Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/E3SIctNSedEmOULmIElgR3prA9A.roa
File: E3SIctNSedEmOULmIElgR3prA9A.roa (raw, json)
Hash identifier: WkQxvU7aCc80JrDUvl1ln0Z0i710BX5wq0gbr7WcVvA=
Subject key identifier: 13:74:88:72:D3:52:79:D1:26:39:42:E6:20:49:60:47:7A:6B:03:D0
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F090F422AAF4AA3F50CD6FBDAE8452
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/E3SIctNSedEmOULmIElgR3prA9A.roa
Signing time: Wed 07 Feb 2024 05:00:43 +0000
ROA not before: Wed 07 Feb 2024 05:00:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204842
IP address blocks: 2a0f:b241:eb::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:90:f4:22:aa:f4:aa:3f:50:cd:6f:bd:ae:84:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=13748872d35279d1263942e6204960477a6b03d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:48:b3:3f:1e:72:e3:fa:29:54:78:5b:ae:59:
0c:78:01:6c:0c:c3:fd:09:63:5d:9a:b6:da:88:2e:
ee:79:b6:51:8f:53:b2:81:bc:00:a2:04:83:38:d4:
b2:23:20:7b:31:4f:9e:6f:d4:e9:35:0e:1c:38:8a:
f2:32:92:29:ea:f3:70:32:3e:06:6d:19:5d:14:22:
af:8f:30:35:06:52:aa:d4:d7:31:85:37:78:ce:fc:
b1:f5:da:98:ce:0e:d3:56:66:99:e8:c7:da:bd:9e:
d5:5f:c3:22:40:d5:18:31:86:d1:2b:b1:8c:50:6d:
59:2a:82:64:9e:ea:5a:70:74:c1:64:74:a7:16:b4:
a3:08:7e:57:62:bc:5c:0c:9b:82:c3:9e:c8:67:5b:
a8:ef:de:40:5e:15:f3:ec:aa:fc:9e:60:3d:0c:7b:
82:e0:0d:60:b4:72:15:89:d5:05:5b:8d:60:32:38:
13:80:8c:22:4d:12:43:95:e3:58:bd:c2:38:ad:80:
79:38:8e:37:a0:0c:3d:02:4b:47:21:f7:62:ba:14:
80:ff:06:2a:ba:67:0f:ee:28:03:a8:c3:85:83:b1:
4d:27:95:84:3f:1f:00:f1:3c:1f:96:6d:ea:f3:1f:
24:6b:4e:9a:e3:32:fb:25:e7:81:ed:ea:f7:6e:53:
47:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:74:88:72:D3:52:79:D1:26:39:42:E6:20:49:60:47:7A:6B:03:D0
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/E3SIctNSedEmOULmIElgR3prA9A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:eb::/48
Signature Algorithm: sha256WithRSAEncryption
77:ee:fe:8f:3e:ab:60:c0:42:50:b4:36:e1:2d:9b:5d:73:8e:
54:1d:7d:1c:2a:87:f2:76:57:47:5f:54:15:2e:a6:e0:f2:ed:
1e:6d:0c:b3:11:3f:50:bb:fd:25:e0:20:b3:84:18:34:b5:9a:
85:19:1f:ff:41:6e:c5:c8:16:41:e7:2f:c1:6c:37:d1:76:c9:
fe:81:24:0e:6f:9c:68:62:18:a6:1b:2d:f9:d2:04:48:f6:d0:
b9:d5:a3:0e:59:5d:0f:87:62:68:8e:14:64:88:c2:69:e9:5c:
b6:bb:75:08:66:f6:da:73:cd:aa:63:cf:bb:05:a5:68:ae:a7:
eb:62:69:2f:54:d5:ee:c7:39:2f:49:2e:d1:00:6f:cc:44:1c:
04:f6:5a:55:0e:68:53:53:3d:2a:2f:ff:3a:94:e6:c6:3a:06:
ad:59:55:ac:f3:4c:20:60:8b:97:51:5d:49:13:6a:25:b2:5c:
12:1d:26:b1:c1:e9:38:9e:22:18:21:db:e8:6f:a7:36:b3:41:
22:c9:3a:c3:a6:54:44:a4:73:b8:ff:b9:8e:53:b8:9c:e6:13:
3a:b0:1c:d7:99:0f:b4:d3:34:5a:f4:58:62:be:c8:bf:3b:25:
28:a7:93:04:13:79:dc:00:5a:26:e4:17:b7:df:ab:46:5c:8d:
42:5d:20:5f
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY2B8JD0Iqr0qj9QzW+9roRSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA3MDUwMDQzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMzc0ODg3MmQzNTI3OWQxMjYzOTQyZTYyMDQ5NjA0NzdhNmIwM2QwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzkizPx5y4/opVHhbrlkMeAFsDMP9
CWNdmrbaiC7uebZRj1OygbwAogSDONSyIyB7MU+eb9TpNQ4cOIryMpIp6vNwMj4G
bRldFCKvjzA1BlKq1NcxhTd4zvyx9dqYzg7TVmaZ6MfavZ7VX8MiQNUYMYbRK7GM
UG1ZKoJknupacHTBZHSnFrSjCH5XYrxcDJuCw57IZ1uo795AXhXz7Kr8nmA9DHuC
4A1gtHIVidUFW41gMjgTgIwiTRJDleNYvcI4rYB5OI43oAw9AktHIfdiuhSA/wYq
umcP7igDqMOFg7FNJ5WEPx8A8Twflm3q8x8ka06a4zL7JeeB7er3blNHowIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFBN0iHLTUnnRJjlC5iBJYEd6awPQMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvRTNTSWN0TlNlZEVtT1VMbUlFbGdSM3ByQTlBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQDr
MA0GCSqGSIb3DQEBCwUAA4IBAQB37v6PPqtgwEJQtDbhLZtdc45UHX0cKofydldH
X1QVLqbg8u0ebQyzET9Qu/0l4CCzhBg0tZqFGR//QW7FyBZB5y/BbDfRdsn+gSQO
b5xoYhimGy350gRI9tC51aMOWV0Ph2JojhRkiMJp6Vy2u3UIZvbac82qY8+7BaVo
rqfrYmkvVNXuxzkvSS7RAG/MRBwE9lpVDmhTUz0qL/86lObGOgatWVWs80wgYIuX
UV1JE2olslwSHSaxwek4niIYIdvob6c2s0EiyTrDplREpHO4/7mOU7ic5hM6sBzX
mQ+00zRa9Fhivsi/OyUop5MEE3ncAFom5Be336tGXI1CXSBf
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org