Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/_zya226rzoloVdVKGcs0ZQJCGPI.roa
File: _zya226rzoloVdVKGcs0ZQJCGPI.roa (raw, json)
Hash identifier: xNLtrgVC+lCo2bc4aDgJ6wreKcsU0LIqb+PX+wShdFk=
Subject key identifier: FF:3C:9A:DB:6E:AB:CE:89:68:55:D5:4A:19:CB:34:65:02:42:18:F2
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F93A7A31D42752F9672BD2AA2163CA4
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/_zya226rzoloVdVKGcs0ZQJCGPI.roa
Signing time: Tue 06 Feb 2024 17:59:59 +0000
ROA not before: Tue 06 Feb 2024 17:59:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216391
IP address blocks: 2a0f:b241:2d::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:93:a7:a3:1d:42:75:2f:96:72:bd:2a:a2:16:3c:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 17:59:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ff3c9adb6eabce896855d54a19cb3465024218f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:22:a4:04:d8:69:83:22:05:1a:e4:24:d8:7b:
15:25:76:80:81:5d:e6:dc:f3:c8:f2:3a:9c:03:a5:
68:28:97:5f:73:44:68:d3:7f:a7:29:b8:84:14:e0:
45:4d:15:5f:1c:94:62:7c:88:4f:03:10:66:17:c0:
12:dd:30:9a:4a:3f:e1:79:d1:d9:d0:32:83:bd:2b:
3a:9c:1f:a8:d2:97:73:7c:af:4c:5c:a8:eb:c2:1b:
d7:bb:c3:88:2b:22:90:e4:7d:04:51:e7:c5:f5:6c:
3d:cf:27:69:cf:72:cc:c7:ce:93:a4:fb:fa:90:75:
78:8d:20:46:96:c8:4a:15:de:d5:e2:47:a9:2b:b6:
ad:0a:10:68:51:d4:3b:2d:41:9e:ab:72:9b:11:71:
9c:e3:d3:77:dc:11:2a:0d:0f:1b:4e:23:ce:93:6b:
8f:ed:ce:8e:1e:e3:a0:30:22:10:e5:55:12:f6:43:
ee:9d:0f:19:f4:5a:08:0b:25:3d:1f:c5:c4:25:df:
1a:03:d2:d7:dc:27:d4:2a:14:64:73:38:fd:32:7d:
46:ac:b8:60:5e:f0:18:b8:11:e6:1c:81:5c:fd:30:
e9:73:d7:cb:97:07:1a:96:73:d5:2c:0b:35:47:f1:
36:b8:4d:f2:2e:26:a0:c2:9b:5e:fb:55:05:a4:3b:
89:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:3C:9A:DB:6E:AB:CE:89:68:55:D5:4A:19:CB:34:65:02:42:18:F2
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/_zya226rzoloVdVKGcs0ZQJCGPI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:2d::/48
Signature Algorithm: sha256WithRSAEncryption
09:10:3e:62:c6:69:fc:57:88:a0:93:fb:97:73:ee:b2:6d:e4:
26:24:32:87:74:4f:f7:40:1d:ba:bf:e2:3d:b4:54:35:fa:39:
05:fc:cc:74:3c:78:75:f9:0b:8a:a3:f2:88:e1:c2:21:e6:fe:
2c:8a:73:a5:d2:15:74:0d:57:46:b8:1f:4c:eb:56:65:f9:a5:
a8:20:bb:71:6e:2c:d4:60:3c:18:ed:94:e8:d9:65:90:3b:b9:
ca:38:45:32:b4:15:7d:8d:c0:7e:93:28:95:ba:11:1f:d6:9e:
d0:8f:48:fc:5c:05:58:a5:8c:bd:6b:21:8c:b0:fc:0e:45:83:
4e:c6:dd:fb:e7:96:98:51:ac:db:fb:24:66:34:4b:b3:21:5c:
04:2f:c7:2b:bc:13:48:1d:63:a9:fd:06:a3:a2:92:3e:6d:7e:
ac:de:9b:b1:0c:ec:f4:d1:0b:94:29:bb:ba:83:91:41:ed:d6:
99:ed:e0:13:2d:d9:bf:a0:8e:31:48:0f:bb:da:68:6d:8b:62:
47:ec:d0:96:b0:a8:99:6b:89:4c:8c:30:b2:5e:36:47:83:ea:
6b:e4:19:96:77:82:65:96:ba:8c:22:f3:70:ff:7a:1b:bc:d1:
b8:bc:b4:39:82:8d:0f:4c:00:13:b1:4f:d5:72:32:b6:bf:5f:
62:e9:ac:1e
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/k6ejHUJ1L5ZyvSqiFjykMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTc1OTU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZjNjOWFkYjZlYWJjZTg5Njg1NWQ1NGExOWNiMzQ2NTAyNDIxOGYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmyKkBNhpgyIFGuQk2HsVJXaAgV3m
3PPI8jqcA6VoKJdfc0Ro03+nKbiEFOBFTRVfHJRifIhPAxBmF8AS3TCaSj/hedHZ
0DKDvSs6nB+o0pdzfK9MXKjrwhvXu8OIKyKQ5H0EUefF9Ww9zydpz3LMx86TpPv6
kHV4jSBGlshKFd7V4kepK7atChBoUdQ7LUGeq3KbEXGc49N33BEqDQ8bTiPOk2uP
7c6OHuOgMCIQ5VUS9kPunQ8Z9FoICyU9H8XEJd8aA9LX3CfUKhRkczj9Mn1GrLhg
XvAYuBHmHIFc/TDpc9fLlwcalnPVLAs1R/E2uE3yLiagwpte+1UFpDuJowIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFP88mttuq86JaFXVShnLNGUCQhjyMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvX3p5YTIyNnJ6b2xvVmRWS0djczBaUUpDR1BJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQAt
MA0GCSqGSIb3DQEBCwUAA4IBAQAJED5ixmn8V4igk/uXc+6ybeQmJDKHdE/3QB26
v+I9tFQ1+jkF/Mx0PHh1+QuKo/KI4cIh5v4sinOl0hV0DVdGuB9M61Zl+aWoILtx
bizUYDwY7ZTo2WWQO7nKOEUytBV9jcB+kyiVuhEf1p7Qj0j8XAVYpYy9ayGMsPwO
RYNOxt3755aYUazb+yRmNEuzIVwEL8crvBNIHWOp/QajopI+bX6s3puxDOz00QuU
Kbu6g5FB7daZ7eATLdm/oI4xSA+72mhti2JH7NCWsKiZa4lMjDCyXjZHg+pr5BmW
d4JllrqMIvNw/3obvNG4vLQ5go0PTAATsU/VcjK2v19i6awe
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:09 2024 by rpki-client on console-ams.rpki-client.org