Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/J7YAUVG8kytvYo6g3ckxRYZYJuk.roa
File: J7YAUVG8kytvYo6g3ckxRYZYJuk.roa (raw, json)
Hash identifier: ClUfPXwHyPTTRbXaBVGVzXCAqe48qdmBcqS8SIebPZo=
Subject key identifier: 27:B6:00:51:51:BC:93:2B:6F:62:8E:A0:DD:C9:31:45:86:58:26:E9
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F06B9DBC38D3D35B6DBCE579EFF1AD
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/J7YAUVG8kytvYo6g3ckxRYZYJuk.roa
Signing time: Wed 07 Feb 2024 05:00:33 +0000
ROA not before: Wed 07 Feb 2024 05:00:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197622
IP address blocks: 2a0f:b241:c::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:6b:9d:bc:38:d3:d3:5b:6d:bc:e5:79:ef:f1:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=27b6005151bc932b6f628ea0ddc93145865826e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:4d:36:89:f6:f6:27:8c:e4:75:0e:b6:22:cf:
f6:55:25:79:a4:82:82:2c:d8:07:5e:0a:20:36:16:
cd:e5:79:2d:7c:d9:51:45:ef:db:24:97:ff:e5:f0:
cf:9c:7c:5f:ad:7f:19:3a:91:08:de:be:f0:62:49:
2e:9b:7d:00:9b:a7:c7:81:65:fd:f1:59:f6:e7:7b:
38:85:fa:77:e9:c9:f8:67:db:8f:e1:ce:6b:ac:95:
5d:77:ff:c6:44:78:c0:1d:3f:d9:2e:ab:1b:48:bf:
6b:26:6c:6c:4e:c0:d1:66:bb:00:52:42:c8:2c:29:
2e:cc:2b:67:85:15:d8:f9:d9:09:86:5f:d6:3f:5d:
3f:4b:50:05:b5:f6:d7:c3:0e:46:07:81:c8:12:94:
d1:70:d8:fd:e8:fe:4c:d6:da:a0:80:ea:82:f2:9b:
b3:13:97:6e:96:a1:9a:39:bd:ad:6e:bd:7c:01:cf:
96:f6:d2:5c:2c:9b:d0:45:e2:0a:11:54:20:48:d3:
e2:16:8c:94:ef:8f:8e:fa:82:bf:7c:85:c5:fc:12:
13:70:85:33:34:c4:d6:2b:ba:21:20:29:93:d2:81:
c2:ca:b0:5d:2d:ee:1a:d9:4f:9c:06:4f:4c:7a:0c:
e1:62:cf:66:48:1e:1a:66:44:4d:a9:b7:fc:8e:33:
6f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:B6:00:51:51:BC:93:2B:6F:62:8E:A0:DD:C9:31:45:86:58:26:E9
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/J7YAUVG8kytvYo6g3ckxRYZYJuk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:c::/48
Signature Algorithm: sha256WithRSAEncryption
82:64:05:8f:a0:e0:dc:59:38:c7:af:06:fa:30:59:9f:4c:48:
59:4a:89:e9:24:ef:a4:4a:23:0d:39:1c:70:d8:50:3d:fd:5d:
0c:8f:1d:10:25:7d:70:83:4a:21:7b:25:09:c4:38:41:92:e2:
b7:b8:a5:e8:8a:d3:3b:92:68:88:b5:6f:25:68:e7:34:d0:ff:
cb:f4:95:b8:bb:2c:7c:0d:51:8a:43:e8:df:7d:69:2c:83:30:
0a:e9:79:1c:39:35:0b:ff:7c:ac:93:72:9f:45:00:24:a2:4c:
29:a1:e3:70:6a:f9:54:27:24:90:6d:af:d9:ed:00:fe:7b:f6:
ed:e4:06:4c:c8:19:f2:a6:cd:27:51:46:b8:9a:74:66:a3:59:
04:7d:63:dc:22:64:11:96:31:55:44:d9:c7:2c:a1:8a:1b:16:
d2:16:63:85:21:31:ad:38:c6:3c:13:e2:3a:fa:19:d8:2b:dd:
24:3e:cc:50:fd:c3:d1:a4:41:33:8a:06:ca:7e:87:bb:57:b6:
4f:66:84:1d:07:d7:19:e4:ca:f4:d9:28:ba:d9:e7:2d:ce:75:
32:b1:dc:82:52:3e:ab:4f:2e:8a:7c:21:7a:9c:3e:77:f8:17:
49:c0:ea:0a:b3:ee:d8:36:ff:62:ea:ae:da:09:36:83:68:11:
33:9a:94:52
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY2B8GudvDjT01ttvOV57/GtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA3MDUwMDMzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyN2I2MDA1MTUxYmM5MzJiNmY2MjhlYTBkZGM5MzE0NTg2NTgyNmU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkk02ifb2J4zkdQ62Is/2VSV5pIKC
LNgHXgogNhbN5XktfNlRRe/bJJf/5fDPnHxfrX8ZOpEI3r7wYkkum30Am6fHgWX9
8Vn253s4hfp36cn4Z9uP4c5rrJVdd//GRHjAHT/ZLqsbSL9rJmxsTsDRZrsAUkLI
LCkuzCtnhRXY+dkJhl/WP10/S1AFtfbXww5GB4HIEpTRcNj96P5M1tqggOqC8puz
E5dulqGaOb2tbr18Ac+W9tJcLJvQReIKEVQgSNPiFoyU74+O+oK/fIXF/BITcIUz
NMTWK7ohICmT0oHCyrBdLe4a2U+cBk9MegzhYs9mSB4aZkRNqbf8jjNvWQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFCe2AFFRvJMrb2KOoN3JMUWGWCbpMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvSjdZQVVWRzhreXR2WW82ZzNja3hSWVpZSnVrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQAM
MA0GCSqGSIb3DQEBCwUAA4IBAQCCZAWPoODcWTjHrwb6MFmfTEhZSonpJO+kSiMN
ORxw2FA9/V0Mjx0QJX1wg0oheyUJxDhBkuK3uKXoitM7kmiItW8laOc00P/L9JW4
uyx8DVGKQ+jffWksgzAK6XkcOTUL/3ysk3KfRQAkokwpoeNwavlUJySQba/Z7QD+
e/bt5AZMyBnyps0nUUa4mnRmo1kEfWPcImQRljFVRNnHLKGKGxbSFmOFITGtOMY8
E+I6+hnYK90kPsxQ/cPRpEEzigbKfoe7V7ZPZoQdB9cZ5Mr02Si62ectznUysdyC
Uj6rTy6KfCF6nD53+BdJwOoKs+7YNv9i6q7aCTaDaBEzmpRS
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org