3e:f7:6e:af:5b:87:54:5a:da:44:
c2:8e:7e:04:f5:e1:0d:ea:92:0f:de:a8:0a:53:54:ae:f3:9e:
f4:83:5f:4d:50:35:8f:bb:9b:cc:5e:49:a0:d8:19:d7:79:72:
c2:ad:4b:84:78:36:3f:2b:ff:7d:50:03:21:d4:b6:48:30:68:
62:e0:b6:f7:10:71:19:7c:2d:59:2c:70:a7:ad:51:fa:eb:e3:
02:71:1b:3f:3e:78:94:8a:1d:91:8b:b8:5e:34:d5:3c:b5:d7:
94:4d:f3:77:ec:54:83:3b:df:87:ee:e6:1d:22:b7:de:3c:7e:
83:95:cf:3f:96:3d:71:5f:7e:fd:c0:76:50:6e:87:41:86:07:
58:1a:d6:3f:80:c5:07:0b:d4:47:4c:86:bd:d6:a8:86:de:49:
c3:bf:85:33:99:99:42:e2:b9:56:76:23:cd:bc:64:00:93:bc:
6d:7f:71:e8:ce:52:3d:9d:35:1e:52:45:6d:9e:27:a8:bb:c2:
fa:c5:64:bd:a6:e7:cb:78:40:39:19:61:4a:7e:b5:66:8e:0a:
2e:a4:68:d7:a1:a5:e4:f9:19:1f:34:e5:a0:8a:a2:1a:19:f5:
10:22:9a:1b
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYdCNigmIwjMSYqbUl/6JlrcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc4MTY3ZGQ5NjAzYjlmYjdhZjUwMTU1OWNiMzczN2Q0N2Ey
ZDU0MzcwHhcNMjMwNDAyMTM0NDE4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMmMzZDdiNmQ0YjMzZDhkYThjZGZkMzQ0YzNjYWQyZWQ2N2VkNmQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtNaBbqtXYK3S9v+5YaGtLofSzTDA
rqGcXhqlT5O1Wyeqqf99DL+IB7OnEbo0hbfzkVopdXfBGHMLwJtICsITankudqgH
KMjl0vzsj5SON+6kb+0kvLVfcjn8zAVJilyj3GSqhFBxfLmltJolS6n96Tv4cCod
8/Bs8B+w5hXztp2HEWL8Xt+ti/m7aMBfoc7Uy7rzOzsOkrmrkMvJZUtZBsJixd75
zlB099agDvKfDdb8Gc05uxVXV34gcnbz1ggQGviE3HTxZvAkSJ6yyPWJA1//J5fD
L0Byl/fzGrLKBWzQJ6qaBHKvjr625/74vN1wn2ajGIbguVv2l3pIwzGSxQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFOLD17bUsz2NqM39NEw8rS7WftbUMB8GA1UdIwQY
MBaAFHgWfdlgO5+3r1AVWcs3N9R6LVQ3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZUJaOTJXQTduN2V2VUJWWnl6YzMxSG90VkRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8zMGY2OWMtNDEwZS00NmQ0LWI2ZGIt
ZmY4NjU4ZTEzNTZjLzEvNHNQWHR0U3pQWTJvemYwMFREeXRMdFotMXRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi8zMGY2OWMtNDEwZS00NmQ0LWI2ZGItZmY4NjU4ZTEzNTZj
LzEvZUJaOTJXQTduN2V2VUJWWnl6YzMxSG90VkRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgG/ADAN
BgkqhkiG9w0BAQsFAAOCAQEA35IHIh5Et3WLhCADwKGjtouClntjxlLpIPM+926v
W4dUWtpEwo5+BPXhDeqSD96oClNUrvOe9INfTVA1j7ubzF5JoNgZ13lywq1LhHg2
Pyv/fVADIdS2SDBoYuC29xBxGXwtWSxwp61R+uvjAnEbPz54lIodkYu4XjTVPLXX
lE3zd+xUgzvfh+7mHSK33jx+g5XPP5Y9cV9+/cB2UG6HQYYHWBrWP4DFBwvUR0yG
vdaoht5Jw7+FM5mZQuK5VnYjzbxkAJO8bX9x6M5SPZ01HlJFbZ4nqLvC+sVkvabn
y3hAORlhSn61Zo4KLqRo16Gl5PkZHzTloIqiGhn1ECKaGw==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:30 2023 by rpki-client on console.sobornost.net