Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/14e492-8525-4eec-84bc-b0eb6715e0af/1/GH66KEtzoOCiLcoEjtLXSprMNpo.roa
File: GH66KEtzoOCiLcoEjtLXSprMNpo.roa (raw, json)
Hash identifier: bAIah/b5FzsmTGR0ziTWlLnVXmZqKNvblRJtpS8jRZA=
Subject key identifier: 18:7E:BA:28:4B:73:A0:E0:A2:2D:CA:04:8E:D2:D7:4A:9A:CC:36:9A
Certificate issuer: /CN=517a0c96842bafc9f630ba14b83ea79bd12a53b9
Certificate serial: 0189EF8D1FCBE094E0B899D691E90E980E85
Authority key identifier: 51:7A:0C:96:84:2B:AF:C9:F6:30:BA:14:B8:3E:A7:9B:D1:2A:53:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UXoMloQrr8n2MLoUuD6nm9EqU7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/14e492-8525-4eec-84bc-b0eb6715e0af/1/GH66KEtzoOCiLcoEjtLXSprMNpo.roa
Signing time: Sun 13 Aug 2023 15:39:10 +0000
ROA not before: Sun 13 Aug 2023 15:39:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62443
IP address blocks: 2a13:cc80::/32 maxlen: 32
2a13:cc81::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ef:8d:1f:cb:e0:94:e0:b8:99:d6:91:e9:0e:98:0e:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=517a0c96842bafc9f630ba14b83ea79bd12a53b9
Validity
Not Before: Aug 13 15:39:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=187eba284b73a0e0a22dca048ed2d74a9acc369a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:e9:0a:a9:e2:a4:3b:58:0b:e2:78:85:2d:91:
07:1d:1a:ee:6e:d7:78:30:13:3d:ce:39:b2:ba:91:
10:e3:5c:48:00:07:1a:35:1f:40:47:9d:b0:76:92:
ff:72:58:16:b5:be:b8:9b:d5:8b:97:62:9e:3e:b2:
0b:9b:ea:1e:e3:a5:72:57:d7:91:2f:db:5a:ec:bb:
f4:ae:3c:58:41:64:0a:16:b7:96:b9:4b:f1:af:18:
bd:18:66:b4:9b:4d:20:33:15:b0:72:eb:41:28:5e:
bd:be:55:6d:a6:b7:d1:2e:50:73:71:02:51:d5:23:
9b:bd:16:6b:7e:e1:25:0e:08:29:0a:d6:35:f1:8c:
63:55:22:1b:7b:6a:04:df:31:9b:f1:12:e4:ad:ea:
79:f9:ab:93:0e:19:76:17:5e:bf:0b:26:c8:43:88:
a6:0d:d2:0d:5c:8d:df:02:a8:4f:6a:86:16:b0:cc:
28:e7:d4:53:77:03:33:1e:f9:5c:b5:88:c7:9e:09:
b0:3e:02:da:a6:fc:19:55:c3:b0:19:7e:fe:a8:dc:
b3:9d:34:af:de:d1:c9:f9:13:16:d1:e2:a2:09:96:
4d:aa:f2:fe:18:1c:c3:ed:c8:e6:ab:77:39:6d:f7:
20:3e:46:3c:98:9a:4f:8d:58:e8:2e:00:64:77:b0:
9e:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:7E:BA:28:4B:73:A0:E0:A2:2D:CA:04:8E:D2:D7:4A:9A:CC:36:9A
X509v3 Authority Key Identifier:
keyid:51:7A:0C:96:84:2B:AF:C9:F6:30:BA:14:B8:3E:A7:9B:D1:2A:53:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UXoMloQrr8n2MLoUuD6nm9EqU7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/14e492-8525-4eec-84bc-b0eb6715e0af/1/GH66KEtzoOCiLcoEjtLXSprMNpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/14e492-8525-4eec-84bc-b0eb6715e0af/1/UXoMloQrr8n2MLoUuD6nm9EqU7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:cc80::/31
