Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/0B0EFLI5olF1DGUNxwc4vplPFng.roa
File: 0B0EFLI5olF1DGUNxwc4vplPFng.roa (raw, json)
Hash identifier: HRzUKqCYS6BItATtxoaG36dLC5CSqUUr1ipAy6sC4FQ=
Subject key identifier: D0:1D:04:14:B2:39:A2:51:75:0C:65:0D:C7:07:38:BE:99:4F:16:78
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F08DE0E0ECD136091B05A7C3C0B493
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/0B0EFLI5olF1DGUNxwc4vplPFng.roa
Signing time: Wed 07 Feb 2024 05:00:42 +0000
ROA not before: Wed 07 Feb 2024 05:00:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203635
IP address blocks: 2a0f:b241:e6::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:8d:e0:e0:ec:d1:36:09:1b:05:a7:c3:c0:b4:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d01d0414b239a251750c650dc70738be994f1678
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ce:fa:d4:43:17:3c:e2:9a:13:9f:10:ca:58:
6b:b5:12:b6:18:6b:8d:f2:b0:d9:ba:91:c7:26:6f:
fb:15:39:4d:c4:ee:12:e1:2b:3e:bf:bb:35:15:c0:
8d:fa:8d:8e:c0:79:a8:be:6c:e2:d2:4f:d1:10:3c:
cf:bb:99:84:dd:99:1b:f3:f6:60:f6:e0:af:b0:46:
5b:52:d7:55:86:0b:a1:be:7e:80:a1:27:9c:e4:0a:
5a:48:24:db:17:ce:de:72:d9:22:55:83:94:d0:1e:
db:de:3e:8e:fb:45:ca:91:05:92:74:6d:6d:fb:ac:
27:64:16:ae:db:3d:02:44:ae:94:1d:13:7c:40:4d:
3c:31:5d:72:08:c1:1e:9c:fe:44:66:9b:af:3d:9c:
2b:40:3e:ac:b8:43:c6:3c:5f:b9:83:7b:96:07:b2:
9c:5b:a5:f3:7c:2e:1f:58:cc:12:46:8c:16:22:e5:
2c:de:af:f4:a3:b1:df:ec:4a:7c:bb:0b:9d:a1:69:
7a:2b:2a:6d:a2:4c:f5:84:94:7a:26:b4:cf:4e:25:
9f:29:ec:92:38:56:01:08:b9:f3:54:97:40:05:cb:
7d:84:8c:eb:38:57:14:3e:5c:a4:e8:4f:22:54:e6:
d7:dd:62:de:f7:32:9a:51:c6:0d:81:bb:58:e6:70:
44:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:1D:04:14:B2:39:A2:51:75:0C:65:0D:C7:07:38:BE:99:4F:16:78
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/0B0EFLI5olF1DGUNxwc4vplPFng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:e6::/48
Signature Algorithm: sha256WithRSAEncryption
19:2c:45:15:0c:09:9d:f5:22:e3:d7:da:3c:c5:1d:36:26:70:
2b:7c:04:5c:da:aa:fc:81:35:8e:d5:b3:f4:a9:01:be:12:e8:
31:58:7f:6e:34:cb:1d:75:ea:df:d8:ca:fc:4f:61:44:f3:91:
63:2e:cf:5b:bc:6b:3e:9f:c8:fa:29:e3:29:18:bc:01:ee:8b:
d8:d2:86:71:33:99:a0:65:f5:d5:61:55:80:b3:25:a2:7f:96:
c6:78:63:aa:b8:8a:ff:9a:3e:8b:af:b9:f1:c7:2d:8e:13:51:
16:a5:e2:90:4d:e3:43:c9:e4:7f:56:10:fb:76:27:e7:fd:ef:
dc:35:10:44:2f:25:2f:56:21:34:24:b0:3a:6e:39:68:68:e1:
52:e8:93:0d:e4:ad:2f:1f:c4:e9:d7:9f:bc:87:09:e5:08:f4:
59:db:40:f1:aa:2d:32:ba:28:1f:fa:b6:c9:17:72:af:b6:1f:
a2:f9:a2:20:fd:54:6e:86:6b:eb:ca:22:e3:91:1b:bc:64:4b:
4f:b9:70:9a:13:5e:76:2a:68:81:ff:ac:a2:63:27:52:8d:c6:
ac:77:0e:e4:a6:4d:a6:8a:b3:41:0d:7b:3c:b3:94:60:30:54:
3d:fc:68:2b:16:ff:c8:f3:8c:1d:f5:32:ff:04:f0:a7:c3:9e:
53:6c:6c:19
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY2B8I3g4OzRNgkbBafDwLSTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA3MDUwMDQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMDFkMDQxNGIyMzlhMjUxNzUwYzY1MGRjNzA3MzhiZTk5NGYxNjc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtM761EMXPOKaE58QylhrtRK2GGuN
8rDZupHHJm/7FTlNxO4S4Ss+v7s1FcCN+o2OwHmovmzi0k/REDzPu5mE3Zkb8/Zg
9uCvsEZbUtdVhguhvn6AoSec5ApaSCTbF87ectkiVYOU0B7b3j6O+0XKkQWSdG1t
+6wnZBau2z0CRK6UHRN8QE08MV1yCMEenP5EZpuvPZwrQD6suEPGPF+5g3uWB7Kc
W6XzfC4fWMwSRowWIuUs3q/0o7Hf7Ep8uwudoWl6Kyptokz1hJR6JrTPTiWfKeyS
OFYBCLnzVJdABct9hIzrOFcUPlyk6E8iVObX3WLe9zKaUcYNgbtY5nBEyQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFNAdBBSyOaJRdQxlDccHOL6ZTxZ4MB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvMEIwRUZMSTVvbEYxREdVTnh3YzR2cGxQRm5nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQDm
MA0GCSqGSIb3DQEBCwUAA4IBAQAZLEUVDAmd9SLj19o8xR02JnArfARc2qr8gTWO
1bP0qQG+EugxWH9uNMsdderf2Mr8T2FE85FjLs9bvGs+n8j6KeMpGLwB7ovY0oZx
M5mgZfXVYVWAsyWif5bGeGOquIr/mj6Lr7nxxy2OE1EWpeKQTeNDyeR/VhD7difn
/e/cNRBELyUvViE0JLA6bjloaOFS6JMN5K0vH8Tp15+8hwnlCPRZ20Dxqi0yuigf
+rbJF3Kvth+i+aIg/VRuhmvryiLjkRu8ZEtPuXCaE152KmiB/6yiYydSjcasdw7k
pk2mirNBDXs8s5RgMFQ9/GgrFv/I84wd9TL/BPCnw55TbGwZ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:06 2024 by rpki-client on console-ams.rpki-client.org