Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Qt699d4L1t8MqDiBHM5Sy95QnBc.roa
File: Qt699d4L1t8MqDiBHM5Sy95QnBc.roa (raw, json)
Hash identifier: IQEoJradoRqU6t33TWhf3rqHrDz+7kQm8ZxhJi7YNdU=
Subject key identifier: 42:DE:BD:F5:DE:0B:D6:DF:0C:A8:38:81:1C:CE:52:CB:DE:50:9C:17
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB89101DAA17AE1561924DA254632DA
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Qt699d4L1t8MqDiBHM5Sy95QnBc.roa
Signing time: Tue 06 Feb 2024 18:40:18 +0000
ROA not before: Tue 06 Feb 2024 18:40:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216191
IP address blocks: 2a0f:b241:155::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b8:91:01:da:a1:7a:e1:56:19:24:da:25:46:32:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:40:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=42debdf5de0bd6df0ca838811cce52cbde509c17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:81:65:d0:d8:c0:e0:1e:c5:14:fa:ea:4b:70:
2e:b0:c9:98:13:ac:f7:8d:70:3e:59:cb:fd:fd:90:
31:03:90:10:32:f7:48:77:b4:28:14:db:bc:ec:bd:
72:40:30:af:7e:49:ee:44:9f:e7:f3:28:0b:68:c1:
f6:b7:49:e1:7b:62:92:53:e9:7e:0a:6b:63:99:b9:
67:7e:e7:d1:18:20:40:1c:0e:2c:bd:4f:36:12:e9:
24:15:f1:6f:2b:03:ba:bc:79:9e:2e:2a:b3:6c:62:
70:c5:e5:55:ff:d2:7c:c5:b9:72:28:4c:96:8f:b2:
3b:25:0c:5a:c8:00:2f:36:04:48:58:27:51:bf:36:
2b:04:5b:2a:21:5f:92:22:f9:1c:c0:db:10:09:00:
3f:a2:c3:ad:81:d8:be:1c:c1:1d:2b:f0:42:ee:c0:
b3:f7:94:0e:ae:9d:fc:df:8a:72:3f:ed:ec:00:f4:
8f:40:af:aa:57:24:a1:db:3c:be:5a:36:22:d5:e8:
75:3f:da:e0:68:70:10:38:c1:25:84:d0:37:d0:fe:
f6:f0:77:2d:b7:83:06:1a:28:7c:74:7f:81:d2:db:
2b:44:37:2c:b8:d5:8e:63:6c:98:46:88:39:50:ba:
5a:f0:7e:c5:21:8a:7a:cc:34:64:c0:0d:18:84:78:
ce:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:DE:BD:F5:DE:0B:D6:DF:0C:A8:38:81:1C:CE:52:CB:DE:50:9C:17
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Qt699d4L1t8MqDiBHM5Sy95QnBc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:155::/48
Signature Algorithm: sha256WithRSAEncryption
3b:e3:6c:cb:79:b0:74:28:e1:fb:30:76:4f:63:27:13:16:cf:
2a:fe:a9:27:6a:9c:3f:80:88:8e:53:69:17:63:44:3a:e2:82:
c8:d6:94:28:25:fb:76:b7:62:95:90:69:89:1b:2c:7c:24:9c:
c0:00:a1:3d:8b:a3:05:72:28:2f:1c:ed:f8:1b:a2:f1:c9:1d:
83:a5:0a:81:72:9f:51:b6:32:e4:5d:92:d5:bc:39:97:b9:2f:
07:cb:f6:5f:5b:31:bd:c6:bd:51:83:7c:b2:bf:1a:ef:3c:23:
12:10:71:1b:b7:2d:cb:92:a5:6b:a9:74:d3:a4:b0:5a:1d:14:
53:ef:24:82:bb:ad:a5:5d:9c:52:3a:2c:e7:1a:e6:96:44:32:
f0:e8:29:34:56:50:5a:e9:2e:b2:20:3e:4d:f8:3a:6b:57:02:
4b:c1:a9:db:ca:b6:0a:2d:44:1c:44:79:2e:e8:d9:88:14:94:
5c:09:1b:bd:7a:28:c9:69:47:45:1d:c9:38:65:29:29:6c:85:
b9:8c:95:fd:19:5e:d1:fb:bf:ff:1a:85:38:7b:91:59:ac:ce:
da:71:28:43:49:4f:74:6d:78:a8:1c:ef:df:e7:3e:03:ef:75:
e8:12:6d:6d:2d:7f:eb:ff:40:1b:2a:58:66:41:43:4e:07:92:
02:ab:41:9c
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/uJEB2qF64VYZJNolRjLaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTg0MDE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MmRlYmRmNWRlMGJkNmRmMGNhODM4ODExY2NlNTJjYmRlNTA5YzE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl4Fl0NjA4B7FFPrqS3AusMmYE6z3
jXA+Wcv9/ZAxA5AQMvdId7QoFNu87L1yQDCvfknuRJ/n8ygLaMH2t0nhe2KSU+l+
CmtjmblnfufRGCBAHA4svU82EukkFfFvKwO6vHmeLiqzbGJwxeVV/9J8xblyKEyW
j7I7JQxayAAvNgRIWCdRvzYrBFsqIV+SIvkcwNsQCQA/osOtgdi+HMEdK/BC7sCz
95QOrp3834pyP+3sAPSPQK+qVySh2zy+WjYi1eh1P9rgaHAQOMElhNA30P728Hct
t4MGGih8dH+B0tsrRDcsuNWOY2yYRog5ULpa8H7FIYp6zDRkwA0YhHjOuQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFELevfXeC9bfDKg4gRzOUsveUJwXMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvUXQ2OTlkNEwxdDhNcURpQkhNNVN5OTVRbkJjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQFV
MA0GCSqGSIb3DQEBCwUAA4IBAQA742zLebB0KOH7MHZPYycTFs8q/qknapw/gIiO
U2kXY0Q64oLI1pQoJft2t2KVkGmJGyx8JJzAAKE9i6MFcigvHO34G6LxyR2DpQqB
cp9RtjLkXZLVvDmXuS8Hy/ZfWzG9xr1Rg3yyvxrvPCMSEHEbty3LkqVrqXTTpLBa
HRRT7ySCu62lXZxSOiznGuaWRDLw6Ck0VlBa6S6yID5N+DprVwJLwanbyrYKLUQc
RHku6NmIFJRcCRu9eijJaUdFHck4ZSkpbIW5jJX9GV7R+7//GoU4e5FZrM7acShD
SU90bXioHO/f5z4D73XoEm1tLX/r/0AbKlhmQUNOB5ICq0Gc
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org