Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/8dBnV-HOLqduYqhtDl5r2Uuqreo.roa
File: 8dBnV-HOLqduYqhtDl5r2Uuqreo.roa (raw, json)
Hash identifier: C4/3v+cDOuOmw7tJP8Du50o45yb14MT0Wu2WRhjFclQ=
Subject key identifier: F1:D0:67:57:E1:CE:2E:A7:6E:62:A8:6D:0E:5E:6B:D9:4B:AA:AD:EA
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA7280DBD10875AB0B871D6F79E8BDF
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/8dBnV-HOLqduYqhtDl5r2Uuqreo.roa
Signing time: Tue 06 Feb 2024 18:21:17 +0000
ROA not before: Tue 06 Feb 2024 18:21:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199347
IP address blocks: 2a0f:b241:82::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a7:28:0d:bd:10:87:5a:b0:b8:71:d6:f7:9e:8b:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:21:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f1d06757e1ce2ea76e62a86d0e5e6bd94baaadea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c2:eb:d2:6c:9a:05:fc:9b:57:a4:e6:e1:4c:
de:5e:9f:c2:d0:48:33:4a:a7:01:de:32:5b:cb:93:
23:6a:23:b2:2d:d3:c4:b7:30:f5:d6:da:3d:48:71:
e8:9f:4c:47:39:75:d8:b3:e8:01:2e:3d:68:c6:f0:
6c:4f:ed:0e:4b:1f:7b:b1:08:e7:4b:8d:2c:b6:c6:
19:c4:76:b2:e7:7d:eb:f3:45:3a:d0:58:04:99:83:
ac:ea:de:4c:42:52:d0:2f:80:e8:75:35:ef:5c:6c:
54:24:8d:fd:ef:c0:a5:19:bd:cb:5e:34:ec:55:36:
9d:cb:63:01:e1:58:ee:0a:bd:34:91:2d:ce:9f:2e:
13:b8:33:2e:86:a6:a0:87:86:5a:67:89:2f:fc:2b:
68:09:4d:3b:70:50:bb:46:26:9f:6a:66:40:7a:cb:
96:28:72:c1:e5:d3:ab:47:6b:c2:64:ce:5e:b2:f5:
b6:11:ec:eb:75:5f:d2:0b:8f:65:10:61:58:8e:7b:
da:99:3c:9d:a6:14:ed:70:22:f3:2c:e2:04:c1:cb:
a5:00:24:d4:b6:a1:f8:44:d8:2c:57:59:81:92:e1:
bd:17:d4:f9:d1:db:fe:7b:7e:6c:76:73:19:14:10:
2c:a1:e0:d1:9c:08:ce:7f:73:2e:e6:3d:83:9e:39:
06:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:D0:67:57:E1:CE:2E:A7:6E:62:A8:6D:0E:5E:6B:D9:4B:AA:AD:EA
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/8dBnV-HOLqduYqhtDl5r2Uuqreo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:82::/48
Signature Algorithm: sha256WithRSAEncryption
17:2c:6f:14:f6:27:c4:86:6a:fe:45:da:39:da:c3:05:06:3d:
ab:16:ee:c3:1c:4f:5a:d5:ed:df:f9:a2:fb:16:5d:24:01:fb:
c5:8e:87:92:d0:23:41:d1:07:7b:39:a0:97:eb:b9:4d:d3:b8:
66:3d:b0:c7:d1:58:14:97:5c:8d:44:1b:dd:ff:8f:a3:c5:48:
10:69:fa:83:82:11:d0:ea:61:73:20:10:c6:91:31:a0:20:4c:
8c:50:1c:85:3f:1b:80:57:a1:86:bb:1a:52:28:4b:fc:b0:03:
b9:df:cd:85:8b:92:5c:d9:da:ed:5d:9c:b7:cb:de:0b:8e:09:
a5:13:ef:23:8b:a1:9b:0b:2c:81:b0:b6:41:ae:bb:cb:23:73:
33:d1:01:2c:c1:55:51:22:e5:8e:95:01:fc:e7:66:43:db:65:
9f:5b:d7:75:7d:12:1d:ae:6f:72:22:80:3e:79:f4:3f:5a:57:
07:e2:0f:a4:9c:7c:11:8f:bb:c6:1e:45:ce:54:3e:22:97:e6:
35:61:bf:dd:ab:c5:2c:62:a9:a4:2d:54:19:46:57:1b:89:06:
47:5c:a8:06:d6:6d:d4:ab:4f:b8:99:b4:07:30:02:28:db:3b:
c9:ed:85:c8:2d:dd:b7:27:b6:00:d8:01:b3:99:ed:60:a1:7f:
6d:50:eb:7b
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/pygNvRCHWrC4cdb3novfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgyMTE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMWQwNjc1N2UxY2UyZWE3NmU2MmE4NmQwZTVlNmJkOTRiYWFhZGVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn8Lr0myaBfybV6Tm4UzeXp/C0Egz
SqcB3jJby5MjaiOyLdPEtzD11to9SHHon0xHOXXYs+gBLj1oxvBsT+0OSx97sQjn
S40stsYZxHay533r80U60FgEmYOs6t5MQlLQL4DodTXvXGxUJI3978ClGb3LXjTs
VTady2MB4VjuCr00kS3Ony4TuDMuhqagh4ZaZ4kv/CtoCU07cFC7RiafamZAesuW
KHLB5dOrR2vCZM5esvW2EezrdV/SC49lEGFYjnvamTydphTtcCLzLOIEwculACTU
tqH4RNgsV1mBkuG9F9T50dv+e35sdnMZFBAsoeDRnAjOf3Mu5j2DnjkGFQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFPHQZ1fhzi6nbmKobQ5ea9lLqq3qMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvOGRCblYtSE9McWR1WXFodERsNXIyVXVxcmVvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQCC
MA0GCSqGSIb3DQEBCwUAA4IBAQAXLG8U9ifEhmr+Rdo52sMFBj2rFu7DHE9a1e3f
+aL7Fl0kAfvFjoeS0CNB0Qd7OaCX67lN07hmPbDH0VgUl1yNRBvd/4+jxUgQafqD
ghHQ6mFzIBDGkTGgIEyMUByFPxuAV6GGuxpSKEv8sAO5382Fi5Jc2drtXZy3y94L
jgmlE+8ji6GbCyyBsLZBrrvLI3Mz0QEswVVRIuWOlQH852ZD22WfW9d1fRIdrm9y
IoA+efQ/WlcH4g+knHwRj7vGHkXOVD4il+Y1Yb/dq8UsYqmkLVQZRlcbiQZHXKgG
1m3Uq0+4mbQHMAIo2zvJ7YXILd23J7YA2AGzme1goX9tUOt7
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:07 2024 by rpki-client on console-ams.rpki-client.org