Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/b9bb7f-166d-41af-a1db-866b2b021fc5/1/3boZZKuGHMOyMQyjYCZ2KWFNrko.roa
File: 3boZZKuGHMOyMQyjYCZ2KWFNrko.roa (raw, json)
Hash identifier: pjeX8BFTd4gS16+FBklynHTIHMzI3TDpJWgrIND3HQM=
Subject key identifier: DD:BA:19:64:AB:86:1C:C3:B2:31:0C:A3:60:26:76:29:61:4D:AE:4A
Certificate issuer: /CN=aeac1b2129abbac6539f80da6550c49721d0a8c4
Certificate serial: 0185720C56FD2CF58D36221D92F3417EFE78
Authority key identifier: AE:AC:1B:21:29:AB:BA:C6:53:9F:80:DA:65:50:C4:97:21:D0:A8:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rqwbISmrusZTn4DaZVDElyHQqMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/b9bb7f-166d-41af-a1db-866b2b021fc5/1/3boZZKuGHMOyMQyjYCZ2KWFNrko.roa
Signing time: Mon 02 Jan 2023 10:34:49 +0000
ROA not before: Mon 02 Jan 2023 10:34:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197895
IP address blocks: 2a02:7a00:6::/48 maxlen: 48
2a02:7a01::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:56:fd:2c:f5:8d:36:22:1d:92:f3:41:7e:fe:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aeac1b2129abbac6539f80da6550c49721d0a8c4
Validity
Not Before: Jan 2 10:34:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ddba1964ab861cc3b2310ca360267629614dae4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:fe:25:39:93:d5:05:a1:12:36:3b:1b:ba:43:
55:03:02:23:7c:ba:e2:25:48:3a:aa:d4:ae:11:4f:
d6:53:47:cd:7e:7b:6d:d7:5f:58:48:8f:52:55:8d:
8d:2f:e9:40:65:d3:67:74:71:48:53:cb:c6:33:11:
86:9a:b4:46:ed:00:37:32:d9:0f:29:1f:b8:53:15:
fb:83:6f:35:96:b4:55:c9:9d:fb:d3:4b:f7:6d:de:
9b:d7:8a:be:e0:ed:92:ee:56:4b:ac:1e:24:ee:f4:
52:94:bd:4b:c0:ea:5e:32:c5:68:36:17:99:8e:e3:
b7:87:6b:4d:05:4f:aa:d1:f9:ac:d0:c0:3b:a9:74:
32:95:36:79:fa:81:5d:df:59:88:e1:a7:63:8d:90:
8c:d6:6c:1b:48:01:d7:cf:c7:1e:17:7e:06:8d:98:
a1:e3:0d:4c:01:36:e9:4f:b1:4c:b8:bd:4a:59:59:
7e:77:c7:fe:6f:70:33:90:13:0f:8d:86:50:18:3f:
98:db:9c:f3:52:14:33:0e:14:f9:46:da:2f:5e:d3:
5b:36:40:69:c1:01:ac:0c:68:52:90:33:86:bb:2f:
6e:86:9b:fc:e5:ef:14:07:b7:0f:20:64:e4:61:16:
31:f6:a2:3e:7e:a5:36:18:74:7d:0b:48:58:13:4a:
01:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:BA:19:64:AB:86:1C:C3:B2:31:0C:A3:60:26:76:29:61:4D:AE:4A
X509v3 Authority Key Identifier:
keyid:AE:AC:1B:21:29:AB:BA:C6:53:9F:80:DA:65:50:C4:97:21:D0:A8:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rqwbISmrusZTn4DaZVDElyHQqMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/b9bb7f-166d-41af-a1db-866b2b021fc5/1/3boZZKuGHMOyMQyjYCZ2KWFNrko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/b9bb7f-166d-41af-a1db-866b2b021fc5/1/rqwbISmrusZTn4DaZVDElyHQqMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a02:7a00:6::/48
