Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/6K0ROLDgSmD71-i6cWr0RAplSX0.roa
File: 6K0ROLDgSmD71-i6cWr0RAplSX0.roa (raw, json)
Hash identifier: Ly2UEcRIsPofzxxFQasRyOnWCsfLs89okjGqbw8diVQ=
Subject key identifier: E8:AD:11:38:B0:E0:4A:60:FB:D7:E8:BA:71:6A:F4:44:0A:65:49:7D
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F05E6D528DD6427B61FB14D509A358
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/6K0ROLDgSmD71-i6cWr0RAplSX0.roa
Signing time: Wed 07 Feb 2024 05:00:30 +0000
ROA not before: Wed 07 Feb 2024 05:00:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49105
IP address blocks: 2a0f:b241:114::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:5e:6d:52:8d:d6:42:7b:61:fb:14:d5:09:a3:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e8ad1138b0e04a60fbd7e8ba716af4440a65497d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:8b:73:83:84:25:25:7a:62:60:b7:8c:f8:d7:
c6:66:0a:0f:25:f7:50:a3:03:88:00:a1:1d:2b:93:
8d:b2:63:02:a2:da:3e:ca:9f:79:a0:95:ca:bf:91:
e6:cc:12:9c:c1:38:9f:47:41:09:3f:bf:69:e3:a4:
fa:8b:4f:52:71:d1:c7:41:b2:d8:2d:15:ff:1a:8c:
d0:d1:87:0d:96:ca:0c:5d:09:5b:e4:eb:c3:b1:87:
9b:9c:7a:89:43:bd:f9:ef:b9:38:3e:a8:e6:42:61:
a3:ec:58:d7:ad:bf:50:08:46:92:10:ca:4e:ae:10:
f2:ab:68:fb:82:3d:84:0a:5f:51:80:38:03:a3:60:
eb:f0:dd:c5:0f:7d:56:51:be:02:3c:36:a1:df:bc:
07:1f:5b:8d:46:f6:02:fb:a8:fd:14:56:94:33:ec:
79:90:34:a4:7d:85:98:34:cf:e8:07:05:f0:21:8d:
df:0a:a7:2c:e4:f3:88:2a:9f:41:18:93:33:f8:f3:
96:18:cf:dd:e0:d8:8a:02:dc:2b:24:ef:a2:17:2a:
ee:2e:38:c1:9a:b8:37:3d:2d:ee:de:e5:67:46:7c:
5b:e0:f0:b8:0a:b1:98:d8:cf:99:ac:b8:04:1d:47:
98:5a:de:78:bf:70:06:83:07:41:bc:07:d7:68:17:
ac:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:AD:11:38:B0:E0:4A:60:FB:D7:E8:BA:71:6A:F4:44:0A:65:49:7D
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/6K0ROLDgSmD71-i6cWr0RAplSX0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:114::/48
Signature Algorithm: sha256WithRSAEncryption
1b:9e:11:37:a8:99:00:e1:d4:14:22:ac:92:07:ca:8b:d1:22:
8d:72:8b:8b:79:fa:a7:7a:91:05:ed:91:a7:4d:3e:0e:32:75:
7b:97:f8:fb:d5:b2:98:b6:3f:46:37:e7:a4:8f:29:d6:ed:16:
01:87:a6:af:10:58:25:d4:a0:66:e3:5b:cd:08:fa:cf:86:6e:
0c:5a:ca:5c:1a:09:25:af:08:f9:53:cc:38:56:59:f8:0f:f6:
90:05:9e:c6:9b:62:bb:78:9d:78:b5:df:57:1e:db:18:35:f9:
57:38:8e:92:c4:f3:f1:1d:3b:6f:53:89:16:1f:94:5b:02:d6:
de:f5:8e:03:e1:f7:1f:e1:e1:fe:5c:33:05:76:32:59:b7:46:
7c:a3:51:51:b6:aa:e9:14:da:d4:7f:99:ec:3c:16:9a:5b:60:
fe:1d:62:17:98:33:64:06:8d:e1:91:ac:a2:04:d5:7e:0e:43:
8d:68:e3:c6:0e:d0:66:cb:93:33:6a:08:bb:b4:83:61:ab:e9:
92:af:4b:95:4f:74:e2:6e:38:61:78:76:42:76:b9:f7:9f:1f:
c9:d7:c1:37:92:2d:23:77:f8:86:20:da:68:90:81:93:9f:0f:
c9:af:97:19:53:29:a1:6f:ce:72:5d:7b:47:11:78:4e:a2:06:
27:d7:d7:a0
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY2B8F5tUo3WQnth+xTVCaNYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA3MDUwMDMwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOGFkMTEzOGIwZTA0YTYwZmJkN2U4YmE3MTZhZjQ0NDBhNjU0OTdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsYtzg4QlJXpiYLeM+NfGZgoPJfdQ
owOIAKEdK5ONsmMCoto+yp95oJXKv5HmzBKcwTifR0EJP79p46T6i09ScdHHQbLY
LRX/GozQ0YcNlsoMXQlb5OvDsYebnHqJQ73577k4PqjmQmGj7FjXrb9QCEaSEMpO
rhDyq2j7gj2ECl9RgDgDo2Dr8N3FD31WUb4CPDah37wHH1uNRvYC+6j9FFaUM+x5
kDSkfYWYNM/oBwXwIY3fCqcs5POIKp9BGJMz+POWGM/d4NiKAtwrJO+iFyruLjjB
mrg3PS3u3uVnRnxb4PC4CrGY2M+ZrLgEHUeYWt54v3AGgwdBvAfXaBes0QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFOitETiw4Epg+9founFq9EQKZUl9MB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvNkswUk9MRGdTbUQ3MS1pNmNXcjBSQXBsU1gwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQEU
MA0GCSqGSIb3DQEBCwUAA4IBAQAbnhE3qJkA4dQUIqySB8qL0SKNcouLefqnepEF
7ZGnTT4OMnV7l/j71bKYtj9GN+ekjynW7RYBh6avEFgl1KBm41vNCPrPhm4MWspc
Ggklrwj5U8w4Vln4D/aQBZ7Gm2K7eJ14td9XHtsYNflXOI6SxPPxHTtvU4kWH5Rb
Atbe9Y4D4fcf4eH+XDMFdjJZt0Z8o1FRtqrpFNrUf5nsPBaaW2D+HWIXmDNkBo3h
kayiBNV+DkONaOPGDtBmy5Mzagi7tINhq+mSr0uVT3TibjhheHZCdrn3nx/J18E3
ki0jd/iGINpokIGTnw/Jr5cZUymhb85yXXtHEXhOogYn19eg
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:07 2024 by rpki-client on console-ams.rpki-client.org