Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/m5wbnAraiC1y746UcxDFJy0bwvI.roa
File: m5wbnAraiC1y746UcxDFJy0bwvI.roa (raw, json)
Hash identifier: DjZnkkgyI8N9bisZBXW8B+WgubaDVQKGBBP7MoX7Grs=
Subject key identifier: 9B:9C:1B:9C:0A:DA:88:2D:72:EF:8E:94:73:10:C5:27:2D:1B:C2:F2
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAE75E2952A4B1A966FD129BC720604
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/m5wbnAraiC1y746UcxDFJy0bwvI.roa
Signing time: Tue 06 Feb 2024 18:29:16 +0000
ROA not before: Tue 06 Feb 2024 18:29:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49105
IP address blocks: 2a0f:b241:114::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ae:75:e2:95:2a:4b:1a:96:6f:d1:29:bc:72:06:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:29:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9b9c1b9c0ada882d72ef8e947310c5272d1bc2f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:63:1f:f1:22:7d:40:07:98:b3:4e:24:9b:80:
eb:52:bd:14:d3:2c:a9:52:07:a3:90:bd:19:8a:13:
f5:f2:3e:4e:56:c0:6b:ab:77:f7:89:60:cc:00:4a:
1b:4d:45:e9:b8:48:49:45:29:31:08:12:d5:9e:26:
5f:bc:13:cc:94:8d:68:5b:18:97:4b:3d:96:6d:86:
6e:98:a3:15:6d:87:10:5e:d6:a3:ff:7a:c5:dd:91:
4f:26:78:de:47:3d:23:8c:99:9f:86:e4:07:3b:56:
b5:bf:ae:39:bf:d8:b7:56:9e:ae:11:55:d2:1c:c0:
b1:fa:de:e1:71:3d:3a:36:c3:a0:f8:d2:c3:89:e9:
b1:dc:af:04:2c:77:99:b3:66:8e:16:35:b9:97:b7:
c1:63:20:e6:00:65:51:35:55:8e:0f:bd:84:65:97:
a7:3f:26:39:7f:ca:86:27:21:26:96:8e:e1:31:36:
3b:6e:5c:5b:6a:9b:4b:a8:5a:25:55:64:1d:be:8a:
bc:1a:86:15:10:3a:ef:23:20:9f:a6:5b:8f:f7:22:
a3:ea:98:ec:fe:23:45:0c:18:60:93:fd:d4:c2:f7:
54:12:8d:d2:c1:d7:61:14:1c:e5:97:04:44:56:af:
e1:68:44:6c:5b:21:c4:1f:fd:65:d5:c7:07:61:58:
e0:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:9C:1B:9C:0A:DA:88:2D:72:EF:8E:94:73:10:C5:27:2D:1B:C2:F2
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/m5wbnAraiC1y746UcxDFJy0bwvI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:114::/48
Signature Algorithm: sha256WithRSAEncryption
17:2d:00:b1:21:55:bb:c8:40:bf:de:5d:22:e8:c2:3c:4c:a1:
0d:fa:06:9a:8a:c0:b0:a0:f7:4b:cc:cf:e9:c3:67:68:ea:ab:
3a:4d:99:ff:6f:c2:a8:b8:66:c2:ba:b4:1a:2a:3d:b7:7f:b9:
fc:5e:f6:d4:ac:95:bd:77:cd:72:e9:16:fb:51:88:05:7b:e7:
c5:f1:b7:45:5b:96:cc:a7:bd:9a:28:e4:ec:31:32:f0:96:5d:
94:0b:43:d6:a5:de:d2:87:e8:c8:43:1d:28:4d:e4:7e:b1:fc:
ea:e8:04:6d:1e:ab:6c:fa:af:1d:44:26:6c:23:01:94:9f:ed:
fb:4f:a8:0b:02:af:19:4e:31:65:3d:7d:2f:4c:09:92:a7:8c:
9d:2b:e4:e5:9b:df:d9:7f:9b:87:45:d8:9c:83:b5:d1:6f:51:
34:5b:39:f1:29:59:54:60:ea:c6:84:c9:bd:54:84:52:79:00:
d2:aa:fd:d2:ba:0d:b5:ac:33:af:86:49:8e:0a:b5:69:86:49:
4b:c4:0a:f8:4c:25:5e:01:0f:d0:43:58:5b:90:31:68:f8:e9:
59:44:c3:2f:aa:69:72:aa:3a:b8:54:03:26:6f:20:3a:91:d0:
a4:43:b9:6a:4e:0f:6c:04:b3:db:c4:1c:eb:a7:dc:b6:d6:04:
df:7f:3a:17
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/rnXilSpLGpZv0Sm8cgYEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgyOTE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YjljMWI5YzBhZGE4ODJkNzJlZjhlOTQ3MzEwYzUyNzJkMWJjMmYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr2Mf8SJ9QAeYs04km4DrUr0U0yyp
UgejkL0ZihP18j5OVsBrq3f3iWDMAEobTUXpuEhJRSkxCBLVniZfvBPMlI1oWxiX
Sz2WbYZumKMVbYcQXtaj/3rF3ZFPJnjeRz0jjJmfhuQHO1a1v645v9i3Vp6uEVXS
HMCx+t7hcT06NsOg+NLDiemx3K8ELHeZs2aOFjW5l7fBYyDmAGVRNVWOD72EZZen
PyY5f8qGJyEmlo7hMTY7blxbaptLqFolVWQdvoq8GoYVEDrvIyCfpluP9yKj6pjs
/iNFDBhgk/3UwvdUEo3SwddhFBzllwREVq/haERsWyHEH/1l1ccHYVjg9QIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFJucG5wK2ogtcu+OlHMQxSctG8LyMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvbTV3Ym5BcmFpQzF5NzQ2VWN4REZKeTBid3ZJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQEU
MA0GCSqGSIb3DQEBCwUAA4IBAQAXLQCxIVW7yEC/3l0i6MI8TKEN+gaaisCwoPdL
zM/pw2do6qs6TZn/b8KouGbCurQaKj23f7n8XvbUrJW9d81y6Rb7UYgFe+fF8bdF
W5bMp72aKOTsMTLwll2UC0PWpd7Sh+jIQx0oTeR+sfzq6ARtHqts+q8dRCZsIwGU
n+37T6gLAq8ZTjFlPX0vTAmSp4ydK+Tlm9/Zf5uHRdicg7XRb1E0WznxKVlUYOrG
hMm9VIRSeQDSqv3Sug21rDOvhkmOCrVphklLxAr4TCVeAQ/QQ1hbkDFo+OlZRMMv
qmlyqjq4VAMmbyA6kdCkQ7lqTg9sBLPbxBzrp9y21gTffzoX
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org