Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/sMuZH9BH-v2bRXKL6GUr2go--Xg.roa
File: sMuZH9BH-v2bRXKL6GUr2go--Xg.roa (raw, json)
Hash identifier: uzBB1bJVI3yMxRcIax2BSrTKov0yNNf9Af3p2pN0dUQ=
Subject key identifier: B0:CB:99:1F:D0:47:FA:FD:9B:45:72:8B:E8:65:2B:DA:0A:3E:F9:78
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FABBA5438C657F305FA92872B358203
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/sMuZH9BH-v2bRXKL6GUr2go--Xg.roa
Signing time: Tue 06 Feb 2024 18:26:17 +0000
ROA not before: Tue 06 Feb 2024 18:26:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205987
IP address blocks: 2a0f:b241:ee::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ab:ba:54:38:c6:57:f3:05:fa:92:87:2b:35:82:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:26:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b0cb991fd047fafd9b45728be8652bda0a3ef978
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:56:0c:1d:2b:f9:ab:88:f2:42:ce:82:03:04:
07:ff:dc:a2:d3:2b:f8:da:58:c0:8f:83:c3:07:71:
6d:33:80:31:f7:d1:2a:72:31:88:f9:e2:6b:2e:8b:
81:5f:a1:22:34:f6:0b:e2:9c:54:60:ef:a4:18:40:
88:42:df:8c:22:8c:c1:3d:24:c5:3d:41:6a:16:2c:
d6:2f:64:4d:1f:b4:b1:28:7e:8c:aa:57:85:6d:c7:
3d:6e:3f:01:40:33:34:20:a8:43:fa:e8:a5:12:83:
b6:66:4f:a6:41:67:26:49:68:14:df:41:76:f2:58:
00:b8:3d:25:91:9d:26:11:70:fb:36:d0:a3:00:ad:
af:26:5a:d1:4f:16:5a:6e:06:63:41:2d:0a:4c:e6:
0e:32:ad:f3:11:8b:01:7d:70:6a:f3:83:8a:68:2f:
dc:38:17:2a:82:08:04:c3:7a:88:12:8e:22:87:86:
75:71:3e:af:c1:fe:fd:78:b5:1e:01:84:69:82:c4:
3f:97:39:7c:85:ca:ed:8f:f1:d8:49:c9:a9:25:07:
77:fe:11:b3:b4:f2:01:85:23:92:b6:27:fe:7a:2f:
e8:86:f0:34:df:76:34:d0:8e:0f:00:30:5b:6f:8c:
50:41:48:fe:11:bf:d6:ba:ee:73:26:be:40:6f:38:
9f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:CB:99:1F:D0:47:FA:FD:9B:45:72:8B:E8:65:2B:DA:0A:3E:F9:78
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/sMuZH9BH-v2bRXKL6GUr2go--Xg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:ee::/48
Signature Algorithm: sha256WithRSAEncryption
6f:c4:9b:d0:84:39:af:1e:d2:75:66:09:70:a9:70:51:ef:99:
ac:c5:51:b1:13:18:32:7e:75:49:ed:0a:81:69:3d:47:cf:58:
ca:87:de:f7:b5:82:8f:ca:d4:c2:2e:15:06:ca:09:eb:a0:3d:
d0:fe:32:e6:75:5b:83:69:42:63:23:14:99:e7:74:65:6b:96:
9c:ab:f4:7c:b3:d8:ba:1e:99:51:3a:b8:d9:81:04:be:53:95:
33:a6:77:90:65:3e:4e:e7:f5:8b:26:e7:cf:84:91:6a:22:cf:
ff:97:07:f3:25:a0:46:d3:37:ef:00:31:e1:5a:13:df:87:ce:
1e:3c:72:47:33:ae:30:43:ae:66:3d:cc:88:5c:5d:10:d7:30:
a4:a4:d5:8d:80:2a:45:bb:2f:a6:56:1a:17:75:be:e6:3a:b2:
da:a0:ba:82:f0:75:59:6a:56:42:16:84:86:44:3a:b4:30:73:
a8:91:26:a2:20:8f:fc:90:96:cf:63:08:53:54:f8:92:5c:c0:
b1:af:8e:f5:61:e1:23:b3:d9:b8:b9:7b:ce:64:35:c5:85:ea:
38:a1:8f:9e:7b:ea:c1:2e:62:e7:b7:90:97:35:8b:aa:77:34:
1f:ca:65:00:37:9f:be:fc:6d:2d:b3:07:fa:22:e6:fd:17:82:
07:a1:a3:f5
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/q7pUOMZX8wX6kocrNYIDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgyNjE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMGNiOTkxZmQwNDdmYWZkOWI0NTcyOGJlODY1MmJkYTBhM2VmOTc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA41YMHSv5q4jyQs6CAwQH/9yi0yv4
2ljAj4PDB3FtM4Ax99EqcjGI+eJrLouBX6EiNPYL4pxUYO+kGECIQt+MIozBPSTF
PUFqFizWL2RNH7SxKH6MqleFbcc9bj8BQDM0IKhD+uilEoO2Zk+mQWcmSWgU30F2
8lgAuD0lkZ0mEXD7NtCjAK2vJlrRTxZabgZjQS0KTOYOMq3zEYsBfXBq84OKaC/c
OBcqgggEw3qIEo4ih4Z1cT6vwf79eLUeAYRpgsQ/lzl8hcrtj/HYScmpJQd3/hGz
tPIBhSOStif+ei/ohvA033Y00I4PADBbb4xQQUj+Eb/Wuu5zJr5AbzifqQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFLDLmR/QR/r9m0Vyi+hlK9oKPvl4MB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvc011Wkg5QkgtdjJiUlhLTDZHVXIyZ28tLVhnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQDu
MA0GCSqGSIb3DQEBCwUAA4IBAQBvxJvQhDmvHtJ1ZglwqXBR75msxVGxExgyfnVJ
7QqBaT1Hz1jKh973tYKPytTCLhUGygnroD3Q/jLmdVuDaUJjIxSZ53Rla5acq/R8
s9i6HplROrjZgQS+U5UzpneQZT5O5/WLJufPhJFqIs//lwfzJaBG0zfvADHhWhPf
h84ePHJHM64wQ65mPcyIXF0Q1zCkpNWNgCpFuy+mVhoXdb7mOrLaoLqC8HVZalZC
FoSGRDq0MHOokSaiII/8kJbPYwhTVPiSXMCxr471YeEjs9m4uXvOZDXFheo4oY+e
e+rBLmLnt5CXNYuqdzQfymUAN5++/G0tswf6Iub9F4IHoaP1
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:11 2024 by rpki-client on console-ams.rpki-client.org