Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/01_c2ZQ-JE2R1XPVcL3Ds2UAhi4.roa
File: 01_c2ZQ-JE2R1XPVcL3Ds2UAhi4.roa (raw, json)
Hash identifier: eWKvaOQHgku5SCKQq1oZ45hxHPNpyyi2DG1XDhUQUWM=
Subject key identifier: D3:5F:DC:D9:94:3E:24:4D:91:D5:73:D5:70:BD:C3:B3:65:00:86:2E
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB6B8A0307CCDA371CFDD948FECFF5E
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/01_c2ZQ-JE2R1XPVcL3Ds2UAhi4.roa
Signing time: Tue 06 Feb 2024 18:38:17 +0000
ROA not before: Tue 06 Feb 2024 18:38:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202776
IP address blocks: 2a0f:b241:135::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b6:b8:a0:30:7c:cd:a3:71:cf:dd:94:8f:ec:ff:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:38:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d35fdcd9943e244d91d573d570bdc3b36500862e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:0f:87:e8:8b:b0:cb:53:25:46:67:03:7c:3c:
bd:93:a9:97:f1:c1:05:8f:e1:a4:ee:06:29:c5:af:
7a:4b:28:1f:2d:70:5c:d8:20:61:06:cc:88:2d:32:
db:01:8b:f6:0d:9e:39:73:32:7d:2c:6a:e5:49:0b:
ee:d8:58:12:b8:24:a7:d7:3a:42:cc:45:df:53:77:
fb:10:48:79:61:07:c6:a5:e5:97:79:1c:63:31:20:
ae:64:bc:ef:2d:2a:f6:bc:56:0b:50:b6:b8:2f:10:
e7:0f:5f:20:4b:65:e3:bf:ab:99:74:b6:66:d7:1b:
b3:58:e0:9c:7f:bf:5c:53:0f:41:05:1f:3c:7a:55:
2e:2f:ab:3e:08:eb:2f:9c:a4:49:76:66:f3:98:db:
02:0b:6a:fd:54:31:dd:e8:72:1b:bc:86:07:0a:e5:
10:af:49:6d:af:06:d5:f1:15:c0:92:de:0b:af:66:
22:f4:51:7a:8b:f2:a3:13:f5:48:75:7f:1b:b3:07:
4c:03:c7:01:fe:3a:a2:28:d1:d5:98:38:8d:b1:f2:
0a:50:a4:82:3f:a3:96:6e:5b:67:41:c2:8c:b4:6a:
21:36:02:f0:c5:3e:d6:79:ee:8d:e7:4f:59:f3:04:
2d:ab:32:3c:9a:c8:f4:ed:41:d0:00:6d:a0:2a:31:
47:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:5F:DC:D9:94:3E:24:4D:91:D5:73:D5:70:BD:C3:B3:65:00:86:2E
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/01_c2ZQ-JE2R1XPVcL3Ds2UAhi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:135::/48
Signature Algorithm: sha256WithRSAEncryption
07:1f:b4:d8:77:f6:e5:37:77:dd:7d:77:ca:eb:d5:43:4f:a8:
fd:fd:0e:e7:8c:6c:70:07:00:bf:6a:a2:19:ff:3e:53:b3:c6:
48:98:b6:7f:c4:04:5c:c8:1a:a5:a7:88:ad:d9:1c:64:87:f3:
88:3c:f7:8b:13:a2:7c:ad:a6:93:da:04:9f:b5:a6:e7:66:5f:
13:0c:e8:80:d3:51:7e:88:ea:f6:60:5b:35:96:a1:81:43:3f:
0c:45:73:84:0e:56:d7:38:b3:61:7e:44:8a:12:74:83:3a:ab:
64:3c:5c:71:92:62:55:95:c0:c9:aa:6b:18:e2:f6:7e:d7:70:
79:09:2e:e0:ac:ab:0e:a7:70:be:37:9d:35:32:ec:3a:ed:c6:
c1:fe:bf:e5:e3:28:45:ef:85:3f:b5:65:72:11:5a:d4:70:3b:
fb:d3:e3:59:8a:92:21:79:2f:92:f4:3a:74:cf:85:e3:4d:35:
6f:10:d1:12:f3:7d:78:fb:ee:9c:3e:1f:21:eb:7a:3a:42:2b:
ea:d1:4b:44:96:8e:1a:49:d6:f0:18:0f:00:0a:dd:c3:23:eb:
87:3c:11:80:87:1b:08:b7:e6:b3:45:e4:49:19:42:74:ff:a1:
96:5f:1f:b3:6e:99:1d:89:94:59:0e:33:a5:f8:08:44:e5:e8:
3d:5a:ae:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:06 2024 by rpki-client on console-ams.rpki-client.org