Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/4LI1QXDruEu50-wZ7qJjtMZ3_h4.roa
File: 4LI1QXDruEu50-wZ7qJjtMZ3_h4.roa (raw, json)
Hash identifier: 4h0hEDH/4o0LwRgtT8qeza72M2FMEDvsOMFNa7iX9Ms=
Subject key identifier: E0:B2:35:41:70:EB:B8:4B:B9:D3:EC:19:EE:A2:63:B4:C6:77:FE:1E
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA72C5FD86118A3477BAA15D07A8916
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/4LI1QXDruEu50-wZ7qJjtMZ3_h4.roa
Signing time: Tue 06 Feb 2024 18:21:18 +0000
ROA not before: Tue 06 Feb 2024 18:21:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199605
IP address blocks: 2a0f:b241:87::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a7:2c:5f:d8:61:18:a3:47:7b:aa:15:d0:7a:89:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:21:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e0b2354170ebb84bb9d3ec19eea263b4c677fe1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:9a:0d:cf:fa:f7:40:e0:d6:05:a1:50:da:25:
57:af:45:8f:ae:43:65:13:ce:6c:b4:0a:2b:ba:a1:
3a:7b:ed:45:34:ef:fb:1c:a1:a7:5e:d5:41:85:b6:
33:58:3d:78:c9:0a:ea:39:59:c9:af:14:64:a7:66:
ff:b6:d1:fa:1b:20:5e:53:e3:5d:37:82:1e:da:d9:
d3:3e:0a:55:25:e0:85:8b:b3:aa:74:86:27:eb:5d:
15:cc:c9:28:27:28:20:6f:83:3f:c4:ac:cd:e1:31:
b6:bb:5b:d8:04:d4:a0:15:75:a5:a3:fe:66:11:75:
1c:bc:74:5d:8a:f9:2c:df:ff:68:29:c7:ed:7b:41:
12:4c:33:c0:13:bb:34:f0:ef:36:1b:8f:bb:5a:f1:
df:52:ba:8d:ca:93:a5:43:3b:fd:26:83:a9:da:f9:
a8:f1:96:c6:b5:fa:13:c3:9b:05:19:39:21:2b:32:
cb:28:1e:c6:01:ed:3d:f2:0e:6c:12:e9:f1:d8:d9:
8e:b3:1a:f6:9b:64:85:27:56:75:58:5e:a3:47:58:
74:5e:46:ef:a6:b5:45:09:41:86:7e:90:4e:58:56:
a6:9c:a1:30:5d:d3:5b:70:d6:28:8c:8a:8d:8b:7f:
1d:79:00:8d:12:a5:21:b6:8a:d4:09:95:86:df:36:
e2:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:B2:35:41:70:EB:B8:4B:B9:D3:EC:19:EE:A2:63:B4:C6:77:FE:1E
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/4LI1QXDruEu50-wZ7qJjtMZ3_h4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:87::/48
Signature Algorithm: sha256WithRSAEncryption
5f:39:ec:5c:5d:36:da:eb:7f:71:f4:52:fa:1a:21:18:a1:36:
9f:d6:ac:09:22:ec:97:5d:41:d5:c3:55:1c:53:58:89:7f:d2:
d6:e4:7c:03:ad:84:bc:18:79:02:cf:67:a4:74:44:41:68:12:
b3:a7:bd:96:fe:2c:11:b3:a8:8a:2d:66:d6:06:e3:e2:11:55:
01:1d:0a:53:a0:6f:72:a2:eb:4d:21:a5:d6:cd:a2:4b:eb:dc:
c2:2e:e9:5f:7c:89:b2:bc:3d:6a:95:40:4a:ab:9c:7b:8a:61:
db:88:3e:02:68:f8:fa:45:4b:05:b0:93:98:da:2c:bc:44:8b:
56:72:c8:a0:72:93:ac:07:21:b5:cd:c3:1b:00:62:e2:d6:c0:
89:ed:93:ee:0e:21:a4:85:b9:9c:00:1c:9e:89:a2:5d:3a:38:
5c:80:e2:56:98:fa:20:40:2c:ad:9d:bc:95:5f:25:d9:41:cc:
3d:65:97:7a:42:a4:02:30:01:11:d9:d3:62:72:fb:11:e0:4c:
b8:80:c4:7f:79:39:39:69:c8:1c:72:26:39:45:af:79:35:be:
e6:b4:a4:0b:28:f1:84:6e:bd:18:d4:3e:d1:7f:58:e2:b8:4b:
23:ce:eb:a4:38:f2:c7:02:33:11:c1:cd:e3:b6:de:c2:2e:fd:
49:5d:29:bc
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/pyxf2GEYo0d7qhXQeokWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgyMTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMGIyMzU0MTcwZWJiODRiYjlkM2VjMTllZWEyNjNiNGM2NzdmZTFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzZoNz/r3QODWBaFQ2iVXr0WPrkNl
E85stAoruqE6e+1FNO/7HKGnXtVBhbYzWD14yQrqOVnJrxRkp2b/ttH6GyBeU+Nd
N4Ie2tnTPgpVJeCFi7OqdIYn610VzMkoJyggb4M/xKzN4TG2u1vYBNSgFXWlo/5m
EXUcvHRdivks3/9oKcfte0ESTDPAE7s08O82G4+7WvHfUrqNypOlQzv9JoOp2vmo
8ZbGtfoTw5sFGTkhKzLLKB7GAe098g5sEunx2NmOsxr2m2SFJ1Z1WF6jR1h0Xkbv
prVFCUGGfpBOWFamnKEwXdNbcNYojIqNi38deQCNEqUhtorUCZWG3zbi3QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFOCyNUFw67hLudPsGe6iY7TGd/4eMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvNExJMVFYRHJ1RXU1MC13WjdxSmp0TVozX2g0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQCH
MA0GCSqGSIb3DQEBCwUAA4IBAQBfOexcXTba639x9FL6GiEYoTaf1qwJIuyXXUHV
w1UcU1iJf9LW5HwDrYS8GHkCz2ekdERBaBKzp72W/iwRs6iKLWbWBuPiEVUBHQpT
oG9youtNIaXWzaJL69zCLulffImyvD1qlUBKq5x7imHbiD4CaPj6RUsFsJOY2iy8
RItWcsigcpOsByG1zcMbAGLi1sCJ7ZPuDiGkhbmcAByeiaJdOjhcgOJWmPogQCyt
nbyVXyXZQcw9ZZd6QqQCMAER2dNicvsR4Ey4gMR/eTk5acgcciY5Ra95Nb7mtKQL
KPGEbr0Y1D7Rf1jiuEsjzuukOPLHAjMRwc3jtt7CLv1JXSm8
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:07 2024 by rpki-client on console-ams.rpki-client.org