Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/2UC9CB4r1Msku00l0lgAs0XlpME.roa
File: 2UC9CB4r1Msku00l0lgAs0XlpME.roa (raw, json)
Hash identifier: wI7FBw0BFkhu281A20kqWzZeVfGWHrGWII+v/Ut+qAs=
Subject key identifier: D9:40:BD:08:1E:2B:D4:CB:24:BB:4D:25:D2:58:00:B3:45:E5:A4:C1
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB7A1766CAC7A75DBB3BE4497BB0ED1
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/2UC9CB4r1Msku00l0lgAs0XlpME.roa
Signing time: Tue 06 Feb 2024 18:39:17 +0000
ROA not before: Tue 06 Feb 2024 18:39:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210814
IP address blocks: 2a0f:b241:142::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b7:a1:76:6c:ac:7a:75:db:b3:be:44:97:bb:0e:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:39:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d940bd081e2bd4cb24bb4d25d25800b345e5a4c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:59:b2:22:26:a6:c4:71:d9:c6:10:a2:27:84:
76:ba:d6:0f:7f:4f:b3:95:f8:95:fa:73:fa:9b:5a:
de:36:24:b0:aa:67:b1:7f:53:10:03:d3:22:3c:f7:
d6:2a:78:65:f0:96:2e:87:1b:04:46:f8:d3:b8:ff:
a2:2f:02:64:b7:cf:98:1b:c3:17:9b:12:71:54:1a:
4f:6f:c4:9d:c5:02:82:50:f5:bb:85:36:a0:3f:d2:
5a:99:eb:19:d5:79:35:f4:59:fb:58:88:6b:f2:da:
64:62:f9:39:fa:ff:5c:d3:5f:7e:78:3c:a1:40:6d:
eb:0e:83:43:92:87:05:1c:ae:2c:3d:1f:b1:58:a0:
d2:e4:9a:1a:8b:35:1a:c2:b1:ea:b0:82:23:69:89:
d3:0d:8e:63:93:05:54:1f:07:0c:07:8f:22:89:15:
a9:25:5b:0e:b2:d2:ac:d3:4e:a9:5c:07:56:89:30:
67:d4:99:1e:74:17:41:db:8a:dd:98:e2:ba:4c:27:
df:b8:f4:2d:d7:d8:42:22:0b:7c:fe:74:34:de:16:
4d:47:56:9e:b2:29:2f:21:13:5b:a1:6b:dc:7b:5c:
3c:6d:50:60:cc:08:bb:eb:a6:7a:e7:7f:44:a1:83:
93:c8:03:7c:f9:55:58:14:f7:e4:f4:05:d2:21:56:
65:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:40:BD:08:1E:2B:D4:CB:24:BB:4D:25:D2:58:00:B3:45:E5:A4:C1
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/2UC9CB4r1Msku00l0lgAs0XlpME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:142::/48
Signature Algorithm: sha256WithRSAEncryption
83:f1:df:fd:79:e4:43:6d:c8:43:cc:d4:30:e9:8d:93:f5:d7:
18:ae:95:63:8a:e6:c2:72:39:bc:58:6c:a5:60:b9:7d:b4:59:
ff:41:f4:d8:e2:88:c2:ed:aa:3f:35:5d:5d:fb:64:25:7e:e8:
59:6d:85:22:3d:86:58:af:1e:18:e2:a4:e4:ae:10:fd:3a:53:
af:16:03:d9:92:63:0a:0b:78:f1:82:69:10:ab:fb:f7:60:f0:
c5:ff:44:86:ed:1a:bd:68:12:fa:c1:72:1f:29:74:c1:6d:08:
3f:d3:8a:72:fd:6b:b7:88:06:2a:c0:9b:35:70:2e:79:af:e3:
ff:89:14:83:76:2d:f3:4b:45:ec:41:34:ec:ce:2c:1b:f2:f3:
b7:68:b3:d4:ce:a7:0b:9c:8c:73:39:55:5f:79:77:0a:1f:0a:
e8:00:6e:98:13:ac:07:45:53:dd:f0:2a:aa:c5:b6:9e:96:c1:
ea:e4:ca:43:51:40:95:3b:58:80:90:61:bd:17:89:02:a8:06:
04:05:60:40:09:c5:43:ca:08:ec:a1:71:03:51:60:49:02:9a:
93:3e:ea:3d:7e:20:92:f8:af:de:f7:3b:63:3e:ae:6d:08:36:
8e:b0:91:fc:1d:a2:d8:e0:6b:1d:be:8b:66:09:df:5b:7b:d7:
b3:0a:8d:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:07 2024 by rpki-client on console-ams.rpki-client.org