Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ibHXNgkY9ipZLM-S8CsKIbGx3G4.roa
File: ibHXNgkY9ipZLM-S8CsKIbGx3G4.roa (raw, json)
Hash identifier: D1l6/Mgqfqk8wCmsvWG5vhcPGfpTln+Kg7tEbGLKXEI=
Subject key identifier: 89:B1:D7:36:09:18:F6:2A:59:2C:CF:92:F0:2B:0A:21:B1:B1:DC:6E
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F93A5354337886234419C4CBCBA447B
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ibHXNgkY9ipZLM-S8CsKIbGx3G4.roa
Signing time: Tue 06 Feb 2024 17:59:58 +0000
ROA not before: Tue 06 Feb 2024 17:59:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57110
IP address blocks: 2a0f:b241:2f::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:93:a5:35:43:37:88:62:34:41:9c:4c:bc:ba:44:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 17:59:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=89b1d7360918f62a592ccf92f02b0a21b1b1dc6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d1:c2:ac:9d:e8:2d:ce:c4:41:30:f0:f9:b4:
71:ec:14:05:e1:c7:fd:68:7b:d5:07:6d:d1:5a:c0:
5b:52:ca:74:4e:48:ad:42:a4:9a:34:44:68:14:20:
99:a8:1a:04:7c:2c:38:55:5d:06:10:13:dc:e5:dd:
d3:df:79:48:07:6e:57:c6:e9:e1:6f:55:e8:3c:bc:
ce:1d:c6:df:28:0e:2f:8b:96:84:4b:f6:13:ff:fa:
a5:9a:c5:d6:cd:a0:c3:7a:37:a6:1c:f2:66:7f:6b:
a1:cf:99:8b:09:9b:30:c2:6f:7b:97:84:75:ea:50:
39:11:dd:22:37:49:68:82:7a:da:d6:bc:da:bf:fd:
fa:f9:be:18:43:f1:61:5f:e0:53:38:64:e5:e9:1a:
e2:d7:b9:c3:9a:74:11:d8:b2:27:0f:26:57:fa:bf:
88:86:64:b3:5f:6d:25:95:35:45:f6:35:ca:76:c4:
1b:0f:3f:df:b6:23:3f:cc:23:71:b5:77:d1:af:c9:
4c:98:c6:b3:19:d4:51:86:e4:0a:9c:53:57:a1:11:
3d:a1:6e:63:50:5d:be:60:3a:67:a8:37:83:a0:e0:
64:cd:90:7f:84:e4:7f:9a:27:0d:2d:9c:d3:5a:ba:
0d:6e:b9:bd:5f:63:57:b2:d9:79:2a:4e:24:08:c3:
89:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:B1:D7:36:09:18:F6:2A:59:2C:CF:92:F0:2B:0A:21:B1:B1:DC:6E
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ibHXNgkY9ipZLM-S8CsKIbGx3G4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:2f::/48
Signature Algorithm: sha256WithRSAEncryption
15:5f:e2:82:f8:a7:a5:9c:5a:44:c2:8e:22:ea:a2:31:da:cc:
ea:af:65:15:f0:a3:cf:71:bb:d3:85:ec:05:31:bb:b6:81:29:
69:65:fc:fb:90:d9:b4:c3:89:02:3a:1b:c0:d3:35:da:10:46:
15:42:8b:17:77:b2:1f:6e:da:35:1b:56:47:2e:67:c6:64:b5:
fb:6d:b5:ca:67:9d:af:e1:c8:4c:6e:aa:d7:86:5f:2f:e7:31:
46:1c:9d:04:e7:93:3d:0a:be:89:6a:5b:80:95:b3:6f:e4:6b:
e0:5c:cd:95:42:d6:8f:64:11:3a:37:2f:b7:c0:f2:cc:ac:60:
1e:6d:cd:3b:4d:6e:e3:80:da:e4:61:ca:bb:5c:89:1f:f9:26:
3e:5c:7c:26:e2:27:76:cb:db:06:1b:63:74:ef:2c:95:52:bc:
4e:50:95:39:06:b9:18:e7:5f:c4:e1:a1:d1:ee:8c:ed:eb:4f:
72:d0:20:2e:e0:21:74:af:3d:f0:21:b4:58:01:83:0b:6d:46:
d2:1c:65:97:84:e2:f1:ae:77:b2:01:9a:bd:dc:19:01:b9:03:
09:7d:2d:eb:14:84:44:83:d0:f9:eb:4b:42:26:12:20:63:1e:
13:ab:70:7c:b2:de:a2:c4:58:8f:6a:4e:86:3b:3d:51:fe:bb:
21:bd:31:86
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/k6U1QzeIYjRBnEy8ukR7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTc1OTU4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OWIxZDczNjA5MThmNjJhNTkyY2NmOTJmMDJiMGEyMWIxYjFkYzZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAztHCrJ3oLc7EQTDw+bRx7BQF4cf9
aHvVB23RWsBbUsp0TkitQqSaNERoFCCZqBoEfCw4VV0GEBPc5d3T33lIB25Xxunh
b1XoPLzOHcbfKA4vi5aES/YT//qlmsXWzaDDejemHPJmf2uhz5mLCZswwm97l4R1
6lA5Ed0iN0lognra1rzav/36+b4YQ/FhX+BTOGTl6Rri17nDmnQR2LInDyZX+r+I
hmSzX20llTVF9jXKdsQbDz/ftiM/zCNxtXfRr8lMmMazGdRRhuQKnFNXoRE9oW5j
UF2+YDpnqDeDoOBkzZB/hOR/micNLZzTWroNbrm9X2NXstl5Kk4kCMOJFwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFImx1zYJGPYqWSzPkvArCiGxsdxuMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvaWJIWE5na1k5aXBaTE0tUzhDc0tJYkd4M0c0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQAv
MA0GCSqGSIb3DQEBCwUAA4IBAQAVX+KC+KelnFpEwo4i6qIx2szqr2UV8KPPcbvT
hewFMbu2gSlpZfz7kNm0w4kCOhvA0zXaEEYVQosXd7Ifbto1G1ZHLmfGZLX7bbXK
Z52v4chMbqrXhl8v5zFGHJ0E55M9Cr6JaluAlbNv5GvgXM2VQtaPZBE6Ny+3wPLM
rGAebc07TW7jgNrkYcq7XIkf+SY+XHwm4id2y9sGG2N07yyVUrxOUJU5BrkY51/E
4aHR7ozt609y0CAu4CF0rz3wIbRYAYMLbUbSHGWXhOLxrneyAZq93BkBuQMJfS3r
FIREg9D560tCJhIgYx4Tq3B8st6ixFiPak6GOz1R/rshvTGG
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org