Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/YgZsLW7jUk1R2PxIgglVIy1LdPU.roa
File: YgZsLW7jUk1R2PxIgglVIy1LdPU.roa (raw, json)
Hash identifier: 3av6vpvlPUzXwGg0gosp3BZEG2MLte/Y7e0Jb1YIoQ4=
Subject key identifier: 62:06:6C:2D:6E:E3:52:4D:51:D8:FC:48:82:09:55:23:2D:4B:74:F5
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FACA3316E0ED3A5F953978D3DEB0C09
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/YgZsLW7jUk1R2PxIgglVIy1LdPU.roa
Signing time: Tue 06 Feb 2024 18:27:16 +0000
ROA not before: Tue 06 Feb 2024 18:27:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210667
IP address blocks: 2a0f:b241:f9::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ac:a3:31:6e:0e:d3:a5:f9:53:97:8d:3d:eb:0c:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:27:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=62066c2d6ee3524d51d8fc48820955232d4b74f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3f:76:a3:e9:82:1f:82:1f:33:65:b7:b7:2f:
6d:65:5c:f6:0c:2d:00:28:e5:49:33:81:25:1d:91:
25:35:dd:0e:a7:74:3d:1f:8f:b1:7f:72:27:85:4b:
6a:14:ce:ce:95:08:d1:21:08:db:92:1f:6b:6c:a4:
9b:7a:d0:e5:12:15:97:a5:ba:60:7e:c8:5e:30:ee:
57:01:15:1c:82:30:45:47:f3:eb:d6:76:b4:d8:6c:
4c:6a:db:cf:e0:59:a8:b8:03:fb:bb:df:cf:4e:26:
30:fd:9a:2e:d7:d3:0d:8a:fc:2e:2c:a3:16:02:51:
50:de:36:c1:e5:03:57:10:16:af:b5:58:74:37:91:
1c:38:4a:ef:16:af:d8:6a:ad:d1:af:19:a3:b5:ca:
a2:62:6c:f0:5f:4c:e2:7c:8f:ca:d7:5f:86:36:2e:
80:3d:09:2f:dc:ac:42:21:6b:e4:fe:eb:75:16:40:
45:e1:57:50:8c:02:1f:79:85:d1:e5:db:ce:a2:51:
d8:e1:a2:80:10:a8:96:7f:89:ed:53:6f:61:1e:2d:
a9:2a:f8:ab:b1:fb:f9:86:e9:94:aa:26:f6:e4:4a:
b1:32:70:82:96:42:db:bd:e5:42:6b:55:05:73:61:
b7:a3:92:50:46:21:05:eb:a8:c8:10:ef:0d:59:ff:
0b:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:06:6C:2D:6E:E3:52:4D:51:D8:FC:48:82:09:55:23:2D:4B:74:F5
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/YgZsLW7jUk1R2PxIgglVIy1LdPU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:f9::/48
Signature Algorithm: sha256WithRSAEncryption
6b:95:ee:4a:26:ca:e0:fd:0f:a4:ee:68:65:09:69:46:39:c1:
c7:40:2a:ff:fc:ff:d9:c4:09:f3:29:2c:b8:d3:fb:30:f0:f3:
65:90:ed:52:16:7e:93:6a:3f:63:8c:66:9d:ad:50:e3:6a:a6:
65:34:67:d9:66:7e:7f:a6:e9:5a:05:e1:17:b3:96:89:b1:06:
e9:31:f6:53:c0:9b:14:55:3a:e5:ca:61:a5:f6:0a:fd:fd:e9:
36:85:20:23:0c:47:11:db:24:28:c3:05:8a:04:17:0f:13:bd:
8d:1f:06:17:87:29:9d:12:b9:c5:35:32:92:e7:2d:0e:a9:03:
fc:af:c0:e8:9d:1c:97:1e:6e:2e:da:7f:20:ba:55:7e:31:98:
09:23:78:54:6d:6d:6d:46:bf:32:77:ff:a9:dc:b2:b2:0b:9c:
96:5e:64:31:b1:87:a9:de:98:ca:41:14:dc:af:b4:67:82:8d:
cb:1e:f5:6f:06:07:6f:bd:af:33:b6:f7:9e:bf:25:56:31:af:
52:d2:a5:8c:e9:c6:f6:d9:9d:99:62:61:05:91:74:0e:1a:32:
b3:b8:6c:a1:46:2b:c4:1d:ce:13:98:70:4e:e9:41:ed:4e:d0:
0d:86:18:79:66:98:95:02:65:69:00:05:cc:0b:18:c5:02:9d:
4b:f2:53:33
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/rKMxbg7TpflTl4096wwJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgyNzE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MjA2NmMyZDZlZTM1MjRkNTFkOGZjNDg4MjA5NTUyMzJkNGI3NGY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmj92o+mCH4IfM2W3ty9tZVz2DC0A
KOVJM4ElHZElNd0Op3Q9H4+xf3InhUtqFM7OlQjRIQjbkh9rbKSbetDlEhWXpbpg
fsheMO5XARUcgjBFR/Pr1na02GxMatvP4FmouAP7u9/PTiYw/Zou19MNivwuLKMW
AlFQ3jbB5QNXEBavtVh0N5EcOErvFq/Yaq3RrxmjtcqiYmzwX0zifI/K11+GNi6A
PQkv3KxCIWvk/ut1FkBF4VdQjAIfeYXR5dvOolHY4aKAEKiWf4ntU29hHi2pKvir
sfv5humUqib25EqxMnCClkLbveVCa1UFc2G3o5JQRiEF66jIEO8NWf8LnQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFGIGbC1u41JNUdj8SIIJVSMtS3T1MB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvWWdac0xXN2pVazFSMlB4SWdnbFZJeTFMZFBVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQD5
MA0GCSqGSIb3DQEBCwUAA4IBAQBrle5KJsrg/Q+k7mhlCWlGOcHHQCr//P/ZxAnz
KSy40/sw8PNlkO1SFn6Taj9jjGadrVDjaqZlNGfZZn5/pulaBeEXs5aJsQbpMfZT
wJsUVTrlymGl9gr9/ek2hSAjDEcR2yQowwWKBBcPE72NHwYXhymdErnFNTKS5y0O
qQP8r8DonRyXHm4u2n8gulV+MZgJI3hUbW1tRr8yd/+p3LKyC5yWXmQxsYep3pjK
QRTcr7Rngo3LHvVvBgdvva8ztveevyVWMa9S0qWM6cb22Z2ZYmEFkXQOGjKzuGyh
RivEHc4TmHBO6UHtTtANhhh5ZpiVAmVpAAXMCxjFAp1L8lMz
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:09 2024 by rpki-client on console-ams.rpki-client.org