Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/dd5a28-df9d-4627-809d-bd5d3f00fbb2/1/6Kmtj5X6FKefG-zfiPrYmIhyAMw.roa
File: 6Kmtj5X6FKefG-zfiPrYmIhyAMw.roa (raw, json)
Hash identifier: Zd1iVmZ+E2WPazz0nHfmXF12dGxB5+NQclefIrqqdpk=
Subject key identifier: E8:A9:AD:8F:95:FA:14:A7:9F:1B:EC:DF:88:FA:D8:98:88:72:00:CC
Certificate issuer: /CN=9f312e9297bc1d27ebeb476dea0ee15dd756542d
Certificate serial: 018683778ACD44A192340B042EC382018720
Authority key identifier: 9F:31:2E:92:97:BC:1D:27:EB:EB:47:6D:EA:0E:E1:5D:D7:56:54:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzEukpe8HSfr60dt6g7hXddWVC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/dd5a28-df9d-4627-809d-bd5d3f00fbb2/1/6Kmtj5X6FKefG-zfiPrYmIhyAMw.roa
Signing time: Fri 24 Feb 2023 12:48:14 +0000
ROA not before: Fri 24 Feb 2023 12:48:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 138968
IP address blocks: 2a0f:6700::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 08 Jul 2023 04:04:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:83:77:8a:cd:44:a1:92:34:0b:04:2e:c3:82:01:87:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f312e9297bc1d27ebeb476dea0ee15dd756542d
Validity
Not Before: Feb 24 12:48:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e8a9ad8f95fa14a79f1becdf88fad898887200cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:59:25:68:37:63:ed:89:2c:fc:ab:c9:74:10:
29:10:db:27:a5:88:58:68:09:f7:86:a6:a7:cc:27:
68:1f:7d:29:f9:ae:4a:9d:49:d4:6f:82:b5:73:a6:
e9:97:29:8e:55:11:51:c6:58:98:52:42:fd:5f:2a:
4f:e4:f8:f6:d1:20:8a:33:6a:db:ad:2a:01:ae:06:
45:0c:1d:c6:83:51:29:0a:12:48:c2:83:15:f3:89:
7e:ba:6e:e2:bf:a5:74:db:59:3a:27:0e:b8:2f:d7:
ae:cd:6b:c2:c4:c4:39:97:6b:a2:fa:ca:8d:8d:e1:
7f:13:c7:3d:16:3d:98:10:62:90:3b:c1:57:9f:ac:
16:83:67:ad:a1:05:0c:0f:6e:38:c0:82:7d:95:1c:
ba:5d:b8:b4:af:d6:cc:eb:af:51:e2:b4:2c:1c:aa:
98:99:b7:14:7b:a3:4b:9a:35:79:16:8d:15:49:a2:
c6:4d:76:49:32:2f:92:1a:6f:33:db:d0:36:25:fb:
a8:bc:76:d4:b5:1e:4e:32:ed:63:4b:09:6a:60:ef:
5d:2d:02:63:d9:d1:b5:f0:96:c6:53:2f:af:51:9b:
b1:72:b1:c9:1f:32:13:a2:78:e4:bf:ed:a2:8e:2f:
d8:1f:14:15:05:35:7c:63:aa:e9:29:9b:43:83:b4:
84:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:A9:AD:8F:95:FA:14:A7:9F:1B:EC:DF:88:FA:D8:98:88:72:00:CC
X509v3 Authority Key Identifier:
keyid:9F:31:2E:92:97:BC:1D:27:EB:EB:47:6D:EA:0E:E1:5D:D7:56:54:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzEukpe8HSfr60dt6g7hXddWVC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dd5a28-df9d-4627-809d-bd5d3f00fbb2/1/6Kmtj5X6FKefG-zfiPrYmIhyAMw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dd5a28-df9d-4627-809d-bd5d3f00fbb2/1/nzEukpe8HSfr60dt6g7hXddWVC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:6700::/29
