Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1-dfHsX3xFawNg5jbG2mB54huWwo.roa
File: 1-dfHsX3xFawNg5jbG2mB54huWwo.roa (raw, json)
Hash identifier: FfkmSgnapeTKwu5/wKa4yyE8KE8dPmF4z7y3E8aWEm4=
Subject key identifier: F9:D7:C7:B1:7D:F1:15:AC:0D:83:98:DB:1B:69:81:E7:88:6E:5B:0A
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FABBC12F2D86032F0D2E5A009FFB9B9
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1-dfHsX3xFawNg5jbG2mB54huWwo.roa
Signing time: Tue 06 Feb 2024 18:26:17 +0000
ROA not before: Tue 06 Feb 2024 18:26:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207079
IP address blocks: 2a0f:b241:f1::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ab:bc:12:f2:d8:60:32:f0:d2:e5:a0:09:ff:b9:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:26:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f9d7c7b17df115ac0d8398db1b6981e7886e5b0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:6b:fd:9c:03:83:aa:ad:ac:93:74:49:5d:eb:
b2:ec:89:50:71:8d:ee:09:2a:b0:d5:3a:5c:6f:13:
71:8d:cc:d0:eb:35:7f:7c:71:7f:cb:be:c1:58:65:
7b:27:7c:e6:7f:b1:ed:e6:54:2a:75:a3:df:7b:4a:
fc:71:c3:f2:3c:3c:e5:f0:37:90:be:67:2e:c0:f4:
65:b4:fe:12:e1:5a:7e:ab:da:98:3c:b5:e4:97:4f:
9f:e0:90:fa:58:1f:81:3e:a0:04:fe:c9:dc:fb:00:
5c:e1:bd:14:a6:c9:6b:77:b6:88:1b:22:86:b3:df:
0f:50:ff:5c:22:4e:1b:f7:36:b8:62:5a:97:9e:d5:
8b:d7:a4:2e:dc:ba:3e:7a:1f:92:c1:93:21:82:87:
7b:0f:c5:86:7f:38:cc:d7:25:3a:21:71:b6:a5:f5:
81:54:be:c2:e0:cd:d4:54:22:19:92:2d:bc:37:6c:
78:de:68:95:bf:3b:63:65:33:70:0a:aa:89:3f:c5:
0e:92:41:45:db:26:a9:2a:67:99:d5:a5:08:ce:3b:
db:d8:ba:71:23:31:4a:26:31:03:7c:75:68:63:e6:
08:5c:4e:e7:b3:9b:63:04:8b:e9:db:c7:98:87:82:
e8:dc:82:c3:96:4a:8f:50:72:73:9b:b8:6b:48:92:
f1:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:D7:C7:B1:7D:F1:15:AC:0D:83:98:DB:1B:69:81:E7:88:6E:5B:0A
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1-dfHsX3xFawNg5jbG2mB54huWwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:f1::/48
Signature Algorithm: sha256WithRSAEncryption
64:0a:e4:ae:53:36:7d:5c:a7:84:ad:91:9b:ae:a1:f4:c9:88:
a2:63:e9:af:5b:b0:b7:b1:e4:e5:7e:c1:78:d8:82:1c:89:8a:
3d:cf:57:f9:27:9c:76:e5:30:e3:9c:a6:92:5d:8c:57:a2:34:
18:05:46:c8:84:e2:40:be:65:d9:f6:21:ab:1f:1a:66:d6:39:
b9:84:a6:a3:c7:e8:f1:2c:78:dc:9f:ff:79:d9:fc:c0:b8:64:
b6:86:61:46:3f:ab:37:81:40:72:51:48:08:98:dd:3a:1a:c4:
34:34:80:22:5d:99:e7:dc:14:23:fc:be:1b:c2:df:d5:a0:6b:
42:ee:e7:a6:c2:16:26:c7:e7:f5:b4:bf:aa:2c:ea:3b:c9:74:
f8:6b:84:52:cd:8b:eb:1a:4e:80:f8:0d:c3:91:03:13:90:e1:
93:fc:49:68:d0:8e:a3:51:83:45:34:c6:75:08:eb:cc:75:97:
05:12:48:d0:ad:e5:5d:16:d4:48:3e:28:f3:23:84:15:ae:01:
65:03:51:1f:a9:06:d4:60:d0:74:3e:28:11:bc:9e:be:db:8b:
e3:91:2f:65:02:55:22:7a:a1:bf:ec:fc:ff:f2:46:b1:44:71:
68:74:95:ee:c2:12:8c:ce:25:87:90:d2:af:94:bb:13:b1:f5:
41:9e:42:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:07 2024 by rpki-client on console-ams.rpki-client.org