Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/TW3tAk_8Y7YDGQjb7LXPNk3ezmo.roa
File: TW3tAk_8Y7YDGQjb7LXPNk3ezmo.roa (raw, json)
Hash identifier: POSp90CUynlxPleZt2k9hS8m2f7MHsDnxNAu0oaNwP8=
Subject key identifier: 4D:6D:ED:02:4F:FC:63:B6:03:19:08:DB:EC:B5:CF:36:4D:DE:CE:6A
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0A1D7E01E0964E768285A328CE110
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/TW3tAk_8Y7YDGQjb7LXPNk3ezmo.roa
Signing time: Wed 07 Feb 2024 05:00:47 +0000
ROA not before: Wed 07 Feb 2024 05:00:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210397
IP address blocks: 2a0f:b241:f8::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:a1:d7:e0:1e:09:64:e7:68:28:5a:32:8c:e1:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4d6ded024ffc63b6031908dbecb5cf364ddece6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:85:e5:9b:91:25:7f:5d:80:af:fc:17:11:9f:
b6:6f:58:1a:60:1a:fc:8d:8c:62:d0:48:b5:0e:2c:
fc:1c:94:5a:e7:cf:86:9a:2d:c3:28:73:4e:91:51:
22:7e:d9:ac:6c:30:71:8f:13:2e:b9:0d:80:2f:c8:
15:60:09:66:e8:06:0b:dc:a0:2c:f4:ba:7e:38:22:
99:92:8e:51:f7:a5:77:0c:e5:b9:41:e2:e8:1c:ed:
ee:d2:f7:75:cd:67:b1:71:2a:37:8f:46:ae:41:ae:
02:29:7a:af:85:a6:d8:ad:b0:0d:0e:fd:2e:16:b9:
2c:64:03:3a:40:8a:6a:5b:74:d7:ee:b9:0f:46:1f:
92:ab:81:e2:bf:59:d3:bd:4e:4c:5e:1c:13:d8:97:
1b:b1:b0:ea:b7:c2:19:e9:6f:63:7c:28:34:07:09:
4f:86:fb:5b:75:2f:87:7f:59:08:e9:ee:79:92:9a:
3c:78:a9:5e:d1:f9:da:c8:47:30:d8:cd:52:d1:7d:
ca:46:ed:84:df:64:50:b4:d9:93:ae:39:4a:eb:fe:
42:2f:4f:44:e9:5f:74:63:df:56:ff:9b:22:a5:69:
58:cc:5c:ab:eb:ef:2d:98:a6:99:21:9a:cf:3a:f0:
d7:8c:86:7f:ee:31:37:31:ac:24:f5:15:66:6f:bb:
bc:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:6D:ED:02:4F:FC:63:B6:03:19:08:DB:EC:B5:CF:36:4D:DE:CE:6A
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/TW3tAk_8Y7YDGQjb7LXPNk3ezmo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:f8::/48
Signature Algorithm: sha256WithRSAEncryption
2a:f7:a3:7f:cf:72:c8:a1:fa:eb:56:54:38:e0:b9:b0:da:1c:
47:7b:66:82:71:95:dc:2f:eb:18:ec:d0:26:5e:f1:e5:60:27:
7c:27:6a:93:45:39:f4:ce:1b:5b:74:41:98:6c:26:f0:67:d2:
f0:29:0f:0f:4b:ca:41:66:a5:73:d4:47:9f:8a:fe:16:6b:41:
d5:0b:68:de:04:f3:b5:5f:f6:a1:68:da:41:74:e3:98:a0:1a:
1c:a3:1d:65:8b:90:55:81:ea:a9:63:96:91:e1:79:cf:a1:fa:
b9:6b:a2:28:c3:ba:4f:d3:16:88:85:02:d3:55:25:31:b9:bd:
b7:28:0b:71:8d:c9:e1:a3:0a:0b:76:34:c9:b5:76:d8:ae:b6:
1c:e6:ef:b5:da:b7:9e:56:1e:33:c2:2f:9c:21:97:b7:b6:57:
82:a1:35:fc:34:a1:70:ac:30:6c:b3:3e:d8:f1:da:65:1e:56:
b2:3d:ab:29:15:a6:d0:c4:ef:3c:40:21:19:da:ae:ee:39:26:
c5:14:69:1a:5e:e4:b8:b5:39:49:1d:b6:00:80:65:3d:6c:28:
39:cb:e6:9a:cd:cc:22:2d:2e:ff:e7:5d:c0:cc:c3:9a:1c:20:
58:fc:9c:7c:e5:e3:6f:69:55:c4:16:36:1b:d0:af:67:22:49:
18:56:ba:3f
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY2B8KHX4B4JZOdoKFoyjOEQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA3MDUwMDQ3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZDZkZWQwMjRmZmM2M2I2MDMxOTA4ZGJlY2I1Y2YzNjRkZGVjZTZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvoXlm5Elf12Ar/wXEZ+2b1gaYBr8
jYxi0Ei1Diz8HJRa58+Gmi3DKHNOkVEiftmsbDBxjxMuuQ2AL8gVYAlm6AYL3KAs
9Lp+OCKZko5R96V3DOW5QeLoHO3u0vd1zWexcSo3j0auQa4CKXqvhabYrbANDv0u
FrksZAM6QIpqW3TX7rkPRh+Sq4Hiv1nTvU5MXhwT2JcbsbDqt8IZ6W9jfCg0BwlP
hvtbdS+Hf1kI6e55kpo8eKle0fnayEcw2M1S0X3KRu2E32RQtNmTrjlK6/5CL09E
6V90Y99W/5sipWlYzFyr6+8tmKaZIZrPOvDXjIZ/7jE3Mawk9RVmb7u8xQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFE1t7QJP/GO2AxkI2+y1zzZN3s5qMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvVFczdEFrXzhZN1lER1FqYjdMWFBOazNlem1vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQD4
MA0GCSqGSIb3DQEBCwUAA4IBAQAq96N/z3LIofrrVlQ44Lmw2hxHe2aCcZXcL+sY
7NAmXvHlYCd8J2qTRTn0zhtbdEGYbCbwZ9LwKQ8PS8pBZqVz1Eefiv4Wa0HVC2je
BPO1X/ahaNpBdOOYoBocox1li5BVgeqpY5aR4XnPofq5a6Iow7pP0xaIhQLTVSUx
ub23KAtxjcnhowoLdjTJtXbYrrYc5u+12reeVh4zwi+cIZe3tleCoTX8NKFwrDBs
sz7Y8dplHlayPaspFabQxO88QCEZ2q7uOSbFFGkaXuS4tTlJHbYAgGU9bCg5y+aa
zcwiLS7/513AzMOaHCBY/Jx85eNvaVXEFjYb0K9nIkkYVro/
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org