Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/rKXcXouAkMJrJzP3fmRM1he2ERQ.roa
File: rKXcXouAkMJrJzP3fmRM1he2ERQ.roa (raw, json)
Hash identifier: 7tq0BARwYIl+jGVkW//kQ7rXUPhRtJnIlvB3magsYMQ=
Subject key identifier: AC:A5:DC:5E:8B:80:90:C2:6B:27:33:F7:7E:64:4C:D6:17:B6:11:14
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0C44696B169D5B27A91B53BF3C5CF
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/rKXcXouAkMJrJzP3fmRM1he2ERQ.roa
Signing time: Wed 07 Feb 2024 05:00:56 +0000
ROA not before: Wed 07 Feb 2024 05:00:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216469
IP address blocks: 2a0f:b241:15a::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:c4:46:96:b1:69:d5:b2:7a:91:b5:3b:f3:c5:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=aca5dc5e8b8090c26b2733f77e644cd617b61114
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:38:76:43:6e:bd:96:fd:a4:f3:d9:ba:3a:f0:
e3:dc:df:1d:50:cf:1b:fa:11:6b:cc:81:f1:ee:98:
10:aa:f1:2b:e8:e5:5e:e7:4c:fb:c1:1d:7e:96:8a:
92:d7:6a:5d:55:81:31:cf:14:75:ea:f1:13:1f:37:
8e:81:c4:70:0f:68:12:95:f5:9e:ed:53:63:24:25:
7f:40:83:33:ec:b4:6f:aa:22:ea:63:18:11:0c:71:
31:73:a4:2a:33:e9:8d:60:17:91:60:f4:40:db:b4:
21:09:2e:97:ea:4a:d5:14:f8:b8:70:1c:c0:2e:49:
d8:f7:55:f2:80:22:b1:97:08:58:fb:4a:09:62:f3:
a0:88:e0:4b:d6:94:b4:0f:b1:b1:58:21:5c:df:26:
b9:a6:30:f8:dc:53:f5:5e:bf:c5:20:d0:19:1b:c8:
c4:d5:18:6e:14:f4:cd:aa:a0:60:ee:f0:04:0e:d7:
1b:d1:54:b1:3b:f4:bf:cf:a8:01:e6:30:0b:4d:69:
7c:ef:ec:64:63:11:f6:34:af:53:29:c7:a9:df:76:
5b:f9:b3:8c:f0:1a:96:c2:c5:3f:8f:ad:08:4a:8b:
a1:b4:2f:7d:1e:f7:92:89:12:bc:1a:27:fd:a3:f2:
51:1e:30:3c:73:40:a3:6d:5c:d1:37:46:58:4b:28:
be:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:A5:DC:5E:8B:80:90:C2:6B:27:33:F7:7E:64:4C:D6:17:B6:11:14
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/rKXcXouAkMJrJzP3fmRM1he2ERQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:15a::/48
Signature Algorithm: sha256WithRSAEncryption
63:50:56:ae:e2:f7:1c:86:83:49:eb:02:1a:2e:2f:c2:08:57:
42:10:b1:df:70:14:35:52:68:1d:6d:f5:98:98:d8:18:6c:ce:
85:73:96:26:23:7b:9f:95:3b:eb:c8:8f:84:d5:4c:ce:3e:9e:
c9:a3:bd:de:e0:88:da:61:09:d2:99:f7:af:a0:8d:aa:4e:f3:
27:a2:5c:55:85:0e:df:2e:cc:01:5f:79:42:38:74:21:65:43:
ec:6e:94:13:0c:71:8e:d8:52:ef:e4:3a:8e:e9:0a:7e:d8:51:
05:6f:74:c5:5b:d1:df:d7:dd:7c:c6:69:c2:2e:72:52:eb:c3:
29:7d:58:46:b8:ff:c0:ff:a5:3c:6d:6f:db:ce:ac:5d:28:b0:
08:85:c8:49:d1:c3:8f:2d:2c:3b:70:de:59:6b:98:b9:16:e4:
ee:b0:2f:0e:88:b1:18:4a:70:a5:7e:77:ad:a4:59:0a:14:47:
06:95:69:11:37:f6:cf:0d:ec:20:1c:44:37:eb:a2:8f:95:d3:
e6:c5:eb:ef:a7:96:e8:e1:9c:ea:81:76:e9:2e:d0:75:25:d8:
36:5e:5c:f6:bf:e0:ed:7c:33:b7:be:40:b6:6a:00:b1:7e:03:
aa:8d:06:d0:cc:0d:54:9b:3d:d4:3f:0f:41:3f:82:51:da:71:
f0:73:62:8f
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY2B8MRGlrFp1bJ6kbU788XPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA3MDUwMDU2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhY2E1ZGM1ZThiODA5MGMyNmIyNzMzZjc3ZTY0NGNkNjE3YjYxMTE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhDh2Q269lv2k89m6OvDj3N8dUM8b
+hFrzIHx7pgQqvEr6OVe50z7wR1+loqS12pdVYExzxR16vETHzeOgcRwD2gSlfWe
7VNjJCV/QIMz7LRvqiLqYxgRDHExc6QqM+mNYBeRYPRA27QhCS6X6krVFPi4cBzA
LknY91XygCKxlwhY+0oJYvOgiOBL1pS0D7GxWCFc3ya5pjD43FP1Xr/FINAZG8jE
1RhuFPTNqqBg7vAEDtcb0VSxO/S/z6gB5jALTWl87+xkYxH2NK9TKcep33Zb+bOM
8BqWwsU/j60ISouhtC99HveSiRK8Gif9o/JRHjA8c0CjbVzRN0ZYSyi+5wIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFKyl3F6LgJDCaycz935kTNYXthEUMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvcktYY1hvdUFrTUpySnpQM2ZtUk0xaGUyRVJRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQFa
MA0GCSqGSIb3DQEBCwUAA4IBAQBjUFau4vcchoNJ6wIaLi/CCFdCELHfcBQ1Umgd
bfWYmNgYbM6Fc5YmI3uflTvryI+E1UzOPp7Jo73e4IjaYQnSmfevoI2qTvMnolxV
hQ7fLswBX3lCOHQhZUPsbpQTDHGO2FLv5DqO6Qp+2FEFb3TFW9Hf1918xmnCLnJS
68MpfVhGuP/A/6U8bW/bzqxdKLAIhchJ0cOPLSw7cN5Za5i5FuTusC8OiLEYSnCl
fnetpFkKFEcGlWkRN/bPDewgHEQ366KPldPmxevvp5bo4ZzqgXbpLtB1Jdg2Xlz2
v+DtfDO3vkC2agCxfgOqjQbQzA1Umz3UPw9BP4JR2nHwc2KP
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:13 2024 by rpki-client on console-fra.rpki-client.org