Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/C2hzdU_Kqc85aXk69y68Fv5YJAI.roa
File: C2hzdU_Kqc85aXk69y68Fv5YJAI.roa (raw, json)
Hash identifier: PCZwNG0Xp0Juj9m5Cm6wLvXInD7auNQyfgiHKh9i9Ag=
Subject key identifier: 0B:68:73:75:4F:CA:A9:CF:39:69:79:3A:F7:2E:BC:16:FE:58:24:02
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAD932269F907DF31B35B5D5C7DF2A2
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/C2hzdU_Kqc85aXk69y68Fv5YJAI.roa
Signing time: Tue 06 Feb 2024 18:28:18 +0000
ROA not before: Tue 06 Feb 2024 18:28:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216215
IP address blocks: 2a0f:b241:10c::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ad:93:22:69:f9:07:df:31:b3:5b:5d:5c:7d:f2:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:28:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0b6873754fcaa9cf3969793af72ebc16fe582402
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:2e:7c:72:bb:a2:61:cd:4d:56:d6:7c:e0:1c:
94:c3:95:35:d6:de:a2:96:e5:f2:a8:f7:37:1e:d3:
6c:74:a8:7c:0e:96:48:77:a5:47:a5:fa:8c:80:e3:
a5:56:34:5d:fe:e0:9b:25:5d:8b:81:ee:66:3d:10:
05:af:42:1c:9a:10:bd:b4:af:cf:e2:64:da:9d:11:
83:f2:42:04:17:62:b9:e3:30:cc:5d:7f:3b:d2:05:
56:60:22:04:20:f4:7f:08:fa:e2:5f:e7:ee:15:ec:
5b:20:62:7f:dc:4a:0c:ac:bd:94:31:87:a6:dd:9c:
20:46:4e:d0:d4:68:ca:23:65:03:e3:3e:d2:c4:dd:
60:80:4b:26:ad:89:c8:76:18:2d:81:01:c7:f8:df:
b2:6f:86:00:5f:d7:e1:ca:c2:92:d5:c0:58:9d:79:
55:91:00:4a:a8:b4:60:fe:ef:26:b1:e9:e4:46:52:
39:88:1d:fa:98:43:e7:9a:bf:50:8d:5b:c3:92:e3:
f4:6c:32:d7:2a:d4:6c:f3:4f:13:15:f9:d0:e9:92:
2f:fd:a4:4b:44:c2:a1:46:a2:04:83:47:6f:e7:5c:
91:79:24:a2:a3:a5:22:45:f0:37:b2:fd:6a:69:bb:
cf:fe:ba:ad:7c:fb:e6:60:f8:ec:97:2c:c9:1f:f0:
e9:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:68:73:75:4F:CA:A9:CF:39:69:79:3A:F7:2E:BC:16:FE:58:24:02
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/C2hzdU_Kqc85aXk69y68Fv5YJAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:10c::/48
Signature Algorithm: sha256WithRSAEncryption
70:8b:70:94:da:2e:c4:19:00:8f:f5:67:48:cb:bf:51:7b:11:
26:39:7e:01:db:46:98:59:2c:0e:c8:d7:b8:94:b9:ea:a9:14:
9a:af:df:e5:1a:25:1e:43:44:1a:14:16:6d:ad:aa:9d:f1:2b:
3d:1e:64:8e:4e:71:9e:75:39:ec:d4:9f:11:e0:67:8b:a9:28:
d3:4c:df:55:22:b2:e0:9c:87:05:c5:23:9b:42:14:4a:1e:70:
0f:06:e7:14:c3:76:b4:96:68:5e:ad:36:48:10:83:14:b8:b8:
94:cf:a9:26:25:e4:6f:a7:81:b8:2d:0a:32:73:fe:e6:81:51:
e9:33:48:da:33:61:31:51:9b:a6:be:13:b3:97:3e:d7:49:c5:
fb:f5:a0:2e:3b:33:60:90:ab:3f:8b:1d:e2:96:b8:14:bb:fd:
34:c1:35:45:5e:13:9b:10:d3:d1:0e:46:90:8f:9b:6f:44:e0:
db:73:ea:6a:3e:6a:1c:3a:61:d2:bd:cc:b2:7c:4f:a7:d1:ba:
11:b4:8c:87:f4:3f:07:e4:05:36:8c:27:eb:46:58:32:48:cf:
25:b0:44:1d:1f:d3:08:50:e1:32:7d:ef:3c:41:c2:33:c8:56:
35:53:78:3a:a0:fe:10:e3:c8:2d:77:b3:df:6c:a8:19:e7:06:
3f:b5:b3:64
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/rZMiafkH3zGzW11cffKiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgyODE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYjY4NzM3NTRmY2FhOWNmMzk2OTc5M2FmNzJlYmMxNmZlNTgyNDAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiC58cruiYc1NVtZ84ByUw5U11t6i
luXyqPc3HtNsdKh8DpZId6VHpfqMgOOlVjRd/uCbJV2Lge5mPRAFr0IcmhC9tK/P
4mTanRGD8kIEF2K54zDMXX870gVWYCIEIPR/CPriX+fuFexbIGJ/3EoMrL2UMYem
3ZwgRk7Q1GjKI2UD4z7SxN1ggEsmrYnIdhgtgQHH+N+yb4YAX9fhysKS1cBYnXlV
kQBKqLRg/u8msenkRlI5iB36mEPnmr9QjVvDkuP0bDLXKtRs808TFfnQ6ZIv/aRL
RMKhRqIEg0dv51yReSSio6UiRfA3sv1qabvP/rqtfPvmYPjslyzJH/Dp6QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFAtoc3VPyqnPOWl5OvcuvBb+WCQCMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvQzJoemRVX0txYzg1YVhrNjl5NjhGdjVZSkFJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQEM
MA0GCSqGSIb3DQEBCwUAA4IBAQBwi3CU2i7EGQCP9WdIy79RexEmOX4B20aYWSwO
yNe4lLnqqRSar9/lGiUeQ0QaFBZtraqd8Ss9HmSOTnGedTns1J8R4GeLqSjTTN9V
IrLgnIcFxSObQhRKHnAPBucUw3a0lmherTZIEIMUuLiUz6kmJeRvp4G4LQoyc/7m
gVHpM0jaM2ExUZumvhOzlz7XScX79aAuOzNgkKs/ix3ilrgUu/00wTVFXhObENPR
DkaQj5tvRODbc+pqPmocOmHSvcyyfE+n0boRtIyH9D8H5AU2jCfrRlgySM8lsEQd
H9MIUOEyfe88QcIzyFY1U3g6oP4Q48gtd7PfbKgZ5wY/tbNk
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org