Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Ut4zQD2rG1aJ6Drtt__WLTbp9Oc.roa
File: Ut4zQD2rG1aJ6Drtt__WLTbp9Oc.roa (raw, json)
Hash identifier: 5Mdb85N0WTTAzDAePYyc05dWgFhC22txlu69Ow1JdII=
Subject key identifier: 52:DE:33:40:3D:AB:1B:56:89:E8:3A:ED:B7:FF:D6:2D:36:E9:F4:E7
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA8FBCD787703D427B54C1A7B8FC424
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Ut4zQD2rG1aJ6Drtt__WLTbp9Oc.roa
Signing time: Tue 06 Feb 2024 18:23:17 +0000
ROA not before: Tue 06 Feb 2024 18:23:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200263
IP address blocks: 2a0f:b241:ad::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a8:fb:cd:78:77:03:d4:27:b5:4c:1a:7b:8f:c4:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:23:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=52de33403dab1b5689e83aedb7ffd62d36e9f4e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:76:d0:0a:2e:35:19:8c:8d:f4:02:05:5c:3e:
a8:a3:b9:75:9f:60:d7:05:e9:43:13:ee:71:c6:a3:
7d:16:94:38:25:37:33:fa:99:ad:81:41:7a:f5:b7:
5b:60:6c:92:88:8b:1f:48:87:7d:21:35:54:95:ae:
87:26:d9:15:02:19:5e:83:e2:f3:46:6f:1d:28:82:
89:e4:70:c3:3c:38:68:b9:3f:dd:e8:d7:cb:9b:e1:
10:12:5f:3e:2b:54:9a:6f:a1:9f:58:ed:0f:a9:fe:
8a:8e:b8:41:0b:6d:89:3e:35:ab:dd:d9:a9:4a:48:
74:70:1b:32:d8:00:0b:ca:31:29:ac:8e:9f:80:23:
63:54:c7:dc:b0:c5:0c:97:c9:c3:d4:43:04:69:dc:
ef:d8:5f:de:c1:53:09:b5:cd:d0:af:ef:7e:e7:15:
90:79:fd:70:94:59:62:11:c6:76:95:59:17:1d:be:
57:78:ed:26:85:ca:5c:11:9d:07:da:1f:c0:26:c9:
16:9c:aa:69:d3:45:69:d4:94:49:1a:e6:55:8a:5a:
6c:64:d6:40:1b:df:38:a6:97:23:5d:25:5c:56:42:
9a:dc:2d:9e:33:56:46:cc:08:3d:37:17:bd:0e:a4:
43:b8:5c:21:7d:b0:6d:c8:86:df:00:5e:87:03:e2:
0d:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:DE:33:40:3D:AB:1B:56:89:E8:3A:ED:B7:FF:D6:2D:36:E9:F4:E7
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Ut4zQD2rG1aJ6Drtt__WLTbp9Oc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:ad::/48
Signature Algorithm: sha256WithRSAEncryption
39:5f:f7:17:1d:b0:ac:16:6f:fe:da:2b:e1:2c:f6:7c:d0:72:
bd:c8:3e:95:8a:60:be:a4:65:e9:37:08:88:e5:ca:31:f6:bf:
e6:f2:f3:6e:66:ba:30:8c:22:04:e1:d8:ea:43:33:47:a5:5e:
30:6b:3f:87:da:b8:8f:71:2f:2f:6f:ff:26:30:d6:1a:27:61:
d7:6c:bf:3f:16:77:1b:58:e9:0b:20:2d:24:12:8a:89:80:03:
3c:c1:f5:60:b7:3b:75:92:7c:60:80:cc:57:a1:b7:4a:e7:a0:
76:6c:05:77:26:43:5d:b5:54:6e:20:cd:39:f5:31:f9:86:f9:
40:dc:f9:d4:45:b9:c9:db:6f:e6:61:32:8c:ce:f3:f5:78:12:
0d:f5:2d:72:04:80:40:2b:a5:45:51:e4:df:51:e0:dd:db:68:
bc:08:00:a5:a6:cb:75:a6:d8:cd:55:5a:26:03:20:76:f4:07:
5f:62:dc:a0:8d:04:bb:70:71:75:6c:11:d3:06:0d:e6:a2:50:
83:0d:40:36:e3:58:c4:35:05:cf:02:2d:13:b5:95:f0:61:25:
46:67:09:0c:29:8a:7e:fc:56:1a:3c:fe:c3:81:00:f4:c9:e6:
87:7f:71:33:2d:96:93:5f:c7:a6:53:36:22:c3:15:02:52:94:
bd:44:9a:52
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/qPvNeHcD1Ce1TBp7j8QkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgyMzE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MmRlMzM0MDNkYWIxYjU2ODllODNhZWRiN2ZmZDYyZDM2ZTlmNGU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh3bQCi41GYyN9AIFXD6oo7l1n2DX
BelDE+5xxqN9FpQ4JTcz+pmtgUF69bdbYGySiIsfSId9ITVUla6HJtkVAhleg+Lz
Rm8dKIKJ5HDDPDhouT/d6NfLm+EQEl8+K1Sab6GfWO0Pqf6KjrhBC22JPjWr3dmp
Skh0cBsy2AALyjEprI6fgCNjVMfcsMUMl8nD1EMEadzv2F/ewVMJtc3Qr+9+5xWQ
ef1wlFliEcZ2lVkXHb5XeO0mhcpcEZ0H2h/AJskWnKpp00Vp1JRJGuZVilpsZNZA
G984ppcjXSVcVkKa3C2eM1ZGzAg9Nxe9DqRDuFwhfbBtyIbfAF6HA+IN0QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFLeM0A9qxtWieg67bf/1i026fTnMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvVXQ0elFEMnJHMWFKNkRydHRfX1dMVGJwOU9jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQCt
MA0GCSqGSIb3DQEBCwUAA4IBAQA5X/cXHbCsFm/+2ivhLPZ80HK9yD6VimC+pGXp
NwiI5cox9r/m8vNuZrowjCIE4djqQzNHpV4waz+H2riPcS8vb/8mMNYaJ2HXbL8/
FncbWOkLIC0kEoqJgAM8wfVgtzt1knxggMxXobdK56B2bAV3JkNdtVRuIM059TH5
hvlA3PnURbnJ22/mYTKMzvP1eBIN9S1yBIBAK6VFUeTfUeDd22i8CAClpst1ptjN
VVomAyB29AdfYtygjQS7cHF1bBHTBg3molCDDUA241jENQXPAi0TtZXwYSVGZwkM
KYp+/FYaPP7DgQD0yeaHf3EzLZaTX8emUzYiwxUCUpS9RJpS
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org