Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/6pDX8BwO-wyj7Mh2e9GcZlIXmXc.roa
File: 6pDX8BwO-wyj7Mh2e9GcZlIXmXc.roa (raw, json)
Hash identifier: LfcH85dCQwcs0BYip6xeaqQUJn7iUnKZmfLO/6ZDM5s=
Subject key identifier: EA:90:D7:F0:1C:0E:FB:0C:A3:EC:C8:76:7B:D1:9C:66:52:17:99:77
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F09C9C01BC2CFC0B02E86782BC10B9
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/6pDX8BwO-wyj7Mh2e9GcZlIXmXc.roa
Signing time: Wed 07 Feb 2024 05:00:46 +0000
ROA not before: Wed 07 Feb 2024 05:00:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209249
IP address blocks: 2a0f:b241:42::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:9c:9c:01:bc:2c:fc:0b:02:e8:67:82:bc:10:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ea90d7f01c0efb0ca3ecc8767bd19c6652179977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:83:af:2e:35:e5:26:aa:69:6b:88:c4:e1:e6:
1c:10:82:3b:df:7e:37:06:6e:78:27:df:c0:17:72:
1d:a5:98:36:03:ea:e9:f1:58:17:67:38:d5:93:76:
31:fe:fd:9a:bb:17:21:46:c2:a9:53:93:4b:8e:8b:
b3:aa:59:78:78:4e:65:06:f9:f2:ff:6b:40:82:12:
84:7f:71:f0:70:8d:d6:20:89:82:e3:51:46:f3:32:
97:7d:ff:4b:86:9c:6f:4b:17:7d:da:a6:58:90:92:
2e:ad:06:e6:e6:a9:81:6a:08:e7:8f:b7:5d:17:a3:
9d:5f:4a:a3:62:f6:6e:ce:eb:11:d7:43:f1:1a:8d:
4d:a3:4d:be:83:30:70:82:53:ab:f5:ee:37:86:2a:
f7:ee:88:f6:af:ec:ea:3e:3a:bd:be:e6:60:6f:64:
98:c9:b1:1f:80:dd:4a:16:7f:93:c9:99:6f:1f:3e:
39:72:8a:84:08:8e:17:d5:6f:0f:ca:40:6a:a4:f4:
92:d8:6f:35:ab:02:de:68:04:e7:72:a7:60:82:9a:
14:76:89:7f:57:bd:a0:3d:94:d2:5c:4e:5b:52:55:
12:21:95:ae:4e:51:f8:43:5a:cc:5e:b2:3f:ec:30:
b5:5f:82:81:03:fb:f2:26:0c:d3:1a:4f:79:cd:c3:
fa:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:90:D7:F0:1C:0E:FB:0C:A3:EC:C8:76:7B:D1:9C:66:52:17:99:77
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/6pDX8BwO-wyj7Mh2e9GcZlIXmXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:42::/48
Signature Algorithm: sha256WithRSAEncryption
54:cd:22:3d:6f:7d:9d:e5:64:4d:e7:c5:a8:4b:86:9a:4c:33:
e3:b0:a8:40:8f:01:4d:72:72:36:98:f8:44:eb:c3:e8:1c:45:
4c:e8:78:8a:e6:ba:10:52:a6:7d:68:52:98:cb:94:66:e0:f8:
80:e4:58:3b:8d:db:04:05:28:89:d3:bb:8b:ec:b6:2c:77:77:
7c:92:02:2a:eb:7a:c0:33:07:08:47:2e:7d:51:df:73:3a:d8:
46:85:d5:38:0f:51:c1:01:9f:30:1f:bd:43:cf:ed:69:09:8a:
aa:22:c9:f2:f5:3d:f3:0c:e0:84:23:96:40:cb:c3:38:14:45:
3e:61:f5:f3:aa:07:2c:c9:93:3d:f3:ad:52:78:0a:d5:8e:ec:
0e:2d:fe:82:1e:7c:3d:33:ce:6c:5b:8c:f6:23:39:23:13:87:
f4:03:9d:86:8d:3b:7e:94:7e:61:76:08:f8:40:28:41:2e:f6:
42:53:17:25:18:a1:6d:e8:09:be:72:1a:42:9f:55:b9:56:fd:
cf:ac:40:3b:d0:fc:a4:11:0a:6d:fb:d9:a0:09:e6:4f:65:11:
2d:03:56:35:b2:3c:ac:18:c1:52:eb:3e:40:7b:6b:3a:92:e9:
67:75:ca:b0:e4:20:b4:46:10:8f:5b:0b:ff:83:09:b7:17:5f:
0b:9f:5b:f3
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY2B8JycAbws/AsC6GeCvBC5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA3MDUwMDQ2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYTkwZDdmMDFjMGVmYjBjYTNlY2M4NzY3YmQxOWM2NjUyMTc5OTc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwYOvLjXlJqppa4jE4eYcEII73343
Bm54J9/AF3IdpZg2A+rp8VgXZzjVk3Yx/v2auxchRsKpU5NLjouzqll4eE5lBvny
/2tAghKEf3HwcI3WIImC41FG8zKXff9LhpxvSxd92qZYkJIurQbm5qmBagjnj7dd
F6OdX0qjYvZuzusR10PxGo1No02+gzBwglOr9e43hir37oj2r+zqPjq9vuZgb2SY
ybEfgN1KFn+TyZlvHz45coqECI4X1W8PykBqpPSS2G81qwLeaATncqdggpoUdol/
V72gPZTSXE5bUlUSIZWuTlH4Q1rMXrI/7DC1X4KBA/vyJgzTGk95zcP62QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFOqQ1/AcDvsMo+zIdnvRnGZSF5l3MB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvNnBEWDhCd08td3lqN01oMmU5R2NabElYbVhjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQBC
MA0GCSqGSIb3DQEBCwUAA4IBAQBUzSI9b32d5WRN58WoS4aaTDPjsKhAjwFNcnI2
mPhE68PoHEVM6HiK5roQUqZ9aFKYy5Rm4PiA5Fg7jdsEBSiJ07uL7LYsd3d8kgIq
63rAMwcIRy59Ud9zOthGhdU4D1HBAZ8wH71Dz+1pCYqqIsny9T3zDOCEI5ZAy8M4
FEU+YfXzqgcsyZM9861SeArVjuwOLf6CHnw9M85sW4z2IzkjE4f0A52GjTt+lH5h
dgj4QChBLvZCUxclGKFt6Am+chpCn1W5Vv3PrEA70PykEQpt+9mgCeZPZREtA1Y1
sjysGMFS6z5Ae2s6kulndcqw5CC0RhCPWwv/gwm3F18Ln1vz
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:07 2024 by rpki-client on console-ams.rpki-client.org