Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Obk8VKjth3jqM1knLk1rp5fSICc.roa
File: Obk8VKjth3jqM1knLk1rp5fSICc.roa (raw, json)
Hash identifier: cb2Ixh/3uwVY29y3IbVlcDJD87EMV7gUyXaM1T2iQSQ=
Subject key identifier: 39:B9:3C:54:A8:ED:87:78:EA:33:59:27:2E:4D:6B:A7:97:D2:20:27
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA8FCB69FED24068D0C93C7EB00D895
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Obk8VKjth3jqM1knLk1rp5fSICc.roa
Signing time: Tue 06 Feb 2024 18:23:17 +0000
ROA not before: Tue 06 Feb 2024 18:23:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200269
IP address blocks: 2a0f:b241:b4::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a8:fc:b6:9f:ed:24:06:8d:0c:93:c7:eb:00:d8:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:23:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=39b93c54a8ed8778ea3359272e4d6ba797d22027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ca:96:6d:7a:1d:94:0d:15:7d:69:2a:99:ff:
fa:fc:5d:ec:50:79:16:22:27:3d:59:4c:d3:d7:d1:
94:50:2a:14:54:d1:e3:b1:71:c9:12:25:a5:56:ad:
c9:f0:56:35:90:c8:2d:fe:4e:ec:d0:39:32:89:b9:
47:68:b5:1b:eb:b8:62:c9:85:22:70:ed:02:65:15:
a3:40:81:79:5c:62:77:d4:48:47:50:01:88:53:89:
59:c7:82:62:ef:11:32:64:8f:a8:c3:d0:6f:22:8f:
eb:f2:57:4e:41:f2:70:d0:e8:54:53:e7:13:ca:68:
da:b5:cb:52:1b:44:11:79:51:6a:9d:c6:49:8d:68:
62:1b:62:35:22:70:26:ca:3c:d0:11:bd:73:83:37:
ab:4e:14:59:b2:6c:3b:af:33:a9:56:2e:c5:04:24:
71:2c:86:c3:19:ba:b4:75:35:ea:bb:73:97:b2:a1:
3f:59:d4:ba:d3:4d:e7:0e:e5:60:49:7d:dc:97:3a:
91:fb:58:d9:75:c7:9f:91:b3:2c:24:6d:13:ea:43:
a9:fb:f6:06:8b:cd:55:bb:fd:a0:c9:2f:4a:a1:d0:
e0:97:5e:32:1e:9d:53:a3:2f:cf:cf:e2:e9:99:5b:
aa:a0:fa:f1:f1:fd:3c:e9:65:66:e4:a4:23:fb:dc:
99:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B9:3C:54:A8:ED:87:78:EA:33:59:27:2E:4D:6B:A7:97:D2:20:27
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Obk8VKjth3jqM1knLk1rp5fSICc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:b4::/48
Signature Algorithm: sha256WithRSAEncryption
21:e3:bc:73:a3:99:0b:58:24:69:9a:ae:c9:3e:47:d8:13:f8:
b9:26:6c:5f:3f:80:49:fb:1a:6b:c1:f6:71:5f:c3:5c:71:34:
e4:e4:ec:ae:f2:64:7a:f3:4c:f9:1f:1f:25:43:eb:51:8b:a6:
c5:f0:d3:b5:55:0c:40:6d:cd:86:ee:fb:80:a3:0c:8b:53:ce:
0b:9c:65:a6:8f:e1:7e:66:63:38:d5:0e:8e:da:af:7a:9c:96:
88:f3:25:d7:de:98:2f:27:77:17:e2:48:af:c4:3c:31:bc:78:
77:77:db:94:af:cb:eb:28:c1:57:27:f2:d4:5a:b9:7f:d6:ff:
92:2c:1a:86:78:45:ef:fa:c6:39:2f:28:ec:85:ca:1f:a3:0a:
a8:ff:3b:05:55:f9:5f:7e:da:b1:f5:68:91:28:98:06:f2:d8:
f3:10:04:d5:fb:d4:16:24:6f:3c:39:75:90:16:df:6b:88:e2:
3a:25:14:9d:2b:60:0a:ae:cd:43:99:9e:99:6f:af:90:c5:8e:
01:67:cb:57:a9:65:bf:30:ac:40:c7:67:3a:e7:05:1a:76:d7:
a6:c1:54:f6:91:d9:c3:1a:ce:ec:de:53:4d:36:c5:0f:74:f9:
3b:9a:c9:ee:e2:0a:3a:d8:a2:43:15:8d:a1:a9:10:9f:c4:c8:
2a:e6:03:e7
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/qPy2n+0kBo0Mk8frANiVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgyMzE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOWI5M2M1NGE4ZWQ4Nzc4ZWEzMzU5MjcyZTRkNmJhNzk3ZDIyMDI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAycqWbXodlA0VfWkqmf/6/F3sUHkW
Iic9WUzT19GUUCoUVNHjsXHJEiWlVq3J8FY1kMgt/k7s0DkyiblHaLUb67hiyYUi
cO0CZRWjQIF5XGJ31EhHUAGIU4lZx4Ji7xEyZI+ow9BvIo/r8ldOQfJw0OhUU+cT
ymjatctSG0QReVFqncZJjWhiG2I1InAmyjzQEb1zgzerThRZsmw7rzOpVi7FBCRx
LIbDGbq0dTXqu3OXsqE/WdS6003nDuVgSX3clzqR+1jZdcefkbMsJG0T6kOp+/YG
i81Vu/2gyS9KodDgl14yHp1Toy/Pz+LpmVuqoPrx8f086WVm5KQj+9yZpwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFDm5PFSo7Yd46jNZJy5Na6eX0iAnMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvT2JrOFZLanRoM2pxTTFrbkxrMXJwNWZTSUNjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQC0
MA0GCSqGSIb3DQEBCwUAA4IBAQAh47xzo5kLWCRpmq7JPkfYE/i5JmxfP4BJ+xpr
wfZxX8NccTTk5Oyu8mR680z5Hx8lQ+tRi6bF8NO1VQxAbc2G7vuAowyLU84LnGWm
j+F+ZmM41Q6O2q96nJaI8yXX3pgvJ3cX4kivxDwxvHh3d9uUr8vrKMFXJ/LUWrl/
1v+SLBqGeEXv+sY5Lyjshcofowqo/zsFVflfftqx9WiRKJgG8tjzEATV+9QWJG88
OXWQFt9riOI6JRSdK2AKrs1DmZ6Zb6+QxY4BZ8tXqWW/MKxAx2c65wUadtemwVT2
kdnDGs7s3lNNNsUPdPk7msnu4go62KJDFY2hqRCfxMgq5gPn
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org