Signature Algorithm: sha256WithRSAEncryption
d4:22:b4:e6:45:f0:4b:17:96:5e:1a:d2:d8:d1:6c:a0:cd:08:
54:01:1b:25:01:aa:f3:c1:f5:95:71:67:2a:27:05:f0:7d:c6:
76:9e:70:88:93:e6:0f:44:b2:3c:ba:7a:db:3a:9d:88:d7:2d:
e7:71:84:af:f0:a7:7e:ae:dc:29:65:31:9f:4e:f8:15:05:61:
b4:44:de:7d:02:ae:25:61:b3:81:dc:e6:73:eb:a4:29:31:c9:
ee:c0:82:45:e7:a8:24:89:72:94:c1:0c:14:d7:66:01:02:bc:
cb:02:91:c0:3f:52:9f:d1:20:ed:78:69:5e:32:8c:30:86:36:
c5:65:1b:ad:f0:38:80:07:e3:6a:eb:9a:cf:7e:c2:86:09:4b:
68:8f:85:16:9e:80:2f:f8:a5:15:a1:00:29:62:5a:9d:e5:8f:
a3:9e:af:cb:18:b2:8c:00:69:02:f7:07:4c:27:f8:32:4a:d9:
e7:91:f5:eb:45:87:62:29:6c:61:da:eb:60:ff:0e:ef:09:01:
1a:c4:af:70:c6:77:22:7e:6c:6b:99:f5:76:59:d6:73:e3:92:
c4:78:40:ab:b7:0a:a1:f8:1e:8a:a1:84:11:3e:c5:59:ba:cb:
1a:cb:01:89:68:a5:9b:5d:e6:32:4c:5d:c5:a1:89:75:b2:b6:
b5:8e:b1:c0
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYnvjR/L4JTguJnWkekOmA6FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxN2EwYzk2ODQyYmFmYzlmNjMwYmExNGI4M2VhNzliZDEy
YTUzYjkwHhcNMjMwODEzMTUzOTEwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxODdlYmEyODRiNzNhMGUwYTIyZGNhMDQ4ZWQyZDc0YTlhY2MzNjlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiukKqeKkO1gL4niFLZEHHRrubtd4
MBM9zjmyupEQ41xIAAcaNR9AR52wdpL/clgWtb64m9WLl2KePrILm+oe46VyV9eR
L9ta7Lv0rjxYQWQKFreWuUvxrxi9GGa0m00gMxWwcutBKF69vlVtprfRLlBzcQJR
1SObvRZrfuElDggpCtY18YxjVSIbe2oE3zGb8RLkrep5+auTDhl2F16/CybIQ4im
DdINXI3fAqhPaoYWsMwo59RTdwMzHvlctYjHngmwPgLapvwZVcOwGX7+qNyznTSv
3tHJ+RMW0eKiCZZNqvL+GBzD7cjmq3c5bfcgPkY8mJpPjVjoLgBkd7CejQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFBh+uihLc6Dgoi3KBI7S10qazDaaMB8GA1UdIwQY
MBaAFFF6DJaEK6/J9jC6FLg+p5vRKlO5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVhvTWxvUXJyOG4yTUxvVXVENm5tOUVxVTdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy8xNGU0OTItODUyNS00ZWVjLTg0YmMt
YjBlYjY3MTVlMGFmLzEvR0g2NktFdHpvT0NpTGNvRWp0TFhTcHJNTnBvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy8xNGU0OTItODUyNS00ZWVjLTg0YmMtYjBlYjY3MTVlMGFm
LzEvVVhvTWxvUXJyOG4yTUxvVXVENm5tOUVxVTdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUBKhPMgDAN
BgkqhkiG9w0BAQsFAAOCAQEA1CK05kXwSxeWXhrS2NFsoM0IVAEbJQGq88H1lXFn
KicF8H3Gdp5wiJPmD0SyPLp62zqdiNct53GEr/Cnfq7cKWUxn074FQVhtETefQKu
JWGzgdzmc+ukKTHJ7sCCReeoJIlylMEMFNdmAQK8ywKRwD9Sn9Eg7XhpXjKMMIY2
xWUbrfA4gAfjauuaz37ChglLaI+FFp6AL/ilFaEAKWJaneWPo56vyxiyjABpAvcH
TCf4MkrZ55H160WHYilsYdrrYP8O7wkBGsSvcMZ3In5sa5n1dlnWc+OSxHhAq7cK
ofgeiqGEET7FWbrLGssBiWilm13mMkxdxaGJdbK2tY6xwA==
-----END CERTIFICATE-----
Generated at Mon Jan 1 14:11:00 2024 by rpki-client on console.sobornost.net