Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Yual8IEc0Va4HTZYbTQKHdV5SqM.roa
File: Yual8IEc0Va4HTZYbTQKHdV5SqM.roa (raw, json)
Hash identifier: Tz7anbaoXiIam2z1rJ0ZnlX22PatjfPhhus3huCHS7c=
Subject key identifier: 62:E6:A5:F0:81:1C:D1:56:B8:1D:36:58:6D:34:0A:1D:D5:79:4A:A3
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAE7CC48E1FB2B1B8749F140E80DAD0
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Yual8IEc0Va4HTZYbTQKHdV5SqM.roa
Signing time: Tue 06 Feb 2024 18:29:18 +0000
ROA not before: Tue 06 Feb 2024 18:29:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57369
IP address blocks: 2a0f:b241:120::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ae:7c:c4:8e:1f:b2:b1:b8:74:9f:14:0e:80:da:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:29:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=62e6a5f0811cd156b81d36586d340a1dd5794aa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d3:16:b0:ca:34:5e:70:c7:c0:7a:2d:84:57:
14:19:a2:2b:50:ea:3a:42:91:76:3a:89:61:ae:10:
46:c7:6f:2e:9b:52:6d:7a:df:1b:22:d0:8c:97:d9:
0c:83:ef:6a:86:06:4e:b5:f6:96:7b:34:9a:d7:16:
ed:26:7a:3e:0f:81:3a:fd:c2:d5:d9:51:b8:06:67:
2e:3b:51:2d:fd:ed:68:6c:55:cb:81:8f:da:f6:18:
3f:51:89:21:52:ba:c3:1b:8f:44:a4:35:64:ad:dc:
9d:33:39:20:8d:48:a0:5b:76:35:da:f7:03:99:58:
3f:71:24:10:2e:a1:2c:d2:a2:30:c1:ac:ad:76:8a:
26:cd:37:30:fb:68:52:18:15:f0:9d:7e:6b:d6:19:
78:3a:aa:9b:b6:69:f6:79:21:62:60:24:66:85:66:
81:4c:24:17:db:f7:dc:49:51:28:c3:0e:16:c3:cb:
bf:b0:18:9f:f8:9c:2b:11:60:5b:ce:1a:13:fc:90:
a5:49:00:c4:d4:c5:67:39:ba:42:3e:a2:e7:0b:41:
58:d7:4a:f2:b7:09:61:78:ca:06:e0:13:6b:9c:45:
66:22:3e:26:f6:c9:1f:7a:65:7b:03:a6:51:f6:cc:
02:18:9f:6c:fc:3e:75:18:71:3d:71:b2:34:8c:77:
bf:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:E6:A5:F0:81:1C:D1:56:B8:1D:36:58:6D:34:0A:1D:D5:79:4A:A3
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Yual8IEc0Va4HTZYbTQKHdV5SqM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:120::/48
Signature Algorithm: sha256WithRSAEncryption
0d:dd:b9:15:4a:3e:ef:36:1d:f1:26:1d:30:6d:d6:73:9e:58:
18:4f:e1:c8:2a:49:33:26:92:65:60:86:9a:98:5b:21:db:42:
2a:9d:37:d2:8d:e5:76:52:89:1e:a9:fc:ff:cc:67:af:93:ea:
7d:fd:ea:dc:cf:79:51:57:d0:98:1f:89:54:29:09:82:58:33:
8d:04:a3:c2:b7:05:c3:63:f9:30:43:76:d3:87:73:97:d7:5b:
4c:55:3a:4a:45:81:51:21:95:df:63:01:e7:b1:66:85:cc:a4:
4c:d9:c8:1e:94:8e:63:be:fe:31:1b:c9:78:c8:65:bb:89:a5:
a3:65:c5:cd:01:83:c7:2d:9d:6c:7b:33:23:42:0d:53:3c:8d:
59:d8:83:14:74:01:32:b4:16:02:c5:c9:52:e5:f9:fd:2a:93:
24:67:5d:7d:b0:31:60:42:52:e7:bf:dd:cb:c0:9f:57:a6:23:
5a:1c:21:a6:4b:01:10:a0:a3:e9:fa:d7:6b:55:b3:74:41:2c:
ae:0d:3b:cd:2b:55:38:49:12:99:a7:cb:6f:a8:85:35:dc:b9:
4c:e6:6a:60:ba:f5:a8:76:96:4b:39:e7:cb:3e:86:86:6f:31:
2c:7f:c9:a5:c1:c3:19:19:21:03:8c:a8:ee:2b:36:6c:d5:b6:
9d:49:27:5c
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/rnzEjh+ysbh0nxQOgNrQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgyOTE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2MmU2YTVmMDgxMWNkMTU2YjgxZDM2NTg2ZDM0MGExZGQ1Nzk0YWEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmtMWsMo0XnDHwHothFcUGaIrUOo6
QpF2OolhrhBGx28um1Jtet8bItCMl9kMg+9qhgZOtfaWezSa1xbtJno+D4E6/cLV
2VG4BmcuO1Et/e1obFXLgY/a9hg/UYkhUrrDG49EpDVkrdydMzkgjUigW3Y12vcD
mVg/cSQQLqEs0qIwwaytdoomzTcw+2hSGBXwnX5r1hl4Oqqbtmn2eSFiYCRmhWaB
TCQX2/fcSVEoww4Ww8u/sBif+JwrEWBbzhoT/JClSQDE1MVnObpCPqLnC0FY10ry
twlheMoG4BNrnEVmIj4m9skfemV7A6ZR9swCGJ9s/D51GHE9cbI0jHe/BwIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFGLmpfCBHNFWuB02WG00Ch3VeUqjMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvWXVhbDhJRWMwVmE0SFRaWWJUUUtIZFY1U3FNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQEg
MA0GCSqGSIb3DQEBCwUAA4IBAQAN3bkVSj7vNh3xJh0wbdZznlgYT+HIKkkzJpJl
YIaamFsh20IqnTfSjeV2Uokeqfz/zGevk+p9/ercz3lRV9CYH4lUKQmCWDONBKPC
twXDY/kwQ3bTh3OX11tMVTpKRYFRIZXfYwHnsWaFzKRM2cgelI5jvv4xG8l4yGW7
iaWjZcXNAYPHLZ1sezMjQg1TPI1Z2IMUdAEytBYCxclS5fn9KpMkZ119sDFgQlLn
v93LwJ9XpiNaHCGmSwEQoKPp+tdrVbN0QSyuDTvNK1U4SRKZp8tvqIU13LlM5mpg
uvWodpZLOefLPoaGbzEsf8mlwcMZGSEDjKjuKzZs1badSSdc
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org