Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/0UTumjsrUM3YUjHMpDshqLKfAHk.roa
File: 0UTumjsrUM3YUjHMpDshqLKfAHk.roa (raw, json)
Hash identifier: ZpHRi5KQWfxYNHGBHto/EDsTdsP689pV08WNG+j6YBA=
Subject key identifier: D1:44:EE:9A:3B:2B:50:CD:D8:52:31:CC:A4:3B:21:A8:B2:9F:00:79
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA9020E982F82C526EC7B1384B49B9C
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/0UTumjsrUM3YUjHMpDshqLKfAHk.roa
Signing time: Tue 06 Feb 2024 18:23:18 +0000
ROA not before: Tue 06 Feb 2024 18:23:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200558
IP address blocks: 2a0f:b241:c1::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a9:02:0e:98:2f:82:c5:26:ec:7b:13:84:b4:9b:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:23:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d144ee9a3b2b50cdd85231cca43b21a8b29f0079
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:8e:d7:e7:5c:e4:ea:80:2e:f9:80:ab:5e:47:
9f:f4:51:14:34:b7:f7:bd:b5:24:81:64:e4:41:65:
76:06:5e:bb:6e:25:60:2a:94:af:db:cb:3d:93:e3:
53:f4:dd:31:2a:46:a3:1b:d0:5b:8b:c4:32:10:69:
38:46:aa:1c:6b:c8:a5:49:48:03:55:37:d0:78:90:
44:c4:9f:3c:39:fd:3e:bd:e9:a2:81:d6:bd:0e:10:
c1:77:a4:3f:0d:c7:85:65:db:b8:9a:a0:71:c0:0e:
62:53:02:29:b8:90:7f:7a:dc:8a:fa:29:a5:ee:96:
32:d1:5c:60:7d:0b:c3:5f:02:fa:39:47:ac:05:85:
cc:db:6a:f5:aa:2e:e3:c6:a2:62:4d:c7:e5:30:62:
0e:22:15:90:db:07:31:2a:6a:d7:c8:d0:73:d2:fa:
35:c6:8b:37:8e:73:2a:ef:9a:25:28:fc:4a:e8:f6:
0a:87:52:0a:c5:d6:bb:94:e8:1d:da:f5:b0:e2:51:
dc:29:16:db:5b:7d:c9:d3:16:9d:b9:d5:a1:dd:df:
ea:2d:df:c4:e3:da:96:ac:6b:96:7d:60:2a:dc:e3:
60:f0:5d:01:74:8b:f3:3a:c9:09:fa:6f:3f:a2:24:
41:9c:d1:82:9b:69:aa:a4:01:04:d5:95:f1:a9:e1:
91:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:44:EE:9A:3B:2B:50:CD:D8:52:31:CC:A4:3B:21:A8:B2:9F:00:79
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/0UTumjsrUM3YUjHMpDshqLKfAHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:c1::/48
Signature Algorithm: sha256WithRSAEncryption
15:3b:6a:c4:4a:5a:36:d6:de:de:f6:72:92:37:22:23:f8:ac:
e2:b8:4f:fe:14:0a:0e:da:4c:b7:7c:de:cb:55:95:2c:c9:db:
35:3d:51:a2:e3:65:0f:1d:17:9b:dc:c3:ad:5d:03:1f:70:21:
5c:5c:c5:d5:e9:01:66:71:f7:6d:38:cc:54:fc:92:fe:b4:40:
8e:14:b5:0d:84:f4:c1:9a:84:c5:39:b8:7b:6a:c0:13:0c:80:
e9:a3:81:80:8c:7c:ff:44:96:0a:6d:e4:6c:b7:26:0c:f4:15:
ff:c2:46:53:17:5e:a5:9e:a7:78:d4:fb:44:30:a1:7b:d6:0a:
00:ca:45:47:81:0e:d2:8e:f4:0f:ed:21:74:42:da:dc:b4:d8:
81:87:5d:2b:d9:d7:ba:7a:af:5a:6c:aa:da:ab:dd:6f:1b:c3:
81:ab:59:12:96:df:a9:92:52:a4:39:2d:4d:27:26:58:78:f9:
20:c3:a2:02:6d:b9:2f:fe:20:a7:c8:10:55:16:3d:3a:5e:a1:
e8:d5:05:10:da:a8:74:64:13:35:b2:06:ab:cc:44:74:52:11:
5f:b5:d2:19:dc:e5:5a:b5:4c:12:33:4d:e9:a7:e5:eb:17:2f:
e3:cb:0e:81:aa:bd:9b:6c:f3:12:16:e7:fa:8d:0f:20:22:c8:
ff:54:4b:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:07 2024 by rpki-client on console-ams.rpki-client.org