Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/N7G1u4pSPBqFARlsfMQUsy9UiOc.roa
File: N7G1u4pSPBqFARlsfMQUsy9UiOc.roa (raw, json)
Hash identifier: ipGyn44PwLe85fJF3nlMeZ1rryhKbihNlWHGkhmOyvQ=
Subject key identifier: 37:B1:B5:BB:8A:52:3C:1A:85:01:19:6C:7C:C4:14:B3:2F:54:88:E7
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F061C5D812288999B519C6620A4B88
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/N7G1u4pSPBqFARlsfMQUsy9UiOc.roa
Signing time: Wed 07 Feb 2024 05:00:30 +0000
ROA not before: Wed 07 Feb 2024 05:00:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50291
IP address blocks: 2a0f:b241:3::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:61:c5:d8:12:28:89:99:b5:19:c6:62:0a:4b:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=37b1b5bb8a523c1a8501196c7cc414b32f5488e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:10:b4:3b:60:6a:e5:bf:1d:55:48:fc:ba:96:
4a:c2:8e:49:19:02:aa:c9:e2:b7:2c:dd:bd:04:02:
0c:6d:16:a5:2c:56:8a:64:a7:91:98:2c:56:1e:7e:
22:4e:69:97:94:8f:bb:0f:ef:f5:1c:df:04:78:11:
13:be:5e:68:46:25:74:8b:41:02:51:ff:73:c1:36:
9c:81:21:6c:a3:fd:bd:ab:38:8a:2d:ec:47:b1:2e:
81:b0:6c:92:d0:07:a8:75:0f:d3:34:3e:06:2f:09:
84:2b:1a:3a:61:dc:25:7f:4e:f8:f3:df:6c:74:76:
d2:bb:8c:47:f8:16:1c:f8:14:d6:98:5f:a3:68:1c:
c6:af:6e:78:ec:59:fd:53:e0:67:2a:ec:9e:08:2c:
e4:58:f0:3b:81:37:f3:31:61:e1:e9:8f:d4:f0:56:
ad:f4:35:33:4c:c1:be:7b:97:a1:37:9e:07:27:f1:
0a:98:16:86:6f:b8:da:c3:68:5d:96:50:e3:de:2e:
79:c9:64:15:a6:aa:8c:40:d5:47:ae:03:d6:2e:95:
48:c3:f8:b7:79:05:83:bc:1c:79:f6:6a:12:26:dc:
63:ee:39:99:d0:c0:75:d3:ec:26:5f:07:ba:f0:df:
8f:af:95:c3:df:ff:02:70:8a:5a:3b:20:47:02:7e:
ba:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:B1:B5:BB:8A:52:3C:1A:85:01:19:6C:7C:C4:14:B3:2F:54:88:E7
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/N7G1u4pSPBqFARlsfMQUsy9UiOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:3::/48
Signature Algorithm: sha256WithRSAEncryption
14:b1:88:6d:b2:d3:58:ae:ee:35:a3:d8:45:b5:49:22:15:d9:
d2:9d:c3:3a:4a:b8:3c:ab:f1:cd:7b:de:a9:56:5d:0b:c1:3a:
95:99:bd:57:ad:50:d7:59:90:d3:0e:3b:8d:d9:fa:9b:f2:b0:
ae:07:d0:c1:63:76:a6:81:92:1c:60:19:b0:16:f6:04:41:76:
dc:cd:f4:a9:0e:53:15:cf:e9:a3:83:c2:92:19:02:65:78:66:
a0:0a:64:37:98:64:16:98:f8:72:10:45:36:a6:9a:d0:4d:d7:
f8:ec:b7:d8:3b:22:24:60:1a:a1:80:0d:4a:a4:c1:e8:3b:93:
4a:99:46:61:17:dc:82:8c:5c:a4:4f:7a:5d:59:38:04:e4:05:
15:39:48:8e:9b:13:ef:ae:fa:5f:31:43:32:32:c7:82:8c:ac:
00:1c:db:16:99:c0:5a:b8:49:9f:77:41:e6:86:ad:1f:90:9f:
3e:25:b4:f1:ca:52:25:b8:18:2a:32:7a:0c:d4:27:5b:b1:f8:
e6:6f:d5:e3:29:65:a9:cb:00:4e:b5:1f:7e:e3:8b:e9:f2:d6:
fb:d2:cb:50:67:96:07:eb:44:84:59:61:d5:67:ff:5c:e9:d4:
66:ff:20:b1:13:11:6a:1a:30:91:1b:c5:ee:6b:9c:f3:2e:e8:
44:aa:9d:0c
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY2B8GHF2BIoiZm1GcZiCkuIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA3MDUwMDMwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzN2IxYjViYjhhNTIzYzFhODUwMTE5NmM3Y2M0MTRiMzJmNTQ4OGU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1BC0O2Bq5b8dVUj8upZKwo5JGQKq
yeK3LN29BAIMbRalLFaKZKeRmCxWHn4iTmmXlI+7D+/1HN8EeBETvl5oRiV0i0EC
Uf9zwTacgSFso/29qziKLexHsS6BsGyS0AeodQ/TND4GLwmEKxo6Ydwlf074899s
dHbSu4xH+BYc+BTWmF+jaBzGr2547Fn9U+BnKuyeCCzkWPA7gTfzMWHh6Y/U8Fat
9DUzTMG+e5ehN54HJ/EKmBaGb7jaw2hdllDj3i55yWQVpqqMQNVHrgPWLpVIw/i3
eQWDvBx59moSJtxj7jmZ0MB10+wmXwe68N+Pr5XD3/8CcIpaOyBHAn66kQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFDextbuKUjwahQEZbHzEFLMvVIjnMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvTjdHMXU0cFNQQnFGQVJsc2ZNUVVzeTlVaU9jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQAD
MA0GCSqGSIb3DQEBCwUAA4IBAQAUsYhtstNYru41o9hFtUkiFdnSncM6Srg8q/HN
e96pVl0LwTqVmb1XrVDXWZDTDjuN2fqb8rCuB9DBY3amgZIcYBmwFvYEQXbczfSp
DlMVz+mjg8KSGQJleGagCmQ3mGQWmPhyEEU2pprQTdf47LfYOyIkYBqhgA1KpMHo
O5NKmUZhF9yCjFykT3pdWTgE5AUVOUiOmxPvrvpfMUMyMseCjKwAHNsWmcBauEmf
d0Hmhq0fkJ8+JbTxylIluBgqMnoM1Cdbsfjmb9XjKWWpywBOtR9+44vp8tb70stQ
Z5YH60SEWWHVZ/9c6dRm/yCxExFqGjCRG8Xua5zzLuhEqp0M
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org