Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/skdxKcaZ3MUGlSgoW2tFI-vKP4M.roa
File: skdxKcaZ3MUGlSgoW2tFI-vKP4M.roa (raw, json)
Hash identifier: zNqbfxwylX5Mx3L9zjiWU8dbP+0EFXFs5YferCjfnsw=
Subject key identifier: B2:47:71:29:C6:99:DC:C5:06:95:28:28:5B:6B:45:23:EB:CA:3F:83
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F07916B12682EEF73A59802DCD1579
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/skdxKcaZ3MUGlSgoW2tFI-vKP4M.roa
Signing time: Wed 07 Feb 2024 05:00:36 +0000
ROA not before: Wed 07 Feb 2024 05:00:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199613
IP address blocks: 2a0f:b241:88::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:79:16:b1:26:82:ee:f7:3a:59:80:2d:cd:15:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b2477129c699dcc5069528285b6b4523ebca3f83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:42:6c:06:d5:32:cc:d7:36:16:7c:22:3f:28:
dc:51:9a:fb:e1:0c:2d:55:10:f1:f3:29:6f:3e:16:
e0:f8:89:72:65:b8:9c:c7:42:fd:fc:a2:fe:e0:43:
d5:d5:3e:3c:42:c7:e2:dd:38:5c:6e:e4:d4:4f:a8:
af:04:0f:97:9f:68:d7:bc:cf:f0:b9:3e:7a:85:49:
91:40:40:42:0f:60:37:6e:00:ca:3f:52:f7:87:07:
dd:76:4a:2f:00:d5:8a:c8:54:ce:9e:9c:88:c6:65:
fb:42:8a:00:dd:91:0e:68:31:eb:ba:c8:03:99:56:
12:0a:81:30:99:1c:88:ea:02:62:f9:0a:d8:3f:3c:
71:4e:b1:f0:2d:e0:20:dd:e2:ad:41:89:8c:c6:09:
30:fd:e7:3b:78:42:86:5c:65:de:38:24:48:23:ef:
40:43:27:ee:eb:70:83:e9:8a:df:15:24:2f:60:f1:
5b:27:8c:fb:2d:f5:3c:ae:c2:61:d5:ec:1b:08:cf:
e5:90:a6:a7:eb:7e:7d:03:38:b3:c7:2a:41:3d:b6:
73:d8:1f:90:b2:07:7e:dd:c1:5d:b5:88:86:fa:a7:
a9:eb:c2:ef:51:59:66:ce:9f:e0:15:8f:a8:b2:95:
52:e3:e6:f2:6c:3e:54:b0:8d:e7:62:02:5f:0d:c8:
be:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:47:71:29:C6:99:DC:C5:06:95:28:28:5B:6B:45:23:EB:CA:3F:83
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/skdxKcaZ3MUGlSgoW2tFI-vKP4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:88::/48
Signature Algorithm: sha256WithRSAEncryption
60:2f:e2:46:8b:6e:ce:95:d3:2e:2e:a1:51:e4:e6:40:b4:25:
3e:4c:0e:a4:c0:db:03:d6:18:15:49:9f:0a:94:c1:18:91:45:
a9:cd:ad:d3:52:64:dd:23:d4:48:65:ed:e8:61:7d:7a:58:fb:
cb:3c:a4:be:ca:b9:b9:24:c1:02:db:31:30:72:e8:5d:91:15:
ea:52:07:17:98:37:ee:8a:b2:d2:95:d9:bb:ae:0e:1a:8d:ea:
28:51:17:27:b4:14:d6:1b:f2:6f:8b:f5:aa:4c:b7:c1:1b:6d:
ae:39:10:71:02:66:ef:d4:a9:4a:b0:1b:77:52:bb:d3:ba:44:
d1:af:2d:6f:47:5e:f9:f2:f4:e3:92:88:f3:f0:55:57:bf:1a:
33:41:ee:ef:7a:73:e2:fd:78:43:6e:1f:43:7f:4f:5e:98:8b:
70:8b:b5:c2:34:d3:0e:e1:3e:da:74:e5:ab:46:02:74:9e:ef:
da:68:a4:c6:96:20:2a:04:95:a5:dc:a0:ae:46:6e:4b:cd:84:
8a:f6:ac:38:9c:0e:e4:36:58:c2:c9:75:b2:e0:e0:4e:92:04:
bf:35:ce:fa:bd:d5:45:63:dd:67:b2:c8:0f:2b:8c:eb:ca:af:
34:e3:bd:09:da:f3:9a:ca:c9:14:42:22:49:e5:60:14:0d:a7:
21:bf:c3:2f
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY2B8HkWsSaC7vc6WYAtzRV5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA3MDUwMDM2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiMjQ3NzEyOWM2OTlkY2M1MDY5NTI4Mjg1YjZiNDUyM2ViY2EzZjgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtEJsBtUyzNc2FnwiPyjcUZr74Qwt
VRDx8ylvPhbg+IlyZbicx0L9/KL+4EPV1T48Qsfi3ThcbuTUT6ivBA+Xn2jXvM/w
uT56hUmRQEBCD2A3bgDKP1L3hwfddkovANWKyFTOnpyIxmX7QooA3ZEOaDHrusgD
mVYSCoEwmRyI6gJi+QrYPzxxTrHwLeAg3eKtQYmMxgkw/ec7eEKGXGXeOCRII+9A
Qyfu63CD6YrfFSQvYPFbJ4z7LfU8rsJh1ewbCM/lkKan6359AzizxypBPbZz2B+Q
sgd+3cFdtYiG+qep68LvUVlmzp/gFY+ospVS4+bybD5UsI3nYgJfDci+KQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFLJHcSnGmdzFBpUoKFtrRSPryj+DMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvc2tkeEtjYVozTVVHbFNnb1cydEZJLXZLUDRNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQCI
MA0GCSqGSIb3DQEBCwUAA4IBAQBgL+JGi27OldMuLqFR5OZAtCU+TA6kwNsD1hgV
SZ8KlMEYkUWpza3TUmTdI9RIZe3oYX16WPvLPKS+yrm5JMEC2zEwcuhdkRXqUgcX
mDfuirLSldm7rg4ajeooURcntBTWG/Jvi/WqTLfBG22uORBxAmbv1KlKsBt3UrvT
ukTRry1vR1758vTjkojz8FVXvxozQe7venPi/XhDbh9Df09emItwi7XCNNMO4T7a
dOWrRgJ0nu/aaKTGliAqBJWl3KCuRm5LzYSK9qw4nA7kNljCyXWy4OBOkgS/Nc76
vdVFY91nssgPK4zryq80470J2vOayskUQiJJ5WAUDachv8Mv
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:13 2024 by rpki-client on console-fra.rpki-client.org