Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/uoasI6wrYtXd9UNoVwQVuD3rea0.roa
File: uoasI6wrYtXd9UNoVwQVuD3rea0.roa (raw, json)
Hash identifier: 97AX34L66nj9McafOnhJgiRHvoIQDXvB766SUrwKsrc=
Subject key identifier: BA:86:AC:23:AC:2B:62:D5:DD:F5:43:68:57:04:15:B8:3D:EB:79:AD
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA812007D3D582A591922993D6C247E
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/uoasI6wrYtXd9UNoVwQVuD3rea0.roa
Signing time: Tue 06 Feb 2024 18:22:17 +0000
ROA not before: Tue 06 Feb 2024 18:22:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200105
IP address blocks: 2a0f:b241:93::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a8:12:00:7d:3d:58:2a:59:19:22:99:3d:6c:24:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:22:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ba86ac23ac2b62d5ddf54368570415b83deb79ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:68:60:ac:a9:9e:4c:ee:02:0d:4c:d5:ec:f6:
7a:55:b6:b4:a6:99:81:6a:ea:02:f5:f9:8e:39:5e:
93:45:4d:39:ee:d0:8a:2c:15:e4:29:86:dc:0e:24:
e2:6a:62:90:f5:df:2f:a3:71:3e:22:2b:60:89:25:
5e:f9:49:7b:8f:98:e5:69:cc:2d:59:f2:5f:f8:7b:
da:fc:95:b7:f3:e8:e5:b8:a1:bd:04:53:1e:13:74:
3a:02:86:31:47:5e:6f:b4:fb:aa:87:43:13:c9:68:
84:ba:93:5f:b7:75:1b:3b:7b:e9:7f:e9:41:8c:07:
40:f7:f2:96:c2:e4:b9:da:fc:d2:4c:29:d2:27:ba:
d0:e3:06:f5:a9:69:36:ed:38:1e:f0:a3:8d:22:bd:
fc:ff:ff:4c:13:c9:1e:2d:f6:24:47:00:f5:84:df:
7d:6b:3b:66:a8:4d:67:39:d7:48:8d:e3:82:0a:3e:
83:3c:9c:68:35:2a:62:d1:60:83:1a:57:c0:a7:87:
31:95:77:55:86:3a:d5:85:07:5b:55:b2:ea:9d:73:
78:70:e6:d0:bc:17:55:5c:0c:b8:29:56:ab:7c:bd:
31:3b:82:15:24:93:47:96:d8:8a:4e:e4:a9:4e:a6:
7e:51:de:de:a1:6e:55:a9:01:de:5a:74:ad:96:e6:
f8:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:86:AC:23:AC:2B:62:D5:DD:F5:43:68:57:04:15:B8:3D:EB:79:AD
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/uoasI6wrYtXd9UNoVwQVuD3rea0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:93::/48
Signature Algorithm: sha256WithRSAEncryption
81:77:11:f3:b3:7c:98:4e:92:9b:3c:31:dd:de:fb:82:a5:61:
97:28:bb:a2:a6:05:51:54:4c:19:ad:49:e1:a5:2f:49:66:c8:
80:62:99:29:8b:de:ba:8c:1b:61:d6:19:7b:57:83:e6:21:8b:
8d:f3:97:b6:30:1c:01:93:88:ea:37:25:b0:aa:65:ed:69:64:
06:4e:a3:7b:b1:83:21:04:9d:10:7b:ab:86:b8:76:fe:e7:24:
7a:c5:89:be:69:3c:65:d6:0d:7c:df:47:1f:3f:d1:51:94:da:
f5:19:d2:22:42:74:11:ff:ab:54:8c:57:ee:7b:3d:c7:6a:d8:
ee:46:5e:7a:05:5b:b0:f7:aa:dc:c2:1b:00:02:5d:db:cf:80:
1e:69:80:61:d2:81:58:b7:50:8a:bc:5a:86:db:13:61:93:36:
5f:b1:ae:79:c1:aa:df:4e:63:f3:e6:a7:35:c1:52:a3:de:ec:
cb:dc:5d:38:de:6f:18:cc:46:ab:78:b5:69:8a:fb:84:5a:57:
6d:e4:5d:76:72:f1:a7:5f:6f:15:af:f8:ea:85:0d:87:ed:03:
3e:6a:fc:e5:a0:1b:0f:68:5c:f0:69:8d:cb:10:ab:64:4d:92:
ad:ab:30:35:1f:ff:b5:e6:37:66:8b:77:2d:a8:1e:a0:bb:8f:
ab:85:5a:f5
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/qBIAfT1YKlkZIpk9bCR+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTgyMjE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYTg2YWMyM2FjMmI2MmQ1ZGRmNTQzNjg1NzA0MTViODNkZWI3OWFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiWhgrKmeTO4CDUzV7PZ6Vba0ppmB
auoC9fmOOV6TRU057tCKLBXkKYbcDiTiamKQ9d8vo3E+IitgiSVe+Ul7j5jlacwt
WfJf+Hva/JW38+jluKG9BFMeE3Q6AoYxR15vtPuqh0MTyWiEupNft3UbO3vpf+lB
jAdA9/KWwuS52vzSTCnSJ7rQ4wb1qWk27Tge8KONIr38//9ME8keLfYkRwD1hN99
aztmqE1nOddIjeOCCj6DPJxoNSpi0WCDGlfAp4cxlXdVhjrVhQdbVbLqnXN4cObQ
vBdVXAy4KVarfL0xO4IVJJNHltiKTuSpTqZ+Ud7eoW5VqQHeWnStlub4nQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFLqGrCOsK2LV3fVDaFcEFbg963mtMB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvdW9hc0k2d3JZdFhkOVVOb1Z3UVZ1RDNyZWEwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQCT
MA0GCSqGSIb3DQEBCwUAA4IBAQCBdxHzs3yYTpKbPDHd3vuCpWGXKLuipgVRVEwZ
rUnhpS9JZsiAYpkpi966jBth1hl7V4PmIYuN85e2MBwBk4jqNyWwqmXtaWQGTqN7
sYMhBJ0Qe6uGuHb+5yR6xYm+aTxl1g1830cfP9FRlNr1GdIiQnQR/6tUjFfuez3H
atjuRl56BVuw96rcwhsAAl3bz4AeaYBh0oFYt1CKvFqG2xNhkzZfsa55warfTmPz
5qc1wVKj3uzL3F043m8YzEareLVpivuEWldt5F12cvGnX28Vr/jqhQ2H7QM+avzl
oBsPaFzwaY3LEKtkTZKtqzA1H/+15jdmi3ctqB6gu4+rhVr1
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:11 2024 by rpki-client on console-ams.rpki-client.org