Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/BmG4X70-72y1Dom5zJ7eHd5kY2U.roa
File: BmG4X70-72y1Dom5zJ7eHd5kY2U.roa (raw, json)
Hash identifier: sytc2vqpzvHD8qU2H0k3NuGYfv0u3O40XH7bcc80IXI=
Subject key identifier: 06:61:B8:5F:BD:3E:EF:6C:B5:0E:89:B9:CC:9E:DE:1D:DE:64:63:65
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB79E104693650F91B904AADA69C981
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/BmG4X70-72y1Dom5zJ7eHd5kY2U.roa
Signing time: Tue 06 Feb 2024 18:39:16 +0000
ROA not before: Tue 06 Feb 2024 18:39:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209022
IP address blocks: 2a0f:b241:13d::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b7:9e:10:46:93:65:0f:91:b9:04:aa:da:69:c9:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:39:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0661b85fbd3eef6cb50e89b9cc9ede1dde646365
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:70:51:45:1b:a7:4c:4b:fd:f7:d4:4b:5b:66:
5d:f2:25:f3:8a:92:ec:8b:16:d2:7a:2a:11:8c:95:
a3:d8:b9:d7:91:e6:bb:e8:7c:38:12:5d:42:3a:b8:
3e:5d:6d:32:ce:49:94:63:da:61:2c:3f:2d:0a:45:
ff:b9:d0:e0:a4:b2:a2:78:03:b8:1e:0d:cf:4a:98:
cd:7a:f1:b8:b8:b5:50:99:fd:86:1e:24:2a:ee:7f:
e9:9e:1c:ef:74:a1:72:de:53:be:b1:b3:a2:07:56:
e8:2e:fe:73:17:8a:2f:9f:43:51:e4:78:47:eb:cd:
ed:f8:ec:fe:f9:ca:21:be:25:e3:6c:85:ba:76:eb:
1d:91:d1:8f:b1:4d:37:4f:a8:74:9f:0d:32:47:6d:
eb:a5:7c:9f:40:19:d7:8e:3f:cf:77:49:0d:e5:ca:
cf:6f:c1:2c:33:d7:90:8e:cb:9a:f6:80:b1:67:a7:
6b:38:1d:15:36:8e:4f:eb:d6:cc:ec:1f:9a:25:71:
52:09:9e:f3:fb:e7:d1:1c:57:d5:39:c4:06:c9:2d:
c3:19:ea:f5:1c:17:c8:50:72:60:b4:4e:e4:4c:c2:
06:e6:1e:d1:bb:07:1f:40:c1:cc:9b:35:50:6c:c5:
eb:cb:7f:1b:71:58:cb:de:69:55:fd:5c:57:56:81:
47:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:61:B8:5F:BD:3E:EF:6C:B5:0E:89:B9:CC:9E:DE:1D:DE:64:63:65
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/BmG4X70-72y1Dom5zJ7eHd5kY2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:13d::/48
Signature Algorithm: sha256WithRSAEncryption
3b:32:a6:25:ed:cd:5a:d2:68:54:2c:4b:72:6d:1f:be:4a:0c:
99:12:e9:9b:55:78:4e:19:98:63:77:8c:54:5a:df:75:b4:d3:
b2:1c:c2:01:6f:5e:f8:30:0d:33:f9:0f:5f:3b:ed:69:51:7e:
13:d0:c2:7f:e1:6c:6d:8c:cf:d2:d1:91:c0:73:6d:92:6b:87:
7c:93:1a:1d:01:47:ab:37:ca:b9:52:f2:0b:c5:1e:1e:a0:0f:
76:f7:72:cb:eb:3a:02:2b:9b:54:7a:bf:f7:45:7c:78:2a:c0:
2d:25:8e:a9:80:dc:b6:a3:ea:ff:cd:fd:c9:b9:5a:cf:16:f7:
7a:e8:8b:95:6c:88:3b:01:20:8b:9f:f5:17:48:85:c4:9d:7f:
d6:61:c0:4c:b4:ee:d1:2d:10:85:f3:74:c0:66:c2:52:d8:70:
b5:e7:79:55:de:9c:1d:3f:4f:f5:50:54:f1:bc:59:76:1a:ab:
dc:2f:a8:0e:8b:fd:bf:9a:50:15:e7:18:50:6d:d2:56:bc:db:
eb:5e:3c:54:34:f9:f0:b3:00:04:5f:5d:cb:7f:bb:39:5d:1b:
b4:02:de:d3:c0:06:c1:d7:cb:bd:6c:0b:ad:e2:48:0d:53:58:
47:71:ec:81:1a:32:44:75:0e:37:25:fe:3f:77:51:ec:b9:0e:
15:43:be:00
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/t54QRpNlD5G5BKraacmBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgzOTE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNjYxYjg1ZmJkM2VlZjZjYjUwZTg5YjljYzllZGUxZGRlNjQ2MzY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg3BRRRunTEv999RLW2Zd8iXzipLs
ixbSeioRjJWj2LnXkea76Hw4El1COrg+XW0yzkmUY9phLD8tCkX/udDgpLKieAO4
Hg3PSpjNevG4uLVQmf2GHiQq7n/pnhzvdKFy3lO+sbOiB1boLv5zF4ovn0NR5HhH
683t+Oz++cohviXjbIW6dusdkdGPsU03T6h0nw0yR23rpXyfQBnXjj/Pd0kN5crP
b8EsM9eQjsua9oCxZ6drOB0VNo5P69bM7B+aJXFSCZ7z++fRHFfVOcQGyS3DGer1
HBfIUHJgtE7kTMIG5h7RuwcfQMHMmzVQbMXry38bcVjL3mlV/VxXVoFHmwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFAZhuF+9Pu9stQ6Jucye3h3eZGNlMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvQm1HNFg3MC03MnkxRG9tNXpKN2VIZDVrWTJVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQE9
MA0GCSqGSIb3DQEBCwUAA4IBAQA7MqYl7c1a0mhULEtybR++SgyZEumbVXhOGZhj
d4xUWt91tNOyHMIBb174MA0z+Q9fO+1pUX4T0MJ/4WxtjM/S0ZHAc22Sa4d8kxod
AUerN8q5UvILxR4eoA9293LL6zoCK5tUer/3RXx4KsAtJY6pgNy2o+r/zf3JuVrP
Fvd66IuVbIg7ASCLn/UXSIXEnX/WYcBMtO7RLRCF83TAZsJS2HC153lV3pwdP0/1
UFTxvFl2GqvcL6gOi/2/mlAV5xhQbdJWvNvrXjxUNPnwswAEX13Lf7s5XRu0At7T
wAbB18u9bAut4kgNU1hHceyBGjJEdQ43Jf4/d1HsuQ4VQ74A
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org