Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/3--Hd4HqtZMtE2u41treNCO3eYc.roa
File: 3--Hd4HqtZMtE2u41treNCO3eYc.roa (raw, json)
Hash identifier: pmJOSJJ87sGLTQyaHZAhWL9Nq9DX7r2CGUigwwuAtFw=
Subject key identifier: DF:EF:87:77:81:EA:B5:93:2D:13:6B:B8:D6:DA:DE:34:23:B7:79:87
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F96AF1BC189E13D19887DB38B874A34
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/3--Hd4HqtZMtE2u41treNCO3eYc.roa
Signing time: Tue 06 Feb 2024 18:03:18 +0000
ROA not before: Tue 06 Feb 2024 18:03:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216111
IP address blocks: 2a0f:b241:5d::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:96:af:1b:c1:89:e1:3d:19:88:7d:b3:8b:87:4a:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:03:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dfef877781eab5932d136bb8d6dade3423b77987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:67:3f:36:73:a4:c5:e4:9f:b6:99:a5:18:94:
5d:8a:0f:56:69:33:eb:56:7d:9d:14:f4:c1:97:51:
e0:04:fe:38:40:b6:56:33:f6:ba:f8:15:33:e4:51:
b7:04:ae:32:61:94:a7:23:a0:56:71:d3:9d:e3:c2:
13:7d:6e:26:e0:cf:9a:5e:df:38:90:94:df:b1:2b:
4a:f6:63:2a:20:bc:f8:02:d1:2e:7b:3b:0d:06:2f:
33:d9:51:1c:5d:5a:b8:8f:0b:50:b6:bb:48:5e:b0:
df:d9:83:d0:b4:4d:f1:86:70:57:02:05:04:6a:a9:
57:91:b5:ec:1b:7c:81:bc:b6:35:b9:26:89:59:58:
09:1c:16:8e:e7:34:b9:0e:0b:0b:f5:2b:8b:88:84:
da:2b:08:d5:db:6b:b7:99:c8:b7:f5:88:6b:15:16:
89:a2:3b:9f:89:da:59:f4:a6:23:6c:a4:d7:86:c1:
ed:cb:b7:2f:ab:77:7d:6f:f8:6b:43:8e:d9:a8:55:
58:59:4a:c4:88:56:94:be:58:09:9d:36:61:ef:65:
17:8e:83:cd:8b:e7:c3:51:70:58:9d:c8:13:3d:44:
bd:9f:68:41:bb:0a:f7:cb:1e:c9:57:97:23:ff:51:
c1:15:ef:a5:c7:3e:db:43:2b:e0:ab:8a:3a:9e:12:
c3:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:EF:87:77:81:EA:B5:93:2D:13:6B:B8:D6:DA:DE:34:23:B7:79:87
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/3--Hd4HqtZMtE2u41treNCO3eYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:5d::/48
Signature Algorithm: sha256WithRSAEncryption
7f:8c:9a:23:a4:a0:23:2b:fb:c5:1e:fd:71:e4:ac:4b:1c:f5:
c6:4d:31:1f:49:20:98:ef:a5:16:c5:a5:c1:4b:5f:03:89:fe:
57:b7:6a:ec:c0:db:cb:be:b0:19:49:c9:99:d6:68:70:52:23:
2e:30:70:6f:c0:ec:82:ef:5a:a9:0d:05:d1:eb:ac:b4:fa:ff:
76:fb:cf:8d:56:de:4c:32:ba:1d:58:fd:3c:83:78:70:3a:63:
9d:85:68:79:2e:69:11:07:bc:0f:be:f6:24:b7:48:05:e8:85:
b1:f4:fd:1b:62:b1:96:68:85:ee:96:1c:95:97:89:f3:23:e5:
34:ed:72:05:66:d5:b1:53:55:34:7c:09:4c:59:7a:9d:c9:48:
7a:b8:eb:01:16:56:07:ec:93:d3:23:1d:7d:c2:5f:91:91:10:
aa:d3:42:88:97:ca:fc:f0:ce:dc:2e:45:c6:15:2b:c3:3e:2a:
5b:dc:71:46:5d:7d:57:77:43:56:72:d8:26:b5:a6:ae:b9:96:
aa:e0:b1:ca:fe:97:f5:fb:f6:60:6c:81:ad:09:89:90:75:56:
32:b6:b4:fb:dd:5b:57:c9:e6:6d:cd:82:36:79:d9:14:80:6c:
77:e6:cd:87:2f:db:3b:98:58:8c:8e:fa:9e:f7:4d:be:9f:93:
71:ea:43:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:07 2024 by rpki-client on console-ams.rpki-client.org