Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/6thYmmT9sOrsBL8hn-BLx4FIOJU.roa
File: 6thYmmT9sOrsBL8hn-BLx4FIOJU.roa (raw, json)
Hash identifier: trbItZe/UFnvU+IN2YP0523yCEbIZmXZdmLucccNHvc=
Subject key identifier: EA:D8:58:9A:64:FD:B0:EA:EC:04:BF:21:9F:E0:4B:C7:81:48:38:95
Certificate issuer: /CN=cfcead390625edba1408108df57cea47160d70e5
Certificate serial: 0188D82777BBE3CD16A7DC50E785A0BA1B42
Authority key identifier: CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/6thYmmT9sOrsBL8hn-BLx4FIOJU.roa
Signing time: Tue 20 Jun 2023 09:34:05 +0000
ROA not before: Tue 20 Jun 2023 09:34:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201335
IP address blocks: 2a0f:7803:ffa0::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d8:27:77:bb:e3:cd:16:a7:dc:50:e7:85:a0:ba:1b:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfcead390625edba1408108df57cea47160d70e5
Validity
Not Before: Jun 20 09:34:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ead8589a64fdb0eaec04bf219fe04bc781483895
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:87:48:da:60:ee:43:23:71:9c:6d:7e:3c:ae:
b9:02:0b:81:06:dc:3d:b1:27:2f:bb:91:c9:e8:ef:
81:61:ec:db:d3:91:52:67:29:f5:cc:df:29:d6:05:
ff:39:37:f1:99:3f:1a:0c:3c:75:c0:19:b8:80:31:
52:54:2b:ba:6b:05:2b:67:ae:46:4e:43:7b:8a:70:
52:f7:eb:d4:f7:bc:c2:4f:e4:b4:32:64:7a:5e:a9:
3b:65:df:bc:c7:ff:74:28:bf:43:90:9b:a3:28:90:
2c:94:fa:55:98:56:03:d5:9a:91:53:35:57:44:2e:
6f:11:c6:9f:88:c8:fa:95:64:fa:41:bf:30:5c:13:
33:86:ee:6d:a7:ef:36:27:c3:55:63:f9:3c:30:c3:
df:d0:36:4e:d2:da:4d:0f:71:84:8a:c4:b7:4d:4b:
1a:fb:97:05:5a:77:10:0c:e0:8f:02:d6:31:75:74:
73:71:3d:68:47:7d:ed:b0:28:9e:5a:f5:65:b7:68:
52:78:e0:c8:0e:2d:71:e0:a0:1f:24:0c:68:3f:8c:
0b:cc:fa:b7:cd:89:9b:da:c9:0f:90:5c:d1:9e:ba:
ae:59:b7:09:95:5b:56:54:32:bb:b5:93:9f:f7:c1:
ff:32:28:9f:c7:4c:0e:c5:64:23:fe:02:37:72:89:
0f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:D8:58:9A:64:FD:B0:EA:EC:04:BF:21:9F:E0:4B:C7:81:48:38:95
X509v3 Authority Key Identifier:
keyid:CF:CE:AD:39:06:25:ED:BA:14:08:10:8D:F5:7C:EA:47:16:0D:70:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z86tOQYl7boUCBCN9XzqRxYNcOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/6thYmmT9sOrsBL8hn-BLx4FIOJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/c4647a-6042-4fe8-a276-f5b6a718f4b5/1/z86tOQYl7boUCBCN9XzqRxYNcOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:7803:ffa0::/48
Signature Algorithm: sha256WithRSAEncryption
32:b8:a2:44:ee:e9:7b:2d:3e:a5:b4:e4:64:ad:f8:eb:a3:01:
