Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/kII2INt0dNSdH0eNGkSDMluhSBM.roa
File: kII2INt0dNSdH0eNGkSDMluhSBM.roa (raw, json)
Hash identifier: ff5z7cEcoP9StFgrn8rPP5ezZWtIG8mYmayj4mPLBSI=
Subject key identifier: 90:82:36:20:DB:74:74:D4:9D:1F:47:8D:1A:44:83:32:5B:A1:48:13
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0C346E06A49DAFB55E7E0716D4179
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/kII2INt0dNSdH0eNGkSDMluhSBM.roa
Signing time: Wed 07 Feb 2024 05:00:55 +0000
ROA not before: Wed 07 Feb 2024 05:00:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216391
IP address blocks: 2a0f:b241:2d::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:c3:46:e0:6a:49:da:fb:55:e7:e0:71:6d:41:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=90823620db7474d49d1f478d1a4483325ba14813
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:06:d5:0a:6d:32:fa:ee:e6:1c:d1:2b:eb:ff:
3e:35:13:66:64:7f:ff:6d:64:b4:a3:d6:f9:cd:04:
5a:00:03:2a:9c:11:e8:3b:86:71:7b:9f:13:71:64:
8f:cd:01:b6:aa:26:0e:b9:29:5f:da:06:78:db:2b:
64:21:dc:11:77:9d:ac:e6:20:10:ce:30:8c:e2:8a:
2f:b2:8a:c9:c1:89:b2:a0:10:8f:78:3f:35:94:08:
63:8a:e3:16:aa:37:1a:26:4e:ab:23:90:bf:d4:4c:
62:1e:55:9a:88:90:ee:25:3f:0e:d9:7a:eb:a6:38:
62:00:e5:3a:92:2a:7a:c6:9e:b1:14:e5:87:93:c7:
28:9a:6f:fa:5c:4e:bb:64:68:8a:4b:db:55:14:09:
79:1e:02:a3:3d:aa:93:f6:7d:5c:0b:c5:e7:92:31:
73:6e:9e:f9:34:ea:86:e8:f9:f0:07:92:6f:c9:84:
61:3e:30:6f:ac:ce:83:c0:5b:32:67:0e:68:4c:d0:
a1:a2:6f:a2:6a:25:cc:58:9c:e8:12:9f:65:6a:c4:
2f:d9:a9:01:38:c3:f7:c5:d7:d1:93:94:60:07:ce:
dc:20:dd:8a:ba:35:c8:d0:a7:24:1f:bc:93:2e:64:
43:a2:d9:4b:55:ab:5f:7a:93:42:9a:de:4d:6e:70:
6e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:82:36:20:DB:74:74:D4:9D:1F:47:8D:1A:44:83:32:5B:A1:48:13
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/kII2INt0dNSdH0eNGkSDMluhSBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:2d::/48
Signature Algorithm: sha256WithRSAEncryption
44:e3:94:89:5c:6a:6c:5a:74:f9:53:f7:1a:57:63:c2:91:25:
c5:55:64:3c:81:f5:a3:36:88:9a:39:15:e1:41:ac:3e:4d:39:
1e:dd:6c:de:cd:43:5c:a6:c9:96:4e:e3:b9:1d:18:30:03:40:
2c:ce:8d:11:bb:81:31:c2:cf:41:64:ed:5d:7b:73:50:e1:ca:
9d:16:a2:35:cb:96:5b:e5:3b:ff:d2:82:31:37:77:03:28:41:
cd:b2:09:20:10:37:69:da:65:ab:d5:fa:4f:5c:db:fd:50:d5:
98:fe:ca:de:0e:32:f7:fb:1b:f4:cd:44:0a:9b:9f:99:ce:47:
bf:4f:af:52:21:27:f9:86:e2:75:ca:fb:ce:a9:34:a8:73:d4:
be:2a:9e:c5:9b:a7:56:88:a0:84:07:a6:4a:1e:04:df:1b:06:
d1:2e:4b:32:b9:c4:99:d5:c2:a2:43:29:2d:fc:c3:1e:9c:b3:
c1:42:a8:14:05:14:63:8d:08:c6:1d:ec:fa:a4:e4:a0:74:66:
2d:19:17:94:c8:f6:9c:b9:f3:68:9c:43:27:ba:bd:02:25:8f:
19:d9:c8:49:7b:95:38:a7:0f:98:67:80:11:e9:ef:f6:cb:ca:
94:5f:ec:7d:df:d4:d4:08:6a:e6:92:01:2c:9e:23:95:b8:aa:
04:15:d0:09
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY2B8MNG4GpJ2vtV5+BxbUF5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA3MDUwMDU1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MDgyMzYyMGRiNzQ3NGQ0OWQxZjQ3OGQxYTQ0ODMzMjViYTE0ODEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzgbVCm0y+u7mHNEr6/8+NRNmZH//
bWS0o9b5zQRaAAMqnBHoO4Zxe58TcWSPzQG2qiYOuSlf2gZ42ytkIdwRd52s5iAQ
zjCM4oovsorJwYmyoBCPeD81lAhjiuMWqjcaJk6rI5C/1ExiHlWaiJDuJT8O2Xrr
pjhiAOU6kip6xp6xFOWHk8comm/6XE67ZGiKS9tVFAl5HgKjPaqT9n1cC8XnkjFz
bp75NOqG6PnwB5JvyYRhPjBvrM6DwFsyZw5oTNChom+iaiXMWJzoEp9lasQv2akB
OMP3xdfRk5RgB87cIN2KujXI0KckH7yTLmRDotlLVatfepNCmt5NbnBuawIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFJCCNiDbdHTUnR9HjRpEgzJboUgTMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEva0lJMklOdDBkTlNkSDBlTkdrU0RNbHVoU0JNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQAt
MA0GCSqGSIb3DQEBCwUAA4IBAQBE45SJXGpsWnT5U/caV2PCkSXFVWQ8gfWjNoia
ORXhQaw+TTke3WzezUNcpsmWTuO5HRgwA0Aszo0Ru4Exws9BZO1de3NQ4cqdFqI1
y5Zb5Tv/0oIxN3cDKEHNsgkgEDdp2mWr1fpPXNv9UNWY/sreDjL3+xv0zUQKm5+Z
zke/T69SISf5huJ1yvvOqTSoc9S+Kp7Fm6dWiKCEB6ZKHgTfGwbRLksyucSZ1cKi
Qykt/MMenLPBQqgUBRRjjQjGHez6pOSgdGYtGReUyPacufNonEMnur0CJY8Z2chJ
e5U4pw+YZ4AR6e/2y8qUX+x939TUCGrmkgEsniOVuKoEFdAJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org