Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/N9ZTd9EYAIj7SosKufqacuQ1IaA.roa
File: N9ZTd9EYAIj7SosKufqacuQ1IaA.roa (raw, json)
Hash identifier: Sa8QgA8UauLoaZbnWulMKTFT7R7u9WTEDfaM5zfw+e8=
Subject key identifier: 37:D6:53:77:D1:18:00:88:FB:4A:8B:0A:B9:FA:9A:72:E4:35:21:A0
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0AB441B2691C4BECC7BE3C3FB6C87
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/N9ZTd9EYAIj7SosKufqacuQ1IaA.roa
Signing time: Wed 07 Feb 2024 05:00:49 +0000
ROA not before: Wed 07 Feb 2024 05:00:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211966
IP address blocks: 2a0f:b241:49::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:ab:44:1b:26:91:c4:be:cc:7b:e3:c3:fb:6c:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=37d65377d1180088fb4a8b0ab9fa9a72e43521a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:36:dd:36:c0:24:17:50:0e:b9:07:db:d5:d1:
b6:a9:d8:8a:95:d5:d2:e0:d0:bf:ab:4a:42:e3:da:
b4:5f:4d:6e:29:f0:17:8f:2f:08:2d:a8:ee:5a:50:
3c:ff:2b:76:e8:1b:5b:4d:a6:78:31:5d:c4:9e:5e:
02:40:17:4a:fb:4c:48:0a:82:cc:eb:07:98:1b:7c:
58:80:5d:16:a2:4c:70:91:23:a7:47:25:d0:5f:3b:
b3:fd:c9:d6:e9:68:1b:8a:cc:c6:96:62:86:74:79:
8c:0f:ca:d5:83:0b:26:b6:58:0a:26:d2:e6:c7:94:
16:41:12:7e:65:de:63:ce:15:0d:9b:99:5b:a3:90:
37:d5:f0:9b:df:cb:26:5e:4a:84:af:8b:36:b3:fe:
32:bd:99:fa:b3:7e:10:67:6e:2c:5d:58:bd:1a:0d:
c8:03:64:cb:d2:88:e6:b9:db:e4:eb:cb:e8:87:e8:
16:be:ed:8c:bd:15:ad:6f:fd:9d:fa:91:06:bb:7d:
3d:1e:00:3e:58:89:55:38:95:fa:c3:e2:58:41:60:
c7:cb:2f:5c:ae:b6:6e:3d:e5:0a:38:2f:71:f4:c5:
46:32:9d:6c:a7:19:e9:59:c5:50:ea:7a:54:2f:b5:
9e:a0:f0:49:6b:d9:2c:9a:e7:1d:c1:f4:80:c0:40:
cf:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:D6:53:77:D1:18:00:88:FB:4A:8B:0A:B9:FA:9A:72:E4:35:21:A0
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/N9ZTd9EYAIj7SosKufqacuQ1IaA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:49::/48
Signature Algorithm: sha256WithRSAEncryption
5c:b2:c4:42:f4:27:ff:18:92:0d:fd:77:93:70:97:3d:74:8e:
7b:6b:0a:02:36:8c:92:66:73:8d:3f:be:af:0b:0f:38:be:70:
c0:f4:9a:73:9f:fd:50:59:2a:c7:61:b7:42:c4:44:e4:19:3d:
cb:25:82:f7:62:d2:81:da:f2:0c:05:c7:53:ba:7d:d0:69:08:
21:0e:51:87:41:2d:a0:67:1b:9d:44:55:42:12:d2:6e:76:73:
28:73:f3:f9:0c:f4:0c:75:df:ff:49:c4:2a:87:4d:f3:b7:24:
ec:5a:7f:f6:b6:08:8e:47:30:6d:d8:92:a7:3e:f9:5a:eb:6a:
be:d2:02:47:25:cd:97:23:bd:04:6a:fa:7e:5c:0d:57:d3:77:
0d:6f:f4:88:78:54:f3:ac:21:aa:af:cc:b1:fc:1e:35:70:6f:
a4:d9:0c:2a:a2:8d:36:34:61:80:80:5d:13:88:61:4c:df:52:
cd:83:c7:15:c5:47:d5:52:25:b5:d5:7d:63:04:c9:55:75:9c:
e5:55:ba:6a:98:9f:5c:67:38:04:1d:9d:35:95:c1:26:d7:23:
28:b9:22:10:f4:43:60:05:db:67:f8:b4:e4:61:dd:a6:88:25:
20:f3:14:3d:59:c1:8b:5a:fc:a8:fc:70:c2:59:f3:5b:e6:fb:
5b:94:6f:f7
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY2B8KtEGyaRxL7Me+PD+2yHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA3MDUwMDQ5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzN2Q2NTM3N2QxMTgwMDg4ZmI0YThiMGFiOWZhOWE3MmU0MzUyMWEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArTbdNsAkF1AOuQfb1dG2qdiKldXS
4NC/q0pC49q0X01uKfAXjy8ILajuWlA8/yt26BtbTaZ4MV3Enl4CQBdK+0xICoLM
6weYG3xYgF0WokxwkSOnRyXQXzuz/cnW6WgbiszGlmKGdHmMD8rVgwsmtlgKJtLm
x5QWQRJ+Zd5jzhUNm5lbo5A31fCb38smXkqEr4s2s/4yvZn6s34QZ24sXVi9Gg3I
A2TL0ojmudvk68voh+gWvu2MvRWtb/2d+pEGu309HgA+WIlVOJX6w+JYQWDHyy9c
rrZuPeUKOC9x9MVGMp1spxnpWcVQ6npUL7WeoPBJa9ksmucdwfSAwEDPkwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFDfWU3fRGACI+0qLCrn6mnLkNSGgMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvTjlaVGQ5RVlBSWo3U29zS3VmcWFjdVExSWFBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQBJ
MA0GCSqGSIb3DQEBCwUAA4IBAQBcssRC9Cf/GJIN/XeTcJc9dI57awoCNoySZnON
P76vCw84vnDA9Jpzn/1QWSrHYbdCxETkGT3LJYL3YtKB2vIMBcdTun3QaQghDlGH
QS2gZxudRFVCEtJudnMoc/P5DPQMdd//ScQqh03ztyTsWn/2tgiORzBt2JKnPvla
62q+0gJHJc2XI70Eavp+XA1X03cNb/SIeFTzrCGqr8yx/B41cG+k2Qwqoo02NGGA
gF0TiGFM31LNg8cVxUfVUiW11X1jBMlVdZzlVbpqmJ9cZzgEHZ01lcEm1yMouSIQ
9ENgBdtn+LTkYd2miCUg8xQ9WcGLWvyo/HDCWfNb5vtblG/3
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org