Signature Algorithm: sha256WithRSAEncryption
b7:51:6d:88:3d:64:42:cb:35:b8:56:b2:f3:a3:e1:55:f0:b1:
eb:a9:46:11:6f:4f:fa:3b:a0:26:e0:6f:e9:6a:17:5b:20:dc:
b4:09:bb:45:a9:1d:67:12:1a:a9:5e:92:48:ba:16:a0:4f:06:
6d:42:09:bb:33:d8:1c:74:9b:9f:44:15:cc:7e:0e:b1:9a:1a:
07:66:c1:ef:09:3f:2d:da:6e:90:95:fb:a8:85:27:a1:64:e2:
b7:ef:1b:f7:15:9a:f2:ce:8f:9c:45:72:c0:d7:ce:f4:af:b5:
4c:0a:c8:55:2b:37:60:b3:f7:08:d7:e9:b2:9d:b6:fe:42:51:
f6:b6:a5:ab:e2:fe:ef:07:27:be:ff:43:70:00:be:36:75:fe:
c3:45:22:20:fb:cc:08:ef:9a:f4:25:ba:f8:0b:a2:cb:50:4a:
1b:01:3b:61:81:31:f9:25:d1:16:fa:3f:f6:99:3a:00:09:ad:
ce:3e:e6:d9:f8:78:bb:b7:e5:6e:d0:c6:26:53:4e:56:39:e8:
c1:14:e8:84:c8:3d:d3:56:06:e2:55:56:3b:13:5f:10:88:34:
8e:04:fc:56:53:f5:8c:dd:0a:81:2d:03:27:c6:a7:92:05:5a:
ad:78:e2:72:e8:4d:c7:6b:59:d5:f3:db:1d:67:1d:b0:8f:af:
95:c9:d3:49
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYaDd4rNRKGSNAsELsOCAYcgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmMzEyZTkyOTdiYzFkMjdlYmViNDc2ZGVhMGVlMTVkZDc1
NjU0MmQwHhcNMjMwMjI0MTI0ODE0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlOGE5YWQ4Zjk1ZmExNGE3OWYxYmVjZGY4OGZhZDg5ODg4NzIwMGNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp1klaDdj7Yks/KvJdBApENsnpYhY
aAn3hqanzCdoH30p+a5KnUnUb4K1c6bplymOVRFRxliYUkL9XypP5Pj20SCKM2rb
rSoBrgZFDB3Gg1EpChJIwoMV84l+um7iv6V021k6Jw64L9euzWvCxMQ5l2ui+sqN
jeF/E8c9Fj2YEGKQO8FXn6wWg2etoQUMD244wIJ9lRy6Xbi0r9bM669R4rQsHKqY
mbcUe6NLmjV5Fo0VSaLGTXZJMi+SGm8z29A2JfuovHbUtR5OMu1jSwlqYO9dLQJj
2dG18JbGUy+vUZuxcrHJHzITonjkv+2iji/YHxQVBTV8Y6rpKZtDg7SE3QIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFOiprY+V+hSnnxvs34j62JiIcgDMMB8GA1UdIwQY
MBaAFJ8xLpKXvB0n6+tHbeoO4V3XVlQtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbnpFdWtwZThIU2ZyNjBkdDZnN2hYZGRXVkMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS9kZDVhMjgtZGY5ZC00NjI3LTgwOWQt
YmQ1ZDNmMDBmYmIyLzEvNkttdGo1WDZGS2VmRy16ZmlQclltSWh5QU13LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZS9kZDVhMjgtZGY5ZC00NjI3LTgwOWQtYmQ1ZDNmMDBmYmIy
LzEvbnpFdWtwZThIU2ZyNjBkdDZnN2hYZGRXVkMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKg9nADAN
BgkqhkiG9w0BAQsFAAOCAQEAt1FtiD1kQss1uFay86PhVfCx66lGEW9P+jugJuBv
6WoXWyDctAm7RakdZxIaqV6SSLoWoE8GbUIJuzPYHHSbn0QVzH4OsZoaB2bB7wk/
LdpukJX7qIUnoWTit+8b9xWa8s6PnEVywNfO9K+1TArIVSs3YLP3CNfpsp22/kJR
9ralq+L+7wcnvv9DcAC+NnX+w0UiIPvMCO+a9CW6+Auiy1BKGwE7YYEx+SXRFvo/
9pk6AAmtzj7m2fh4u7flbtDGJlNOVjnowRTohMg901YG4lVWOxNfEIg0jgT8VlP1
jN0KgS0DJ8ankgVarXjicuhNx2tZ1fPbHWcdsI+vlcnTSQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:33 2024 by rpki-client on console-fra.rpki-client.org