Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/C9tgYCKmLAShS2g4eNUm7tqUJsM.roa
File: C9tgYCKmLAShS2g4eNUm7tqUJsM.roa (raw, json)
Hash identifier: NnGs99coxOE7qpJdLjtTR8ltuilo/BhUbSG2Wf7556E=
Subject key identifier: 0B:DB:60:60:22:A6:2C:04:A1:4B:68:38:78:D5:26:EE:DA:94:26:C3
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F05B104F1FA4E0D8D11A78A76F0E36
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/C9tgYCKmLAShS2g4eNUm7tqUJsM.roa
Signing time: Wed 07 Feb 2024 05:00:29 +0000
ROA not before: Wed 07 Feb 2024 05:00:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44354
IP address blocks: 2a0f:b241:62::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:5b:10:4f:1f:a4:e0:d8:d1:1a:78:a7:6f:0e:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0bdb606022a62c04a14b683878d526eeda9426c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:15:1a:2b:c0:2f:5a:6a:65:c0:5f:f0:56:d6:
08:07:7a:ce:68:8d:19:c1:32:72:6b:11:f1:9e:5f:
fe:54:c7:81:68:ed:2a:4c:ef:e9:fa:d8:6b:f7:f9:
08:ff:e2:1b:8b:f4:0e:e2:35:d7:9e:24:8f:71:ee:
b5:f3:d0:a1:72:0d:3f:c7:be:3d:36:c9:bd:02:53:
74:f6:b4:1f:b8:6f:88:6f:b4:9c:14:82:e3:72:bf:
d6:a1:27:ba:ae:b4:f3:d9:07:07:00:91:86:cf:33:
e2:ef:6f:93:e1:91:e8:77:dd:ae:5f:d2:ce:31:29:
aa:7a:40:30:25:f8:30:11:3e:e8:bb:f0:48:7b:8b:
87:fd:e9:45:29:bf:84:11:d4:99:b9:f1:98:70:65:
22:88:f9:6c:9a:26:fe:f5:44:b3:69:02:e2:22:43:
b4:d4:da:0b:24:d3:a5:d6:e9:34:b2:5b:d6:e9:c7:
e4:0c:48:66:62:48:4a:f8:a0:03:69:3d:48:2d:6c:
8f:c7:88:26:2c:f3:9d:42:76:d5:8d:41:9e:65:51:
2d:c6:06:2d:76:df:f9:4f:c0:f1:56:06:1a:1c:47:
a1:fe:6e:08:d8:f0:58:f1:e5:05:95:85:ef:4d:d9:
bb:13:7b:8b:48:b0:7f:6b:43:56:21:0f:bc:14:fd:
25:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:DB:60:60:22:A6:2C:04:A1:4B:68:38:78:D5:26:EE:DA:94:26:C3
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/C9tgYCKmLAShS2g4eNUm7tqUJsM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:62::/48
Signature Algorithm: sha256WithRSAEncryption
38:b6:cb:05:d6:73:4d:ef:98:14:62:a9:f2:31:2e:d0:e9:5d:
ba:af:f7:97:3d:15:f1:9a:9d:e8:ea:75:30:ba:ae:d6:d0:dc:
a9:5a:9d:dd:70:51:87:23:31:47:2a:35:22:8c:07:ae:99:76:
b1:dc:1b:6a:59:40:63:6f:6c:f6:fd:43:6a:e5:72:8d:02:70:
a2:e0:69:b4:fe:68:e0:01:97:d4:9e:8f:86:5e:df:ab:93:28:
66:00:49:69:d4:e0:29:2a:d0:bf:f0:55:24:5c:65:b3:f8:e9:
cb:60:78:d8:89:18:e2:ad:7f:36:ac:c1:83:07:c2:2a:b0:66:
97:d4:5b:07:00:86:77:55:3b:ff:13:d2:ca:e0:25:ce:d9:25:
1d:f4:2b:c6:fa:26:d4:d5:aa:dd:81:c4:3f:b8:3f:84:84:35:
f7:1f:50:f4:0a:f8:d0:1b:eb:89:92:bd:af:7e:53:5a:30:fb:
15:07:45:ad:68:c8:cb:1b:fb:a3:be:fa:be:3f:d3:15:c5:7d:
1e:4d:2c:04:58:42:7d:24:f2:ee:e1:7b:fe:f2:86:c9:47:36:
f8:d1:5b:ae:0a:c1:de:55:f2:c4:9d:3f:ed:88:3b:61:39:8e:
9e:a4:0b:aa:a2:19:a2:a1:a1:f7:19:a0:fc:71:5b:a5:de:35:
9f:8f:cf:78
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY2B8FsQTx+k4NjRGninbw42MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA3MDUwMDI5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYmRiNjA2MDIyYTYyYzA0YTE0YjY4Mzg3OGQ1MjZlZWRhOTQyNmMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtBUaK8AvWmplwF/wVtYIB3rOaI0Z
wTJyaxHxnl/+VMeBaO0qTO/p+thr9/kI/+Ibi/QO4jXXniSPce6189Chcg0/x749
Nsm9AlN09rQfuG+Ib7ScFILjcr/WoSe6rrTz2QcHAJGGzzPi72+T4ZHod92uX9LO
MSmqekAwJfgwET7ou/BIe4uH/elFKb+EEdSZufGYcGUiiPlsmib+9USzaQLiIkO0
1NoLJNOl1uk0slvW6cfkDEhmYkhK+KADaT1ILWyPx4gmLPOdQnbVjUGeZVEtxgYt
dt/5T8DxVgYaHEeh/m4I2PBY8eUFlYXvTdm7E3uLSLB/a0NWIQ+8FP0ltwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFAvbYGAipiwEoUtoOHjVJu7alCbDMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvQzl0Z1lDS21MQVNoUzJnNGVOVW03dHFVSnNNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQBi
MA0GCSqGSIb3DQEBCwUAA4IBAQA4tssF1nNN75gUYqnyMS7Q6V26r/eXPRXxmp3o
6nUwuq7W0NypWp3dcFGHIzFHKjUijAeumXax3BtqWUBjb2z2/UNq5XKNAnCi4Gm0
/mjgAZfUno+GXt+rkyhmAElp1OApKtC/8FUkXGWz+OnLYHjYiRjirX82rMGDB8Iq
sGaX1FsHAIZ3VTv/E9LK4CXO2SUd9CvG+ibU1ardgcQ/uD+EhDX3H1D0CvjQG+uJ
kr2vflNaMPsVB0WtaMjLG/ujvvq+P9MVxX0eTSwEWEJ9JPLu4Xv+8obJRzb40Vuu
CsHeVfLEnT/tiDthOY6epAuqohmioaH3GaD8cVul3jWfj894
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org