Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Y5zabF6pPeLjHsnO16U3clbwv1s.roa
File: Y5zabF6pPeLjHsnO16U3clbwv1s.roa (raw, json)
Hash identifier: 1jEzlS5ASDVFc4jmd8aEpYIwlv/dClWql9jU8PPUSZc=
Subject key identifier: 63:9C:DA:6C:5E:A9:3D:E2:E3:1E:C9:CE:D7:A5:37:72:56:F0:BF:5B
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB79D715B13D792D3EF89383E1F73F2
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Y5zabF6pPeLjHsnO16U3clbwv1s.roa
Signing time: Tue 06 Feb 2024 18:39:16 +0000
ROA not before: Tue 06 Feb 2024 18:39:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207965
IP address blocks: 2a0f:b241:13c::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b7:9d:71:5b:13:d7:92:d3:ef:89:38:3e:1f:73:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:39:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=639cda6c5ea93de2e31ec9ced7a5377256f0bf5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:4e:e7:30:72:fb:0c:99:21:c8:47:8a:3b:89:
7e:d1:e2:c7:e2:23:3d:94:d5:f4:8b:ed:bb:27:18:
34:54:44:7f:c9:77:ab:db:cc:6d:d2:66:ab:89:eb:
db:2b:c3:b8:4e:c9:ab:e1:f5:5b:ff:f2:ce:70:3f:
81:0b:4a:0f:9e:2b:ad:b7:fb:02:68:ab:f7:d9:d7:
a5:19:85:b2:65:d6:c5:5c:00:4e:ff:95:7e:52:20:
9e:4f:27:ed:6d:81:f6:70:a3:ff:84:c8:d5:88:f8:
8c:6c:55:60:3b:22:16:3d:15:cc:90:27:09:2d:8c:
a1:71:3e:78:6c:16:ea:ec:9d:36:33:78:43:ae:5b:
f3:eb:51:3f:63:c7:c4:d4:2f:de:48:2b:6b:1f:7a:
bf:df:95:3b:60:75:37:b0:4c:a3:83:e4:a6:db:f3:
f1:2c:fe:4c:17:00:56:81:2f:25:c4:f7:11:b9:31:
d9:06:b8:cc:e5:86:9a:2d:8b:59:90:c6:35:11:84:
1b:44:28:d4:90:ac:9b:bb:40:e8:a7:a5:0d:ba:f3:
01:ed:e3:a4:e6:d5:66:18:7d:26:57:2f:cd:68:27:
f1:f5:7d:e9:ce:d4:29:d4:a0:c1:4c:bc:f5:d4:7c:
8a:af:34:b9:1a:8a:1e:63:ff:4f:3c:14:14:a2:78:
db:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:9C:DA:6C:5E:A9:3D:E2:E3:1E:C9:CE:D7:A5:37:72:56:F0:BF:5B
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Y5zabF6pPeLjHsnO16U3clbwv1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:13c::/48
Signature Algorithm: sha256WithRSAEncryption
0c:c1:60:3b:7d:a2:b1:bc:f5:fd:10:8d:cd:4f:2f:06:6f:e8:
b6:a6:63:60:42:9c:62:56:7f:70:16:d5:18:ba:96:dd:64:3c:
fd:ee:b3:30:a5:26:c4:fb:d3:19:3a:c3:f4:42:08:27:e3:39:
24:2e:15:c2:6d:2b:c9:88:7d:79:38:06:e8:18:9e:b8:30:d3:
df:e9:9a:1a:f5:2a:0b:fa:1b:17:b5:ef:69:76:88:49:85:f3:
71:bf:16:a7:1b:ff:d3:c5:c0:b8:3e:6e:30:a7:3d:54:fe:8c:
b8:44:2f:bb:86:63:a5:d4:01:50:32:6c:93:fa:b7:ee:65:cd:
75:81:4c:7b:59:8a:c5:a3:b5:49:9d:5d:e0:bd:eb:10:58:0d:
f8:91:e6:77:6b:c1:00:58:88:b5:f4:62:1c:51:68:5d:6e:41:
2e:4d:38:da:ac:c4:8d:9d:33:60:bb:d1:be:05:b2:47:fd:2e:
36:9d:42:5a:77:47:4c:76:33:ed:0a:01:21:c0:45:51:ca:7f:
6c:f5:0c:07:ff:24:21:9a:12:5d:13:82:f8:28:12:95:6c:a6:
8b:35:86:f6:49:55:5b:94:26:47:c3:36:25:b5:2c:15:4a:bd:
50:56:6d:e0:7e:e7:d7:3b:da:55:8a:30:e2:53:e7:89:4b:87:
a8:c0:f0:39
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/t51xWxPXktPviTg+H3PyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgzOTE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MzljZGE2YzVlYTkzZGUyZTMxZWM5Y2VkN2E1Mzc3MjU2ZjBiZjViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiU7nMHL7DJkhyEeKO4l+0eLH4iM9
lNX0i+27Jxg0VER/yXer28xt0marievbK8O4Tsmr4fVb//LOcD+BC0oPniutt/sC
aKv32delGYWyZdbFXABO/5V+UiCeTyftbYH2cKP/hMjViPiMbFVgOyIWPRXMkCcJ
LYyhcT54bBbq7J02M3hDrlvz61E/Y8fE1C/eSCtrH3q/35U7YHU3sEyjg+Sm2/Px
LP5MFwBWgS8lxPcRuTHZBrjM5YaaLYtZkMY1EYQbRCjUkKybu0Dop6UNuvMB7eOk
5tVmGH0mVy/NaCfx9X3pztQp1KDBTLz11HyKrzS5GooeY/9PPBQUonjbBwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFGOc2mxeqT3i4x7JztelN3JW8L9bMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvWTV6YWJGNnBQZUxqSHNuTzE2VTNjbGJ3djFzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQE8
MA0GCSqGSIb3DQEBCwUAA4IBAQAMwWA7faKxvPX9EI3NTy8Gb+i2pmNgQpxiVn9w
FtUYupbdZDz97rMwpSbE+9MZOsP0Qggn4zkkLhXCbSvJiH15OAboGJ64MNPf6Zoa
9SoL+hsXte9pdohJhfNxvxanG//TxcC4Pm4wpz1U/oy4RC+7hmOl1AFQMmyT+rfu
Zc11gUx7WYrFo7VJnV3gvesQWA34keZ3a8EAWIi19GIcUWhdbkEuTTjarMSNnTNg
u9G+BbJH/S42nUJad0dMdjPtCgEhwEVRyn9s9QwH/yQhmhJdE4L4KBKVbKaLNYb2
SVVblCZHwzYltSwVSr1QVm3gfufXO9pVijDiU+eJS4eowPA5
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org