Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/A4OQkAzqTyvbF0YNhf0YXrdqe1k.roa
File: A4OQkAzqTyvbF0YNhf0YXrdqe1k.roa (raw, json)
Hash identifier: CfYdTITM5SuCpH9GwG1+KWUysU++9vQ/1uyIe3Z15bI=
Subject key identifier: 03:83:90:90:0C:EA:4F:2B:DB:17:46:0D:85:FD:18:5E:B7:6A:7B:59
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB6B7B763440FB2028BE1F7791ED130
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/A4OQkAzqTyvbF0YNhf0YXrdqe1k.roa
Signing time: Tue 06 Feb 2024 18:38:17 +0000
ROA not before: Tue 06 Feb 2024 18:38:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202649
IP address blocks: 2a0f:b241:135::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b6:b7:b7:63:44:0f:b2:02:8b:e1:f7:79:1e:d1:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:38:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=038390900cea4f2bdb17460d85fd185eb76a7b59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:c9:b4:80:fb:ea:cc:33:ce:2f:e4:36:68:84:
a2:48:76:7c:e5:b2:c8:43:59:63:a6:bc:f0:26:a2:
d2:a7:32:79:32:c1:18:d8:10:51:55:4f:9b:c9:26:
6d:01:7c:4a:0d:97:5f:90:df:19:4c:72:e3:63:4e:
dc:dd:d6:03:70:b5:2b:6b:3e:56:54:38:1f:95:26:
42:33:5b:3a:7e:ff:c2:68:d6:de:33:f6:f8:a4:31:
89:77:46:af:e0:fa:71:e0:86:70:30:c6:43:9d:d0:
57:22:d1:fc:19:f6:0d:00:b3:c6:3a:46:03:88:75:
fa:b1:01:d4:8b:fc:e4:9a:f6:54:d6:09:21:19:18:
ea:f6:c9:2c:05:9a:8d:9e:3d:1a:73:fe:58:84:72:
cd:8b:66:b4:88:0b:2a:00:c6:b5:e6:d3:23:c5:e9:
d4:25:a1:be:72:3f:49:90:2b:ee:b6:25:08:59:6e:
1d:49:b1:02:e0:c2:5a:68:1a:2f:6c:06:e4:e5:b4:
b8:77:37:ef:1e:51:f8:c9:d8:37:f4:f6:b7:b8:99:
5f:e7:26:08:e5:40:d5:6b:17:f5:59:8b:e4:4f:07:
82:ad:0b:13:69:dc:84:cb:26:26:2e:9f:4d:02:25:
32:9f:ba:f7:76:74:8b:3d:dd:2c:09:2c:75:0a:1a:
70:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:83:90:90:0C:EA:4F:2B:DB:17:46:0D:85:FD:18:5E:B7:6A:7B:59
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/A4OQkAzqTyvbF0YNhf0YXrdqe1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:135::/48
Signature Algorithm: sha256WithRSAEncryption
38:0b:a7:45:7b:2d:59:88:1c:f1:1c:55:5f:db:7f:c6:8f:54:
7d:81:bf:f3:8f:ea:ce:e8:ad:41:97:3a:77:9b:d8:e5:b2:08:
ab:48:52:d8:f2:db:f8:55:55:db:4c:31:36:d8:57:a4:37:2a:
0e:9d:ab:4f:8a:7d:f5:32:8e:85:18:38:8e:cd:e2:67:b1:c6:
5d:fa:88:ad:f9:c9:80:13:cc:0d:bc:c8:f7:b0:ae:78:6a:27:
0e:6a:93:63:a4:cd:b8:e1:75:c9:4a:0a:7d:df:f9:66:88:a0:
2d:99:23:80:dd:d8:9c:3e:69:82:ab:60:20:94:9c:65:7d:5e:
68:c1:ba:e1:27:aa:39:67:6f:d1:a0:b2:c2:8a:8d:46:b2:07:
f8:40:b9:a7:d6:b5:dd:24:7c:80:b2:fe:fa:64:a6:ac:eb:72:
21:c3:1b:53:1f:e0:1d:9b:b0:3f:c6:29:f6:2a:5d:fd:0e:df:
ea:6d:cd:4a:8e:3f:4c:74:73:43:83:f1:a4:6d:70:e8:c4:0d:
c9:2d:f2:c6:e8:91:ac:d7:28:72:7d:35:d7:ff:99:76:03:b1:
ef:d3:1a:b1:f9:db:ac:48:d7:4d:32:77:48:03:a5:9d:aa:0d:
e3:4d:15:df:1a:dc:1c:32:d3:2d:eb:dc:94:1c:15:fd:ca:60:
13:03:1c:4f
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/tre3Y0QPsgKL4fd5HtEwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgzODE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMzgzOTA5MDBjZWE0ZjJiZGIxNzQ2MGQ4NWZkMTg1ZWI3NmE3YjU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAosm0gPvqzDPOL+Q2aISiSHZ85bLI
Q1ljprzwJqLSpzJ5MsEY2BBRVU+bySZtAXxKDZdfkN8ZTHLjY07c3dYDcLUraz5W
VDgflSZCM1s6fv/CaNbeM/b4pDGJd0av4Ppx4IZwMMZDndBXItH8GfYNALPGOkYD
iHX6sQHUi/zkmvZU1gkhGRjq9sksBZqNnj0ac/5YhHLNi2a0iAsqAMa15tMjxenU
JaG+cj9JkCvutiUIWW4dSbEC4MJaaBovbAbk5bS4dzfvHlH4ydg39Pa3uJlf5yYI
5UDVaxf1WYvkTweCrQsTadyEyyYmLp9NAiUyn7r3dnSLPd0sCSx1ChpwNwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFAODkJAM6k8r2xdGDYX9GF63antZMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvQTRPUWtBenFUeXZiRjBZTmhmMFlYcmRxZTFrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQE1
MA0GCSqGSIb3DQEBCwUAA4IBAQA4C6dFey1ZiBzxHFVf23/Gj1R9gb/zj+rO6K1B
lzp3m9jlsgirSFLY8tv4VVXbTDE22FekNyoOnatPin31Mo6FGDiOzeJnscZd+oit
+cmAE8wNvMj3sK54aicOapNjpM244XXJSgp93/lmiKAtmSOA3dicPmmCq2AglJxl
fV5owbrhJ6o5Z2/RoLLCio1Gsgf4QLmn1rXdJHyAsv76ZKas63IhwxtTH+Adm7A/
xin2Kl39Dt/qbc1Kjj9MdHNDg/GkbXDoxA3JLfLG6JGs1yhyfTXX/5l2A7Hv0xqx
+dusSNdNMndIA6Wdqg3jTRXfGtwcMtMt69yUHBX9ymATAxxP
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org