Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/q13tbFwSuCXujA2DWu5FVXe8TUs.roa
File: q13tbFwSuCXujA2DWu5FVXe8TUs.roa (raw, json)
Hash identifier: E8320kQEJtPb7y6oBOGhGmg8EWOrmBBQ/kfhqrbXuwo=
Subject key identifier: AB:5D:ED:6C:5C:12:B8:25:EE:8C:0D:83:5A:EE:45:55:77:BC:4D:4B
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0B03B5FA30A14616DC70CBE614517
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/q13tbFwSuCXujA2DWu5FVXe8TUs.roa
Signing time: Wed 07 Feb 2024 05:00:50 +0000
ROA not before: Wed 07 Feb 2024 05:00:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213312
IP address blocks: 2a0f:b241:24::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:b0:3b:5f:a3:0a:14:61:6d:c7:0c:be:61:45:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab5ded6c5c12b825ee8c0d835aee455577bc4d4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:b7:b6:81:38:7e:59:91:31:79:f2:dd:5d:83:
01:ba:13:3b:c0:3f:d7:2b:69:22:07:c1:27:a2:b1:
5e:67:86:d7:0f:0b:0a:2e:62:da:c8:cb:42:31:10:
40:44:43:90:68:a7:f9:55:a2:6f:bd:a5:e2:c5:85:
fe:3b:60:04:46:9f:d6:4f:99:c1:be:87:88:5e:62:
05:48:43:40:2c:02:ff:15:24:0f:7a:e2:65:aa:36:
c1:be:18:56:65:cb:5d:98:db:6d:d1:00:a4:8e:93:
84:e5:64:27:3e:dd:ae:8a:37:9d:00:0d:0a:90:e0:
b2:80:ab:21:33:30:b6:25:a9:d3:f5:c9:5d:60:2a:
f9:3f:c4:8f:b6:43:d9:fa:cb:b8:db:5c:e7:c9:a3:
1b:de:68:ae:3e:16:a2:76:e1:f3:bf:8e:25:da:67:
99:c7:d5:7f:a0:ee:d9:f0:f0:8d:b0:e9:d7:03:d7:
a7:cd:02:c6:07:3a:7c:62:08:16:68:bf:08:18:91:
33:94:00:87:ae:67:85:bd:39:90:53:45:5c:06:42:
4c:28:a9:ac:fd:b8:02:0d:30:3b:fa:09:bd:47:ec:
de:ce:df:a9:fb:9e:64:06:03:77:ad:95:03:d3:2e:
86:8f:84:28:12:4b:84:8d:9f:68:5e:19:07:db:03:
54:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:5D:ED:6C:5C:12:B8:25:EE:8C:0D:83:5A:EE:45:55:77:BC:4D:4B
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/q13tbFwSuCXujA2DWu5FVXe8TUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:24::/48
Signature Algorithm: sha256WithRSAEncryption
59:f2:ce:fc:2b:d5:b7:19:d9:2f:ce:a8:68:c2:81:27:14:63:
34:82:57:32:0a:f3:36:f1:b6:c3:be:5f:6e:e3:24:00:39:2b:
b1:95:d3:62:68:eb:59:78:37:a8:ca:47:6c:b2:8c:f5:0d:16:
d8:ac:af:f9:2d:38:3b:a1:7a:02:c6:23:5d:91:3f:e2:c3:08:
b4:d0:b8:1f:6f:85:0f:d0:b0:4d:e3:a1:20:a5:01:21:0f:72:
72:06:13:bf:5a:61:02:f7:f1:fb:c9:ba:8a:2d:9d:2f:0a:fe:
5a:34:39:a9:36:5f:62:4c:4a:00:91:03:38:40:12:3d:3d:67:
74:bd:c1:1a:7c:c8:a3:14:39:89:64:6e:b7:5e:cc:89:2d:62:
5e:1a:50:b5:d2:b5:81:f4:df:40:14:82:94:63:a6:7a:11:3d:
24:9c:23:31:86:b6:be:fa:ac:64:9b:21:a7:98:ee:65:a8:e0:
6c:b1:62:fe:98:20:8d:86:6a:b3:f8:5a:fe:78:df:11:af:b5:
d9:79:42:1d:19:f4:4e:4d:8d:15:11:c0:11:c3:b9:3e:57:1b:
e2:90:54:5a:d1:b2:53:2f:98:56:18:e1:d9:3b:83:b3:77:8a:
66:cf:7d:33:c5:f9:37:13:fb:f1:5f:92:10:a7:06:5f:d6:55:
f0:0c:00:82
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY2B8LA7X6MKFGFtxwy+YUUXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA3MDUwMDUwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhYjVkZWQ2YzVjMTJiODI1ZWU4YzBkODM1YWVlNDU1NTc3YmM0ZDRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhre2gTh+WZExefLdXYMBuhM7wD/X
K2kiB8EnorFeZ4bXDwsKLmLayMtCMRBAREOQaKf5VaJvvaXixYX+O2AERp/WT5nB
voeIXmIFSENALAL/FSQPeuJlqjbBvhhWZctdmNtt0QCkjpOE5WQnPt2uijedAA0K
kOCygKshMzC2JanT9cldYCr5P8SPtkPZ+su421znyaMb3miuPhaiduHzv44l2meZ
x9V/oO7Z8PCNsOnXA9enzQLGBzp8YggWaL8IGJEzlACHrmeFvTmQU0VcBkJMKKms
/bgCDTA7+gm9R+zezt+p+55kBgN3rZUD0y6Gj4QoEkuEjZ9oXhkH2wNU9QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFKtd7WxcErgl7owNg1ruRVV3vE1LMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvcTEzdGJGd1N1Q1h1akEyRFd1NUZWWGU4VFVzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQAk
MA0GCSqGSIb3DQEBCwUAA4IBAQBZ8s78K9W3GdkvzqhowoEnFGM0glcyCvM28bbD
vl9u4yQAOSuxldNiaOtZeDeoykdssoz1DRbYrK/5LTg7oXoCxiNdkT/iwwi00Lgf
b4UP0LBN46EgpQEhD3JyBhO/WmEC9/H7ybqKLZ0vCv5aNDmpNl9iTEoAkQM4QBI9
PWd0vcEafMijFDmJZG63XsyJLWJeGlC10rWB9N9AFIKUY6Z6ET0knCMxhra++qxk
myGnmO5lqOBssWL+mCCNhmqz+Fr+eN8Rr7XZeUIdGfROTY0VEcARw7k+VxvikFRa
0bJTL5hWGOHZO4Ozd4pmz30zxfk3E/vxX5IQpwZf1lXwDACC
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:13 2024 by rpki-client on console-fra.rpki-client.org