Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/nBifKoKoQase1ulRR4YfJH9UDwY.roa
File: nBifKoKoQase1ulRR4YfJH9UDwY.roa (raw, json)
Hash identifier: oONblgg+Zy9nG3VrN808rY6yhFtzBAwq3HmTOryNqhc=
Subject key identifier: 9C:18:9F:2A:82:A8:41:AB:1E:D6:E9:51:47:86:1F:24:7F:54:0F:06
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7CF03D36495F97FB92BD85E0670AF297
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/nBifKoKoQase1ulRR4YfJH9UDwY.roa
Signing time: Tue 06 Feb 2024 05:42:15 +0000
ROA not before: Tue 06 Feb 2024 05:42:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50291
IP address blocks: 2a0f:b241:3::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7c:f0:3d:36:49:5f:97:fb:92:bd:85:e0:67:0a:f2:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 05:42:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9c189f2a82a841ab1ed6e95147861f247f540f06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:dd:af:f2:7e:79:4d:b7:9c:96:1c:85:66:e0:
be:78:c4:3c:de:ec:e7:76:5f:2f:8d:b2:d9:b7:48:
38:2f:b7:4b:6a:41:57:42:fb:58:4c:8b:ac:c1:bf:
10:3f:27:ca:4e:a9:d7:ac:b7:d3:82:02:84:be:61:
ca:69:9c:cf:c9:61:a9:b3:fd:86:e5:b6:f0:e9:65:
2e:21:67:be:b3:3c:7b:61:9e:db:9a:be:3e:5d:ff:
54:f2:b9:4c:3d:51:2f:cf:21:8b:bb:5a:af:02:a4:
60:b5:34:88:8e:c5:1d:39:2d:1c:c6:46:71:1a:12:
34:13:9d:4c:58:3d:0c:ec:14:8d:43:24:99:07:18:
ab:59:0b:90:30:01:76:77:dc:93:ac:62:40:da:32:
f1:9b:b2:ab:b4:20:8a:17:97:ec:16:4f:09:fa:a5:
6d:0d:3c:e6:9b:97:b7:9f:4c:ee:29:26:4a:8c:fd:
ed:09:46:4b:3c:91:9a:6b:60:9c:02:ba:50:49:89:
49:94:75:c1:2e:50:90:f0:ea:68:90:05:82:1b:ef:
cf:0d:2e:14:23:14:24:b4:c8:f6:a5:42:3e:ca:75:
3f:66:67:67:b9:bf:dd:3f:46:41:be:dd:e2:64:80:
70:44:1e:95:3f:44:42:ca:ea:03:fa:10:5f:4b:68:
ab:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:18:9F:2A:82:A8:41:AB:1E:D6:E9:51:47:86:1F:24:7F:54:0F:06
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/nBifKoKoQase1ulRR4YfJH9UDwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:3::/48
Signature Algorithm: sha256WithRSAEncryption
1e:0e:fc:a5:84:14:f7:6b:e4:1f:51:11:0b:5b:f7:d2:9b:33:
e5:91:68:b3:12:38:5b:6d:69:b5:a2:f5:67:28:8b:55:0a:84:
ee:a3:13:33:41:1f:bf:15:b8:21:b8:a4:83:6f:d3:3a:dd:98:
57:14:92:18:ee:02:81:1c:2d:82:e4:48:fe:31:fd:ea:04:37:
88:2e:95:68:9c:b3:aa:8b:71:6d:98:19:43:b5:54:6a:7e:17:
1b:88:f3:6d:13:ea:a1:72:3a:65:d4:3e:ff:58:38:e0:fd:23:
b8:66:13:5e:0f:63:94:0a:2e:43:1e:0b:55:18:f6:8d:1d:3d:
a0:4c:98:82:ec:ce:73:cc:eb:b4:4b:6c:08:54:f9:94:e6:2a:
f9:5f:f0:38:60:0c:57:4f:7c:f6:0e:7e:6a:c3:93:07:14:82:
1e:83:24:9c:16:e3:41:5c:fa:61:6c:3e:50:cb:47:b0:f9:c3:
d5:17:29:21:30:0e:88:a7:2b:55:ad:fa:62:9a:59:1c:8a:ae:
21:81:5d:ac:dd:04:b2:4f:84:91:bb:03:8a:a6:0a:30:ae:70:
11:8b:64:ac:76:de:86:27:45:37:7a:dd:ee:a5:c7:22:ff:36:
23:03:5a:b9:e4:8a:97:b0:5e:5b:3a:f9:fa:9f:c4:e9:08:a2:
9e:42:75:04
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY188D02SV+X+5K9heBnCvKXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MDU0MjE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YzE4OWYyYTgyYTg0MWFiMWVkNmU5NTE0Nzg2MWYyNDdmNTQwZjA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgN2v8n55TbeclhyFZuC+eMQ83uzn
dl8vjbLZt0g4L7dLakFXQvtYTIuswb8QPyfKTqnXrLfTggKEvmHKaZzPyWGps/2G
5bbw6WUuIWe+szx7YZ7bmr4+Xf9U8rlMPVEvzyGLu1qvAqRgtTSIjsUdOS0cxkZx
GhI0E51MWD0M7BSNQySZBxirWQuQMAF2d9yTrGJA2jLxm7KrtCCKF5fsFk8J+qVt
DTzmm5e3n0zuKSZKjP3tCUZLPJGaa2CcArpQSYlJlHXBLlCQ8OpokAWCG+/PDS4U
IxQktMj2pUI+ynU/Zmdnub/dP0ZBvt3iZIBwRB6VP0RCyuoD+hBfS2irGQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFJwYnyqCqEGrHtbpUUeGHyR/VA8GMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvbkJpZktvS29RYXNlMXVsUlI0WWZKSDlVRHdZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQAD
MA0GCSqGSIb3DQEBCwUAA4IBAQAeDvylhBT3a+QfURELW/fSmzPlkWizEjhbbWm1
ovVnKItVCoTuoxMzQR+/FbghuKSDb9M63ZhXFJIY7gKBHC2C5Ej+Mf3qBDeILpVo
nLOqi3FtmBlDtVRqfhcbiPNtE+qhcjpl1D7/WDjg/SO4ZhNeD2OUCi5DHgtVGPaN
HT2gTJiC7M5zzOu0S2wIVPmU5ir5X/A4YAxXT3z2Dn5qw5MHFIIegyScFuNBXPph
bD5Qy0ew+cPVFykhMA6IpytVrfpimlkciq4hgV2s3QSyT4SRuwOKpgowrnARi2Ss
dt6GJ0U3et3upcci/zYjA1q55IqXsF5bOvn6n8TpCKKeQnUE
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org