Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/w1NyAih14_mcPvPGJTw7MI2HxPs.roa
File: w1NyAih14_mcPvPGJTw7MI2HxPs.roa (raw, json)
Hash identifier: joKPlCpXZrVEHM6HefhDAVT2G5J3IlQYf5T+r/YQuY4=
Subject key identifier: C3:53:72:02:28:75:E3:F9:9C:3E:F3:C6:25:3C:3B:30:8D:87:C4:FB
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F8D872EC6E55C719E86707D1248A1F7
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/w1NyAih14_mcPvPGJTw7MI2HxPs.roa
Signing time: Tue 06 Feb 2024 17:53:18 +0000
ROA not before: Tue 06 Feb 2024 17:53:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216059
IP address blocks: 2a0f:b241:29::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:8d:87:2e:c6:e5:5c:71:9e:86:70:7d:12:48:a1:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 17:53:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c35372022875e3f99c3ef3c6253c3b308d87c4fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:01:0d:6e:52:49:70:35:bf:91:05:c7:9d:08:
ca:e9:9d:92:99:4f:1d:44:c9:34:7a:e3:ca:c2:49:
12:cf:bb:51:fb:02:98:23:77:3d:56:e4:01:c4:9a:
b2:a4:79:fa:23:e8:40:70:1a:24:52:54:9a:1a:11:
68:0a:c3:dd:dd:ff:08:be:2a:5f:c2:d1:1d:fc:82:
41:35:c0:60:d6:0c:83:fe:69:56:d1:b2:23:6f:f1:
ff:0c:8d:b7:c0:3f:28:7c:c1:88:92:39:c9:bd:f4:
5d:6e:13:8d:e6:60:1e:5d:f3:68:7d:83:24:90:38:
60:2c:f2:55:73:f9:5b:f6:5d:23:e3:52:63:24:f6:
d5:21:fa:1b:59:83:6a:94:22:94:01:ed:a3:ff:82:
03:13:73:3e:65:47:4d:3f:bf:c4:99:a1:0e:95:72:
fd:89:cd:53:57:ed:18:7e:6b:69:a6:64:1b:ed:41:
9d:cf:b2:46:11:56:18:0d:10:e3:f6:87:e2:f3:cb:
86:da:0d:7e:ee:60:4f:49:f8:3d:e7:25:1f:96:b1:
80:e3:35:b9:04:69:0d:3e:de:aa:69:2f:87:07:55:
b5:e3:eb:0e:cb:db:cf:d9:02:94:03:c6:2c:01:c9:
ce:4c:60:c3:5e:2f:1f:8f:52:08:02:d9:12:ae:22:
d3:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:53:72:02:28:75:E3:F9:9C:3E:F3:C6:25:3C:3B:30:8D:87:C4:FB
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/w1NyAih14_mcPvPGJTw7MI2HxPs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:29::/48
Signature Algorithm: sha256WithRSAEncryption
4a:41:5c:ff:30:4d:49:44:1c:ef:ec:f9:42:f2:d6:9d:5c:ca:
bc:d2:10:ec:da:1c:8f:84:0a:d6:fe:80:07:3c:d6:0d:14:99:
9e:67:04:5a:89:23:ef:f9:6e:2a:1a:28:7e:4c:28:22:e1:7c:
6c:ae:46:d6:45:84:6f:51:55:c1:e5:34:3f:1a:32:05:48:72:
a0:f9:8c:a2:8c:3a:c1:9f:0b:60:02:1a:ac:89:73:ff:c5:63:
a5:aa:96:6d:53:9f:75:3f:6d:65:68:11:5a:2c:8c:1d:c3:d8:
a4:2b:4a:b5:72:48:88:aa:c4:dc:af:cc:4e:34:b3:2b:66:1c:
22:5d:6d:23:15:13:2b:61:f0:1d:0e:c3:0b:df:40:a6:4d:7b:
8b:1d:e2:eb:00:ea:68:f4:be:d5:58:be:e5:7f:54:e6:20:b7:
d1:ab:27:8f:22:1c:a2:71:f8:8f:c2:3a:99:af:7d:60:30:38:
71:eb:2f:5b:26:1b:df:f9:cc:6c:b5:00:95:73:fb:16:c0:06:
3b:80:82:b2:e6:6a:63:97:ad:5e:06:ba:77:f0:3d:14:d1:4f:
9e:f6:ae:51:9b:ac:b8:fd:5c:59:6d:21:aa:d2:11:98:90:69:
b0:ce:a1:83:f9:a5:37:6b:61:12:92:10:f4:e7:1a:5c:54:66:
89:a9:45:5a
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAY1/jYcuxuVccZ6GcH0SSKH3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlODcxMDRhNGRiNGM0NjM3MWE3ZjhiNmE0NDFmYzMwZWNk
ZmUyMGYwHhcNMjQwMjA2MTc1MzE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMzUzNzIwMjI4NzVlM2Y5OWMzZWYzYzYyNTNjM2IzMDhkODdjNGZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhwENblJJcDW/kQXHnQjK6Z2SmU8d
RMk0euPKwkkSz7tR+wKYI3c9VuQBxJqypHn6I+hAcBokUlSaGhFoCsPd3f8Ivipf
wtEd/IJBNcBg1gyD/mlW0bIjb/H/DI23wD8ofMGIkjnJvfRdbhON5mAeXfNofYMk
kDhgLPJVc/lb9l0j41JjJPbVIfobWYNqlCKUAe2j/4IDE3M+ZUdNP7/EmaEOlXL9
ic1TV+0YfmtppmQb7UGdz7JGEVYYDRDj9ofi88uG2g1+7mBPSfg95yUflrGA4zW5
BGkNPt6qaS+HB1W14+sOy9vP2QKUA8YsAcnOTGDDXi8fj1IIAtkSriLTNQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFMNTcgIodeP5nD7zxiU8OzCNh8T7MB8GA1UdIwQY
MBaAFG6HEEpNtMRjcaf4tqRB/DDs3+IPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjct
YjcxNzk4MGU0YWQ2LzEvdzFOeUFpaDE0X21jUHZQR0pUdzdNSTJIeFBzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9iODdlYzAtZjc1YS00YmJlLWIwNjctYjcxNzk4MGU0YWQ2
LzEvYm9jUVNrMjB4R054cF9pMnBFSDhNT3pmNGc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg+yQQAp
MA0GCSqGSIb3DQEBCwUAA4IBAQBKQVz/ME1JRBzv7PlC8tadXMq80hDs2hyPhArW
/oAHPNYNFJmeZwRaiSPv+W4qGih+TCgi4XxsrkbWRYRvUVXB5TQ/GjIFSHKg+Yyi
jDrBnwtgAhqsiXP/xWOlqpZtU591P21laBFaLIwdw9ikK0q1ckiIqsTcr8xONLMr
ZhwiXW0jFRMrYfAdDsML30CmTXuLHeLrAOpo9L7VWL7lf1TmILfRqyePIhyicfiP
wjqZr31gMDhx6y9bJhvf+cxstQCVc/sWwAY7gIKy5mpjl61eBrp38D0U0U+e9q5R
m6y4/VxZbSGq0hGYkGmwzqGD+aU3a2ESkhD05xpcVGaJqUVa
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:11 2024 by rpki-client on console-ams.rpki-client.org