Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/z4AguVDseHzQaAUqhkyzSPhFXB0.roa
File: z4AguVDseHzQaAUqhkyzSPhFXB0.roa (raw, json)
Hash identifier: 5q+XMMM236jSQm8DEFOUvsQqVf38ZEnX6AacCN36u4M=
Subject key identifier: CF:80:20:B9:50:EC:78:7C:D0:68:05:2A:86:4C:B3:48:F8:45:5C:1D
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F091192CA41C30C06580E124CE50F1
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/z4AguVDseHzQaAUqhkyzSPhFXB0.roa
Signing time: Wed 07 Feb 2024 05:00:43 +0000
ROA not before: Wed 07 Feb 2024 05:00:43 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204914
IP address blocks: 2a0f:b241:139::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:91:19:2c:a4:1c:30:c0:65:80:e1:24:ce:50:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:43 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cf8020b950ec787cd068052a864cb348f8455c1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:0c:b1:7c:19:59:e4:41:d4:97:2d:f6:e4:63:
24:fe:8a:24:b0:24:50:d7:cf:7b:12:7a:8a:d5:31:
6c:af:4d:e0:c3:44:a4:0c:8c:b2:12:5a:b3:06:33:
63:86:5d:46:eb:32:1a:90:36:15:5f:4f:d9:f6:54:
68:fa:b4:9e:7b:9d:de:31:ee:99:f8:30:ab:08:9b:
aa:a3:e3:1e:d3:1c:e3:05:0c:bd:4c:19:03:df:da:
bc:4b:db:fa:8f:46:5e:a6:32:d3:75:74:4e:be:c4:
ba:36:63:5a:7f:45:4d:bf:67:63:01:0a:11:de:f9:
a2:17:d3:30:ab:48:33:93:60:38:b7:dd:8f:36:3b:
1f:ae:8b:01:9c:50:76:f2:52:cc:3e:40:29:dd:1b:
4c:db:95:9d:91:53:8e:89:17:1b:21:99:50:7f:e8:
fb:53:3d:c8:65:4c:fc:5b:43:75:5d:18:01:3f:1c:
6b:48:6a:97:a8:39:15:dc:f0:d4:6b:40:d2:59:a4:
60:04:eb:24:4c:87:9c:78:83:4d:46:8f:fa:6b:f4:
7a:cf:f3:96:69:5a:03:54:8b:77:c4:a3:08:a9:87:
7c:31:1a:20:34:5c:58:ce:e0:c2:5f:aa:ae:c5:6d:
12:1e:1c:41:83:0d:c9:be:98:8f:ac:e8:37:db:e0:
dc:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:80:20:B9:50:EC:78:7C:D0:68:05:2A:86:4C:B3:48:F8:45:5C:1D
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/z4AguVDseHzQaAUqhkyzSPhFXB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:139::/48
Signature Algorithm: sha256WithRSAEncryption
2f:76:b7:ec:f4:e5:9e:c2:79:79:56:4a:a6:a9:16:27:dd:0a:
0c:73:21:6e:3c:ce:de:e0:3c:8a:f2:75:e0:33:4d:cd:66:d3:
79:cf:0f:8b:73:1b:53:3c:37:3c:46:c9:09:c9:34:d4:b5:41:
38:09:00:8d:97:2c:3d:da:75:c6:aa:a7:aa:78:3d:ed:7e:a1:
ca:38:c0:5d:0c:ea:89:f6:3c:e1:a8:90:e4:01:f9:69:81:d1:
1f:d2:e2:b7:8b:d7:7c:72:ce:bc:b8:9d:1e:69:ad:0f:8c:ab:
25:d3:54:fa:ef:2e:4e:c0:3e:ab:dc:ba:b3:2b:3a:12:42:14:
d2:38:d8:d8:df:20:40:ca:d9:a8:7d:29:68:93:2c:a5:67:f6:
d5:ba:e6:32:ea:06:6b:7b:5c:dd:a3:b6:e0:72:d5:86:e7:54:
c0:c5:c4:d2:27:48:1b:33:82:d6:c9:e8:51:06:43:b5:e0:5c:
b0:5c:6c:1a:b0:23:0e:47:8d:d5:d8:e0:89:20:f4:a0:62:ae:
c1:b4:9f:9a:0e:34:7c:b1:0b:e8:a1:99:06:77:45:fb:07:21:
1f:10:4b:46:5c:44:c3:ab:a7:17:bd:81:ce:bc:a6:76:3f:8a:
9c:7c:21:b5:d6:24:7f:ff:36:df:ce:79:78:c9:65:61:75:fa:
7e:78:69:0e
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY2B8JEZLKQcMMBlgOEkzlDxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA3MDUwMDQzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZjgwMjBiOTUwZWM3ODdjZDA2ODA1MmE4NjRjYjM0OGY4NDU1YzFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkAyxfBlZ5EHUly325GMk/ooksCRQ
1897EnqK1TFsr03gw0SkDIyyElqzBjNjhl1G6zIakDYVX0/Z9lRo+rSee53eMe6Z
+DCrCJuqo+Me0xzjBQy9TBkD39q8S9v6j0ZepjLTdXROvsS6NmNaf0VNv2djAQoR
3vmiF9Mwq0gzk2A4t92PNjsfrosBnFB28lLMPkAp3RtM25WdkVOOiRcbIZlQf+j7
Uz3IZUz8W0N1XRgBPxxrSGqXqDkV3PDUa0DSWaRgBOskTIeceINNRo/6a/R6z/OW
aVoDVIt3xKMIqYd8MRogNFxYzuDCX6quxW0SHhxBgw3JvpiPrOg32+DcFQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFM+AILlQ7Hh80GgFKoZMs0j4RVwdMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvejRBZ3VWRHNlSHpRYUFVcWhreXpTUGhGWEIwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQE5
MA0GCSqGSIb3DQEBCwUAA4IBAQAvdrfs9OWewnl5VkqmqRYn3QoMcyFuPM7e4DyK
8nXgM03NZtN5zw+LcxtTPDc8RskJyTTUtUE4CQCNlyw92nXGqqeqeD3tfqHKOMBd
DOqJ9jzhqJDkAflpgdEf0uK3i9d8cs68uJ0eaa0PjKsl01T67y5OwD6r3LqzKzoS
QhTSONjY3yBAytmofSlokyylZ/bVuuYy6gZre1zdo7bgctWG51TAxcTSJ0gbM4LW
yehRBkO14FywXGwasCMOR43V2OCJIPSgYq7BtJ+aDjR8sQvooZkGd0X7ByEfEEtG
XETDq6cXvYHOvKZ2P4qcfCG11iR//zbfznl4yWVhdfp+eGkO
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:14 2024 by rpki-client on console-fra.rpki-client.org