Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/2N-6AKeZDwV94hGeDHjgQxgt3Ro.roa
File: 2N-6AKeZDwV94hGeDHjgQxgt3Ro.roa (raw, json)
Hash identifier: l92yiTpOj+CGHkrKKqWaBPdZZHhOjmwD6ngXnNQC7rU=
Subject key identifier: D8:DF:BA:00:A7:99:0F:05:7D:E2:11:9E:0C:78:E0:43:18:2D:DD:1A
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB893872200F1FE181FE5601C997011
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/2N-6AKeZDwV94hGeDHjgQxgt3Ro.roa
Signing time: Tue 06 Feb 2024 18:40:19 +0000
ROA not before: Tue 06 Feb 2024 18:40:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216393
IP address blocks: 2a0f:b241:159::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b8:93:87:22:00:f1:fe:18:1f:e5:60:1c:99:70:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:40:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d8dfba00a7990f057de2119e0c78e043182ddd1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b4:34:b6:97:4c:f9:2b:73:1c:48:ca:0e:f4:
37:f8:f8:bc:e4:15:fc:00:53:5c:a0:7a:6d:0c:82:
77:5f:5b:05:fa:b5:a7:66:4a:ed:03:49:5f:66:76:
13:24:12:70:76:c9:24:67:e6:10:7c:82:33:01:5a:
d0:bc:60:87:a6:7b:f7:44:00:4e:b2:b8:9c:0e:a7:
31:05:17:04:af:78:ee:03:96:25:dd:3c:73:d3:a4:
9d:a8:b1:ae:23:0b:cc:a4:72:cc:de:42:cb:09:98:
be:ab:f8:6e:ad:cb:83:17:7f:f2:ec:e4:dd:4d:5f:
0b:51:78:89:b9:a7:4d:38:7d:4e:d0:77:14:a9:c5:
44:b8:b3:0b:29:b2:ce:43:8d:96:ac:0b:3a:1a:b0:
9f:5a:d8:03:32:50:52:d8:87:3a:f4:dc:34:58:54:
7f:d3:aa:ab:f1:58:54:a6:3c:71:e0:4a:59:56:f7:
4c:61:20:c5:2a:1d:24:ce:66:1c:4e:9d:4d:8f:be:
9b:d3:a3:e6:27:9a:d6:b1:74:02:4f:b5:81:1f:01:
4a:8f:c4:55:c6:a2:62:21:c4:48:cf:49:8e:85:0e:
27:bd:50:b5:9f:e0:a7:57:61:e1:9e:e5:7e:28:c5:
eb:b7:12:d6:26:40:59:07:cc:dc:c6:d5:2d:8a:4e:
97:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:DF:BA:00:A7:99:0F:05:7D:E2:11:9E:0C:78:E0:43:18:2D:DD:1A
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/2N-6AKeZDwV94hGeDHjgQxgt3Ro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:159::/48
Signature Algorithm: sha256WithRSAEncryption
04:4d:f7:9a:3c:47:07:a1:32:b8:b9:4b:59:6e:67:11:55:cb:
5c:cf:3b:79:51:03:ff:eb:de:88:7d:45:fc:75:f2:1b:f9:31:
2f:55:7d:99:68:f5:a7:5a:40:0a:cd:81:6e:af:f3:8b:44:8d:
dd:5f:b1:30:74:e7:1d:93:8e:c2:36:27:09:9c:43:c0:15:44:
07:69:60:69:d8:db:4e:b2:bb:ae:11:19:1e:a3:07:1f:01:cd:
bb:c2:bd:33:7e:f4:18:0d:72:fa:87:87:c0:78:3f:45:45:2b:
d3:4b:b5:20:c7:2b:fa:d1:04:e7:f4:ef:96:e2:f9:94:4b:a6:
47:1f:f1:32:ff:04:60:4e:73:05:53:cc:57:ad:6f:43:f2:05:
82:aa:77:8d:15:e0:10:b6:06:60:92:d9:6f:02:06:26:e2:2b:
36:a0:67:bf:ef:d1:ac:5e:43:0c:0c:48:e4:04:99:28:28:5c:
9f:26:b1:13:63:e1:43:8f:0b:c9:bb:50:3d:29:66:09:36:b5:
89:17:61:d3:c6:b0:5e:2b:74:67:90:b7:6f:cb:58:0d:a2:f9:
11:44:e9:e6:14:67:ac:a5:af:55:27:41:cf:e3:60:eb:a2:ff:
52:3a:f4:f3:2e:b3:f0:9a:df:a9:c3:4d:87:8c:31:da:11:7c:
35:c1:ed:ab
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/uJOHIgDx/hgf5WAcmXARMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTg0MDE5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkOGRmYmEwMGE3OTkwZjA1N2RlMjExOWUwYzc4ZTA0MzE4MmRkZDFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAurQ0tpdM+StzHEjKDvQ3+Pi85BX8
AFNcoHptDIJ3X1sF+rWnZkrtA0lfZnYTJBJwdskkZ+YQfIIzAVrQvGCHpnv3RABO
sricDqcxBRcEr3juA5Yl3Txz06SdqLGuIwvMpHLM3kLLCZi+q/hurcuDF3/y7OTd
TV8LUXiJuadNOH1O0HcUqcVEuLMLKbLOQ42WrAs6GrCfWtgDMlBS2Ic69Nw0WFR/
06qr8VhUpjxx4EpZVvdMYSDFKh0kzmYcTp1Nj76b06PmJ5rWsXQCT7WBHwFKj8RV
xqJiIcRIz0mOhQ4nvVC1n+CnV2HhnuV+KMXrtxLWJkBZB8zcxtUtik6XzwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFNjfugCnmQ8FfeIRngx44EMYLd0aMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvMk4tNkFLZVpEd1Y5NGhHZURIamdReGd0M1JvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQFZ
MA0GCSqGSIb3DQEBCwUAA4IBAQAETfeaPEcHoTK4uUtZbmcRVctczzt5UQP/696I
fUX8dfIb+TEvVX2ZaPWnWkAKzYFur/OLRI3dX7EwdOcdk47CNicJnEPAFUQHaWBp
2NtOsruuERkeowcfAc27wr0zfvQYDXL6h4fAeD9FRSvTS7Ugxyv60QTn9O+W4vmU
S6ZHH/Ey/wRgTnMFU8xXrW9D8gWCqneNFeAQtgZgktlvAgYm4is2oGe/79GsXkMM
DEjkBJkoKFyfJrETY+FDjwvJu1A9KWYJNrWJF2HTxrBeK3RnkLdvy1gNovkRROnm
FGespa9VJ0HP42Drov9SOvTzLrPwmt+pw02HjDHaEXw1we2r
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org