Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/W-7b3fzvAhdqHGbeDoavV1c8QWc.roa
File: W-7b3fzvAhdqHGbeDoavV1c8QWc.roa (raw, json)
Hash identifier: aYxv+BepvxpsNFhm/EPF+AnNs447l7SnnsOdx0bQvaY=
Subject key identifier: 5B:EE:DB:DD:FC:EF:02:17:6A:1C:66:DE:0E:86:AF:57:57:3C:41:67
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F8D832CB17AFED9A3BCED4A49F9AA9A
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/W-7b3fzvAhdqHGbeDoavV1c8QWc.roa
Signing time: Tue 06 Feb 2024 17:53:17 +0000
ROA not before: Tue 06 Feb 2024 17:53:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215672
IP address blocks: 2a0f:b241:25::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:8d:83:2c:b1:7a:fe:d9:a3:bc:ed:4a:49:f9:aa:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 17:53:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5beedbddfcef02176a1c66de0e86af57573c4167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:78:94:85:5a:cc:c5:b7:f4:b3:29:a5:49:fc:
19:ac:f2:26:cd:2c:7a:93:21:15:70:d9:8d:10:fb:
4e:0d:1d:90:70:e4:ad:ca:33:be:c3:ad:55:76:12:
3e:cb:d0:64:2a:33:e7:f9:cf:0a:43:0b:a3:c0:b9:
44:38:06:6a:44:9a:d4:e3:8b:22:7b:9b:d4:39:31:
c6:bb:f5:73:53:17:52:77:3d:75:6a:c9:ab:8b:0f:
27:8c:5e:9e:a8:4f:15:69:53:ac:62:d3:bb:36:30:
85:bb:69:1a:39:52:55:68:b1:6e:9a:47:7f:48:22:
00:1b:c2:77:11:62:d4:a4:4a:35:ac:a1:88:bd:a4:
79:06:7d:00:c9:28:e4:ea:32:79:2d:11:b6:ba:f4:
b0:37:3a:79:f4:3a:f8:e7:90:8b:f4:ba:94:18:51:
5c:0d:f5:7d:d7:a0:75:a4:23:1f:34:ce:04:4c:81:
fe:6d:3a:38:e2:8a:7d:65:57:f8:bb:57:45:d9:18:
ba:85:42:c7:3e:24:d1:4b:64:63:e2:81:f9:bb:74:
b8:b5:8f:f6:74:9c:a1:06:16:52:79:60:80:17:4c:
ad:f8:45:f0:75:c7:7f:d4:23:f0:52:6a:c7:71:c9:
a3:e7:ca:5f:70:3f:a0:62:0e:47:d3:d3:1b:45:a1:
ef:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:EE:DB:DD:FC:EF:02:17:6A:1C:66:DE:0E:86:AF:57:57:3C:41:67
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/W-7b3fzvAhdqHGbeDoavV1c8QWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:25::/48
Signature Algorithm: sha256WithRSAEncryption
55:17:af:22:e2:bd:f4:7d:21:e7:60:f1:72:50:9f:61:fe:64:
8e:57:85:24:61:39:c6:da:31:f8:1a:a3:90:65:41:0f:c9:9a:
61:df:ae:90:ba:8c:e7:52:96:c5:25:4a:6e:b1:7f:b6:e1:88:
bc:9a:14:8f:e5:69:84:63:69:7c:a4:e7:6b:70:4f:b0:f4:95:
a8:3c:67:95:98:47:af:83:af:a1:71:13:8a:a5:42:66:d2:83:
6d:a8:c6:ca:41:d5:80:00:63:e8:7d:7b:90:45:ff:da:68:97:
0f:0b:65:f2:d9:e7:74:01:d6:1c:b7:1b:ab:0a:53:c9:93:79:
43:0d:9e:96:96:6f:71:43:18:58:01:82:d2:38:05:5a:ba:39:
44:91:ea:9e:3b:09:16:f2:b6:58:ec:1f:6b:fc:2f:45:20:ec:
fa:4c:35:0e:ae:c2:82:61:30:4c:b5:a9:4e:a2:4c:84:87:0e:
b3:0f:c7:d6:76:ba:37:06:d9:4c:77:33:d1:96:7d:c2:62:16:
79:f0:19:cc:8a:ad:c0:6e:82:4f:76:19:1a:b2:9c:80:43:a1:
95:d4:60:47:fa:45:41:67:c7:d8:c3:ab:55:32:15:f6:81:1b:
31:95:0b:96:a4:74:af:c6:9b:32:bb:09:12:a1:a1:70:c8:57:
7f:93:c2:11
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/jYMssXr+2aO87UpJ+aqaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTc1MzE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YmVlZGJkZGZjZWYwMjE3NmExYzY2ZGUwZTg2YWY1NzU3M2M0MTY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkHiUhVrMxbf0symlSfwZrPImzSx6
kyEVcNmNEPtODR2QcOStyjO+w61VdhI+y9BkKjPn+c8KQwujwLlEOAZqRJrU44si
e5vUOTHGu/VzUxdSdz11asmriw8njF6eqE8VaVOsYtO7NjCFu2kaOVJVaLFumkd/
SCIAG8J3EWLUpEo1rKGIvaR5Bn0AySjk6jJ5LRG2uvSwNzp59Dr455CL9LqUGFFc
DfV916B1pCMfNM4ETIH+bTo44op9ZVf4u1dF2Ri6hULHPiTRS2Rj4oH5u3S4tY/2
dJyhBhZSeWCAF0yt+EXwdcd/1CPwUmrHccmj58pfcD+gYg5H09MbRaHvKwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFvu29387wIXahxm3g6Gr1dXPEFnMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvVy03YjNmenZBaGRxSEdiZURvYXZWMWM4UVdjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQAl
MA0GCSqGSIb3DQEBCwUAA4IBAQBVF68i4r30fSHnYPFyUJ9h/mSOV4UkYTnG2jH4
GqOQZUEPyZph366QuoznUpbFJUpusX+24Yi8mhSP5WmEY2l8pOdrcE+w9JWoPGeV
mEevg6+hcROKpUJm0oNtqMbKQdWAAGPofXuQRf/aaJcPC2Xy2ed0AdYctxurClPJ
k3lDDZ6Wlm9xQxhYAYLSOAVaujlEkeqeOwkW8rZY7B9r/C9FIOz6TDUOrsKCYTBM
talOokyEhw6zD8fWdro3BtlMdzPRln3CYhZ58BnMiq3AboJPdhkaspyAQ6GV1GBH
+kVBZ8fYw6tVMhX2gRsxlQuWpHSvxpsyuwkSoaFwyFd/k8IR
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:09 2024 by rpki-client on console-ams.rpki-client.org