Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/VeL-jUAqGhZhM-MHwE3fRIyRiWA.roa
File: VeL-jUAqGhZhM-MHwE3fRIyRiWA.roa (raw, json)
Hash identifier: GNOkIccHGEjcax/rfU9o8eSrcPMmHGPP/cpUjNgqK6A=
Subject key identifier: 55:E2:FE:8D:40:2A:1A:16:61:33:E3:07:C0:4D:DF:44:8C:91:89:60
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F949942FE29057401CB210E9C6216BA
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/VeL-jUAqGhZhM-MHwE3fRIyRiWA.roa
Signing time: Tue 06 Feb 2024 18:01:01 +0000
ROA not before: Tue 06 Feb 2024 18:01:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207529
IP address blocks: 2a0f:b241:3d::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:94:99:42:fe:29:05:74:01:cb:21:0e:9c:62:16:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:01:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=55e2fe8d402a1a166133e307c04ddf448c918960
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:46:60:77:82:7a:c5:ac:2a:f2:41:d4:e5:ba:
10:70:fc:da:37:d2:4b:9e:e0:57:26:66:72:5a:68:
c3:5a:ff:06:65:ad:e2:76:0d:3f:21:d5:70:fd:28:
77:58:96:c6:38:d0:e7:ae:6f:b7:43:e9:ce:79:73:
1a:c5:5e:a5:32:7c:b9:f8:fe:20:7a:aa:40:93:42:
15:83:4a:43:e6:47:6e:cd:8d:a1:5c:37:43:5d:fb:
dc:28:03:ab:99:94:b9:04:e0:aa:49:9b:6c:ae:03:
73:c9:f7:55:ba:4d:29:de:1c:06:70:e7:19:5b:4e:
b1:61:5b:1b:33:38:63:91:44:ce:ee:cc:d6:5c:00:
f6:77:24:ac:7f:77:59:b1:22:8a:f5:70:24:f7:fa:
b0:a5:ae:05:23:69:5a:30:7e:8c:9e:f1:d6:87:b0:
79:57:31:28:0c:8b:e9:2c:d0:55:d9:c7:5b:0b:25:
ea:38:7f:96:29:3a:cf:11:9c:64:81:46:e6:16:4a:
c5:ed:4c:17:28:7d:d6:f0:49:18:a2:90:b0:bb:d8:
26:4f:a1:6b:be:52:39:e5:0f:e3:23:2b:a8:09:50:
76:2f:99:28:c2:3f:67:db:80:8c:84:da:58:0e:92:
f1:0b:a1:c0:b0:5f:02:09:78:d6:32:1a:a4:39:ae:
0a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:E2:FE:8D:40:2A:1A:16:61:33:E3:07:C0:4D:DF:44:8C:91:89:60
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/VeL-jUAqGhZhM-MHwE3fRIyRiWA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:3d::/48
Signature Algorithm: sha256WithRSAEncryption
8b:95:f7:e3:c6:38:04:36:96:e6:07:aa:fd:ec:68:9b:db:7d:
33:62:48:c9:d6:af:91:19:74:a0:a0:86:73:75:95:8a:22:42:
54:cc:9e:80:25:85:1c:54:f7:7b:dc:a0:b5:19:23:00:d7:c7:
35:b3:4c:0b:16:fe:8a:98:43:3a:04:17:21:1c:b7:4e:c9:ee:
4b:c5:e2:d4:a6:fc:95:85:d4:c4:95:4e:db:fc:9e:88:3e:08:
53:76:9e:79:5c:5f:f5:76:00:20:7f:f7:24:7e:bb:fd:36:5f:
81:e8:04:42:7f:70:ac:d7:d5:57:34:b3:bd:8d:2a:3a:56:03:
d3:0b:b1:09:2e:bd:dc:58:74:f6:ce:a5:0a:27:75:4d:16:91:
93:e9:a4:59:05:78:e0:af:68:b1:29:c3:cc:ff:b8:41:ae:88:
9e:f6:e4:2e:10:df:ec:64:29:e8:22:f6:63:46:3c:ce:cd:f8:
e2:6f:43:c8:ca:73:1b:a2:96:13:9b:35:61:d2:bc:c4:96:7e:
d6:a7:f6:ad:80:d1:a8:fd:82:3e:18:0d:35:97:02:23:9a:08:
84:05:a4:df:09:e1:ad:66:e9:a8:7e:fe:1b:88:81:da:de:f3:
7d:75:0f:1a:31:2e:70:5b:46:e6:0f:c1:0f:1b:c2:3b:8c:54:
95:a9:65:cb
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/lJlC/ikFdAHLIQ6cYha6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgwMTAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1NWUyZmU4ZDQwMmExYTE2NjEzM2UzMDdjMDRkZGY0NDhjOTE4OTYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh0Zgd4J6xawq8kHU5boQcPzaN9JL
nuBXJmZyWmjDWv8GZa3idg0/IdVw/Sh3WJbGONDnrm+3Q+nOeXMaxV6lMny5+P4g
eqpAk0IVg0pD5kduzY2hXDdDXfvcKAOrmZS5BOCqSZtsrgNzyfdVuk0p3hwGcOcZ
W06xYVsbMzhjkUTO7szWXAD2dySsf3dZsSKK9XAk9/qwpa4FI2laMH6MnvHWh7B5
VzEoDIvpLNBV2cdbCyXqOH+WKTrPEZxkgUbmFkrF7UwXKH3W8EkYopCwu9gmT6Fr
vlI55Q/jIyuoCVB2L5kowj9n24CMhNpYDpLxC6HAsF8CCXjWMhqkOa4K+QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFFXi/o1AKhoWYTPjB8BN30SMkYlgMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvVmVMLWpVQXFHaFpoTS1NSHdFM2ZSSXlSaVdBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQA9
MA0GCSqGSIb3DQEBCwUAA4IBAQCLlffjxjgENpbmB6r97Gib230zYkjJ1q+RGXSg
oIZzdZWKIkJUzJ6AJYUcVPd73KC1GSMA18c1s0wLFv6KmEM6BBchHLdOye5LxeLU
pvyVhdTElU7b/J6IPghTdp55XF/1dgAgf/ckfrv9Nl+B6ARCf3Cs19VXNLO9jSo6
VgPTC7EJLr3cWHT2zqUKJ3VNFpGT6aRZBXjgr2ixKcPM/7hBroie9uQuEN/sZCno
IvZjRjzOzfjib0PIynMbopYTmzVh0rzEln7Wp/atgNGo/YI+GA01lwIjmgiEBaTf
CeGtZumofv4biIHa3vN9dQ8aMS5wW0bmD8EPG8I7jFSVqWXL
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org