2a02:7a01::/32
Signature Algorithm: sha256WithRSAEncryption
40:5b:40:85:dd:16:6f:7f:32:60:95:05:a2:a2:64:45:e6:b6:
84:38:0f:88:47:56:81:f9:43:04:2e:cf:67:80:11:f0:ef:2d:
25:38:77:7a:e3:1d:13:7e:62:4e:79:c8:ca:bb:8a:15:21:56:
0a:25:d6:3c:f0:93:87:f0:77:eb:5f:b0:ed:d1:7d:99:96:0d:
61:cd:33:71:d0:ad:b2:ca:1a:1c:a5:61:84:46:0f:64:79:92:
bc:4d:bc:b4:17:2e:53:12:5f:f1:d2:ef:1d:54:24:fb:29:f0:
8b:21:aa:4f:79:d8:f9:28:6f:44:68:b7:6c:8f:51:27:ab:18:
2b:51:5c:9c:b7:3c:97:df:9d:f0:67:6e:07:f8:b2:89:07:be:
a1:8c:8f:7f:cb:06:11:56:01:95:4a:dd:37:b2:73:c8:b5:4f:
9b:4a:0d:0c:89:0e:99:18:1c:66:bf:10:03:fb:4a:95:d3:cf:
50:95:cb:fa:6a:fb:95:79:62:6d:73:d7:c3:73:39:e9:97:2f:
5e:d3:d1:de:71:2e:a5:cb:c0:0d:13:d9:2b:87:d8:8d:1c:38:
ad:cd:32:cc:85:cf:e9:8a:55:6f:9a:85:7f:26:77:9b:ef:ec:
60:d3:6f:34:93:c3:61:0a:88:a1:ef:1f:50:ad:c6:81:5c:c4:
00:51:d0:0e
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgISAYVyDFb9LPWNNiIdkvNBfv54MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlYWMxYjIxMjlhYmJhYzY1MzlmODBkYTY1NTBjNDk3MjFk
MGE4YzQwHhcNMjMwMTAyMTAzNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZGJhMTk2NGFiODYxY2MzYjIzMTBjYTM2MDI2NzYyOTYxNGRhZTRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo/4lOZPVBaESNjsbukNVAwIjfLri
JUg6qtSuEU/WU0fNfntt119YSI9SVY2NL+lAZdNndHFIU8vGMxGGmrRG7QA3MtkP
KR+4UxX7g281lrRVyZ3700v3bd6b14q+4O2S7lZLrB4k7vRSlL1LwOpeMsVoNheZ
juO3h2tNBU+q0fms0MA7qXQylTZ5+oFd31mI4adjjZCM1mwbSAHXz8ceF34GjZih
4w1MATbpT7FMuL1KWVl+d8f+b3AzkBMPjYZQGD+Y25zzUhQzDhT5RtovXtNbNkBp
wQGsDGhSkDOGuy9uhpv85e8UB7cPIGTkYRYx9qI+fqU2GHR9C0hYE0oB4QIDAQAB
o4ICEzCCAg8wHQYDVR0OBBYEFN26GWSrhhzDsjEMo2AmdilhTa5KMB8GA1UdIwQY
MBaAFK6sGyEpq7rGU5+A2mVQxJch0KjEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnF3YklTbXJ1c1pUbjREYVpWREVseUhRcU1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9iOWJiN2YtMTY2ZC00MWFmLWExZGIt
ODY2YjJiMDIxZmM1LzEvM2JvWlpLdUdITU95TVF5allDWjJLV0ZOcmtvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9iOWJiN2YtMTY2ZC00MWFmLWExZGItODY2YjJiMDIxZmM1
LzEvcnF3YklTbXJ1c1pUbjREYVpWREVseUhRcU1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCkGCCsGAQUFBwEHAQH/BBowGDAWBAIAAjAQAwcAKgJ6AAAG
AwUAKgJ6ATANBgkqhkiG9w0BAQsFAAOCAQEAQFtAhd0Wb38yYJUFoqJkRea2hDgP
iEdWgflDBC7PZ4AR8O8tJTh3euMdE35iTnnIyruKFSFWCiXWPPCTh/B361+w7dF9
mZYNYc0zcdCtssoaHKVhhEYPZHmSvE28tBcuUxJf8dLvHVQk+ynwiyGqT3nY+Shv
RGi3bI9RJ6sYK1FcnLc8l9+d8GduB/iyiQe+oYyPf8sGEVYBlUrdN7JzyLVPm0oN
DIkOmRgcZr8QA/tKldPPUJXL+mr7lXlibXPXw3M56ZcvXtPR3nEupcvADRPZK4fY
jRw4rc0yzIXP6YpVb5qFfyZ3m+/sYNNvNJPDYQqIoe8fUK3GgVzEAFHQDg==
-----END CERTIFICATE-----
Generated at Tue Jan 2 01:01:48 2024 by rpki-client on console.sobornost.net