Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/RNwmaroR3nJLzIGPNU1ewG-rI2M.roa
File: RNwmaroR3nJLzIGPNU1ewG-rI2M.roa (raw, json)
Hash identifier: 7qFRH6bJ8NNX13CrLeHrkzrM6FbCPYooxNR92ibvx+I=
Subject key identifier: 44:DC:26:6A:BA:11:DE:72:4B:CC:81:8F:35:4D:5E:C0:6F:AB:23:63
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA80C850CAC683103E7618CA208A19A
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/RNwmaroR3nJLzIGPNU1ewG-rI2M.roa
Signing time: Tue 06 Feb 2024 18:22:16 +0000
ROA not before: Tue 06 Feb 2024 18:22:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199668
IP address blocks: 2a0f:b241:8a::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a8:0c:85:0c:ac:68:31:03:e7:61:8c:a2:08:a1:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:22:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=44dc266aba11de724bcc818f354d5ec06fab2363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a4:f4:c4:7a:10:c2:9d:da:64:0c:e2:fe:24:
65:1f:57:99:ca:ce:9d:37:f1:d7:7c:d9:c3:74:6e:
53:d2:11:59:f0:5b:44:ea:dc:be:b3:25:69:db:1a:
99:45:e1:e2:24:40:c9:ae:f2:3f:4c:16:0a:b8:24:
99:0f:64:60:6c:ee:92:84:0c:99:9c:5b:64:2f:06:
f8:a1:fe:ab:77:a4:7b:99:69:1b:16:97:32:26:c0:
05:fd:11:42:98:61:2f:00:cd:52:a3:b0:8c:4b:60:
0e:16:4e:87:ba:8f:14:8a:64:7a:c0:f7:43:7a:9d:
ac:1f:7e:03:88:e8:f6:40:23:20:22:7b:41:7a:85:
c8:0f:de:24:f6:e2:4f:43:17:b7:44:ed:c6:2c:73:
da:2b:d4:cc:68:27:d0:8f:26:a0:a7:bc:1e:36:7c:
85:3d:a2:a9:da:db:97:c6:69:c2:36:03:67:b6:ad:
ca:e3:96:0d:ac:f5:e2:91:9a:e8:9c:51:62:7f:1f:
b2:d5:c7:e0:6a:c3:89:43:6d:f6:c0:b0:9e:17:d4:
fb:b4:a6:f1:19:d7:cc:07:ee:0d:d5:88:35:14:4c:
b0:ba:78:5a:db:22:4c:21:5a:ab:2b:82:89:a9:fb:
0a:8d:7a:19:c2:29:8a:75:92:c5:12:43:54:91:b1:
64:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:DC:26:6A:BA:11:DE:72:4B:CC:81:8F:35:4D:5E:C0:6F:AB:23:63
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/RNwmaroR3nJLzIGPNU1ewG-rI2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:8a::/48
Signature Algorithm: sha256WithRSAEncryption
6d:2b:ee:b9:25:ad:a2:8f:f5:f6:67:de:9b:7a:b9:fd:b8:58:
b6:f2:48:0f:f0:d0:51:d8:06:6d:1c:99:f2:53:c7:f9:88:9c:
ba:d9:e2:34:65:f7:c0:13:c5:ee:5e:74:86:b2:02:d6:22:19:
b7:f0:9a:65:6c:d1:7f:c9:a0:0f:2b:40:83:d3:fc:df:ce:90:
b4:77:05:06:f7:39:26:65:41:f2:e6:1e:06:b5:67:82:3f:1d:
78:c6:f6:32:52:5f:36:b3:05:ea:6e:a6:a6:12:ac:3c:1a:cd:
0b:d2:c5:5a:a1:1d:c0:02:b9:79:42:0d:4b:71:79:f7:43:6b:
dc:9c:16:60:34:7f:3a:2c:c2:58:8d:f8:6e:89:ef:bd:eb:7e:
6b:03:f9:bd:c0:da:5f:d9:34:b7:1e:d4:19:ad:b7:af:20:ba:
50:6a:58:84:e3:c4:c9:20:af:0e:18:d5:47:0f:ed:9b:8b:fb:
22:b7:5c:af:39:5e:10:a7:74:5a:e6:de:cc:8f:7e:5a:c5:a7:
74:32:61:0a:d2:73:33:69:42:48:b5:e7:1c:66:87:c3:91:4b:
40:b4:2a:ea:85:68:c0:d6:71:e1:2f:92:64:e6:b9:a9:60:7e:
ee:4e:4a:28:2a:60:08:96:bd:d3:63:70:71:dd:6a:46:27:f3:
7a:ba:68:aa
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/qAyFDKxoMQPnYYyiCKGaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgyMjE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NGRjMjY2YWJhMTFkZTcyNGJjYzgxOGYzNTRkNWVjMDZmYWIyMzYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp6T0xHoQwp3aZAzi/iRlH1eZys6d
N/HXfNnDdG5T0hFZ8FtE6ty+syVp2xqZReHiJEDJrvI/TBYKuCSZD2RgbO6ShAyZ
nFtkLwb4of6rd6R7mWkbFpcyJsAF/RFCmGEvAM1So7CMS2AOFk6Huo8UimR6wPdD
ep2sH34DiOj2QCMgIntBeoXID94k9uJPQxe3RO3GLHPaK9TMaCfQjyagp7weNnyF
PaKp2tuXxmnCNgNntq3K45YNrPXikZronFFifx+y1cfgasOJQ232wLCeF9T7tKbx
GdfMB+4N1Yg1FEywunha2yJMIVqrK4KJqfsKjXoZwimKdZLFEkNUkbFkOQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFETcJmq6Ed5yS8yBjzVNXsBvqyNjMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvUk53bWFyb1IzbkpMeklHUE5VMWV3Ry1ySTJNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQCK
MA0GCSqGSIb3DQEBCwUAA4IBAQBtK+65Ja2ij/X2Z96bern9uFi28kgP8NBR2AZt
HJnyU8f5iJy62eI0ZffAE8XuXnSGsgLWIhm38JplbNF/yaAPK0CD0/zfzpC0dwUG
9zkmZUHy5h4GtWeCPx14xvYyUl82swXqbqamEqw8Gs0L0sVaoR3AArl5Qg1LcXn3
Q2vcnBZgNH86LMJYjfhuie+9635rA/m9wNpf2TS3HtQZrbevILpQaliE48TJIK8O
GNVHD+2bi/sit1yvOV4Qp3Ra5t7Mj35axad0MmEK0nMzaUJIteccZofDkUtAtCrq
hWjA1nHhL5Jk5rmpYH7uTkooKmAIlr3TY3Bx3WpGJ/N6umiq
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:09 2024 by rpki-client on console-ams.rpki-client.org