Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/8JVARiWNoR0wJoyzEl68Put8CNY.roa
File: 8JVARiWNoR0wJoyzEl68Put8CNY.roa (raw, json)
Hash identifier: cQm1KteiUTwgO2Qe73C7poUU5Gmjl7AD2ZlTOOKSGMc=
Subject key identifier: F0:95:40:46:25:8D:A1:1D:30:26:8C:B3:12:5E:BC:3E:EB:7C:08:D6
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7CEF530A2E7AC000FD369A759C703058
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/8JVARiWNoR0wJoyzEl68Put8CNY.roa
Signing time: Tue 06 Feb 2024 05:41:15 +0000
ROA not before: Tue 06 Feb 2024 05:41:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206628
IP address blocks: 2a0f:b241:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7c:ef:53:0a:2e:7a:c0:00:fd:36:9a:75:9c:70:30:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 05:41:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f0954046258da11d30268cb3125ebc3eeb7c08d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3d:10:f0:f3:01:2b:fc:c8:7b:f3:e8:be:b9:
de:36:96:7c:26:ac:db:42:6c:63:99:aa:08:70:c1:
3d:c8:98:56:3b:d8:e9:f7:bf:30:02:6e:b6:af:6c:
75:49:a3:04:72:9c:24:79:03:62:30:36:5d:5a:e3:
ef:da:95:61:e8:1d:0a:f4:aa:4c:3a:a7:fe:9d:85:
75:f9:2e:dc:80:41:d0:d3:c2:a1:3f:b3:de:86:4f:
59:7e:57:e2:f4:50:60:78:be:11:66:d4:a4:22:05:
20:71:3e:0e:62:b5:d5:4a:0a:c3:22:5c:65:76:fb:
25:38:95:27:a5:53:ee:4d:6a:fe:9d:b3:b1:01:17:
62:34:c8:81:74:82:7c:75:8d:fe:a0:42:df:87:b7:
15:83:5b:91:82:04:d9:53:69:a7:f5:23:76:29:f2:
69:f8:85:44:97:3b:ad:b3:cc:ff:f3:7a:19:d9:b9:
c4:b0:1f:0f:2a:4a:c0:3d:a2:d7:7e:82:92:4a:54:
bd:37:a3:6e:78:f6:58:c6:ca:cc:5e:c9:f3:37:27:
5f:8b:9d:60:51:45:3d:c5:c1:7c:cf:57:89:14:e1:
bf:70:9d:ee:41:1a:eb:51:9e:b6:ef:31:62:42:74:
e7:83:8c:49:36:79:e2:e0:69:49:66:b4:e9:77:c0:
44:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:95:40:46:25:8D:A1:1D:30:26:8C:B3:12:5E:BC:3E:EB:7C:08:D6
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/8JVARiWNoR0wJoyzEl68Put8CNY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:2::/48
Signature Algorithm: sha256WithRSAEncryption
65:aa:a9:dd:96:4f:14:31:3a:a9:bf:06:3c:ea:1d:08:7d:e9:
de:1d:ca:75:c7:8e:36:b0:6e:8c:3a:dc:8f:a7:6f:2c:7d:d5:
68:42:26:19:85:19:5d:25:b5:eb:d5:f3:78:8c:63:97:b6:81:
d4:09:1e:e6:22:d5:7e:47:44:68:ce:50:f2:f2:c4:1e:c8:bf:
29:22:8d:8c:37:ca:b6:80:bd:2f:42:b4:c4:81:19:67:61:5e:
67:c8:33:d4:70:20:0b:00:7d:35:6b:f9:ee:8a:55:1f:ba:f2:
e9:22:1f:c4:8f:72:58:c9:02:78:51:7c:f5:50:61:13:25:a5:
45:14:75:f3:86:ca:d8:d2:6d:27:67:75:fe:3d:ca:7d:4d:1f:
95:02:d3:37:6a:29:04:cf:ff:f0:98:bc:e7:b0:b4:48:f3:c0:
25:5b:47:f9:eb:a5:4e:7e:2d:5a:46:01:2f:34:3e:d4:a1:2f:
99:a0:17:f7:a9:c7:bd:b9:c8:dc:fb:2a:13:b8:e8:c0:af:8d:
5b:87:50:f8:ee:89:e6:12:67:d5:10:67:5a:e0:50:4e:37:11:
ea:41:b1:0d:3f:c3:b3:b0:c4:fb:2f:28:ad:a5:3e:48:da:c2:
f2:74:4f:5e:6f:3a:94:49:af:65:b0:2a:40:d0:e7:f1:4d:62:
d8:9f:4b:7a
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1871MKLnrAAP02mnWccDBYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MDU0MTE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMDk1NDA0NjI1OGRhMTFkMzAyNjhjYjMxMjVlYmMzZWViN2MwOGQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtz0Q8PMBK/zIe/PovrneNpZ8Jqzb
QmxjmaoIcME9yJhWO9jp978wAm62r2x1SaMEcpwkeQNiMDZdWuPv2pVh6B0K9KpM
Oqf+nYV1+S7cgEHQ08KhP7Pehk9Zflfi9FBgeL4RZtSkIgUgcT4OYrXVSgrDIlxl
dvslOJUnpVPuTWr+nbOxARdiNMiBdIJ8dY3+oELfh7cVg1uRggTZU2mn9SN2KfJp
+IVElzuts8z/83oZ2bnEsB8PKkrAPaLXfoKSSlS9N6NuePZYxsrMXsnzNydfi51g
UUU9xcF8z1eJFOG/cJ3uQRrrUZ627zFiQnTng4xJNnni4GlJZrTpd8BEcwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFPCVQEYljaEdMCaMsxJevD7rfAjWMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvOEpWQVJpV05vUjB3Sm95ekVsNjhQdXQ4Q05ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQAC
MA0GCSqGSIb3DQEBCwUAA4IBAQBlqqndlk8UMTqpvwY86h0IfeneHcp1x442sG6M
OtyPp28sfdVoQiYZhRldJbXr1fN4jGOXtoHUCR7mItV+R0RozlDy8sQeyL8pIo2M
N8q2gL0vQrTEgRlnYV5nyDPUcCALAH01a/nuilUfuvLpIh/Ej3JYyQJ4UXz1UGET
JaVFFHXzhsrY0m0nZ3X+Pcp9TR+VAtM3aikEz//wmLznsLRI88AlW0f566VOfi1a
RgEvND7UoS+ZoBf3qce9ucjc+yoTuOjAr41bh1D47onmEmfVEGda4FBONxHqQbEN
P8OzsMT7LyitpT5I2sLydE9ebzqUSa9lsCpA0OfxTWLYn0t6
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:07 2024 by rpki-client on console-ams.rpki-client.org