Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/uu9TYv8bJV0q5__46pMY-64LkOI.roa
File: uu9TYv8bJV0q5__46pMY-64LkOI.roa (raw, json)
Hash identifier: 7nT2dOMkeYcv4TdB2j6ZZM0Ws11CCd5SHiUbup0Vuzk=
Subject key identifier: BA:EF:53:62:FF:1B:25:5D:2A:E7:FF:F8:EA:93:18:FB:AE:0B:90:E2
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA9E02ED8FAED13CCC93DF51B13D509
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/uu9TYv8bJV0q5__46pMY-64LkOI.roa
Signing time: Tue 06 Feb 2024 18:24:15 +0000
ROA not before: Tue 06 Feb 2024 18:24:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200592
IP address blocks: 2a0f:b241:c5::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a9:e0:2e:d8:fa:ed:13:cc:c9:3d:f5:1b:13:d5:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:24:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=baef5362ff1b255d2ae7fff8ea9318fbae0b90e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:be:1f:7a:43:9f:20:6e:9f:96:c8:8b:5e:91:
b9:da:83:64:9e:a6:d1:0c:63:f0:99:41:f6:2e:9d:
5e:89:ee:a8:11:26:5a:2c:2c:33:d1:d6:ac:c1:49:
f3:b7:0f:c3:b9:a3:a8:38:87:7e:c7:61:16:f1:5f:
f6:4a:cf:9a:7d:0b:62:6a:3b:71:2e:9b:f9:7d:b0:
cf:0a:24:72:f2:ad:c2:81:3a:59:7d:2d:73:85:1e:
9f:39:c1:9d:e9:45:a9:2c:26:3a:d1:df:05:2c:5a:
25:b5:64:62:7d:10:4b:68:7a:f7:cc:3a:fe:d9:cd:
a8:db:44:ae:82:b1:04:ec:9a:77:d7:ce:7e:bf:b5:
e2:db:30:69:40:c7:5c:ea:ee:2c:c6:e9:c2:a9:19:
25:a0:38:17:14:94:83:09:0b:c9:44:14:d2:c6:21:
fc:b2:3c:ee:6b:0f:18:89:be:80:22:44:92:b5:9b:
e4:33:b1:58:1e:70:3d:f2:46:bb:7a:e0:95:a0:9b:
0e:b8:db:ec:5f:fb:26:e7:4e:87:48:44:c7:07:4d:
b1:b6:0f:03:c2:72:8b:52:f8:67:74:4a:75:2d:a8:
5d:2e:50:6c:bb:fc:3a:2b:10:c0:47:2e:25:a8:47:
7c:62:50:08:40:c4:38:4d:66:04:23:86:ee:36:27:
98:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:EF:53:62:FF:1B:25:5D:2A:E7:FF:F8:EA:93:18:FB:AE:0B:90:E2
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/uu9TYv8bJV0q5__46pMY-64LkOI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:c5::/48
Signature Algorithm: sha256WithRSAEncryption
11:05:c5:9c:a9:31:e2:50:25:95:2a:bc:87:b4:79:95:59:38:
6c:f5:29:09:9c:c7:0e:d1:ce:f1:b0:95:6c:30:de:30:d7:92:
98:98:0c:38:74:e8:52:ae:cb:d9:f6:88:87:6a:ce:11:6a:60:
2f:84:45:f0:26:1b:3f:15:25:29:8f:d9:a0:48:b4:ff:53:42:
96:21:6e:25:d3:55:1f:d4:0c:51:12:1c:92:92:61:b6:f4:87:
0e:48:99:d9:44:47:e8:4f:2d:55:fd:40:7f:56:d0:e3:dd:5e:
02:38:6e:8c:21:4c:da:3b:ae:1a:75:8e:c0:95:9c:b0:aa:5f:
a6:1b:29:e1:96:ac:c1:21:c9:45:d1:83:4a:2a:b5:bd:4d:25:
7b:ec:d0:5e:00:c9:ea:10:2a:34:f1:b1:1e:70:c1:f0:e8:c5:
69:44:c5:0e:76:61:05:60:68:be:99:d5:d4:0f:2f:29:f4:3c:
b3:fb:21:af:3f:9d:02:dc:b2:d3:04:f0:7d:9c:5b:e2:fc:b4:
c6:d2:5c:96:60:4e:90:59:45:ed:96:0a:c7:e3:fe:75:a5:57:
5c:af:53:ea:f1:f2:68:62:cd:b6:ae:48:63:57:40:d1:51:c2:
dd:6e:42:53:86:0d:b7:35:61:7b:da:99:c7:ef:7d:47:f1:de:
fe:03:f1:cb
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/qeAu2PrtE8zJPfUbE9UJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgyNDE1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYWVmNTM2MmZmMWIyNTVkMmFlN2ZmZjhlYTkzMThmYmFlMGI5MGUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzr4fekOfIG6flsiLXpG52oNknqbR
DGPwmUH2Lp1eie6oESZaLCwz0daswUnztw/DuaOoOId+x2EW8V/2Ss+afQtiajtx
Lpv5fbDPCiRy8q3CgTpZfS1zhR6fOcGd6UWpLCY60d8FLFoltWRifRBLaHr3zDr+
2c2o20SugrEE7Jp3185+v7Xi2zBpQMdc6u4sxunCqRkloDgXFJSDCQvJRBTSxiH8
sjzuaw8Yib6AIkSStZvkM7FYHnA98ka7euCVoJsOuNvsX/sm506HSETHB02xtg8D
wnKLUvhndEp1LahdLlBsu/w6KxDARy4lqEd8YlAIQMQ4TWYEI4buNieYJwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFLrvU2L/GyVdKuf/+OqTGPuuC5DiMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvdXU5VFl2OGJKVjBxNV9fNDZwTVktNjRMa09JLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQDF
MA0GCSqGSIb3DQEBCwUAA4IBAQARBcWcqTHiUCWVKryHtHmVWThs9SkJnMcO0c7x
sJVsMN4w15KYmAw4dOhSrsvZ9oiHas4RamAvhEXwJhs/FSUpj9mgSLT/U0KWIW4l
01Uf1AxREhySkmG29IcOSJnZREfoTy1V/UB/VtDj3V4COG6MIUzaO64adY7AlZyw
ql+mGynhlqzBIclF0YNKKrW9TSV77NBeAMnqECo08bEecMHw6MVpRMUOdmEFYGi+
mdXUDy8p9Dyz+yGvP50C3LLTBPB9nFvi/LTG0lyWYE6QWUXtlgrH4/51pVdcr1Pq
8fJoYs22rkhjV0DRUcLdbkJThg23NWF72pnH731H8d7+A/HL
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:14 2024 by rpki-client on console-fra.rpki-client.org