Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/R3AuLVSweC8_DeSxhvSmRUj9hBk.roa
File: R3AuLVSweC8_DeSxhvSmRUj9hBk.roa (raw, json)
Hash identifier: xEnq/hhlITfwVZn4wh13rYrtfAc3gLe9iLt3lQTCzw4=
Subject key identifier: 47:70:2E:2D:54:B0:78:2F:3F:0D:E4:B1:86:F4:A6:45:48:FD:84:19
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F93A6A9239CE0CB937DA222E566E404
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/R3AuLVSweC8_DeSxhvSmRUj9hBk.roa
Signing time: Tue 06 Feb 2024 17:59:59 +0000
ROA not before: Tue 06 Feb 2024 17:59:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60894
IP address blocks: 2a0f:b241:31::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:93:a6:a9:23:9c:e0:cb:93:7d:a2:22:e5:66:e4:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 17:59:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=47702e2d54b0782f3f0de4b186f4a64548fd8419
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ff:44:31:b3:ad:3b:1d:bf:c7:26:e7:f6:2b:
ac:ef:38:b7:98:e5:00:3b:4e:e2:ba:8a:a5:46:00:
b5:d7:6a:10:8c:82:a7:91:7e:b9:84:1d:5c:fb:4f:
66:53:54:c3:22:f9:0b:e7:e2:dc:fe:2e:9c:8c:a4:
f1:f5:2a:05:d5:90:ef:2b:e3:fd:36:93:3b:c8:ae:
5f:5d:ea:35:28:ca:86:13:c3:9d:3e:14:6b:bf:cc:
4c:9b:7d:cf:b8:53:21:91:a6:91:3e:b7:4a:db:15:
a5:35:23:3f:c3:b0:19:b4:13:a7:97:f0:9c:af:51:
de:fc:b3:2e:54:0e:08:c8:5d:98:83:76:80:84:ed:
6f:9a:82:a2:f5:94:a7:8b:9a:f7:19:90:13:f7:cf:
fe:50:f7:fa:6f:d1:bd:f0:b4:e3:52:2e:6b:63:b5:
b2:be:da:b2:1d:e2:78:92:09:05:c6:84:d3:0f:53:
34:63:64:c8:b9:7f:64:12:5e:4b:34:71:68:92:6e:
4d:3c:f5:65:1a:d0:b6:e9:7a:f8:f1:69:42:c8:a0:
c7:86:2e:8d:03:27:11:34:8c:c5:60:8f:00:36:58:
a1:3b:c9:b7:c2:92:57:ab:0a:fb:c4:bf:ac:2f:04:
c0:9a:32:d3:22:28:67:3c:cc:0a:bc:c2:75:af:1a:
30:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:70:2E:2D:54:B0:78:2F:3F:0D:E4:B1:86:F4:A6:45:48:FD:84:19
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/R3AuLVSweC8_DeSxhvSmRUj9hBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:31::/48
Signature Algorithm: sha256WithRSAEncryption
4e:a7:39:8c:01:54:aa:7c:03:85:36:61:fb:b9:3d:44:66:21:
cb:0d:7d:94:77:41:99:e2:70:ad:09:c5:50:42:62:8a:98:8c:
40:5f:39:f5:d0:9f:79:42:d7:2e:90:12:ae:a1:64:bb:0a:b2:
22:d5:ed:71:1a:11:cd:c0:f8:de:f4:84:13:d4:3d:5e:39:81:
0c:22:8e:94:58:7f:0c:b8:17:45:3d:71:89:42:0e:21:3d:38:
c6:81:0e:cf:f8:cc:e8:d9:25:5b:bb:6d:a8:99:41:04:21:b0:
17:9d:c2:20:16:f9:19:d7:65:83:4b:ab:92:7d:5e:a0:c4:1b:
06:72:26:5e:05:86:6a:7d:fc:a9:97:c0:00:f5:fe:69:37:ce:
4b:83:34:76:7e:6b:43:c5:a8:c5:75:a3:0e:0a:4b:2b:e9:ce:
e0:9b:e9:04:55:ce:18:c5:42:ec:0c:25:db:8c:bb:8b:12:04:
02:30:f5:19:39:50:d7:3d:29:72:8d:35:cd:32:51:e1:f2:67:
3f:ba:9b:88:02:00:4f:bb:65:71:d5:a1:0e:e9:6e:d9:33:4d:
17:41:6c:8f:b8:34:43:e4:7f:f6:c3:11:13:7c:59:9a:bb:f4:
3b:15:f3:1c:9e:56:4d:46:dd:bc:b8:9d:14:0e:09:11:19:e7:
f4:f2:b3:db
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/k6apI5zgy5N9oiLlZuQEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTc1OTU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NzcwMmUyZDU0YjA3ODJmM2YwZGU0YjE4NmY0YTY0NTQ4ZmQ4NDE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2P9EMbOtOx2/xybn9ius7zi3mOUA
O07iuoqlRgC112oQjIKnkX65hB1c+09mU1TDIvkL5+Lc/i6cjKTx9SoF1ZDvK+P9
NpM7yK5fXeo1KMqGE8OdPhRrv8xMm33PuFMhkaaRPrdK2xWlNSM/w7AZtBOnl/Cc
r1He/LMuVA4IyF2Yg3aAhO1vmoKi9ZSni5r3GZAT98/+UPf6b9G98LTjUi5rY7Wy
vtqyHeJ4kgkFxoTTD1M0Y2TIuX9kEl5LNHFokm5NPPVlGtC26Xr48WlCyKDHhi6N
AycRNIzFYI8ANlihO8m3wpJXqwr7xL+sLwTAmjLTIihnPMwKvMJ1rxowowIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFEdwLi1UsHgvPw3ksYb0pkVI/YQZMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvUjNBdUxWU3dlQzhfRGVTeGh2U21SVWo5aEJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQAx
MA0GCSqGSIb3DQEBCwUAA4IBAQBOpzmMAVSqfAOFNmH7uT1EZiHLDX2Ud0GZ4nCt
CcVQQmKKmIxAXzn10J95QtcukBKuoWS7CrIi1e1xGhHNwPje9IQT1D1eOYEMIo6U
WH8MuBdFPXGJQg4hPTjGgQ7P+Mzo2SVbu22omUEEIbAXncIgFvkZ12WDS6uSfV6g
xBsGciZeBYZqffypl8AA9f5pN85LgzR2fmtDxajFdaMOCksr6c7gm+kEVc4YxULs
DCXbjLuLEgQCMPUZOVDXPSlyjTXNMlHh8mc/upuIAgBPu2Vx1aEO6W7ZM00XQWyP
uDRD5H/2wxETfFmau/Q7FfMcnlZNRt28uJ0UDgkRGef08rPb
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:09 2024 by rpki-client on console-ams.rpki-client.org