Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/PZD4XPluR8TKZJaOVgRHa0oVqKA.roa
File: PZD4XPluR8TKZJaOVgRHa0oVqKA.roa (raw, json)
Hash identifier: PTABoLshaB2cfXn27kf9nrwfD5eyeMxpQPyMpVzQ0sY=
Subject key identifier: 3D:90:F8:5C:F9:6E:47:C4:CA:64:96:8E:56:04:47:6B:4A:15:A8:A0
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F9497FCB16186A4643800B418FAAB71
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/PZD4XPluR8TKZJaOVgRHa0oVqKA.roa
Signing time: Tue 06 Feb 2024 18:01:01 +0000
ROA not before: Tue 06 Feb 2024 18:01:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206792
IP address blocks: 2a0f:b241:39::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:94:97:fc:b1:61:86:a4:64:38:00:b4:18:fa:ab:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:01:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3d90f85cf96e47c4ca64968e5604476b4a15a8a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a1:08:73:00:32:52:da:88:54:9f:ff:6a:e2:
b8:6a:08:f9:4c:33:d1:d2:7f:db:3c:b7:8e:33:50:
c1:55:83:b7:11:8b:37:aa:d8:59:fc:a8:69:7f:ab:
c4:84:58:13:24:f1:3a:8d:f6:6f:f7:68:d7:e8:60:
89:19:00:c6:17:41:15:02:a9:d4:ba:b6:e9:19:ad:
e6:05:a7:ff:7e:2e:d0:27:0b:ed:57:bc:90:0f:83:
40:51:1f:92:ba:26:4a:d2:b6:18:78:e2:ca:0e:28:
e2:1f:48:68:03:9e:e2:00:22:ea:40:b6:a9:7c:7f:
4a:65:29:70:0c:d4:19:9f:28:7c:67:f6:c9:69:64:
82:87:e7:51:b0:1a:c4:3f:f5:61:21:d7:14:d0:97:
68:06:2b:2d:ce:45:e7:26:04:d3:3e:36:e1:cf:1d:
65:5d:fd:07:4e:b4:30:97:d2:f4:28:df:c5:cd:21:
63:72:86:55:80:58:ab:e8:b8:81:a9:65:2b:d4:10:
c9:6c:3b:33:38:a1:2b:ca:b8:13:33:8f:35:6f:5c:
ed:ef:95:90:60:a4:5b:59:df:4b:9f:f9:55:35:60:
43:cd:f9:ad:08:30:f2:5e:6d:4e:c2:56:77:87:6a:
5b:82:d6:94:80:11:f9:56:cd:54:4e:42:a7:8f:07:
98:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:90:F8:5C:F9:6E:47:C4:CA:64:96:8E:56:04:47:6B:4A:15:A8:A0
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/PZD4XPluR8TKZJaOVgRHa0oVqKA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:39::/48
Signature Algorithm: sha256WithRSAEncryption
6e:b0:fc:12:f2:a0:1f:9d:22:3b:c1:04:55:1a:c1:1e:d9:07:
96:6f:6e:80:86:ca:64:22:3f:29:8a:46:16:d6:65:b8:c0:a9:
f5:9f:43:09:eb:53:b7:f6:c9:c2:0d:b9:0f:de:dd:4b:f5:2d:
0f:51:51:94:a1:a2:4e:13:ff:f2:62:86:5f:7a:f9:a6:a4:c9:
c4:ac:3d:f0:18:f0:af:96:32:cb:7b:94:1a:18:c3:b2:3e:5f:
54:c5:37:13:cc:1d:af:bc:fd:bb:68:bd:a3:63:f0:72:2c:5f:
5b:89:45:9c:44:db:18:1b:b7:ba:ee:a4:2e:32:22:2a:48:50:
dc:81:7c:17:6a:9c:7c:6f:0a:ca:8c:41:1a:fe:45:e2:df:b0:
18:93:a0:81:6d:34:fe:17:a5:e6:87:85:2f:17:c8:c3:c7:1c:
03:df:49:f1:b2:75:3f:a2:39:f5:e7:c2:cd:b0:b3:54:57:a4:
3c:ba:e0:69:13:32:f8:ef:53:3e:47:90:e5:25:00:ac:2f:cf:
85:17:b4:5a:55:eb:a2:e5:d7:8c:e7:81:07:ed:cf:bf:e0:99:
48:9f:cd:82:25:8f:ad:fb:b3:51:77:d3:cf:90:a2:33:fe:27:
1d:3b:6f:da:da:2b:a8:cd:e5:c1:ab:3c:40:ef:c6:fd:e9:4f:
f3:89:f2:e2
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/lJf8sWGGpGQ4ALQY+qtxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgwMTAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZDkwZjg1Y2Y5NmU0N2M0Y2E2NDk2OGU1NjA0NDc2YjRhMTVhOGEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmqEIcwAyUtqIVJ//auK4agj5TDPR
0n/bPLeOM1DBVYO3EYs3qthZ/Khpf6vEhFgTJPE6jfZv92jX6GCJGQDGF0EVAqnU
urbpGa3mBaf/fi7QJwvtV7yQD4NAUR+SuiZK0rYYeOLKDijiH0hoA57iACLqQLap
fH9KZSlwDNQZnyh8Z/bJaWSCh+dRsBrEP/VhIdcU0JdoBistzkXnJgTTPjbhzx1l
Xf0HTrQwl9L0KN/FzSFjcoZVgFir6LiBqWUr1BDJbDszOKEryrgTM481b1zt75WQ
YKRbWd9Ln/lVNWBDzfmtCDDyXm1OwlZ3h2pbgtaUgBH5Vs1UTkKnjweYWQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFD2Q+Fz5bkfEymSWjlYER2tKFaigMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvUFpENFhQbHVSOFRLWkphT1ZnUkhhMG9WcUtBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQA5
MA0GCSqGSIb3DQEBCwUAA4IBAQBusPwS8qAfnSI7wQRVGsEe2QeWb26AhspkIj8p
ikYW1mW4wKn1n0MJ61O39snCDbkP3t1L9S0PUVGUoaJOE//yYoZfevmmpMnErD3w
GPCvljLLe5QaGMOyPl9UxTcTzB2vvP27aL2jY/ByLF9biUWcRNsYG7e67qQuMiIq
SFDcgXwXapx8bwrKjEEa/kXi37AYk6CBbTT+F6Xmh4UvF8jDxxwD30nxsnU/ojn1
58LNsLNUV6Q8uuBpEzL471M+R5DlJQCsL8+FF7RaVeui5deM54EH7c+/4JlIn82C
JY+t+7NRd9PPkKIz/icdO2/a2iuozeXBqzxA78b96U/zifLi
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org