Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/PYRWKyoPwgX0MquWdKWPPnd8AGs.roa
File: PYRWKyoPwgX0MquWdKWPPnd8AGs.roa (raw, json)
Hash identifier: ThX2X4Q6fErWHKdbfS6t77CzuldCu+jW0yGZ8pChYNA=
Subject key identifier: 3D:84:56:2B:2A:0F:C2:05:F4:32:AB:96:74:A5:8F:3E:77:7C:00:6B
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F08FA5ED2448AF395CA8F769E1EFBF
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/PYRWKyoPwgX0MquWdKWPPnd8AGs.roa
Signing time: Wed 07 Feb 2024 05:00:42 +0000
ROA not before: Wed 07 Feb 2024 05:00:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204375
IP address blocks: 2a0f:b241:ea::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:8f:a5:ed:24:48:af:39:5c:a8:f7:69:e1:ef:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3d84562b2a0fc205f432ab9674a58f3e777c006b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:95:bf:ac:e1:b7:14:50:4a:72:a7:c8:d0:60:
51:24:64:b0:ee:89:37:32:82:26:63:04:f5:e9:a1:
57:9a:ce:0a:b8:56:41:7e:d5:16:50:84:0c:54:a5:
fd:32:06:86:4c:27:7d:18:73:4f:99:5c:69:ce:b4:
29:63:f1:0e:99:d1:ca:33:ab:66:34:56:5a:78:e9:
66:47:d8:ce:aa:25:43:ad:a9:82:39:d8:b3:9e:da:
ec:47:de:3e:c1:67:fa:de:99:df:3a:2a:ed:d3:60:
48:bc:67:98:75:30:dd:0f:e4:e1:27:75:2c:fe:4d:
ec:1f:9b:fd:34:89:b9:ef:3e:74:25:91:e2:5c:5d:
b5:c0:bc:ec:0e:00:3d:f7:17:5d:f0:a2:a2:3f:c5:
22:ec:19:40:36:fa:89:68:49:e4:72:06:6a:f3:40:
98:4e:e8:42:7a:4c:66:40:15:83:18:55:8b:89:c0:
8d:6d:1b:db:d0:18:78:e5:11:41:6c:06:3c:5e:da:
30:fb:1b:54:27:97:0a:a5:0e:3b:b2:ca:c9:8f:71:
d7:d4:f3:e7:16:8a:63:a6:8c:22:46:64:60:bd:4e:
73:96:7d:09:5b:b8:12:59:b5:3a:a5:e8:06:9e:14:
8c:33:31:26:9e:89:70:5f:19:7a:11:0f:fc:33:b8:
47:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:84:56:2B:2A:0F:C2:05:F4:32:AB:96:74:A5:8F:3E:77:7C:00:6B
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/PYRWKyoPwgX0MquWdKWPPnd8AGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:ea::/48
Signature Algorithm: sha256WithRSAEncryption
80:d0:e9:68:4d:18:b5:51:57:82:4f:0e:5e:bd:62:37:c8:ad:
29:bf:6d:4d:d5:ac:c2:ad:7e:6e:e0:0f:b7:00:ff:5e:69:7c:
ac:41:ff:7e:8c:79:3a:b9:c4:4d:25:76:fd:f2:d8:d3:ab:e0:
bb:cc:50:f3:62:2e:88:65:47:16:44:4f:e4:6f:8a:22:fb:5e:
38:38:9e:4c:74:b7:1e:c9:52:ee:f8:7b:10:87:67:51:a7:e8:
4c:c7:87:af:8e:99:8a:32:f3:87:f5:96:e3:76:32:66:ea:55:
5b:11:6f:54:17:c3:ae:91:c7:77:e3:9e:ce:75:58:0b:c2:9e:
46:b5:7d:52:b0:ec:d0:c9:bc:26:67:4f:a8:ee:41:86:fb:1b:
29:fe:24:e7:0d:21:05:02:d7:6c:b1:23:ba:bd:64:5f:1f:bd:
6f:57:05:8c:25:7b:34:e9:2a:be:2d:d7:0e:bd:64:af:a6:8c:
3e:ab:01:0a:d5:e3:4e:2a:18:31:c7:0b:32:15:48:d4:ca:40:
b4:58:58:b4:3d:92:27:b3:b2:84:cc:38:73:ef:82:16:39:ae:
4b:de:c0:4d:ed:4f:e1:50:84:e2:61:68:ed:4b:54:26:06:6d:
9c:1e:e2:c6:ab:fc:ba:73:f9:0f:2b:ee:d0:c3:ec:dd:60:d7:
ff:ce:91:a8
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY2B8I+l7SRIrzlcqPdp4e+/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA3MDUwMDQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZDg0NTYyYjJhMGZjMjA1ZjQzMmFiOTY3NGE1OGYzZTc3N2MwMDZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhpW/rOG3FFBKcqfI0GBRJGSw7ok3
MoImYwT16aFXms4KuFZBftUWUIQMVKX9MgaGTCd9GHNPmVxpzrQpY/EOmdHKM6tm
NFZaeOlmR9jOqiVDramCOdizntrsR94+wWf63pnfOirt02BIvGeYdTDdD+ThJ3Us
/k3sH5v9NIm57z50JZHiXF21wLzsDgA99xdd8KKiP8Ui7BlANvqJaEnkcgZq80CY
TuhCekxmQBWDGFWLicCNbRvb0Bh45RFBbAY8Xtow+xtUJ5cKpQ47ssrJj3HX1PPn
FopjpowiRmRgvU5zln0JW7gSWbU6pegGnhSMMzEmnolwXxl6EQ/8M7hHkQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFD2EVisqD8IF9DKrlnSljz53fABrMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvUFlSV0t5b1B3Z1gwTXF1V2RLV1BQbmQ4QUdzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQDq
MA0GCSqGSIb3DQEBCwUAA4IBAQCA0OloTRi1UVeCTw5evWI3yK0pv21N1azCrX5u
4A+3AP9eaXysQf9+jHk6ucRNJXb98tjTq+C7zFDzYi6IZUcWRE/kb4oi+144OJ5M
dLceyVLu+HsQh2dRp+hMx4evjpmKMvOH9ZbjdjJm6lVbEW9UF8Oukcd3457OdVgL
wp5GtX1SsOzQybwmZ0+o7kGG+xsp/iTnDSEFAtdssSO6vWRfH71vVwWMJXs06Sq+
LdcOvWSvpow+qwEK1eNOKhgxxwsyFUjUykC0WFi0PZIns7KEzDhz74IWOa5L3sBN
7U/hUITiYWjtS1QmBm2cHuLGq/y6c/kPK+7Qw+zdYNf/zpGo
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org