Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/m97PbQ1KlPlSzriji7ZinT6SRr4.roa
File: m97PbQ1KlPlSzriji7ZinT6SRr4.roa (raw, json)
Hash identifier: d1LgE+Z2sjPz7TCWmucRaffDZAhkOBrx0uQfISDf9Kc=
Subject key identifier: 9B:DE:CF:6D:0D:4A:94:F9:52:CE:B8:A3:8B:B6:62:9D:3E:92:46:BE
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA813921650F78B76B27CA271AF3F3E
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/m97PbQ1KlPlSzriji7ZinT6SRr4.roa
Signing time: Tue 06 Feb 2024 18:22:17 +0000
ROA not before: Tue 06 Feb 2024 18:22:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200179
IP address blocks: 2a0f:b241:96::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a8:13:92:16:50:f7:8b:76:b2:7c:a2:71:af:3f:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:22:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9bdecf6d0d4a94f952ceb8a38bb6629d3e9246be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b7:25:a2:87:fe:05:02:6b:e6:a3:96:73:4c:
1b:39:0a:43:cf:5a:6c:26:d8:ea:83:cd:9c:fd:2b:
31:35:f4:ed:d3:66:15:7b:9a:77:0a:b5:86:6d:30:
31:21:4e:8f:4f:e6:25:eb:cd:21:4a:a4:4d:8c:37:
42:7d:f6:9e:15:07:dc:51:1c:60:ac:98:5c:67:d8:
14:72:40:b7:1f:d2:36:13:45:db:ad:70:ac:11:4c:
e7:09:fb:61:dc:9e:e0:48:e8:88:a2:e5:ea:d2:c2:
c3:7b:06:8a:92:53:72:97:d3:01:23:4a:f0:ba:23:
88:3f:d7:58:55:91:e9:ed:a0:61:72:ab:b3:3b:dd:
cc:a6:b5:38:e7:25:b2:0f:3d:35:29:8a:0e:87:bc:
15:e7:f4:cd:13:06:5b:cf:10:ef:2b:8e:de:f8:4d:
01:ae:3a:45:45:93:32:a7:fd:89:f8:6e:59:f6:50:
fe:26:37:68:3d:72:d7:ed:64:b7:48:17:04:5d:6d:
86:30:55:82:94:27:a9:d6:2f:5b:6c:00:9a:7c:51:
68:14:fb:28:3d:eb:09:8a:35:99:2f:b8:27:06:f2:
b9:48:cb:e1:b8:1c:7d:81:61:8d:48:c8:01:0b:8e:
25:4f:8f:2a:cf:89:01:6d:1c:ee:ad:4f:4a:b7:a8:
fa:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:DE:CF:6D:0D:4A:94:F9:52:CE:B8:A3:8B:B6:62:9D:3E:92:46:BE
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/m97PbQ1KlPlSzriji7ZinT6SRr4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:96::/48
Signature Algorithm: sha256WithRSAEncryption
0e:1e:b4:30:93:3b:28:ca:16:aa:bc:f3:41:ff:76:c9:10:9a:
a5:3e:24:3c:47:99:af:a6:fc:b5:ca:05:60:a1:31:cc:ce:42:
05:10:92:5d:b5:fe:33:d6:a8:54:ac:5d:48:02:61:b5:6e:d8:
1b:20:01:f3:a4:de:a7:58:3a:bb:2d:51:74:d8:09:97:c9:bb:
6e:13:69:61:cb:12:ea:a9:bc:7c:36:5d:75:69:de:41:27:1d:
c8:c1:dd:ca:fe:2e:c9:27:5d:c7:a3:2f:84:c2:25:7c:a6:6b:
f4:3b:e3:ae:03:34:69:df:0f:ac:d3:b4:18:00:59:86:10:8c:
7b:7c:20:c3:3f:95:91:0c:c8:95:10:41:1f:f9:5d:6c:ba:8c:
ac:79:78:c8:d2:15:12:39:31:f5:c4:7d:ca:b3:0a:21:11:51:
07:ba:2b:b7:76:01:2f:fe:bd:d0:91:d9:45:96:14:b8:f2:c4:
3f:04:40:fe:89:4c:41:73:3a:f5:e4:82:be:2d:93:ee:67:09:
11:9b:b3:c0:5f:11:87:80:68:c9:b7:30:5c:0e:ec:ce:13:f6:
85:a0:1a:d5:be:98:39:58:61:c2:1b:d9:91:60:20:e4:e6:27:
e1:af:38:0c:03:f0:cc:8a:42:49:21:2d:49:32:81:7a:97:ea:
7d:2b:bb:6c
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/qBOSFlD3i3ayfKJxrz8+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgyMjE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YmRlY2Y2ZDBkNGE5NGY5NTJjZWI4YTM4YmI2NjI5ZDNlOTI0NmJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn7cloof+BQJr5qOWc0wbOQpDz1ps
Jtjqg82c/SsxNfTt02YVe5p3CrWGbTAxIU6PT+Yl680hSqRNjDdCffaeFQfcURxg
rJhcZ9gUckC3H9I2E0XbrXCsEUznCfth3J7gSOiIouXq0sLDewaKklNyl9MBI0rw
uiOIP9dYVZHp7aBhcquzO93MprU45yWyDz01KYoOh7wV5/TNEwZbzxDvK47e+E0B
rjpFRZMyp/2J+G5Z9lD+JjdoPXLX7WS3SBcEXW2GMFWClCep1i9bbACafFFoFPso
PesJijWZL7gnBvK5SMvhuBx9gWGNSMgBC44lT48qz4kBbRzurU9Kt6j6uQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFJvez20NSpT5Us64o4u2Yp0+kka+MB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvbTk3UGJRMUtsUGxTenJpamk3WmluVDZTUnI0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQCW
MA0GCSqGSIb3DQEBCwUAA4IBAQAOHrQwkzsoyhaqvPNB/3bJEJqlPiQ8R5mvpvy1
ygVgoTHMzkIFEJJdtf4z1qhUrF1IAmG1btgbIAHzpN6nWDq7LVF02AmXybtuE2lh
yxLqqbx8Nl11ad5BJx3Iwd3K/i7JJ13Hoy+EwiV8pmv0O+OuAzRp3w+s07QYAFmG
EIx7fCDDP5WRDMiVEEEf+V1suoyseXjI0hUSOTH1xH3KswohEVEHuiu3dgEv/r3Q
kdlFlhS48sQ/BED+iUxBczr15IK+LZPuZwkRm7PAXxGHgGjJtzBcDuzOE/aFoBrV
vpg5WGHCG9mRYCDk5ifhrzgMA/DMikJJIS1JMoF6l+p9K7ts
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org