20:38:ce:30:d8:3c:19:8a:b3:8e:05:74:33:3a:de:7e:11:fc:
33:eb:50:5a:e0:21:d1:cc:cc:94:39:17:72:ac:08:29:9f:ef:
e5:f1:a3:b8:a0:01:0c:57:53:42:32:e0:5f:7c:c6:9d:74:42:
0b:20:68:c3:22:88:62:73:ae:4d:a1:1c:4d:4a:a5:f1:57:8e:
ea:23:be:d8:30:6f:1e:a8:4f:4a:d3:90:07:e6:73:f8:ed:a2:
91:0b:d6:16:57:a6:43:0a:ee:a4:04:ce:c0:47:87:62:73:5c:
9f:45:6c:8c:63:4e:b6:b1:fd:11:e0:11:2e:74:2f:0f:78:0d:
48:cb:07:fb:eb:dd:2e:23:23:0e:c9:70:64:a2:99:8a:4c:fa:
38:cc:ff:64:0d:1d:4e:46:6c:13:20:fb:02:0b:06:3b:17:0a:
28:73:d6:25:14:74:93:3d:f9:42:d9:e9:1c:2e:3a:42:b0:13:
e3:13:63:18:de:ee:3e:8a:23:f0:7e:c6:c0:fc:b7:b0:b7:52:
30:ea:70:0e:c0:ea:bf:b2:c6:76:4a:f1:4e:69:ee:37:4a:a1:
bf:c9:48:aa:a0:f7:d1:58:1f:19:eb:cc:72:ec:6c:1a:18:18:
ea:9c:c9:a5
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgISAYjYJ3e7480Wp9xQ54WguhtCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNmY2VhZDM5MDYyNWVkYmExNDA4MTA4ZGY1N2NlYTQ3MTYw
ZDcwZTUwHhcNMjMwNjIwMDkzNDA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlYWQ4NTg5YTY0ZmRiMGVhZWMwNGJmMjE5ZmUwNGJjNzgxNDgzODk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApodI2mDuQyNxnG1+PK65AguBBtw9
sScvu5HJ6O+BYezb05FSZyn1zN8p1gX/OTfxmT8aDDx1wBm4gDFSVCu6awUrZ65G
TkN7inBS9+vU97zCT+S0MmR6Xqk7Zd+8x/90KL9DkJujKJAslPpVmFYD1ZqRUzVX
RC5vEcafiMj6lWT6Qb8wXBMzhu5tp+82J8NVY/k8MMPf0DZO0tpND3GEisS3TUsa
+5cFWncQDOCPAtYxdXRzcT1oR33tsCieWvVlt2hSeODIDi1x4KAfJAxoP4wLzPq3
zYmb2skPkFzRnrquWbcJlVtWVDK7tZOf98H/Miifx0wOxWQj/gI3cokPVQIDAQAB
o4ICDDCCAggwHQYDVR0OBBYEFOrYWJpk/bDq7AS/IZ/gS8eBSDiVMB8GA1UdIwQY
MBaAFM/OrTkGJe26FAgQjfV86kcWDXDlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvejg2dE9RWWw3Ym9VQ0JDTjlYenFSeFlOY09VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNS9jNDY0N2EtNjA0Mi00ZmU4LWEyNzYt
ZjViNmE3MThmNGI1LzEvNnRoWW1tVDlzT3JzQkw4aG4tQkx4NEZJT0pVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNS9jNDY0N2EtNjA0Mi00ZmU4LWEyNzYtZjViNmE3MThmNGI1
LzEvejg2dE9RWWw3Ym9VQ0JDTjlYenFSeFlOY09VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg94A/+g
MA0GCSqGSIb3DQEBCwUAA4IBAQAyuKJE7ul7LT6ltORkrfjrowEgOM4w2DwZirOO
BXQzOt5+Efwz61Ba4CHRzMyUORdyrAgpn+/l8aO4oAEMV1NCMuBffMaddEILIGjD
Iohic65NoRxNSqXxV47qI77YMG8eqE9K05AH5nP47aKRC9YWV6ZDCu6kBM7AR4di
c1yfRWyMY062sf0R4BEudC8PeA1Iywf7690uIyMOyXBkopmKTPo4zP9kDR1ORmwT
IPsCCwY7Fwooc9YlFHSTPflC2ekcLjpCsBPjE2MY3u4+iiPwfsbA/Lewt1Iw6nAO
wOq/ssZ2SvFOae43SqG/yUiqoPfRWB8Z68xy7GwaGBjqnMml
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:29 2024 by rpki-client on console-fra.rpki-client.org