Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/R1_KILTwJQvjuD42o6vJ8rdgquQ.roa
File: R1_KILTwJQvjuD42o6vJ8rdgquQ.roa (raw, json)
Hash identifier: RNVzQn97VQrtrYBeb45ZieFrcPSr3j/bwqxf7hbfPvA=
Subject key identifier: 47:5F:CA:20:B4:F0:25:0B:E3:B8:3E:36:A3:AB:C9:F2:B7:60:AA:E4
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAD8D90E4561DFE54099B6735FBBFC2
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/R1_KILTwJQvjuD42o6vJ8rdgquQ.roa
Signing time: Tue 06 Feb 2024 18:28:16 +0000
ROA not before: Tue 06 Feb 2024 18:28:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48935
IP address blocks: 2a0f:b241:113::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ad:8d:90:e4:56:1d:fe:54:09:9b:67:35:fb:bf:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:28:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=475fca20b4f0250be3b83e36a3abc9f2b760aae4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:cd:40:0a:3b:54:09:a6:00:40:c2:2c:a1:94:
6d:5e:37:94:6e:93:49:b7:43:33:13:4a:fb:c0:78:
95:9c:b6:c0:07:c2:f6:86:05:66:e3:76:62:dc:02:
a7:35:79:a0:f6:2b:9b:3e:dc:3c:37:5d:45:27:12:
92:cb:a6:fd:a4:dc:ff:cd:fa:98:c1:44:05:ad:45:
2a:62:c2:8d:9a:d4:31:b2:dc:f2:92:ec:0a:04:49:
db:7b:78:a6:31:dc:86:20:e6:9d:fd:1a:0c:73:bd:
a5:34:1e:a8:09:3a:46:7e:ad:22:18:3d:4e:9c:8b:
8c:a6:87:9c:4a:ca:95:ee:bd:85:3e:58:6a:8f:b5:
3a:bc:c8:aa:80:74:c6:1a:3e:d0:75:1d:67:fd:f3:
ea:d9:46:05:e3:ff:1d:b1:4f:82:0d:bb:67:9a:69:
33:d6:12:67:0d:1f:fa:9d:72:82:19:4a:7a:3f:44:
8f:4a:fd:21:f2:ed:96:20:28:09:1f:05:08:42:6e:
15:86:73:58:1d:a4:d2:39:df:ea:64:2e:5c:66:46:
3f:d8:ac:64:30:cd:4f:8e:73:8c:63:64:28:44:37:
ab:f7:5b:16:47:79:7a:6e:08:5e:97:19:5c:94:5b:
29:a5:9b:60:c3:2a:5b:f1:dc:50:25:90:a4:b1:40:
d6:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:5F:CA:20:B4:F0:25:0B:E3:B8:3E:36:A3:AB:C9:F2:B7:60:AA:E4
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/R1_KILTwJQvjuD42o6vJ8rdgquQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:113::/48
Signature Algorithm: sha256WithRSAEncryption
8f:f0:32:d4:b6:99:7b:77:15:45:6a:c7:4d:bb:47:37:83:50:
34:8e:ff:de:19:ef:36:9f:1a:a8:3d:b0:39:22:ce:43:2e:2e:
66:62:57:18:08:95:c4:50:18:6b:1e:de:ba:d7:7c:d4:c7:5f:
94:46:f5:6f:76:e7:08:08:db:02:2b:0c:8b:01:b0:56:81:d3:
c6:42:04:4c:18:33:2e:5c:9d:e2:95:d1:42:5f:f1:0d:ab:dc:
0c:42:35:d5:6a:fe:c1:ec:52:f8:8a:f4:1a:24:89:de:a8:9c:
13:ef:fe:3c:29:0f:63:db:39:e5:bd:27:3c:59:dc:6e:8e:92:
e5:68:2f:77:34:63:4b:9b:a9:35:7d:c8:51:11:ff:58:97:bc:
25:f2:b3:ef:f2:bd:c0:53:01:c2:00:17:3e:bd:a9:0c:58:19:
cd:4e:69:30:d0:e9:b3:ed:66:f1:5c:f4:9a:89:98:cd:8d:73:
94:65:70:d5:1d:ae:6f:72:2b:09:2b:5e:12:ef:de:8e:06:4c:
c8:ad:d0:7e:73:0e:cb:c1:3f:34:75:c3:c6:15:17:3d:fe:08:
1c:e8:c2:33:8c:9c:41:f9:82:9b:9d:b7:2e:1e:7f:97:cf:96:
2e:3c:68:f1:de:e3:0b:4d:1d:6b:63:9b:a7:47:51:e7:2f:5b:
ee:e1:48:4f
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/rY2Q5FYd/lQJm2c1+7/CMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgyODE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NzVmY2EyMGI0ZjAyNTBiZTNiODNlMzZhM2FiYzlmMmI3NjBhYWU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAts1ACjtUCaYAQMIsoZRtXjeUbpNJ
t0MzE0r7wHiVnLbAB8L2hgVm43Zi3AKnNXmg9iubPtw8N11FJxKSy6b9pNz/zfqY
wUQFrUUqYsKNmtQxstzykuwKBEnbe3imMdyGIOad/RoMc72lNB6oCTpGfq0iGD1O
nIuMpoecSsqV7r2FPlhqj7U6vMiqgHTGGj7QdR1n/fPq2UYF4/8dsU+CDbtnmmkz
1hJnDR/6nXKCGUp6P0SPSv0h8u2WICgJHwUIQm4VhnNYHaTSOd/qZC5cZkY/2Kxk
MM1PjnOMY2QoRDer91sWR3l6bghelxlclFsppZtgwypb8dxQJZCksUDWiQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFEdfyiC08CUL47g+NqOryfK3YKrkMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvUjFfS0lMVHdKUXZqdUQ0Mm82dko4cmRncXVRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQET
MA0GCSqGSIb3DQEBCwUAA4IBAQCP8DLUtpl7dxVFasdNu0c3g1A0jv/eGe82nxqo
PbA5Is5DLi5mYlcYCJXEUBhrHt6613zUx1+URvVvducICNsCKwyLAbBWgdPGQgRM
GDMuXJ3ildFCX/ENq9wMQjXVav7B7FL4ivQaJIneqJwT7/48KQ9j2znlvSc8Wdxu
jpLlaC93NGNLm6k1fchREf9Yl7wl8rPv8r3AUwHCABc+vakMWBnNTmkw0Omz7Wbx
XPSaiZjNjXOUZXDVHa5vcisJK14S796OBkzIrdB+cw7LwT80dcPGFRc9/ggc6MIz
jJxB+YKbnbcuHn+Xz5YuPGjx3uMLTR1rY5unR1HnL1vu4UhP
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:09 2024 by rpki-client on console-ams.rpki-client.org