Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1-5JS2widJ8KAIJ-yG_UC4K51KLE.roa
File: 1-5JS2widJ8KAIJ-yG_UC4K51KLE.roa (raw, json)
Hash identifier: 2GTJGqne/Pf+0EskQOLK5aRRTBGc3fWFvALjh/tyXoY=
Subject key identifier: FB:92:52:DB:08:9D:27:C2:80:20:9F:B2:1B:F5:02:E0:AE:75:28:B1
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAE7DAE7962C4C3D9DAAF28BA26F273
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1-5JS2widJ8KAIJ-yG_UC4K51KLE.roa
Signing time: Tue 06 Feb 2024 18:29:18 +0000
ROA not before: Tue 06 Feb 2024 18:29:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58339
IP address blocks: 2a0f:b241:122::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ae:7d:ae:79:62:c4:c3:d9:da:af:28:ba:26:f2:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:29:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fb9252db089d27c280209fb21bf502e0ae7528b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:82:80:40:be:40:99:12:ea:a4:16:e7:68:39:
ef:bd:d6:af:bd:d2:de:4a:b9:af:c8:36:d7:3f:46:
95:f9:3b:d1:8b:d1:4b:7f:ce:78:b2:7f:a3:b2:43:
94:30:57:33:72:26:c5:5e:ad:17:79:4f:3f:24:b8:
8e:0c:ea:b9:36:76:fd:ae:3d:6f:08:ca:fa:c5:83:
99:e4:3b:60:5d:70:0d:7c:09:33:1a:ed:19:18:0b:
45:b8:04:0b:69:a4:82:d4:9f:a9:30:68:c7:02:30:
c3:8a:c9:2c:cb:63:39:45:43:e5:ee:4e:bc:78:0d:
14:11:8a:e0:fd:3f:cc:dc:ef:90:6c:b7:e7:b2:81:
37:35:6c:6e:a5:02:4f:45:6f:fd:f5:f4:22:5a:d7:
19:05:15:22:d3:3f:08:56:40:2d:69:fd:77:b4:b5:
05:6b:69:62:94:e5:6b:25:c4:f4:53:25:09:66:91:
a0:8c:7b:c5:ff:e2:26:66:db:88:85:ab:f2:a1:d9:
e4:1f:a4:3b:d4:4a:17:ca:0e:63:f0:f0:c7:79:c1:
b1:5b:38:2a:4b:91:91:7d:95:05:cc:ac:62:a2:eb:
4c:7e:5d:8c:f0:c1:1c:32:f0:57:a4:af:c9:3f:79:
54:3b:95:7a:2d:2e:4f:e2:7c:20:cd:38:91:37:d8:
8c:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:92:52:DB:08:9D:27:C2:80:20:9F:B2:1B:F5:02:E0:AE:75:28:B1
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1-5JS2widJ8KAIJ-yG_UC4K51KLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:122::/48
Signature Algorithm: sha256WithRSAEncryption
18:11:3c:cd:dc:f9:1e:78:65:4c:b1:81:48:ba:82:83:17:59:
95:f2:5b:3f:a1:fd:2e:f3:31:9d:cf:db:96:1e:32:f1:0b:16:
e9:68:27:cb:99:c2:e3:4b:9c:31:5a:a9:a4:46:e6:be:53:04:
96:84:2e:35:74:d5:71:5e:50:09:32:d2:31:e3:14:1a:51:5c:
5e:14:18:be:25:33:5e:61:5c:e1:00:1a:9e:13:a7:d4:a0:e2:
0b:d9:a1:64:63:39:4f:62:90:5a:3c:97:6c:9c:04:f1:0b:86:
e3:34:19:18:61:35:2b:4e:74:11:6a:65:dc:df:c0:b8:98:ad:
41:95:8b:ec:e9:8d:4c:b2:24:07:c5:fb:c9:a3:94:d9:a3:9a:
c3:46:19:82:c5:be:0a:29:39:8f:9c:97:57:57:63:6a:8c:f9:
44:cb:5a:e8:60:5f:92:74:66:a5:9f:43:6d:cd:9a:8a:d6:14:
a0:fd:cd:02:4e:14:40:ad:96:d4:b1:06:2e:31:b7:c9:64:6b:
30:50:00:94:1c:af:be:8e:a0:bd:f5:56:40:d1:a7:0a:df:9a:
d2:f4:33:c5:a4:23:75:f3:2e:b2:26:98:f6:ec:30:27:c8:ef:
9b:b8:ba:c9:73:cb:9b:ca:d8:e0:90:43:a4:90:0c:83:57:63:
c8:23:da:a7
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgISAY1/rn2ueWLEw9naryi6JvJzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgyOTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYjkyNTJkYjA4OWQyN2MyODAyMDlmYjIxYmY1MDJlMGFlNzUyOGIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjYKAQL5AmRLqpBbnaDnvvdavvdLe
SrmvyDbXP0aV+TvRi9FLf854sn+jskOUMFczcibFXq0XeU8/JLiODOq5Nnb9rj1v
CMr6xYOZ5DtgXXANfAkzGu0ZGAtFuAQLaaSC1J+pMGjHAjDDisksy2M5RUPl7k68
eA0UEYrg/T/M3O+QbLfnsoE3NWxupQJPRW/99fQiWtcZBRUi0z8IVkAtaf13tLUF
a2lilOVrJcT0UyUJZpGgjHvF/+ImZtuIhavyodnkH6Q71EoXyg5j8PDHecGxWzgq
S5GRfZUFzKxioutMfl2M8MEcMvBXpK/JP3lUO5V6LS5P4nwgzTiRN9iMVwIDAQAB
o4ICDTCCAgkwHQYDVR0OBBYEFPuSUtsInSfCgCCfshv1AuCudSixMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvMS01SlMyd2lkSjhLQUlKLXlHX1VDNEs1MUtMRS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvZDMvYjg3ZWMwLWY3NWEtNGJiZS1iMDY3LWI3MTc5ODBlNGFk
Ni8xL2JvY1FTazIweEdOeHBfaTJwRUg4TU96ZjRnOC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoPskEB
IjANBgkqhkiG9w0BAQsFAAOCAQEAGBE8zdz5HnhlTLGBSLqCgxdZlfJbP6H9LvMx
nc/blh4y8QsW6Wgny5nC40ucMVqppEbmvlMEloQuNXTVcV5QCTLSMeMUGlFcXhQY
viUzXmFc4QAanhOn1KDiC9mhZGM5T2KQWjyXbJwE8QuG4zQZGGE1K050EWpl3N/A
uJitQZWL7OmNTLIkB8X7yaOU2aOaw0YZgsW+Cik5j5yXV1djaoz5RMta6GBfknRm
pZ9Dbc2aitYUoP3NAk4UQK2W1LEGLjG3yWRrMFAAlByvvo6gvfVWQNGnCt+a0vQz
xaQjdfMusiaY9uwwJ8jvm7i6yXPLm8rY4JBDpJAMg1djyCPapw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org