Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Li2qOO37E62ySqJO9v7f_ylpWgo.roa
File: Li2qOO37E62ySqJO9v7f_ylpWgo.roa (raw, json)
Hash identifier: k0jXsfdNAMZwgHQbwYPEfRYdriNt76PHtdR1/dby7LM=
Subject key identifier: 2E:2D:AA:38:ED:FB:13:AD:B2:4A:A2:4E:F6:FE:DF:FF:29:69:5A:0A
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAD918FBFEBCA36AE8FFD3486F1A156
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Li2qOO37E62ySqJO9v7f_ylpWgo.roa
Signing time: Tue 06 Feb 2024 18:28:17 +0000
ROA not before: Tue 06 Feb 2024 18:28:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216123
IP address blocks: 2a0f:b241:10b::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ad:91:8f:bf:eb:ca:36:ae:8f:fd:34:86:f1:a1:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:28:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2e2daa38edfb13adb24aa24ef6fedfff29695a0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:51:c1:dd:e1:b7:ba:ec:68:32:14:1f:b8:a8:
1e:ca:23:74:3e:85:04:f2:cd:4a:c2:30:5f:51:25:
dc:e8:a9:3b:5a:3c:d3:dd:13:01:cc:3a:7e:36:1f:
94:71:ea:0b:ff:90:27:d6:79:8d:74:c1:ed:3d:e7:
2f:28:c7:10:a7:d8:e5:89:b0:61:bf:ee:1f:a8:01:
a7:16:61:cc:de:f1:8f:ea:6d:f5:a6:66:74:d0:f2:
dd:08:83:b8:9d:3e:35:d3:b7:24:e2:63:1a:ba:08:
d6:06:20:46:13:5a:0d:2d:a7:d5:ad:fe:0d:99:6f:
d0:cc:69:4b:4b:ac:cf:f4:73:9d:1a:ee:90:af:46:
f5:44:40:f7:89:44:5c:ee:58:46:eb:e9:82:d2:91:
54:8a:5e:9f:16:12:65:ae:3b:3c:21:ba:bd:98:fc:
54:fe:f6:dc:2d:df:97:a2:1e:cf:df:0a:21:91:5c:
68:2c:4e:99:bd:ab:11:ef:9d:ae:9e:c9:ff:a0:ea:
d8:7c:4b:e6:9a:fd:a7:04:b2:72:af:1b:6c:f1:2f:
7e:3d:1e:89:1e:27:e1:e5:c3:a4:25:b6:ad:67:ea:
c4:13:6a:50:2b:51:11:11:fe:03:b1:2f:24:fd:a0:
ff:97:38:06:34:13:78:d0:5e:98:cd:9b:64:e4:66:
fe:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:2D:AA:38:ED:FB:13:AD:B2:4A:A2:4E:F6:FE:DF:FF:29:69:5A:0A
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Li2qOO37E62ySqJO9v7f_ylpWgo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:10b::/48
Signature Algorithm: sha256WithRSAEncryption
08:a9:ca:c3:80:df:96:ab:c9:58:90:7e:40:40:91:73:4b:ae:
2f:31:1e:04:20:72:07:dc:ab:a9:1e:ac:bb:4b:a0:f8:0f:f1:
ef:cf:87:fe:0f:07:ce:72:0e:5d:cb:95:86:50:08:8c:76:4d:
72:e4:34:89:ea:f6:25:03:e3:15:12:2d:b4:43:17:85:5e:78:
cb:f5:59:89:1f:8f:cd:38:bd:f9:5a:af:c8:ec:94:57:bb:74:
7d:76:e9:3e:0f:7f:35:c6:b9:6c:ab:fa:cd:b6:aa:7a:68:79:
bd:00:91:a4:b5:7d:7e:91:56:02:5e:45:54:b9:20:2e:e8:f2:
22:8f:da:cd:91:ae:6d:26:5e:9e:26:dc:7f:e3:8d:05:13:5f:
e8:6b:d1:55:9a:fe:9a:9d:60:0d:21:5f:d0:f0:32:00:65:f5:
e3:b7:49:e1:98:9c:4d:d2:b1:2d:6e:2b:fc:12:b6:4c:28:7c:
dd:17:bb:74:4a:f6:27:a0:c7:d3:e6:35:b9:b2:50:89:49:7c:
6b:b9:4b:19:c0:53:f4:39:96:4c:a2:7c:79:e6:34:43:9a:43:
c0:1d:6b:66:ef:ba:42:1e:1f:64:07:41:90:bf:91:73:c5:bc:
8b:e7:cf:57:a8:59:06:8b:fb:78:e3:43:ca:1e:45:20:c6:2a:
c7:7b:7d:fe
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/rZGPv+vKNq6P/TSG8aFWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgyODE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZTJkYWEzOGVkZmIxM2FkYjI0YWEyNGVmNmZlZGZmZjI5Njk1YTBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjlHB3eG3uuxoMhQfuKgeyiN0PoUE
8s1KwjBfUSXc6Kk7WjzT3RMBzDp+Nh+UceoL/5An1nmNdMHtPecvKMcQp9jlibBh
v+4fqAGnFmHM3vGP6m31pmZ00PLdCIO4nT4107ck4mMaugjWBiBGE1oNLafVrf4N
mW/QzGlLS6zP9HOdGu6Qr0b1RED3iURc7lhG6+mC0pFUil6fFhJlrjs8Ibq9mPxU
/vbcLd+Xoh7P3wohkVxoLE6ZvasR752unsn/oOrYfEvmmv2nBLJyrxts8S9+PR6J
Hifh5cOkJbatZ+rEE2pQK1EREf4DsS8k/aD/lzgGNBN40F6YzZtk5Gb+QwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFC4tqjjt+xOtskqiTvb+3/8paVoKMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvTGkycU9PMzdFNjJ5U3FKTzl2N2ZfeWxwV2dvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQEL
MA0GCSqGSIb3DQEBCwUAA4IBAQAIqcrDgN+Wq8lYkH5AQJFzS64vMR4EIHIH3Kup
Hqy7S6D4D/Hvz4f+DwfOcg5dy5WGUAiMdk1y5DSJ6vYlA+MVEi20QxeFXnjL9VmJ
H4/NOL35Wq/I7JRXu3R9duk+D381xrlsq/rNtqp6aHm9AJGktX1+kVYCXkVUuSAu
6PIij9rNka5tJl6eJtx/440FE1/oa9FVmv6anWANIV/Q8DIAZfXjt0nhmJxN0rEt
biv8ErZMKHzdF7t0SvYnoMfT5jW5slCJSXxruUsZwFP0OZZMonx55jRDmkPAHWtm
77pCHh9kB0GQv5FzxbyL589XqFkGi/t440PKHkUgxirHe33+
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org