Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/7206c7-ff26-40ce-be71-231ac6ed9785/1/vPxg1ZGsmmyNpTVDzlYfwDuf8xc.roa
File: vPxg1ZGsmmyNpTVDzlYfwDuf8xc.roa (raw, json)
Hash identifier: AdZYzHRcqxVs9cAJNrsiW7OM58Ve8nr4dx8GCMw0Les=
Subject key identifier: BC:FC:60:D5:91:AC:9A:6C:8D:A5:35:43:CE:56:1F:C0:3B:9F:F3:17
Certificate issuer: /CN=cf368592163a49ad38ffad1d419a7752b333da77
Certificate serial: 0186DF3A1FEF8D551C2A46C0EC78420628F7
Authority key identifier: CF:36:85:92:16:3A:49:AD:38:FF:AD:1D:41:9A:77:52:B3:33:DA:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zzaFkhY6Sa04_60dQZp3UrMz2nc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/7206c7-ff26-40ce-be71-231ac6ed9785/1/vPxg1ZGsmmyNpTVDzlYfwDuf8xc.roa
Signing time: Tue 14 Mar 2023 08:26:13 +0000
ROA not before: Tue 14 Mar 2023 08:26:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56717
IP address blocks: 2001:67c:2c04::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:df:3a:1f:ef:8d:55:1c:2a:46:c0:ec:78:42:06:28:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf368592163a49ad38ffad1d419a7752b333da77
Validity
Not Before: Mar 14 08:26:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bcfc60d591ac9a6c8da53543ce561fc03b9ff317
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:6f:ad:13:79:ed:dd:ec:51:de:11:60:3e:56:
cb:4f:95:6b:e4:00:ec:de:14:29:15:7a:70:98:55:
29:09:4d:37:ed:92:a7:19:e5:80:7a:a3:cf:ee:0c:
86:8e:b6:d5:72:97:7e:ac:d8:e0:f9:90:01:91:4d:
9f:82:e1:fa:9f:96:1b:8d:ef:a3:ce:61:ed:7a:e4:
2f:6e:55:e5:60:f1:54:9e:b6:1b:e3:6f:ed:96:9b:
05:81:8a:87:4f:4c:f6:78:93:f6:f7:25:0e:5c:72:
c5:62:22:f6:58:25:17:43:57:2c:ab:64:06:3c:e3:
4d:7e:e0:13:f3:cf:6f:bf:7f:cf:c3:27:85:cf:76:
03:62:9b:11:1a:4e:4f:fe:9c:8c:89:7a:31:b0:5e:
67:16:1c:2e:ad:62:44:da:4b:c7:71:34:9e:4b:a0:
8d:7b:d3:d6:e9:78:e5:d0:3d:5c:78:3a:65:4b:60:
1d:ef:d3:81:64:9a:4c:d5:37:8c:1c:e6:ff:c3:44:
19:ab:d6:cc:f7:24:3a:84:5d:27:a5:3d:f0:3b:a1:
ac:06:be:33:56:9c:e4:de:d7:9a:cb:77:08:b6:95:
d3:17:c5:7c:d8:31:46:c5:d6:c1:d1:d7:b9:36:28:
56:78:e5:75:80:64:0d:d5:f8:21:33:c2:de:01:fe:
ea:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:FC:60:D5:91:AC:9A:6C:8D:A5:35:43:CE:56:1F:C0:3B:9F:F3:17
X509v3 Authority Key Identifier:
keyid:CF:36:85:92:16:3A:49:AD:38:FF:AD:1D:41:9A:77:52:B3:33:DA:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zzaFkhY6Sa04_60dQZp3UrMz2nc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/7206c7-ff26-40ce-be71-231ac6ed9785/1/vPxg1ZGsmmyNpTVDzlYfwDuf8xc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/7206c7-ff26-40ce-be71-231ac6ed9785/1/zzaFkhY6Sa04_60dQZp3UrMz2nc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:2c04::/48
