Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/88f2a5-27e8-4671-a8d3-cde702c0ec8b/1/33UlVBmsmFPkx8gsGDmBB4EMSG4.roa
File: 33UlVBmsmFPkx8gsGDmBB4EMSG4.roa (raw, json)
Hash identifier: jj6Fr1ZC+zHxZdIvuFrUY6d/ocOO+PFheYjxDXroVjo=
Subject key identifier: DF:75:25:54:19:AC:98:53:E4:C7:C8:2C:18:39:81:07:81:0C:48:6E
Certificate issuer: /CN=8e556b52b8e4e709fa569b5ae372c6e28266f232
Certificate serial: 018807BA98FF10C04136E84BBDA539DB06F7
Authority key identifier: 8E:55:6B:52:B8:E4:E7:09:FA:56:9B:5A:E3:72:C6:E2:82:66:F2:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jlVrUrjk5wn6Vpta43LG4oJm8jI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/88f2a5-27e8-4671-a8d3-cde702c0ec8b/1/33UlVBmsmFPkx8gsGDmBB4EMSG4.roa
Signing time: Wed 10 May 2023 22:14:09 +0000
ROA not before: Wed 10 May 2023 22:14:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48149
IP address blocks: 2001:678:1bc::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:07:ba:98:ff:10:c0:41:36:e8:4b:bd:a5:39:db:06:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e556b52b8e4e709fa569b5ae372c6e28266f232
Validity
Not Before: May 10 22:14:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df75255419ac9853e4c7c82c18398107810c486e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b8:28:93:fd:dd:6e:b7:3e:54:14:e9:f2:4a:
56:3a:2c:9d:7b:77:69:0d:23:07:88:3b:5c:dc:9a:
4b:9e:15:99:dd:ab:e6:78:fd:4c:40:a7:70:7a:17:
09:a7:36:f9:14:03:f2:ad:d1:cc:d9:18:28:aa:bc:
76:cc:0e:1f:aa:36:3d:b2:ae:aa:0d:ec:97:34:14:
44:72:b3:79:c6:e8:60:56:a8:86:cd:98:c7:93:f1:
3e:b9:08:59:f8:82:37:c1:4c:00:22:0b:0b:7e:84:
9a:fd:85:62:81:3e:7d:c9:6f:c5:c0:dc:b4:0b:53:
e8:ee:74:06:da:38:26:9a:20:e0:bd:26:f7:0e:6d:
38:90:a6:83:54:9b:b4:63:53:ab:f6:57:23:d3:7f:
fb:95:10:ff:31:66:38:68:45:2b:42:e5:e0:ae:fa:
59:b9:dc:9b:0e:e2:01:6f:8d:0e:4f:51:a9:ca:d6:
f9:3d:bd:40:1a:af:c6:8b:bc:5b:a7:70:3e:2a:46:
c4:c0:c1:ba:07:64:94:f8:62:ec:d4:2a:21:fa:02:
ad:bc:85:f4:9f:4e:99:1b:0c:dc:2e:5a:5b:b2:d3:
f0:50:58:8b:c6:12:60:07:d7:4d:5f:07:b5:1b:e4:
bc:d0:89:aa:3c:ed:92:46:e7:1b:e4:fc:42:82:7e:
52:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:75:25:54:19:AC:98:53:E4:C7:C8:2C:18:39:81:07:81:0C:48:6E
X509v3 Authority Key Identifier:
keyid:8E:55:6B:52:B8:E4:E7:09:FA:56:9B:5A:E3:72:C6:E2:82:66:F2:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jlVrUrjk5wn6Vpta43LG4oJm8jI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/88f2a5-27e8-4671-a8d3-cde702c0ec8b/1/33UlVBmsmFPkx8gsGDmBB4EMSG4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/88f2a5-27e8-4671-a8d3-cde702c0ec8b/1/jlVrUrjk5wn6Vpta43LG4oJm8jI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:1bc::/48
