Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/gXB2AMYkVMe8sKIJStREVlCiNFA.roa
File: gXB2AMYkVMe8sKIJStREVlCiNFA.roa (raw, json)
Hash identifier: YXtnqsopPc4QCDBq9ByrNmcekMJXWKvMyJiJMr4/NOw=
Subject key identifier: 81:70:76:00:C6:24:54:C7:BC:B0:A2:09:4A:D4:44:56:50:A2:34:50
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB97399DE337249DEE0CDFE4C20587B
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/gXB2AMYkVMe8sKIJStREVlCiNFA.roa
Signing time: Tue 06 Feb 2024 18:41:16 +0000
ROA not before: Tue 06 Feb 2024 18:41:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60113
IP address blocks: 2a0f:b241:15f::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b9:73:99:de:33:72:49:de:e0:cd:fe:4c:20:58:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:41:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=81707600c62454c7bcb0a2094ad4445650a23450
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:09:ee:c7:a2:2c:d7:a5:34:40:8e:2f:19:e8:
31:13:d9:d3:2e:ae:9d:20:c0:bb:fd:6b:f6:f0:10:
cc:ea:b1:fc:38:03:b2:78:3f:17:47:57:53:00:5e:
d6:f6:23:40:c2:c3:b3:b2:c4:d0:79:31:c6:ee:e1:
0f:34:b8:a9:d0:12:9d:17:a7:31:83:1f:53:71:fb:
98:21:be:dc:73:3d:df:31:64:67:09:17:98:41:05:
e0:60:da:ee:b1:fb:7b:4c:f7:4b:1c:a5:03:7a:97:
db:11:60:3c:c4:96:48:ad:9f:86:f6:98:fc:89:7d:
a7:d4:9c:3e:fd:02:76:a4:32:5c:92:31:0c:4e:97:
f6:17:52:ff:6d:b9:76:e3:e2:eb:0d:18:05:c5:b4:
0d:de:1a:b0:ec:f5:a2:8d:af:3e:12:e6:dc:fb:02:
ed:1f:2f:4b:8f:96:93:94:99:60:48:48:45:2b:18:
89:57:dc:d8:d1:0d:06:ac:ab:84:2c:47:ce:30:fa:
b0:d9:49:30:fa:8c:6c:e6:ee:2f:23:65:c5:06:24:
03:34:3c:56:fb:f3:6c:4f:ca:04:0a:de:b7:4f:7d:
15:2b:48:c8:61:d8:03:12:e8:24:ed:64:7c:28:11:
1d:95:38:40:67:a9:8b:47:b0:86:a5:7f:ef:91:53:
32:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:70:76:00:C6:24:54:C7:BC:B0:A2:09:4A:D4:44:56:50:A2:34:50
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/gXB2AMYkVMe8sKIJStREVlCiNFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:15f::/48
Signature Algorithm: sha256WithRSAEncryption
7e:d6:d8:b5:e5:14:1b:3b:42:50:98:24:67:6e:cd:fd:70:19:
89:2a:5d:36:d8:c1:ba:34:a8:b4:1e:d0:85:ee:2b:ab:d6:9c:
70:75:63:5d:cc:74:8e:9f:97:f1:6c:25:4e:c7:91:69:30:51:
ee:e1:dd:5e:0e:4e:fe:74:34:da:13:55:45:d4:5e:2b:d6:2c:
9d:91:2d:51:d0:ea:e1:f2:0c:fc:0c:40:a9:b0:fe:d0:27:94:
6d:80:fb:ea:d4:77:42:59:cb:fd:c8:1f:6a:6d:f6:b3:07:3f:
ad:a1:1b:db:65:c5:74:87:e6:b5:ca:6b:48:41:40:22:b0:ae:
c0:fe:56:a1:c3:c9:48:84:4a:f6:27:b9:35:bd:77:f4:18:f7:
9f:a0:89:8a:b8:ce:e0:f7:6c:7e:e3:69:b2:58:9d:32:34:40:
3f:d9:77:63:16:c8:16:12:1d:7f:0e:3b:0d:ae:d2:c8:d1:66:
8b:5b:4a:5e:ba:89:10:62:ec:1b:bc:5a:00:62:f7:ff:b6:c8:
43:8c:67:fb:c0:f7:46:55:61:8c:14:e7:92:51:68:0c:63:fa:
5f:f0:a8:07:2c:e1:92:34:d3:2c:ca:96:ac:13:10:6e:14:30:
0f:0e:ae:a2:ec:9b:e2:a0:a4:0f:33:db:a7:30:fb:dc:63:6d:
f7:c0:8e:25
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/uXOZ3jNySd7gzf5MIFh7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTg0MTE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4MTcwNzYwMGM2MjQ1NGM3YmNiMGEyMDk0YWQ0NDQ1NjUwYTIzNDUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzgnux6Is16U0QI4vGegxE9nTLq6d
IMC7/Wv28BDM6rH8OAOyeD8XR1dTAF7W9iNAwsOzssTQeTHG7uEPNLip0BKdF6cx
gx9TcfuYIb7ccz3fMWRnCReYQQXgYNrusft7TPdLHKUDepfbEWA8xJZIrZ+G9pj8
iX2n1Jw+/QJ2pDJckjEMTpf2F1L/bbl24+LrDRgFxbQN3hqw7PWija8+Eubc+wLt
Hy9Lj5aTlJlgSEhFKxiJV9zY0Q0GrKuELEfOMPqw2Ukw+oxs5u4vI2XFBiQDNDxW
+/NsT8oECt63T30VK0jIYdgDEugk7WR8KBEdlThAZ6mLR7CGpX/vkVMyKQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFIFwdgDGJFTHvLCiCUrURFZQojRQMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvZ1hCMkFNWWtWTWU4c0tJSlN0UkVWbENpTkZBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQFf
MA0GCSqGSIb3DQEBCwUAA4IBAQB+1ti15RQbO0JQmCRnbs39cBmJKl022MG6NKi0
HtCF7iur1pxwdWNdzHSOn5fxbCVOx5FpMFHu4d1eDk7+dDTaE1VF1F4r1iydkS1R
0Orh8gz8DECpsP7QJ5RtgPvq1HdCWcv9yB9qbfazBz+toRvbZcV0h+a1ymtIQUAi
sK7A/lahw8lIhEr2J7k1vXf0GPefoImKuM7g92x+42myWJ0yNEA/2XdjFsgWEh1/
DjsNrtLI0WaLW0peuokQYuwbvFoAYvf/tshDjGf7wPdGVWGMFOeSUWgMY/pf8KgH
LOGSNNMsypasExBuFDAPDq6i7JvioKQPM9unMPvcY233wI4l
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org