Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/qJNRfIvcbDBZS3PFf6JxdUqWyO0.roa
File: qJNRfIvcbDBZS3PFf6JxdUqWyO0.roa (raw, json)
Hash identifier: PHQqnH2/zLMM2Ne1DpwdkRgGpcU9rEqavuxhaYzwsA0=
Subject key identifier: A8:93:51:7C:8B:DC:6C:30:59:4B:73:C5:7F:A2:71:75:4A:96:C8:ED
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F94929B0B2AFDE0F9116E0A2C43A7C6
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/qJNRfIvcbDBZS3PFf6JxdUqWyO0.roa
Signing time: Tue 06 Feb 2024 18:00:59 +0000
ROA not before: Tue 06 Feb 2024 18:00:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202239
IP address blocks: 2a0f:b241:35::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:94:92:9b:0b:2a:fd:e0:f9:11:6e:0a:2c:43:a7:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:00:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a893517c8bdc6c30594b73c57fa271754a96c8ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5d:c5:3b:13:57:fc:4f:ab:4f:7d:18:6d:59:
9b:3b:d7:63:55:54:fd:19:af:30:4a:b5:09:20:97:
94:58:6e:4e:76:03:9d:2e:05:38:f6:41:3d:38:bc:
7b:cb:19:20:d5:78:b4:c7:43:0d:bd:d0:4f:92:7d:
57:47:a8:84:0b:63:a8:55:86:7e:2d:c1:09:40:d1:
ff:5f:76:4a:69:e7:3c:9c:42:b2:d1:86:da:3a:1b:
ae:5d:5c:77:4f:50:27:60:02:b7:2e:07:65:16:8c:
e6:56:dd:3f:92:91:40:b3:96:86:ea:37:f9:0e:55:
9f:c3:be:1d:c9:0e:e9:76:ca:94:9f:f9:2e:d7:40:
45:9d:b0:70:21:de:c5:50:4d:65:3b:e8:83:d0:8c:
b6:0d:12:47:a8:57:f4:cc:44:74:dd:f9:8c:54:54:
76:0d:53:65:9a:df:4b:60:8f:78:89:74:a0:5a:99:
4d:29:b6:7e:90:a7:33:35:13:9c:bb:9d:8b:3e:db:
22:12:9a:03:fe:2f:5e:72:6c:fe:22:22:c8:1c:d5:
15:11:b5:bf:98:9c:c1:41:ae:41:cb:96:14:5d:4c:
3c:dc:de:f1:d7:a9:de:f5:d7:1e:01:34:c8:79:e5:
5a:c2:98:cb:83:51:1c:e2:8c:c8:cc:a7:e6:75:9b:
d1:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:93:51:7C:8B:DC:6C:30:59:4B:73:C5:7F:A2:71:75:4A:96:C8:ED
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/qJNRfIvcbDBZS3PFf6JxdUqWyO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:35::/48
Signature Algorithm: sha256WithRSAEncryption
17:3b:39:34:3f:3c:62:01:4c:cd:53:35:f5:fa:97:a0:2b:0c:
cd:f8:36:ee:e9:e2:72:9c:d3:90:2a:85:07:c6:73:e9:83:11:
9b:c3:88:c1:0f:11:33:58:34:58:eb:61:7c:4b:d8:b0:c4:42:
cc:d2:a0:ff:3c:2a:be:8a:8d:0b:9d:d1:1b:c9:bf:a9:5e:c5:
98:06:04:f8:4f:35:47:b7:76:02:54:30:e1:d1:41:49:56:5b:
6e:88:16:5d:66:ff:3c:20:5a:87:30:81:f6:16:13:75:fc:2e:
69:f6:ac:8d:1c:b0:78:13:7a:62:ce:b0:94:c0:41:6e:94:2d:
9c:58:67:9b:31:36:c2:10:cb:1f:a5:ca:1b:fc:8b:a9:62:0b:
68:40:71:31:d0:09:80:9f:88:f8:37:86:e6:e2:1c:1a:74:73:
61:25:d6:44:9d:c5:ad:52:00:f6:ff:60:f2:a0:7a:f1:22:14:
bd:c7:38:cc:41:d7:6c:61:96:5f:53:0d:e4:c1:97:2e:b5:ef:
a5:61:c3:c2:1b:04:40:77:ea:a6:61:35:ca:e5:e5:fc:67:56:
12:62:0d:a9:26:84:02:1b:b3:05:df:7f:10:32:9e:b2:50:bf:
40:8d:5c:b2:b2:d2:4d:ce:60:42:20:49:46:d7:4c:4d:77:8e:
f0:b4:e7:7c
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/lJKbCyr94PkRbgosQ6fGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgwMDU5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhODkzNTE3YzhiZGM2YzMwNTk0YjczYzU3ZmEyNzE3NTRhOTZjOGVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwV3FOxNX/E+rT30YbVmbO9djVVT9
Ga8wSrUJIJeUWG5OdgOdLgU49kE9OLx7yxkg1Xi0x0MNvdBPkn1XR6iEC2OoVYZ+
LcEJQNH/X3ZKaec8nEKy0YbaOhuuXVx3T1AnYAK3LgdlFozmVt0/kpFAs5aG6jf5
DlWfw74dyQ7pdsqUn/ku10BFnbBwId7FUE1lO+iD0Iy2DRJHqFf0zER03fmMVFR2
DVNlmt9LYI94iXSgWplNKbZ+kKczNROcu52LPtsiEpoD/i9ecmz+IiLIHNUVEbW/
mJzBQa5By5YUXUw83N7x16ne9dceATTIeeVawpjLg1Ec4ozIzKfmdZvRLQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFKiTUXyL3GwwWUtzxX+icXVKlsjtMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvcUpOUmZJdmNiREJaUzNQRmY2SnhkVXFXeU8wLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQA1
MA0GCSqGSIb3DQEBCwUAA4IBAQAXOzk0PzxiAUzNUzX1+pegKwzN+Dbu6eJynNOQ
KoUHxnPpgxGbw4jBDxEzWDRY62F8S9iwxELM0qD/PCq+io0LndEbyb+pXsWYBgT4
TzVHt3YCVDDh0UFJVltuiBZdZv88IFqHMIH2FhN1/C5p9qyNHLB4E3pizrCUwEFu
lC2cWGebMTbCEMsfpcob/IupYgtoQHEx0AmAn4j4N4bm4hwadHNhJdZEncWtUgD2
/2DyoHrxIhS9xzjMQddsYZZfUw3kwZcute+lYcPCGwRAd+qmYTXK5eX8Z1YSYg2p
JoQCG7MF338QMp6yUL9AjVyystJNzmBCIElG10xNd47wtOd8
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org