Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/z1lY9Z88A5ScXGlGkIiPsXmIWC0.roa
File: z1lY9Z88A5ScXGlGkIiPsXmIWC0.roa (raw, json)
Hash identifier: PrQlFAggyp6psjsZD1HTVXHPXxKUzPPfecYtJPlHLlg=
Subject key identifier: CF:59:58:F5:9F:3C:03:94:9C:5C:69:46:90:88:8F:B1:79:88:58:2D
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F9497AF8A0B6402A2B44F6DCB6A52E0
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/z1lY9Z88A5ScXGlGkIiPsXmIWC0.roa
Signing time: Tue 06 Feb 2024 18:01:00 +0000
ROA not before: Tue 06 Feb 2024 18:01:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206203
IP address blocks: 2a0f:b241:3b::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:94:97:af:8a:0b:64:02:a2:b4:4f:6d:cb:6a:52:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:01:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cf5958f59f3c03949c5c694690888fb17988582d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:1d:cd:25:60:bf:ab:d7:24:f7:5d:1c:b8:40:
13:bb:54:08:3c:e2:2f:24:27:ea:a3:a7:a5:74:38:
da:ea:69:4c:72:3e:6a:7e:33:9d:90:29:d8:a8:e9:
42:37:cc:18:77:4c:f7:af:08:a3:4c:b9:9c:5d:67:
22:20:b1:89:ff:07:81:69:2c:38:cc:1d:27:b2:27:
18:c0:c2:5c:37:bc:42:74:b1:63:07:9b:cd:f7:23:
db:37:f5:f9:f0:b7:f9:0f:29:9b:c4:b2:49:2b:e2:
a2:77:70:1f:57:ac:6d:70:dd:f3:8f:e2:fc:a0:00:
b5:4f:2d:87:f6:73:a5:a1:be:9a:34:e0:ba:12:2c:
db:77:f3:08:a8:7e:7c:7a:b5:01:42:89:de:11:c8:
4c:ae:69:7d:a7:0b:59:28:0d:13:4b:ac:01:d9:27:
36:3d:01:5d:9d:28:07:81:82:8d:b7:7f:e3:9c:89:
44:e1:16:c3:2d:a7:7c:a4:be:83:31:8e:dd:44:b1:
91:28:09:8e:f8:6b:4c:8f:5d:40:1e:f1:ee:95:25:
a7:ad:14:ed:6c:5f:46:30:b2:6e:23:67:fb:b9:0b:
ef:c2:de:33:c4:88:3d:cd:be:1c:2b:48:bd:5f:e6:
14:53:8a:e2:0b:80:66:b4:47:5a:f7:8c:9c:cf:73:
65:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:59:58:F5:9F:3C:03:94:9C:5C:69:46:90:88:8F:B1:79:88:58:2D
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/z1lY9Z88A5ScXGlGkIiPsXmIWC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:3b::/48
Signature Algorithm: sha256WithRSAEncryption
63:7e:0c:70:2b:2a:13:b1:75:82:65:89:0a:6e:2b:d5:f9:49:
b8:da:27:d4:0b:54:09:15:e9:72:63:d9:11:23:56:8d:75:2e:
6b:e7:b4:a4:b5:1b:31:9d:aa:b1:bd:31:3d:8b:bf:17:4f:4d:
2e:b7:8c:f2:d0:55:61:6f:6d:ec:19:27:44:91:c7:cb:f0:81:
2f:75:35:35:92:b0:84:73:87:8f:0b:c4:1d:3c:40:cf:a4:e3:
ce:14:b8:ba:16:ae:4c:62:a3:4c:65:a7:7e:6b:cb:ea:e3:fd:
64:6a:5e:0d:b8:f0:ec:05:c4:d9:48:ef:b9:d1:7f:17:11:96:
bd:75:89:4c:d6:8f:c5:9a:9d:c5:c0:bd:a9:32:24:a9:92:b1:
a8:0f:dc:b3:b2:2b:0d:82:0f:55:f5:d0:f0:8c:34:9a:42:6a:
cb:e5:db:4d:8d:27:c8:a0:3a:3b:72:f7:af:c6:6d:7a:65:e1:
75:5e:34:3b:e5:f1:52:04:42:92:e9:39:8f:67:4b:25:64:ce:
19:76:c6:2a:d9:23:f6:04:b7:91:90:f4:51:89:7d:6b:72:9a:
be:c4:19:f4:19:14:61:ae:07:94:7b:cc:15:e6:d4:7a:7c:be:
34:11:e2:b9:87:62:c0:3c:42:e5:2a:f3:e4:95:95:26:16:2d:
3e:cb:c0:f6
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/lJevigtkAqK0T23LalLgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgwMTAwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZjU5NThmNTlmM2MwMzk0OWM1YzY5NDY5MDg4OGZiMTc5ODg1ODJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjh3NJWC/q9ck910cuEATu1QIPOIv
JCfqo6eldDja6mlMcj5qfjOdkCnYqOlCN8wYd0z3rwijTLmcXWciILGJ/weBaSw4
zB0nsicYwMJcN7xCdLFjB5vN9yPbN/X58Lf5DymbxLJJK+Kid3AfV6xtcN3zj+L8
oAC1Ty2H9nOlob6aNOC6Eizbd/MIqH58erUBQoneEchMrml9pwtZKA0TS6wB2Sc2
PQFdnSgHgYKNt3/jnIlE4RbDLad8pL6DMY7dRLGRKAmO+GtMj11AHvHulSWnrRTt
bF9GMLJuI2f7uQvvwt4zxIg9zb4cK0i9X+YUU4riC4BmtEda94ycz3Nl1QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFM9ZWPWfPAOUnFxpRpCIj7F5iFgtMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvejFsWTlaODhBNVNjWEdsR2tJaVBzWG1JV0MwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQA7
MA0GCSqGSIb3DQEBCwUAA4IBAQBjfgxwKyoTsXWCZYkKbivV+Um42ifUC1QJFely
Y9kRI1aNdS5r57SktRsxnaqxvTE9i78XT00ut4zy0FVhb23sGSdEkcfL8IEvdTU1
krCEc4ePC8QdPEDPpOPOFLi6Fq5MYqNMZad+a8vq4/1kal4NuPDsBcTZSO+50X8X
EZa9dYlM1o/Fmp3FwL2pMiSpkrGoD9yzsisNgg9V9dDwjDSaQmrL5dtNjSfIoDo7
cvevxm16ZeF1XjQ75fFSBEKS6TmPZ0slZM4ZdsYq2SP2BLeRkPRRiX1rcpq+xBn0
GRRhrgeUe8wV5tR6fL40EeK5h2LAPELlKvPklZUmFi0+y8D2
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:14 2024 by rpki-client on console-fra.rpki-client.org