Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/zSRZdhy27y8GHRob5kDJlKMUbPU.roa
File: zSRZdhy27y8GHRob5kDJlKMUbPU.roa (raw, json)
Hash identifier: 6l5D2t/AA9IIZEMWJLyBjp0qIf+yUifCiQAqU6SSOQk=
Subject key identifier: CD:24:59:76:1C:B6:EF:2F:06:1D:1A:1B:E6:40:C9:94:A3:14:6C:F5
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0BE79469B3393DB8F6856EDAF266D
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/zSRZdhy27y8GHRob5kDJlKMUbPU.roa
Signing time: Wed 07 Feb 2024 05:00:54 +0000
ROA not before: Wed 07 Feb 2024 05:00:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216107
IP address blocks: 2a0f:b241:109::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:be:79:46:9b:33:93:db:8f:68:56:ed:af:26:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cd2459761cb6ef2f061d1a1be640c994a3146cf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:27:b9:ed:6c:9b:5c:4d:8d:4d:82:7f:76:7f:
73:15:bc:bd:cb:96:8c:c6:2b:3c:ac:17:02:74:87:
0c:05:c4:02:fb:fd:2c:51:11:c2:9b:14:54:ea:60:
d4:8f:69:dc:1a:bb:c2:54:bf:98:27:d9:93:0a:4a:
1b:b2:95:97:3a:90:84:39:22:4a:77:bb:1d:e1:d9:
d2:98:42:04:c6:a7:c7:62:1c:af:2e:70:12:a1:db:
2e:59:04:dd:55:32:44:2f:77:fd:df:a7:33:08:6f:
c6:cb:81:fa:17:0f:e1:7a:88:26:aa:cd:cd:28:e9:
07:76:d2:f3:0d:d4:9b:78:f6:3f:dc:0b:3e:87:b5:
0b:6e:79:4e:90:c2:b0:7a:e4:88:cb:71:6f:80:eb:
a5:e0:c7:9d:09:5d:ef:cf:55:5a:96:be:fd:e2:7e:
d0:6a:66:e7:94:4e:e6:83:ce:9b:a2:55:df:3c:c2:
65:ee:9b:3a:99:f9:ae:07:e0:1e:c2:49:8c:4c:95:
55:b3:79:bb:88:f6:65:dd:95:8e:2c:d3:75:67:b8:
07:29:2c:86:ce:46:05:8f:fc:b8:e3:ac:1d:0a:9f:
a2:30:b1:1f:ef:05:01:ad:81:98:e6:2d:31:3a:3b:
bd:ab:96:78:b9:c7:44:8a:d2:73:9b:fc:eb:76:28:
2e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:24:59:76:1C:B6:EF:2F:06:1D:1A:1B:E6:40:C9:94:A3:14:6C:F5
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/zSRZdhy27y8GHRob5kDJlKMUbPU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:109::/48
Signature Algorithm: sha256WithRSAEncryption
5a:b3:d5:2d:d8:51:19:8f:18:b6:81:b2:41:ad:99:50:75:ae:
2f:bb:e8:58:79:97:cb:e5:93:8f:c9:e7:e7:51:b6:1f:ad:9f:
3b:6a:37:d8:9a:40:c3:8f:33:c1:e7:aa:cb:97:46:44:5b:d6:
f9:70:4c:60:c0:37:a9:97:bb:ff:d2:01:45:b5:a1:0b:8b:a5:
e6:41:b1:6c:b9:a0:67:53:d4:25:53:74:12:1b:12:b2:3f:0c:
52:ae:90:83:85:e2:6e:ec:75:9e:14:d8:43:a2:5b:bb:ad:a1:
11:21:cf:d9:fc:09:4e:0f:05:be:c9:a7:6d:aa:d0:5a:48:74:
7d:14:7f:a8:17:11:12:f8:c4:40:97:0f:ff:30:6a:66:4d:8b:
3c:1d:49:e7:ad:5a:ce:49:a1:af:c9:84:71:2c:61:fc:b3:44:
2d:70:34:43:fc:28:ab:99:8b:18:29:f4:2e:c9:2f:4d:4c:d0:
bd:42:15:aa:e0:f9:e7:d0:c0:cd:36:5c:f7:25:e8:3d:83:48:
49:a7:31:51:4a:8d:b2:db:8b:13:63:90:59:3f:f5:65:67:49:
fa:4b:80:a9:19:9b:ad:22:7f:f2:0c:44:3f:8b:df:78:79:01:
d7:f8:6a:c3:11:b9:54:53:99:21:a6:f9:e3:c9:53:aa:cd:47:
57:f7:ff:8c
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY2B8L55Rpszk9uPaFbtryZtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA3MDUwMDU0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZDI0NTk3NjFjYjZlZjJmMDYxZDFhMWJlNjQwYzk5NGEzMTQ2Y2Y1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoie57WybXE2NTYJ/dn9zFby9y5aM
xis8rBcCdIcMBcQC+/0sURHCmxRU6mDUj2ncGrvCVL+YJ9mTCkobspWXOpCEOSJK
d7sd4dnSmEIExqfHYhyvLnASodsuWQTdVTJEL3f936czCG/Gy4H6Fw/heogmqs3N
KOkHdtLzDdSbePY/3As+h7ULbnlOkMKweuSIy3FvgOul4MedCV3vz1Valr794n7Q
ambnlE7mg86bolXfPMJl7ps6mfmuB+AewkmMTJVVs3m7iPZl3ZWOLNN1Z7gHKSyG
zkYFj/y446wdCp+iMLEf7wUBrYGY5i0xOju9q5Z4ucdEitJzm/zrdigu3QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFM0kWXYctu8vBh0aG+ZAyZSjFGz1MB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvelNSWmRoeTI3eThHSFJvYjVrREpsS01VYlBVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQEJ
MA0GCSqGSIb3DQEBCwUAA4IBAQBas9Ut2FEZjxi2gbJBrZlQda4vu+hYeZfL5ZOP
yefnUbYfrZ87ajfYmkDDjzPB56rLl0ZEW9b5cExgwDepl7v/0gFFtaELi6XmQbFs
uaBnU9QlU3QSGxKyPwxSrpCDheJu7HWeFNhDolu7raERIc/Z/AlODwW+yadtqtBa
SHR9FH+oFxES+MRAlw//MGpmTYs8HUnnrVrOSaGvyYRxLGH8s0QtcDRD/CirmYsY
KfQuyS9NTNC9QhWq4Pnn0MDNNlz3Jeg9g0hJpzFRSo2y24sTY5BZP/VlZ0n6S4Cp
GZutIn/yDEQ/i994eQHX+GrDEblUU5khpvnjyVOqzUdX9/+M
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:11 2024 by rpki-client on console-ams.rpki-client.org