Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/IV792MbHmZKCW6ontdmKBD5HTKc.roa
File: IV792MbHmZKCW6ontdmKBD5HTKc.roa (raw, json)
Hash identifier: qlKlw1isP0kJuKPmg7550Y7lUoNrfLqpUPa9jCfTGH0=
Subject key identifier: 21:5E:FD:D8:C6:C7:99:92:82:5B:AA:27:B5:D9:8A:04:3E:47:4C:A7
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F06D6E494FD7D89C9B53C3EE5FC6E5
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/IV792MbHmZKCW6ontdmKBD5HTKc.roa
Signing time: Wed 07 Feb 2024 05:00:33 +0000
ROA not before: Wed 07 Feb 2024 05:00:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197817
IP address blocks: 2a0f:b241:72::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:6d:6e:49:4f:d7:d8:9c:9b:53:c3:ee:5f:c6:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=215efdd8c6c79992825baa27b5d98a043e474ca7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:41:2d:51:33:cf:c9:0f:35:fe:af:3d:23:7f:
27:a7:6f:d8:2f:f8:c9:22:7a:90:60:d1:5e:f7:b1:
ec:66:92:27:54:84:4d:a7:1f:a0:b1:87:8e:f4:b8:
25:e8:2b:e6:63:d1:42:09:4c:0c:84:6c:19:e6:d9:
89:9c:26:94:af:89:84:a7:96:f5:bd:1b:96:02:17:
51:b4:57:45:89:83:3d:c7:cd:8e:99:d0:67:aa:0a:
fe:c9:d5:66:6d:ee:4e:5a:3e:07:2c:92:96:e8:6e:
da:52:0d:69:0c:f9:75:c2:fe:8e:31:7d:8e:9f:85:
18:3c:56:b9:21:73:3c:ed:d4:99:0b:9b:18:dd:a0:
a8:ba:92:f4:2d:a4:c7:ba:89:4c:1c:07:2d:74:17:
e6:e7:77:de:7d:09:8e:32:5e:a6:1d:7d:f3:bf:5c:
fe:b8:d5:5d:7f:be:ec:1f:73:82:99:b9:14:b2:5b:
08:8f:5e:71:fe:50:84:aa:62:65:59:57:e5:9b:15:
b3:a9:0e:8e:d8:fe:88:27:94:7d:f0:b4:55:c8:4a:
b7:1c:24:fa:be:c5:14:9b:3e:d5:82:3e:66:bd:f4:
82:16:51:cc:6e:cd:80:2a:d8:8b:81:b8:a0:6c:b6:
ab:3f:42:f2:73:cc:4a:62:9d:59:21:34:e5:93:90:
a0:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:5E:FD:D8:C6:C7:99:92:82:5B:AA:27:B5:D9:8A:04:3E:47:4C:A7
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/IV792MbHmZKCW6ontdmKBD5HTKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:72::/48
Signature Algorithm: sha256WithRSAEncryption
01:2c:0a:fc:ec:e0:0b:d9:38:44:10:f7:d6:bf:e6:4d:8c:cf:
ab:9e:07:17:2c:05:59:a7:c8:72:45:e2:1b:90:d3:66:de:67:
00:74:7b:9f:15:85:c7:f4:ed:2f:7d:ff:31:1f:5e:ae:62:74:
c8:0a:f2:30:ae:dc:25:6f:ff:33:d7:8f:4c:75:94:2e:15:9d:
46:f8:fd:c1:3f:9d:f0:f2:28:bd:f2:a2:0a:4c:41:d6:96:40:
a2:53:7b:6f:1e:70:b6:ab:a3:c3:bf:da:91:a0:61:54:31:dc:
84:65:60:99:7c:5e:31:8a:ca:f4:4b:a0:5d:12:34:fd:85:b5:
08:bc:ac:5f:4a:34:67:1b:99:9d:b6:0a:cd:97:81:09:f7:6c:
4a:83:ef:3a:4f:83:89:5a:2d:db:48:65:d9:a1:c9:d1:fc:70:
b2:fb:0e:fa:6b:5e:b7:80:20:a8:2b:88:5d:d1:6e:c2:fb:07:
b6:5d:e9:18:38:11:4a:84:9b:43:cc:d3:f0:86:15:f4:b7:c9:
27:e7:58:5f:d5:f0:95:1a:17:23:c8:bb:9f:7e:7b:2e:ed:32:
99:90:c7:c8:dd:1c:65:1f:9a:e5:dd:44:bd:15:43:91:43:6f:
32:4c:9d:fe:bb:f6:e0:69:92:9c:57:73:53:98:af:79:16:c8:
62:ac:fe:b2
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY2B8G1uSU/X2JybU8PuX8blMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA3MDUwMDMzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMTVlZmRkOGM2Yzc5OTkyODI1YmFhMjdiNWQ5OGEwNDNlNDc0Y2E3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqEEtUTPPyQ81/q89I38np2/YL/jJ
InqQYNFe97HsZpInVIRNpx+gsYeO9Lgl6CvmY9FCCUwMhGwZ5tmJnCaUr4mEp5b1
vRuWAhdRtFdFiYM9x82OmdBnqgr+ydVmbe5OWj4HLJKW6G7aUg1pDPl1wv6OMX2O
n4UYPFa5IXM87dSZC5sY3aCoupL0LaTHuolMHActdBfm53fefQmOMl6mHX3zv1z+
uNVdf77sH3OCmbkUslsIj15x/lCEqmJlWVflmxWzqQ6O2P6IJ5R98LRVyEq3HCT6
vsUUmz7Vgj5mvfSCFlHMbs2AKtiLgbigbLarP0Lyc8xKYp1ZITTlk5CgLwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFCFe/djGx5mSgluqJ7XZigQ+R0ynMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvSVY3OTJNYkhtWktDVzZvbnRkbUtCRDVIVEtjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQBy
MA0GCSqGSIb3DQEBCwUAA4IBAQABLAr87OAL2ThEEPfWv+ZNjM+rngcXLAVZp8hy
ReIbkNNm3mcAdHufFYXH9O0vff8xH16uYnTICvIwrtwlb/8z149MdZQuFZ1G+P3B
P53w8ii98qIKTEHWlkCiU3tvHnC2q6PDv9qRoGFUMdyEZWCZfF4xisr0S6BdEjT9
hbUIvKxfSjRnG5mdtgrNl4EJ92xKg+86T4OJWi3bSGXZocnR/HCy+w76a163gCCo
K4hd0W7C+we2XekYOBFKhJtDzNPwhhX0t8kn51hf1fCVGhcjyLuffnsu7TKZkMfI
3RxlH5rl3US9FUORQ28yTJ3+u/bgaZKcV3NTmK95FshirP6y
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org