Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/NnqzLA9vDZX9vboR_kc2qWCN_t4.roa
File: NnqzLA9vDZX9vboR_kc2qWCN_t4.roa (raw, json)
Hash identifier: diQ150aPZQNW32JOQ1mYfS6oco2Pi3U3oQcb8OHY9qQ=
Subject key identifier: 36:7A:B3:2C:0F:6F:0D:95:FD:BD:BA:11:FE:47:36:A9:60:8D:FE:DE
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F086E9A9FABA8F9D6F12F78BA4325A
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/NnqzLA9vDZX9vboR_kc2qWCN_t4.roa
Signing time: Wed 07 Feb 2024 05:00:40 +0000
ROA not before: Wed 07 Feb 2024 05:00:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200890
IP address blocks: 2a0f:b241:d8::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:86:e9:a9:fa:ba:8f:9d:6f:12:f7:8b:a4:32:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=367ab32c0f6f0d95fdbdba11fe4736a9608dfede
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d4:7a:33:b5:b8:fd:a8:71:00:64:48:60:f5:
31:ba:45:7d:71:ea:6c:00:32:0d:32:57:bd:3a:02:
4a:6c:21:a0:b4:a8:e8:10:26:37:b8:04:e8:30:84:
20:d8:21:83:50:92:90:c9:2d:80:38:b5:65:69:82:
88:04:f8:50:10:b5:1a:da:07:62:a5:6b:b4:26:ba:
74:4a:f2:15:e7:ec:28:39:d1:f9:a3:a7:ed:dd:c3:
cf:39:44:d6:d0:a2:22:8e:54:6a:ba:d7:c3:9b:0f:
8e:a9:be:17:71:e6:1c:ad:f8:c5:f3:4d:a4:9e:5c:
7d:c4:14:82:9f:2f:96:65:40:67:66:78:01:54:2a:
97:ad:d1:a8:3b:c3:6f:05:cf:7f:53:94:d8:a7:c9:
6b:fa:1e:20:e0:f3:58:24:6d:e8:a5:d8:d7:d6:27:
4e:06:e3:4b:51:e9:4c:58:96:3d:27:eb:50:8e:f7:
65:d1:45:dc:e1:17:d3:f2:52:5b:31:6b:18:5d:34:
26:a4:90:42:d4:ba:0d:e6:17:25:9c:62:39:69:78:
84:b4:9b:13:62:50:61:fe:32:02:8c:7d:6d:05:c5:
e9:c1:bb:f3:8d:22:8f:c4:97:2f:b5:d4:01:73:1b:
e4:f7:74:39:dd:2c:b1:0e:37:79:3e:27:39:3c:8b:
7b:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:7A:B3:2C:0F:6F:0D:95:FD:BD:BA:11:FE:47:36:A9:60:8D:FE:DE
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/NnqzLA9vDZX9vboR_kc2qWCN_t4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:d8::/48
Signature Algorithm: sha256WithRSAEncryption
49:32:66:e5:c4:8d:0b:17:e8:47:40:70:16:ed:7a:4a:8a:f0:
c1:e7:e0:fb:c4:f0:34:4f:a2:e6:80:fd:22:b6:fd:45:00:1a:
c9:8b:32:f2:97:f6:1f:b0:69:b7:20:bd:f9:26:ae:f0:9e:15:
af:0c:e4:62:8e:87:db:1c:f8:31:99:42:99:33:30:d6:b2:12:
65:12:c5:0a:c9:81:8c:b1:9d:3d:f0:a6:de:b0:1b:70:73:db:
c3:c7:54:e6:00:a0:6f:0e:17:a5:82:f8:b6:88:51:45:07:86:
a4:17:b3:fc:27:a1:c8:3a:72:8f:bc:6d:64:84:33:2a:f3:02:
b3:83:78:5b:91:c9:19:e3:5b:8f:f7:ff:77:09:32:0b:65:cb:
a6:5f:23:38:1f:e7:b5:cb:e8:05:62:56:01:c5:82:bf:4d:f3:
02:df:4a:e8:ce:c9:fe:bc:d6:23:0c:48:88:b0:0e:54:94:4f:
78:2b:49:81:97:7e:96:cc:fb:7a:c7:c9:18:6d:d3:28:18:d9:
16:84:92:d1:7e:72:0f:83:ee:19:51:3c:25:ca:05:48:17:39:
e5:58:36:3b:12:ac:5b:5d:09:1f:7c:cc:47:fe:88:0c:f6:ce:
06:99:ac:0e:99:7e:00:8a:0e:78:e1:fb:b7:ce:c8:11:0e:d6:
ab:8d:e0:c9
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY2B8Ibpqfq6j51vEveLpDJaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA3MDUwMDQwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzNjdhYjMyYzBmNmYwZDk1ZmRiZGJhMTFmZTQ3MzZhOTYwOGRmZWRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw9R6M7W4/ahxAGRIYPUxukV9ceps
ADINMle9OgJKbCGgtKjoECY3uAToMIQg2CGDUJKQyS2AOLVlaYKIBPhQELUa2gdi
pWu0Jrp0SvIV5+woOdH5o6ft3cPPOUTW0KIijlRqutfDmw+Oqb4XceYcrfjF802k
nlx9xBSCny+WZUBnZngBVCqXrdGoO8NvBc9/U5TYp8lr+h4g4PNYJG3opdjX1idO
BuNLUelMWJY9J+tQjvdl0UXc4RfT8lJbMWsYXTQmpJBC1LoN5hclnGI5aXiEtJsT
YlBh/jICjH1tBcXpwbvzjSKPxJcvtdQBcxvk93Q53SyxDjd5Pic5PIt70QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFDZ6sywPbw2V/b26Ef5HNqlgjf7eMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvTm5xekxBOXZEWlg5dmJvUl9rYzJxV0NOX3Q0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQDY
MA0GCSqGSIb3DQEBCwUAA4IBAQBJMmblxI0LF+hHQHAW7XpKivDB5+D7xPA0T6Lm
gP0itv1FABrJizLyl/YfsGm3IL35Jq7wnhWvDORijofbHPgxmUKZMzDWshJlEsUK
yYGMsZ098KbesBtwc9vDx1TmAKBvDhelgvi2iFFFB4akF7P8J6HIOnKPvG1khDMq
8wKzg3hbkckZ41uP9/93CTILZcumXyM4H+e1y+gFYlYBxYK/TfMC30rozsn+vNYj
DEiIsA5UlE94K0mBl36WzPt6x8kYbdMoGNkWhJLRfnIPg+4ZUTwlygVIFznlWDY7
EqxbXQkffMxH/ogM9s4GmawOmX4Aig544fu3zsgRDtarjeDJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org