Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/kLNu7lqnzpibVizIEpPuEQ4MG-U.roa
File: kLNu7lqnzpibVizIEpPuEQ4MG-U.roa (raw, json)
Hash identifier: OLG34NNwuUSySTkt6n8C86J8ZGkXO8YdMXdkirkouvo=
Subject key identifier: 90:B3:6E:EE:5A:A7:CE:98:9B:56:2C:C8:12:93:EE:11:0E:0C:1B:E5
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F076E9A88CCA1E7A45F827929FBFC1
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/kLNu7lqnzpibVizIEpPuEQ4MG-U.roa
Signing time: Wed 07 Feb 2024 05:00:36 +0000
ROA not before: Wed 07 Feb 2024 05:00:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199392
IP address blocks: 2a0f:b241:12e::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:76:e9:a8:8c:ca:1e:7a:45:f8:27:92:9f:bf:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=90b36eee5aa7ce989b562cc81293ee110e0c1be5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:c4:b6:d9:d2:08:da:1d:e8:a7:2a:e1:37:e3:
c9:00:ab:4e:c1:b3:a8:7c:55:ec:8c:cb:09:c2:ed:
60:46:46:26:11:53:2f:c4:7b:bb:b4:92:dc:03:eb:
b0:fa:b4:4e:79:5b:a7:0d:84:8e:10:ea:48:a4:da:
10:ce:ed:c1:4d:5f:71:d0:e2:35:cd:d4:da:45:63:
65:ba:fa:03:0a:20:d9:54:24:bd:1e:e2:3a:f6:f4:
8a:75:04:af:db:09:e2:0c:9f:61:f6:61:c9:d9:aa:
23:a0:9f:d4:a1:83:97:67:ca:47:16:48:ff:4a:2c:
39:c6:17:67:25:e7:16:92:9e:b9:4a:49:5d:33:02:
8f:64:e7:40:01:1f:b0:95:d8:1e:f5:55:e2:d9:af:
f8:6e:b8:59:6e:75:05:b0:01:3d:f7:b3:c0:17:d2:
05:bb:4c:9a:6a:a2:59:d3:b7:c9:f1:02:c7:78:d9:
3f:44:37:53:aa:b1:ca:f8:3e:fd:f6:e5:22:fc:42:
63:79:b9:22:da:05:d0:ea:41:80:d2:2e:8e:77:1e:
58:e5:2b:f2:3c:c1:a1:54:4c:53:4a:9b:12:ed:d5:
e0:a0:90:36:42:51:73:22:4a:d2:ea:be:32:45:21:
63:b0:c0:9f:de:13:58:33:2d:92:5c:3e:71:51:61:
1f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:B3:6E:EE:5A:A7:CE:98:9B:56:2C:C8:12:93:EE:11:0E:0C:1B:E5
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/kLNu7lqnzpibVizIEpPuEQ4MG-U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:12e::/48
Signature Algorithm: sha256WithRSAEncryption
88:ec:ee:5a:f2:25:83:d4:b3:ee:54:2e:6f:cc:1e:fc:1e:a4:
28:d4:04:85:94:b6:99:c8:1b:46:27:c4:d4:f4:54:d3:09:10:
c0:a4:0a:7d:70:79:eb:a4:66:66:dd:5f:0f:a9:d7:da:7a:96:
21:90:e0:8e:bd:61:cd:86:d9:eb:a3:06:8f:89:2d:c6:8f:b9:
40:c0:2a:f7:90:4d:52:43:ac:da:c5:81:22:ee:a8:9e:8c:00:
db:ec:2f:2c:d8:71:03:d3:0e:2f:eb:3b:88:5e:aa:c0:88:b1:
4f:29:66:76:57:9a:36:e7:50:8a:bd:cb:9f:df:07:9f:76:a4:
a9:67:34:64:78:ad:68:ae:e1:f9:8c:30:7a:77:e7:d1:d9:41:
f9:70:c6:a8:be:74:40:61:d1:49:85:00:53:98:8d:4d:82:f3:
0b:09:96:21:fe:1e:8b:e1:e0:b0:b8:5b:5e:6e:0e:07:cb:61:
dc:a0:ec:c5:07:19:75:5c:56:ac:ed:7d:ec:02:61:82:09:4b:
97:7d:89:e7:ea:f9:eb:f2:d3:83:67:94:64:93:80:35:6d:c0:
fa:6c:51:9f:20:7f:ac:85:68:92:76:55:e4:3a:1f:f3:34:71:
9c:c5:11:0c:36:2c:50:2f:7d:52:85:28:a9:f7:62:41:5f:20:
c7:f6:c4:56
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY2B8HbpqIzKHnpF+CeSn7/BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA3MDUwMDM2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MGIzNmVlZTVhYTdjZTk4OWI1NjJjYzgxMjkzZWUxMTBlMGMxYmU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhcS22dII2h3opyrhN+PJAKtOwbOo
fFXsjMsJwu1gRkYmEVMvxHu7tJLcA+uw+rROeVunDYSOEOpIpNoQzu3BTV9x0OI1
zdTaRWNluvoDCiDZVCS9HuI69vSKdQSv2wniDJ9h9mHJ2aojoJ/UoYOXZ8pHFkj/
Siw5xhdnJecWkp65SkldMwKPZOdAAR+wldge9VXi2a/4brhZbnUFsAE997PAF9IF
u0yaaqJZ07fJ8QLHeNk/RDdTqrHK+D799uUi/EJjebki2gXQ6kGA0i6Odx5Y5Svy
PMGhVExTSpsS7dXgoJA2QlFzIkrS6r4yRSFjsMCf3hNYMy2SXD5xUWEfiwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFJCzbu5ap86Ym1YsyBKT7hEODBvlMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEva0xOdTdscW56cGliVml6SUVwUHVFUTRNRy1VLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQEu
MA0GCSqGSIb3DQEBCwUAA4IBAQCI7O5a8iWD1LPuVC5vzB78HqQo1ASFlLaZyBtG
J8TU9FTTCRDApAp9cHnrpGZm3V8PqdfaepYhkOCOvWHNhtnrowaPiS3Gj7lAwCr3
kE1SQ6zaxYEi7qiejADb7C8s2HED0w4v6zuIXqrAiLFPKWZ2V5o251CKvcuf3wef
dqSpZzRkeK1oruH5jDB6d+fR2UH5cMaovnRAYdFJhQBTmI1NgvMLCZYh/h6L4eCw
uFtebg4Hy2HcoOzFBxl1XFas7X3sAmGCCUuXfYnn6vnr8tODZ5Rkk4A1bcD6bFGf
IH+shWiSdlXkOh/zNHGcxREMNixQL31ShSip92JBXyDH9sRW
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org