Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/RHNY8TE63SuNykyvkKvrTP0uYjI.roa
File: RHNY8TE63SuNykyvkKvrTP0uYjI.roa (raw, json)
Hash identifier: KrEi8L1VGuCqtgcnTwySyOQ2lAD5Plj5/0MmPJIlKBQ=
Subject key identifier: 44:73:58:F1:31:3A:DD:2B:8D:CA:4C:AF:90:AB:EB:4C:FD:2E:62:32
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0BCA2C9E9DBFAD743B8AAB936E344
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/RHNY8TE63SuNykyvkKvrTP0uYjI.roa
Signing time: Wed 07 Feb 2024 05:00:54 +0000
ROA not before: Wed 07 Feb 2024 05:00:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216087
IP address blocks: 2a0f:b241:107::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:bc:a2:c9:e9:db:fa:d7:43:b8:aa:b9:36:e3:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=447358f1313add2b8dca4caf90abeb4cfd2e6232
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ba:20:94:42:d4:2d:46:1e:f9:83:66:63:3b:
dc:aa:be:c5:0e:0b:d2:17:68:0f:1e:5a:a1:e0:10:
29:23:4a:c2:16:bc:83:1d:5b:b6:35:96:94:2a:e5:
ab:06:00:57:e3:59:16:d1:ed:a1:e3:93:01:18:48:
50:27:e8:d3:1d:25:51:c2:ce:e1:cd:1c:77:a3:49:
78:d7:c2:d8:55:b1:03:a9:9e:0b:6c:93:0a:bf:a2:
d3:0a:4d:35:fa:e2:22:c1:00:28:19:f1:b9:e4:fa:
71:65:1e:75:5f:4b:6b:90:b5:64:c4:91:bb:a7:ea:
6e:97:ec:cf:dd:c0:37:d0:25:8b:73:6d:ed:7a:40:
d0:c9:47:ce:02:21:d0:9a:ac:c5:35:4e:a7:68:a3:
15:5d:36:ab:7b:a0:ac:4d:04:57:38:eb:f9:ed:1c:
5d:11:c3:df:09:ad:ed:fb:36:ea:4d:ae:f7:2c:ae:
af:e6:26:46:5c:9d:3c:59:7f:ee:c0:e3:f5:3c:2b:
83:4d:74:16:b0:ed:3a:09:e3:8c:70:41:25:4b:89:
8c:10:ef:d7:b4:37:f3:f1:c2:6c:be:5b:80:c1:e2:
ae:3c:95:b3:94:44:4c:b0:6c:6e:74:0d:04:32:26:
a8:eb:01:b1:25:84:0e:61:0f:f1:40:f9:58:4f:b7:
9d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:73:58:F1:31:3A:DD:2B:8D:CA:4C:AF:90:AB:EB:4C:FD:2E:62:32
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/RHNY8TE63SuNykyvkKvrTP0uYjI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:107::/48
Signature Algorithm: sha256WithRSAEncryption
59:1c:cd:a8:26:d8:8d:f6:66:dc:d0:6d:56:c3:8d:89:0a:41:
0a:99:2f:5d:72:0e:20:d3:cf:96:0b:59:2b:9e:28:5f:b4:21:
c6:6b:17:ba:19:31:e0:55:64:b1:31:94:e0:78:e9:eb:f7:a1:
e2:0b:b6:5a:94:7e:8e:f5:1b:25:8c:fa:20:ba:b1:8d:de:42:
c5:c2:fe:17:c6:17:06:dc:83:52:05:19:2f:c9:41:55:2f:ec:
0f:56:a0:bf:c2:cf:c9:a7:d2:9f:44:19:03:26:e9:d8:e2:f1:
80:89:71:cf:b2:86:fe:8f:94:1f:ed:ed:ce:e6:18:18:a8:4d:
44:e4:58:95:c9:db:e5:24:b9:c5:40:fc:49:c3:46:66:1a:be:
3e:6d:43:2c:21:e5:0c:43:35:9f:79:2d:0f:f7:0e:82:14:55:
31:b4:7a:94:61:c9:58:46:47:8c:7e:3e:9a:52:2e:95:ee:42:
b0:73:3a:31:7e:c2:0f:96:18:5b:aa:c4:85:e2:15:a7:10:4e:
5c:a5:73:b8:55:75:66:10:ab:68:cf:94:d9:07:9f:a5:38:70:
3f:4d:5f:be:9e:c9:1f:1e:a2:62:1c:90:3d:fe:1c:e3:83:95:
8e:d4:42:cb:75:ca:96:11:e8:e2:c6:31:80:2b:46:c4:be:47:
b8:70:3b:e2
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY2B8Lyiyenb+tdDuKq5NuNEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA3MDUwMDU0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NDczNThmMTMxM2FkZDJiOGRjYTRjYWY5MGFiZWI0Y2ZkMmU2MjMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlLoglELULUYe+YNmYzvcqr7FDgvS
F2gPHlqh4BApI0rCFryDHVu2NZaUKuWrBgBX41kW0e2h45MBGEhQJ+jTHSVRws7h
zRx3o0l418LYVbEDqZ4LbJMKv6LTCk01+uIiwQAoGfG55PpxZR51X0trkLVkxJG7
p+pul+zP3cA30CWLc23tekDQyUfOAiHQmqzFNU6naKMVXTare6CsTQRXOOv57Rxd
EcPfCa3t+zbqTa73LK6v5iZGXJ08WX/uwOP1PCuDTXQWsO06CeOMcEElS4mMEO/X
tDfz8cJsvluAweKuPJWzlERMsGxudA0EMiao6wGxJYQOYQ/xQPlYT7edawIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFERzWPExOt0rjcpMr5Cr60z9LmIyMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvUkhOWThURTYzU3VOeWt5dmtLdnJUUDB1WWpJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQEH
MA0GCSqGSIb3DQEBCwUAA4IBAQBZHM2oJtiN9mbc0G1Ww42JCkEKmS9dcg4g08+W
C1krnihftCHGaxe6GTHgVWSxMZTgeOnr96HiC7ZalH6O9RsljPogurGN3kLFwv4X
xhcG3INSBRkvyUFVL+wPVqC/ws/Jp9KfRBkDJunY4vGAiXHPsob+j5Qf7e3O5hgY
qE1E5FiVydvlJLnFQPxJw0ZmGr4+bUMsIeUMQzWfeS0P9w6CFFUxtHqUYclYRkeM
fj6aUi6V7kKwczoxfsIPlhhbqsSF4hWnEE5cpXO4VXVmEKtoz5TZB5+lOHA/TV++
nskfHqJiHJA9/hzjg5WO1ELLdcqWEejixjGAK0bEvke4cDvi
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:09 2024 by rpki-client on console-ams.rpki-client.org