Signature Algorithm: sha256WithRSAEncryption
69:96:3d:d1:6c:92:e8:e4:53:59:19:76:32:3d:d9:12:ba:43:
cb:40:ef:3f:16:34:9b:23:35:d2:b4:f4:1a:d3:c3:67:cf:05:
ba:21:f7:9f:9c:ae:23:45:b0:f0:18:c1:55:79:1a:bc:fb:f4:
90:7d:b3:00:ac:0d:63:f1:a8:7b:1b:8d:30:57:72:12:60:09:
d8:ec:ae:85:7c:cd:e8:0b:7a:5f:6c:2c:79:4b:51:37:1a:43:
b0:4f:70:6a:3c:fc:e1:9d:e8:9a:24:d4:bf:1c:be:8f:fa:fe:
52:82:a4:6e:2c:43:af:7c:2d:e2:ee:bb:32:5f:07:5e:9b:ce:
bb:e3:a5:d8:3a:f7:60:15:a2:c2:46:ed:60:9b:0f:75:a1:86:
ae:8b:5d:3b:1f:9c:f7:bb:8a:9f:08:da:05:0b:f4:ae:ce:75:
70:d4:1e:29:04:79:4c:5a:43:87:a5:7b:7e:ee:98:3d:e0:b3:
5c:6c:e9:5c:71:9b:26:62:d9:44:d0:0b:79:6b:4a:74:42:80:
18:f2:0a:c6:ae:0c:9d:46:3c:48:6d:ce:e3:73:23:5d:da:ed:
a0:a0:3b:d0:ff:01:83:49:03:00:9b:f0:75:2d:1b:b5:1f:4e:
71:c0:fe:c7:ba:5d:a9:c4:ba:23:15:79:86:b2:e1:b0:fd:1c:
dc:e4:a0:4e
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYbfOh/vjVUcKkbA7HhCBij3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmMzY4NTkyMTYzYTQ5YWQzOGZmYWQxZDQxOWE3NzUyYjMz
M2RhNzcwHhcNMjMwMzE0MDgyNjEzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiY2ZjNjBkNTkxYWM5YTZjOGRhNTM1NDNjZTU2MWZjMDNiOWZmMzE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlm+tE3nt3exR3hFgPlbLT5Vr5ADs
3hQpFXpwmFUpCU037ZKnGeWAeqPP7gyGjrbVcpd+rNjg+ZABkU2fguH6n5Ybje+j
zmHteuQvblXlYPFUnrYb42/tlpsFgYqHT0z2eJP29yUOXHLFYiL2WCUXQ1csq2QG
PONNfuAT889vv3/PwyeFz3YDYpsRGk5P/pyMiXoxsF5nFhwurWJE2kvHcTSeS6CN
e9PW6Xjl0D1ceDplS2Ad79OBZJpM1TeMHOb/w0QZq9bM9yQ6hF0npT3wO6GsBr4z
Vpzk3teay3cItpXTF8V82DFGxdbB0de5NihWeOV1gGQN1fghM8LeAf7qjQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFLz8YNWRrJpsjaU1Q85WH8A7n/MXMB8GA1UdIwQY
MBaAFM82hZIWOkmtOP+tHUGad1KzM9p3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvenphRmtoWTZTYTA0XzYwZFFacDNVck16Mm5jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOS83MjA2YzctZmYyNi00MGNlLWJlNzEt
MjMxYWM2ZWQ5Nzg1LzEvdlB4ZzFaR3NtbXlOcFRWRHpsWWZ3RHVmOHhjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOS83MjA2YzctZmYyNi00MGNlLWJlNzEtMjMxYWM2ZWQ5Nzg1
LzEvenphRmtoWTZTYTA0XzYwZFFacDNVck16Mm5jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCwE
MA0GCSqGSIb3DQEBCwUAA4IBAQBplj3RbJLo5FNZGXYyPdkSukPLQO8/FjSbIzXS
tPQa08NnzwW6IfefnK4jRbDwGMFVeRq8+/SQfbMArA1j8ah7G40wV3ISYAnY7K6F
fM3oC3pfbCx5S1E3GkOwT3BqPPzhneiaJNS/HL6P+v5SgqRuLEOvfC3i7rsyXwde
m86746XYOvdgFaLCRu1gmw91oYaui107H5z3u4qfCNoFC/SuznVw1B4pBHlMWkOH
pXt+7pg94LNcbOlccZsmYtlE0At5a0p0QoAY8grGrgydRjxIbc7jcyNd2u2goDvQ
/wGDSQMAm/B1LRu1H05xwP7Hul2pxLojFXmGsuGw/Rzc5KBO
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:21 2023 by rpki-client on console.sobornost.net