Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/ainGcGtI_IzMlLgXP41ph5nvxcE.roa
File: ainGcGtI_IzMlLgXP41ph5nvxcE.roa (raw, json)
Hash identifier: VnvpJ+beejAEIisWiPG1Yhx8RJqht1agBqvfcYQKGgc=
Subject key identifier: 6A:29:C6:70:6B:48:FC:8C:CC:94:B8:17:3F:8D:69:87:99:EF:C5:C1
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 018C3EC9CE0D7148BCE3ED5C7EAA7F202123
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/ainGcGtI_IzMlLgXP41ph5nvxcE.roa
Signing time: Wed 06 Dec 2023 11:01:01 +0000
ROA not before: Wed 06 Dec 2023 11:01:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 234567
IP address blocks: 2a05:1087:a000::/36 maxlen: 36
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3e:c9:ce:0d:71:48:bc:e3:ed:5c:7e:aa:7f:20:21:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Dec 6 11:01:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a29c6706b48fc8ccc94b8173f8d698799efc5c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ba:21:ec:73:f8:97:c8:95:0c:67:d2:49:42:
88:0d:80:ec:79:d7:1f:86:92:a6:eb:42:c5:e1:c5:
63:04:aa:c5:d2:f8:bb:d0:80:82:59:7a:94:29:c3:
db:d8:27:93:da:7b:83:cc:52:d5:dd:e0:67:b0:b8:
b3:66:36:b4:50:00:31:0c:bd:fd:45:da:db:09:63:
d8:af:aa:e1:58:84:1c:1e:dc:a2:9f:e9:92:24:ff:
cd:0c:81:d7:4c:da:2b:1e:7e:1d:48:9d:dd:a9:c0:
11:cc:50:0b:f2:52:05:b8:ba:f2:4b:4d:21:dc:cb:
4a:0b:b2:7b:25:ae:a1:d3:6a:97:fd:41:c1:0c:1f:
d8:d3:d7:64:48:bd:6f:eb:c5:23:36:49:a9:ee:07:
89:bd:41:d1:7d:42:f3:62:00:65:ca:0f:ee:3c:03:
e2:aa:f8:4f:e0:cc:ea:a8:19:ee:cc:95:dd:08:f3:
ef:57:18:1f:a9:e9:f5:43:ec:e3:a5:a3:a2:07:57:
61:ef:e7:5e:ec:ba:99:2c:49:7f:7b:37:b1:5d:29:
13:22:38:06:39:f1:da:47:8d:e5:02:53:23:1c:83:
96:3b:dc:10:49:1f:6a:18:e4:9b:31:d9:66:63:21:
c1:9a:f3:93:c9:10:16:d2:58:d4:fa:41:f6:b8:40:
26:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:29:C6:70:6B:48:FC:8C:CC:94:B8:17:3F:8D:69:87:99:EF:C5:C1
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/ainGcGtI_IzMlLgXP41ph5nvxcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:1087:a000::/36
Signature Algorithm: sha256WithRSAEncryption
55:54:3d:ee:d5:39:42:22:22:01:8f:83:f5:b7:ee:13:5f:93:
c4:25:60:80:7c:97:fc:25:c4:5b:1f:30:a7:e5:21:95:9d:67:
c4:d8:80:31:10:d4:22:98:ac:b7:55:37:57:89:7f:21:bd:f1:
26:3c:61:f6:fc:ac:7e:33:4b:ad:70:67:b9:55:da:49:07:5e:
5a:0b:a6:ea:d4:2c:46:ef:cc:98:d7:b1:82:ff:d8:1d:c6:28:
7a:8c:b4:c5:b5:0a:11:9e:e1:8e:17:e1:8f:88:12:59:7b:3c:
24:ef:61:a8:bc:a5:87:ab:8e:8e:11:31:b5:55:54:89:be:c0:
fe:43:f2:d4:ad:81:6a:50:65:15:45:26:7c:d9:05:56:e1:9b:
0d:90:cf:df:dd:9d:90:b2:42:f1:8f:82:be:97:88:93:be:cf:
e4:7f:9e:74:e7:83:6d:d8:60:54:9d:4c:88:b8:0f:5b:b9:b7:
dc:20:b4:f6:6f:46:a9:2c:68:d4:f8:75:bd:c8:0d:85:14:ab:
23:72:62:76:f9:22:0e:19:5d:24:5b:b3:ef:38:2a:67:15:5c:
ec:ac:70:3c:ce:60:47:47:3d:0e:15:45:a8:fa:65:95:fd:71:
84:67:8e:aa:4b:7a:21:58:0d:a0:0d:d7:1a:92:33:75:41:57:
bd:7e:7b:21
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYw+yc4NcUi84+1cfqp/ICEjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczYzY5ZDA0NTgzNTAwYzVlZjgxMTM2ODMxMjM3NTkzZTBi
Yjg2Y2UwHhcNMjMxMjA2MTEwMTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YTI5YzY3MDZiNDhmYzhjY2M5NGI4MTczZjhkNjk4Nzk5ZWZjNWMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoboh7HP4l8iVDGfSSUKIDYDsedcf
hpKm60LF4cVjBKrF0vi70ICCWXqUKcPb2CeT2nuDzFLV3eBnsLizZja0UAAxDL39
RdrbCWPYr6rhWIQcHtyin+mSJP/NDIHXTNorHn4dSJ3dqcARzFAL8lIFuLryS00h
3MtKC7J7Ja6h02qX/UHBDB/Y09dkSL1v68UjNkmp7geJvUHRfULzYgBlyg/uPAPi
qvhP4MzqqBnuzJXdCPPvVxgfqen1Q+zjpaOiB1dh7+de7LqZLEl/ezexXSkTIjgG
OfHaR43lAlMjHIOWO9wQSR9qGOSbMdlmYyHBmvOTyRAW0ljU+kH2uEAm3wIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFGopxnBrSPyMzJS4Fz+NaYeZ78XBMB8GA1UdIwQY
MBaAFHPGnQRYNQDF74ETaDEjdZPgu4bOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQt
ZjljYjBhN2IyMDZjLzEvYWluR2NHdElfSXpNbExnWFA0MXBoNW52eGNFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQtZjljYjBhN2IyMDZj
LzEvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKgUQh6Aw
DQYJKoZIhvcNAQELBQADggEBAFVUPe7VOUIiIgGPg/W37hNfk8QlYIB8l/wlxFsf
MKflIZWdZ8TYgDEQ1CKYrLdVN1eJfyG98SY8Yfb8rH4zS61wZ7lV2kkHXloLpurU
LEbvzJjXsYL/2B3GKHqMtMW1ChGe4Y4X4Y+IEll7PCTvYai8pYerjo4RMbVVVIm+
wP5D8tStgWpQZRVFJnzZBVbhmw2Qz9/dnZCyQvGPgr6XiJO+z+R/nnTng23YYFSd
TIi4D1u5t9wgtPZvRqksaNT4db3IDYUUqyNyYnb5Ig4ZXSRbs+84KmcVXOyscDzO
YEdHPQ4VRaj6ZZX9cYRnjqpLeiFYDaAN1xqSM3VBV71+eyE=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:31 2023 by rpki-client on console.sobornost.net