Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bR_aycrpIvF-6LPfYSX3NIn3Z2g.roa
File: bR_aycrpIvF-6LPfYSX3NIn3Z2g.roa (raw, json)
Hash identifier: fS1pigs8rHfHbV2pVHimE28r8a9QTnYS7fAQSyu9vhU=
Subject key identifier: 6D:1F:DA:C9:CA:E9:22:F1:7E:E8:B3:DF:61:25:F7:34:89:F7:67:68
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0902831BC74FF18275AA7D2FC23D7
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bR_aycrpIvF-6LPfYSX3NIn3Z2g.roa
Signing time: Wed 07 Feb 2024 05:00:42 +0000
ROA not before: Wed 07 Feb 2024 05:00:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204693
IP address blocks: 2a0f:b241:1e::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:90:28:31:bc:74:ff:18:27:5a:a7:d2:fc:23:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6d1fdac9cae922f17ee8b3df6125f73489f76768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:6d:99:82:53:2e:ae:5f:21:9b:4a:d6:36:0b:
d7:de:91:e3:f7:69:43:c3:8f:6a:b8:3f:a3:52:55:
b9:e2:7f:40:7a:66:11:7f:b9:ac:f2:99:58:9b:1d:
70:e7:96:97:b7:29:46:98:ac:af:54:17:c4:1b:4c:
2e:8b:25:13:7e:41:95:2a:8a:5b:25:dd:62:d3:61:
69:c5:23:84:15:e9:29:80:79:33:45:a7:a8:9a:8d:
83:5e:ee:7a:01:80:f8:60:73:07:1f:07:99:7d:e8:
9a:4b:e3:96:01:62:5a:0b:2a:7b:a2:c3:55:d4:39:
1c:19:9f:10:06:56:a0:24:28:7f:c2:47:96:fb:b4:
65:37:dd:bc:c4:98:20:48:1e:a5:17:85:7f:b8:e1:
b2:bb:76:d6:cf:19:0d:1a:18:c3:88:f1:ae:36:4c:
62:bb:7e:29:fa:b6:8e:f2:85:67:8c:86:b3:c6:c7:
89:69:cc:e5:3c:ee:d0:92:38:df:e6:42:60:df:e8:
28:89:63:14:82:c4:c9:aa:8e:0a:b1:05:3e:d9:7a:
a2:76:25:1e:54:a7:da:45:38:73:e9:1c:0a:63:ac:
67:49:b8:8a:c1:05:33:d4:01:5f:1a:70:76:8a:50:
d8:a7:75:02:bb:2a:65:3d:e0:53:71:cf:b6:83:d8:
44:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:1F:DA:C9:CA:E9:22:F1:7E:E8:B3:DF:61:25:F7:34:89:F7:67:68
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bR_aycrpIvF-6LPfYSX3NIn3Z2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:1e::/48
Signature Algorithm: sha256WithRSAEncryption
41:5e:f8:13:cf:da:34:29:5b:a6:04:40:7d:5f:aa:d0:b6:11:
ba:c4:04:07:14:a7:d3:8c:86:67:32:d6:cd:46:84:c2:28:6d:
a4:38:33:b8:ba:3d:0a:24:70:b9:fd:b6:ec:8e:25:a3:05:d1:
3d:45:a1:8c:5c:ee:b4:3d:4a:b6:77:18:cc:8c:eb:22:2e:04:
8c:f4:83:5f:bf:b9:9b:a7:8d:12:c7:e7:09:34:38:5d:4c:f0:
c1:63:da:fc:18:98:3b:88:95:01:46:5e:bd:03:0a:bf:fd:c7:
c8:a3:60:25:82:54:da:d4:14:97:30:5e:79:a9:3a:94:c4:be:
4e:a2:8e:a3:91:26:a1:3b:c6:c6:2b:71:79:00:0e:68:99:9d:
d0:0a:b4:98:00:f1:d8:90:38:e6:8f:76:b4:e4:c8:b1:48:dc:
6a:e4:39:87:fd:3d:d8:6e:24:18:64:b8:79:e9:05:16:50:93:
4b:3d:d2:61:b2:7b:1e:54:3e:1f:92:82:05:fc:0c:ee:e6:8d:
92:eb:c5:9b:ff:56:8a:da:3a:88:61:fe:12:f8:a3:79:2c:5f:
a5:fc:c0:70:2b:41:fd:5b:83:d9:c4:98:e6:78:b6:70:2f:a9:
68:ab:db:29:4a:3d:af:27:4e:63:26:e1:93:dc:98:c6:e6:3c:
02:30:cf:85
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY2B8JAoMbx0/xgnWqfS/CPXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA3MDUwMDQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZDFmZGFjOWNhZTkyMmYxN2VlOGIzZGY2MTI1ZjczNDg5Zjc2NzY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhm2ZglMurl8hm0rWNgvX3pHj92lD
w49quD+jUlW54n9AemYRf7ms8plYmx1w55aXtylGmKyvVBfEG0wuiyUTfkGVKopb
Jd1i02FpxSOEFekpgHkzRaeomo2DXu56AYD4YHMHHweZfeiaS+OWAWJaCyp7osNV
1DkcGZ8QBlagJCh/wkeW+7RlN928xJggSB6lF4V/uOGyu3bWzxkNGhjDiPGuNkxi
u34p+raO8oVnjIazxseJaczlPO7Qkjjf5kJg3+goiWMUgsTJqo4KsQU+2XqidiUe
VKfaRThz6RwKY6xnSbiKwQUz1AFfGnB2ilDYp3UCuyplPeBTcc+2g9hEJQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFG0f2snK6SLxfuiz32El9zSJ92doMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvYlJfYXljcnBJdkYtNkxQZllTWDNOSW4zWjJnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQAe
MA0GCSqGSIb3DQEBCwUAA4IBAQBBXvgTz9o0KVumBEB9X6rQthG6xAQHFKfTjIZn
MtbNRoTCKG2kODO4uj0KJHC5/bbsjiWjBdE9RaGMXO60PUq2dxjMjOsiLgSM9INf
v7mbp40Sx+cJNDhdTPDBY9r8GJg7iJUBRl69Awq//cfIo2AlglTa1BSXMF55qTqU
xL5Ooo6jkSahO8bGK3F5AA5omZ3QCrSYAPHYkDjmj3a05MixSNxq5DmH/T3YbiQY
ZLh56QUWUJNLPdJhsnseVD4fkoIF/Azu5o2S68Wb/1aK2jqIYf4S+KN5LF+l/MBw
K0H9W4PZxJjmeLZwL6loq9spSj2vJ05jJuGT3JjG5jwCMM+F
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org