Signature Algorithm: sha256WithRSAEncryption
87:e9:af:4c:7d:70:2f:e6:4d:d7:21:da:6b:7b:64:a1:be:89:
bd:3c:99:f2:b9:52:86:ac:69:23:44:96:99:68:52:66:85:11:
0c:df:5b:a1:35:23:a4:18:12:cb:3a:ea:6f:8f:1f:6b:2d:0b:
fe:b3:90:96:83:c2:c1:81:27:71:54:66:eb:c1:f4:df:99:25:
05:05:ed:69:d5:0f:19:bb:1c:87:b4:3d:cf:d9:77:6a:08:92:
15:d3:f9:ee:c0:62:30:98:68:03:55:68:d4:f7:59:18:4c:4b:
d0:e7:58:b2:b5:a8:98:c0:1b:e8:90:69:42:1d:dd:24:e0:44:
60:05:0b:56:e7:95:54:f8:20:ee:97:6c:94:9d:f5:37:71:2d:
1a:94:6a:94:2c:ac:2f:7e:9b:9d:13:a2:b9:86:6e:cf:df:17:
8b:2e:7a:07:c9:e8:9a:27:3a:7c:6d:2d:0b:67:9a:4e:b4:7d:
64:85:77:bc:14:75:63:40:42:a0:2c:b4:08:85:d5:17:eb:46:
f3:75:9d:93:c3:bc:3d:02:da:c4:3f:07:79:f1:6d:47:f9:be:
5d:26:39:a5:65:39:42:f2:72:ca:2c:32:77:8f:9d:ec:3a:0a:
ac:e8:34:ed:94:02:fe:df:65:f4:8a:ef:f2:65:82:e0:ee:69:
18:cf:30:13
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYgHupj/EMBBNuhLvaU52wb3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlNTU2YjUyYjhlNGU3MDlmYTU2OWI1YWUzNzJjNmUyODI2
NmYyMzIwHhcNMjMwNTEwMjIxNDA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZjc1MjU1NDE5YWM5ODUzZTRjN2M4MmMxODM5ODEwNzgxMGM0ODZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1bgok/3dbrc+VBTp8kpWOiyde3dp
DSMHiDtc3JpLnhWZ3avmeP1MQKdwehcJpzb5FAPyrdHM2Rgoqrx2zA4fqjY9sq6q
DeyXNBREcrN5xuhgVqiGzZjHk/E+uQhZ+II3wUwAIgsLfoSa/YVigT59yW/FwNy0
C1Po7nQG2jgmmiDgvSb3Dm04kKaDVJu0Y1Or9lcj03/7lRD/MWY4aEUrQuXgrvpZ
udybDuIBb40OT1Gpytb5Pb1AGq/Gi7xbp3A+KkbEwMG6B2SU+GLs1Coh+gKtvIX0
n06ZGwzcLlpbstPwUFiLxhJgB9dNXwe1G+S80ImqPO2SRucb5PxCgn5SVwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFN91JVQZrJhT5MfILBg5gQeBDEhuMB8GA1UdIwQY
MBaAFI5Va1K45OcJ+labWuNyxuKCZvIyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvamxWclVyams1d242VnB0YTQzTEc0b0ptOGpJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi84OGYyYTUtMjdlOC00NjcxLWE4ZDMt
Y2RlNzAyYzBlYzhiLzEvMzNVbFZCbXNtRlBreDhnc0dEbUJCNEVNU0c0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi84OGYyYTUtMjdlOC00NjcxLWE4ZDMtY2RlNzAyYzBlYzhi
LzEvamxWclVyams1d242VnB0YTQzTEc0b0ptOGpJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAG8
MA0GCSqGSIb3DQEBCwUAA4IBAQCH6a9MfXAv5k3XIdpre2Shvom9PJnyuVKGrGkj
RJaZaFJmhREM31uhNSOkGBLLOupvjx9rLQv+s5CWg8LBgSdxVGbrwfTfmSUFBe1p
1Q8ZuxyHtD3P2XdqCJIV0/nuwGIwmGgDVWjU91kYTEvQ51iytaiYwBvokGlCHd0k
4ERgBQtW55VU+CDul2yUnfU3cS0alGqULKwvfpudE6K5hm7P3xeLLnoHyeiaJzp8
bS0LZ5pOtH1khXe8FHVjQEKgLLQIhdUX60bzdZ2Tw7w9AtrEPwd58W1H+b5dJjml
ZTlC8nLKLDJ3j53sOgqs6DTtlAL+32X0iu/yZYLg7mkYzzAT
-----END CERTIFICATE-----
Generated at Tue Jan 2 14:14:56 2024 by rpki-client on console.sobornost.net