Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/aiXasV9Vs-meTL_coODukWfgt_4.roa
File: aiXasV9Vs-meTL_coODukWfgt_4.roa (raw, json)
Hash identifier: T5wvIbfA8wcqzl3zGHzjjnM5Iho4ksT417GR/ku+G6M=
Subject key identifier: 6A:25:DA:B1:5F:55:B3:E9:9E:4C:BF:DC:A0:E0:EE:91:67:E0:B7:FE
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAE77A9BFC23F00389D9E6F6DF71CFD
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/aiXasV9Vs-meTL_coODukWfgt_4.roa
Signing time: Tue 06 Feb 2024 18:29:16 +0000
ROA not before: Tue 06 Feb 2024 18:29:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49626
IP address blocks: 2a0f:b241:116::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ae:77:a9:bf:c2:3f:00:38:9d:9e:6f:6d:f7:1c:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:29:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6a25dab15f55b3e99e4cbfdca0e0ee9167e0b7fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:2d:a5:b9:52:a0:72:79:79:76:d4:92:b9:8c:
ed:a6:d1:09:8a:65:01:59:a6:68:5d:8a:d4:d3:f8:
1c:6f:74:9e:40:8c:4b:37:fb:57:4f:8a:98:29:df:
95:24:85:1d:33:16:21:da:26:a0:0e:e4:39:a8:0f:
57:fe:e7:07:fd:a6:a0:ec:bf:a3:0f:91:ec:44:8b:
a1:70:bb:72:a2:e6:2e:db:d5:4f:a4:39:10:62:21:
2f:d8:b0:8d:51:5f:ab:55:5c:a2:e6:68:18:5d:d4:
28:da:51:d2:b2:7c:db:c5:92:ad:6c:cb:d7:d4:9e:
81:a3:04:a8:a9:b8:49:ad:8f:0c:2f:ac:f1:43:80:
5d:c5:59:cf:ca:d7:f1:8a:ec:e1:3f:63:7e:34:82:
67:49:65:23:e5:a9:d5:7c:fa:9f:63:90:76:f3:95:
1b:ed:75:d2:10:03:ec:21:36:df:83:19:1f:d2:a5:
5b:dc:16:98:31:a3:9a:98:3c:bb:56:2b:49:6c:b0:
b3:66:a3:d0:4c:d4:aa:3e:1d:7c:e1:47:0b:70:70:
c2:cb:17:bc:4e:d6:fd:21:6d:08:57:b1:23:08:d0:
7d:f7:41:19:bb:7e:b4:07:53:1d:0a:25:32:7b:f2:
09:06:85:a2:3c:7a:25:8f:32:27:db:94:fc:07:17:
d8:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:25:DA:B1:5F:55:B3:E9:9E:4C:BF:DC:A0:E0:EE:91:67:E0:B7:FE
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/aiXasV9Vs-meTL_coODukWfgt_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:116::/48
Signature Algorithm: sha256WithRSAEncryption
78:21:b5:b9:b5:07:2f:73:c8:90:a7:65:fc:70:38:2c:41:18:
19:f9:22:41:bc:1b:b2:0c:a9:96:d7:42:88:7b:91:d7:90:9d:
2f:c2:ed:e2:50:20:20:aa:8d:63:b5:16:0d:d5:39:bc:e0:9c:
16:da:67:c8:88:8f:18:da:98:da:02:a7:03:0e:c2:91:e1:bf:
5d:03:ed:1f:8c:02:f8:d4:0e:3b:99:2f:38:41:85:c2:9d:b5:
a3:74:ba:ca:5b:56:e0:dc:78:fd:3b:cd:73:20:40:40:3a:52:
e1:01:91:ba:a3:2a:e6:24:75:be:fc:f7:35:9f:70:86:1f:cd:
85:42:1a:98:2c:dd:13:7e:7e:72:08:bd:8a:85:99:8c:39:d7:
f0:c0:3b:4c:c7:ec:4b:7a:cf:97:fd:46:44:30:a6:03:1c:23:
95:31:16:eb:12:14:9a:67:d7:62:1c:8a:a4:18:fc:3d:95:68:
82:d1:2a:c7:f8:c5:35:2f:59:d7:6c:5e:7b:b7:4a:e0:22:05:
d5:5e:17:02:22:6e:60:a7:b1:6e:eb:47:c4:ee:d8:00:53:a6:
07:b3:52:ef:df:cc:63:42:b7:72:ff:57:26:1d:71:1b:55:95:
d9:51:fc:f7:82:0d:5c:7c:b8:f9:09:a9:33:7e:24:5f:37:a8:
cf:c4:2a:cc
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/rnepv8I/ADidnm9t9xz9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgyOTE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YTI1ZGFiMTVmNTViM2U5OWU0Y2JmZGNhMGUwZWU5MTY3ZTBiN2ZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiS2luVKgcnl5dtSSuYztptEJimUB
WaZoXYrU0/gcb3SeQIxLN/tXT4qYKd+VJIUdMxYh2iagDuQ5qA9X/ucH/aag7L+j
D5HsRIuhcLtyouYu29VPpDkQYiEv2LCNUV+rVVyi5mgYXdQo2lHSsnzbxZKtbMvX
1J6BowSoqbhJrY8ML6zxQ4BdxVnPytfxiuzhP2N+NIJnSWUj5anVfPqfY5B285Ub
7XXSEAPsITbfgxkf0qVb3BaYMaOamDy7VitJbLCzZqPQTNSqPh184UcLcHDCyxe8
Ttb9IW0IV7EjCNB990EZu360B1MdCiUye/IJBoWiPHoljzIn25T8BxfYfwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFGol2rFfVbPpnky/3KDg7pFn4Lf+MB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvYWlYYXNWOVZzLW1lVExfY29PRHVrV2ZndF80LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQEW
MA0GCSqGSIb3DQEBCwUAA4IBAQB4IbW5tQcvc8iQp2X8cDgsQRgZ+SJBvBuyDKmW
10KIe5HXkJ0vwu3iUCAgqo1jtRYN1Tm84JwW2mfIiI8Y2pjaAqcDDsKR4b9dA+0f
jAL41A47mS84QYXCnbWjdLrKW1bg3Hj9O81zIEBAOlLhAZG6oyrmJHW+/Pc1n3CG
H82FQhqYLN0Tfn5yCL2KhZmMOdfwwDtMx+xLes+X/UZEMKYDHCOVMRbrEhSaZ9di
HIqkGPw9lWiC0SrH+MU1L1nXbF57t0rgIgXVXhcCIm5gp7Fu60fE7tgAU6YHs1Lv
38xjQrdy/1cmHXEbVZXZUfz3gg1cfLj5CakzfiRfN6jPxCrM
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org