Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1-7vtWWpkqBb8iyAKiRcmRkz6AFM.roa
File: 1-7vtWWpkqBb8iyAKiRcmRkz6AFM.roa (raw, json)
Hash identifier: qVLci/u/NRXzFIaYEBfcVkMXVhkYKuA40XEv013wAQs=
Subject key identifier: FB:BB:ED:59:6A:64:A8:16:FC:8B:20:0A:89:17:26:46:4C:FA:00:53
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA8F97C6A7E0C8BFA9742E2C4385B69
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1-7vtWWpkqBb8iyAKiRcmRkz6AFM.roa
Signing time: Tue 06 Feb 2024 18:23:16 +0000
ROA not before: Tue 06 Feb 2024 18:23:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200243
IP address blocks: 2a0f:b241:a1::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a8:f9:7c:6a:7e:0c:8b:fa:97:42:e2:c4:38:5b:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:23:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fbbbed596a64a816fc8b200a891726464cfa0053
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:c7:13:0c:f3:5f:2c:bc:d4:d9:6a:c7:0b:3b:
ed:e6:d7:e5:dd:99:2b:ad:0b:2a:14:97:68:1b:ab:
46:5b:69:af:e4:ba:af:3f:ef:68:18:9f:b1:22:13:
c4:17:98:a1:9a:4e:a0:9f:fa:ab:c8:d0:04:26:ee:
b1:68:ae:31:49:9e:2d:c0:19:f5:b9:f6:b0:79:23:
9d:90:f8:13:55:b3:64:9e:4d:c6:50:74:28:08:1a:
d4:a5:20:ef:28:fe:51:81:23:9f:b3:87:2f:3d:26:
a6:80:dd:5c:2a:cb:7e:c3:f3:73:58:c8:a4:36:ba:
ae:bf:96:df:9b:af:dc:6b:a6:64:2e:dc:cc:dd:e5:
a3:81:a0:0c:60:5d:cc:79:51:9d:8a:b7:c3:e9:29:
f8:54:4d:90:a0:c8:5c:e4:e9:0a:d9:c5:9f:70:b1:
84:81:ca:ab:cb:a9:cd:51:1e:71:31:ab:6c:ba:cd:
3d:df:8f:67:21:0a:54:15:5d:a8:75:d1:45:e9:35:
1f:e6:80:8e:4c:3a:b2:bc:e0:d6:14:e1:f1:55:11:
d8:73:df:b5:53:a9:71:84:eb:ac:dd:48:1d:f6:27:
d7:7d:35:8f:e8:e1:da:fa:12:01:3b:21:dc:8d:be:
d5:5b:0d:06:90:88:1a:1f:c1:73:e4:4f:78:12:2d:
bc:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:BB:ED:59:6A:64:A8:16:FC:8B:20:0A:89:17:26:46:4C:FA:00:53
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1-7vtWWpkqBb8iyAKiRcmRkz6AFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:a1::/48
Signature Algorithm: sha256WithRSAEncryption
86:f0:3a:a9:ba:24:d6:ac:7f:fc:ef:07:4a:2d:1b:f4:aa:bc:
e0:b4:92:46:71:79:d6:2a:c2:e2:47:63:77:44:bb:ae:5e:e7:
d7:5b:e5:9e:7e:18:6d:04:3a:e3:e8:6a:90:40:d5:b3:44:0a:
e2:18:e0:a3:17:4b:cd:b0:bd:5a:03:b9:3a:1b:f5:94:a8:ea:
ae:43:19:34:e2:8b:82:14:69:d1:a2:e0:9c:71:28:9f:79:aa:
a8:2a:e6:7a:91:bb:e9:f2:8b:53:cf:01:eb:d5:2d:a8:d8:2f:
28:3c:94:6c:f9:3e:d9:82:b1:03:ed:71:60:8c:22:e0:f3:1e:
67:56:90:6d:67:8c:51:31:73:7b:04:d1:61:a8:39:1b:6b:0f:
89:4e:13:fa:6b:85:04:6d:62:f5:a9:f1:5b:11:96:9a:d4:00:
9a:bb:9c:42:aa:76:ee:e3:da:fc:69:5a:2f:00:19:09:11:2e:
70:68:27:8b:34:d3:64:31:2d:40:8e:c8:a9:46:f1:85:2e:47:
be:44:ee:bb:ea:eb:00:e5:99:0e:03:92:66:40:56:d6:3e:21:
57:21:f8:a4:6f:43:bf:fe:c2:c1:32:94:ce:c1:72:b6:1d:7e:
92:62:9c:a9:5b:7a:6d:92:e1:d9:0f:61:88:31:07:a4:08:2b:
30:07:68:e9
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgISAY1/qPl8an4Mi/qXQuLEOFtpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgyMzE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYmJiZWQ1OTZhNjRhODE2ZmM4YjIwMGE4OTE3MjY0NjRjZmEwMDUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmccTDPNfLLzU2WrHCzvt5tfl3Zkr
rQsqFJdoG6tGW2mv5LqvP+9oGJ+xIhPEF5ihmk6gn/qryNAEJu6xaK4xSZ4twBn1
ufaweSOdkPgTVbNknk3GUHQoCBrUpSDvKP5RgSOfs4cvPSamgN1cKst+w/NzWMik
Nrquv5bfm6/ca6ZkLtzM3eWjgaAMYF3MeVGdirfD6Sn4VE2QoMhc5OkK2cWfcLGE
gcqry6nNUR5xMatsus09349nIQpUFV2oddFF6TUf5oCOTDqyvODWFOHxVRHYc9+1
U6lxhOus3Ugd9ifXfTWP6OHa+hIBOyHcjb7VWw0GkIgaH8Fz5E94Ei28GwIDAQAB
o4ICDTCCAgkwHQYDVR0OBBYEFPu77VlqZKgW/IsgCokXJkZM+gBTMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvMS03dnRXV3BrcUJiOGl5QUtpUmNtUmt6NkFGTS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvZDMvYjg3ZWMwLWY3NWEtNGJiZS1iMDY3LWI3MTc5ODBlNGFk
Ni8xL2JvY1FTazIweEdOeHBfaTJwRUg4TU96ZjRnOC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoPskEA
oTANBgkqhkiG9w0BAQsFAAOCAQEAhvA6qbok1qx//O8HSi0b9Kq84LSSRnF51irC
4kdjd0S7rl7n11vlnn4YbQQ64+hqkEDVs0QK4hjgoxdLzbC9WgO5Ohv1lKjqrkMZ
NOKLghRp0aLgnHEon3mqqCrmepG76fKLU88B69UtqNgvKDyUbPk+2YKxA+1xYIwi
4PMeZ1aQbWeMUTFzewTRYag5G2sPiU4T+muFBG1i9anxWxGWmtQAmrucQqp27uPa
/GlaLwAZCREucGgnizTTZDEtQI7IqUbxhS5HvkTuu+rrAOWZDgOSZkBW1j4hVyH4
pG9Dv/7CwTKUzsFyth1+kmKcqVt6bZLh2Q9hiDEHpAgrMAdo6Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:07 2024 by rpki-client on console-ams.rpki-client.org