Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/zDO1_eJi-kBw-dZGPAGI21h1lZo.roa
File: zDO1_eJi-kBw-dZGPAGI21h1lZo.roa (raw, json)
Hash identifier: SUwX0+SexPNFz4LwRMSir5owkDHkRA5ZydRMud4pvVI=
Subject key identifier: CC:33:B5:FD:E2:62:FA:40:70:F9:D6:46:3C:01:88:DB:58:75:95:9A
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAAD06F66294BF188EF217804063ABB
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/zDO1_eJi-kBw-dZGPAGI21h1lZo.roa
Signing time: Tue 06 Feb 2024 18:25:17 +0000
ROA not before: Tue 06 Feb 2024 18:25:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202199
IP address blocks: 2a0f:b241:e0::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:aa:d0:6f:66:29:4b:f1:88:ef:21:78:04:06:3a:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:25:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cc33b5fde262fa4070f9d6463c0188db5875959a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:af:52:7a:72:10:91:e9:bf:5b:aa:4f:65:b4:
c1:cf:8e:e5:b7:2e:e1:ad:61:9a:0e:75:ce:ad:31:
8a:5b:48:2a:56:d1:d3:93:4e:0f:e4:ed:69:5d:a4:
3d:e0:78:d3:90:93:bf:2c:8f:2b:a0:10:30:57:d0:
33:43:35:a4:a6:73:af:96:05:bd:5b:31:43:e4:58:
f4:ad:99:a9:2f:3b:ca:3c:f9:a9:d0:c5:b7:38:89:
df:42:9e:ac:38:ce:5e:67:6d:67:9f:d2:e7:ab:ca:
19:12:76:89:cd:dd:04:21:08:be:6e:07:b3:1f:2f:
70:cc:01:fc:2d:c7:fd:cc:92:50:96:20:30:5f:26:
ac:81:f3:dc:70:18:80:a0:43:f4:df:ab:16:8c:4c:
ea:32:89:60:d0:78:1f:0e:58:58:75:bd:90:64:b0:
65:d2:88:62:66:f1:9e:d5:58:c0:af:23:a8:22:42:
71:6b:d8:18:f6:c8:7f:15:9b:56:dc:91:dc:a0:5a:
ce:b7:f7:89:58:b1:0a:36:f9:61:2b:7e:eb:6f:d0:
b1:14:83:79:2e:21:0b:8f:05:dc:50:e7:b9:de:d2:
da:57:ab:8e:c9:6b:2b:cd:4c:8c:87:16:cd:62:30:
12:7a:8c:a3:8f:2d:59:a7:d8:b3:48:5e:8b:51:1a:
87:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:33:B5:FD:E2:62:FA:40:70:F9:D6:46:3C:01:88:DB:58:75:95:9A
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/zDO1_eJi-kBw-dZGPAGI21h1lZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:e0::/48
Signature Algorithm: sha256WithRSAEncryption
84:68:b2:65:f6:5d:d8:5d:cd:79:93:08:1a:08:6d:57:88:f7:
b6:1b:88:bb:a0:8a:a4:89:ba:ac:24:7e:cf:32:18:80:d2:d6:
d0:33:6e:0c:75:04:2e:33:d2:e1:53:2a:af:6c:2b:45:26:18:
58:61:e8:68:c0:bb:bc:69:2f:48:5a:0c:e9:a2:91:13:57:13:
51:65:ec:ea:86:44:06:c7:19:6a:bf:e4:9e:ea:ee:0a:4a:c3:
44:d9:e6:0a:6f:9e:19:67:2b:41:a4:3e:15:84:e0:e3:d9:f9:
fe:fc:31:e3:cf:0b:86:d3:d8:5c:e2:c2:e3:f6:fc:06:87:7f:
5a:bc:d9:08:34:5a:6f:a2:56:c1:19:a5:b9:7f:c1:74:8d:81:
d1:53:08:27:93:ab:4d:e8:aa:65:52:77:d2:10:4b:0d:e6:c5:
21:a6:bc:2d:d3:c9:ad:c5:2d:7c:d2:b2:20:76:48:0e:38:05:
11:2a:0f:b5:5a:98:b5:e3:fd:16:cd:48:07:54:d2:7e:cd:46:
24:a3:81:bf:fa:8f:30:4c:9d:d2:b3:d0:e6:ed:46:60:d7:f4:
93:48:76:01:8c:35:32:cd:8b:62:7e:53:b5:fd:db:df:9b:a2:
7f:5c:48:01:ed:91:86:5a:4e:98:d4:e3:c6:d4:07:ed:d1:c2:
0a:83:be:aa
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/qtBvZilL8YjvIXgEBjq7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgyNTE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjYzMzYjVmZGUyNjJmYTQwNzBmOWQ2NDYzYzAxODhkYjU4NzU5NTlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAka9SenIQkem/W6pPZbTBz47lty7h
rWGaDnXOrTGKW0gqVtHTk04P5O1pXaQ94HjTkJO/LI8roBAwV9AzQzWkpnOvlgW9
WzFD5Fj0rZmpLzvKPPmp0MW3OInfQp6sOM5eZ21nn9Lnq8oZEnaJzd0EIQi+bgez
Hy9wzAH8Lcf9zJJQliAwXyasgfPccBiAoEP036sWjEzqMolg0HgfDlhYdb2QZLBl
0ohiZvGe1VjAryOoIkJxa9gY9sh/FZtW3JHcoFrOt/eJWLEKNvlhK37rb9CxFIN5
LiELjwXcUOe53tLaV6uOyWsrzUyMhxbNYjASeoyjjy1Zp9izSF6LURqHiwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFMwztf3iYvpAcPnWRjwBiNtYdZWaMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvekRPMV9lSmkta0J3LWRaR1BBR0kyMWgxbFpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQDg
MA0GCSqGSIb3DQEBCwUAA4IBAQCEaLJl9l3YXc15kwgaCG1XiPe2G4i7oIqkibqs
JH7PMhiA0tbQM24MdQQuM9LhUyqvbCtFJhhYYehowLu8aS9IWgzpopETVxNRZezq
hkQGxxlqv+Se6u4KSsNE2eYKb54ZZytBpD4VhODj2fn+/DHjzwuG09hc4sLj9vwG
h39avNkINFpvolbBGaW5f8F0jYHRUwgnk6tN6KplUnfSEEsN5sUhprwt08mtxS18
0rIgdkgOOAURKg+1Wpi14/0WzUgHVNJ+zUYko4G/+o8wTJ3Ss9Dm7UZg1/STSHYB
jDUyzYtiflO1/dvfm6J/XEgB7ZGGWk6Y1OPG1Aft0cIKg76q
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:14 2024 by rpki-client on console-fra.rpki-client.org