Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/3RpehSXs8O3fucFyzi9YLHC7w_w.roa
File: 3RpehSXs8O3fucFyzi9YLHC7w_w.roa (raw, json)
Hash identifier: iFxhd+euDHOksCnO5ZiaFZ6jlU5jGU0osMq0jnC/d0M=
Subject key identifier: DD:1A:5E:85:25:EC:F0:ED:DF:B9:C1:72:CE:2F:58:2C:70:BB:C3:FC
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAE79FF672208003704522135C4B3FF
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/3RpehSXs8O3fucFyzi9YLHC7w_w.roa
Signing time: Tue 06 Feb 2024 18:29:17 +0000
ROA not before: Tue 06 Feb 2024 18:29:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50755
IP address blocks: 2a0f:b241:11b::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ae:79:ff:67:22:08:00:37:04:52:21:35:c4:b3:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:29:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dd1a5e8525ecf0eddfb9c172ce2f582c70bbc3fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:be:5a:c9:a0:34:c7:3a:65:c1:72:f5:49:9e:
0a:6d:aa:a2:20:ce:06:4f:7d:50:1a:68:34:6c:9f:
9d:d0:64:da:77:0c:20:da:b5:77:31:ed:85:87:e9:
8f:bf:13:33:f4:03:4d:61:f1:4d:0d:0a:81:9d:e2:
14:2a:37:07:78:df:50:d7:26:a1:7e:4b:aa:6c:ea:
21:d0:8a:60:53:b6:97:d0:54:5f:68:e4:c3:bb:79:
6d:08:43:41:ec:1d:30:cf:05:5e:5a:29:bd:2d:18:
5d:8b:b9:de:14:4a:c0:f8:9c:b0:3a:ce:1e:e3:0e:
e8:54:2b:15:e8:3f:2f:e3:4c:60:d6:f5:79:7c:48:
97:f8:2d:45:03:2f:9d:b5:59:10:36:2b:91:9d:d2:
52:01:4f:08:9f:57:32:e5:97:5c:fa:b1:6d:52:26:
2a:a5:fb:22:03:f7:2a:a4:1e:f8:cb:a0:77:f0:9d:
74:24:b5:62:7b:69:8e:b0:dc:5b:43:6f:e4:bb:a5:
05:87:1e:11:01:1e:e3:64:ce:60:3c:06:52:6d:96:
1d:05:01:d3:1e:99:37:db:13:c2:41:29:03:57:dd:
db:c5:3e:0b:96:53:7f:ec:d4:72:ee:22:3e:03:58:
09:48:23:bc:12:2e:67:14:3e:5a:a3:90:22:d3:da:
51:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:1A:5E:85:25:EC:F0:ED:DF:B9:C1:72:CE:2F:58:2C:70:BB:C3:FC
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/3RpehSXs8O3fucFyzi9YLHC7w_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:11b::/48
Signature Algorithm: sha256WithRSAEncryption
4c:2c:49:b2:99:59:21:2c:2c:d8:fa:bc:b0:d3:17:85:48:8c:
17:0b:85:c2:d9:0a:57:92:77:4b:48:35:93:17:31:0a:6c:fb:
a1:30:53:58:76:53:b7:07:0b:b9:19:c9:4c:a9:77:bb:4e:84:
32:d7:e7:26:01:12:ce:06:5e:d9:61:ae:e4:eb:bb:ab:49:03:
34:b2:ea:3f:d3:d2:fa:d8:42:cd:5c:33:83:2f:15:f3:13:f4:
63:14:a1:d0:7b:5e:df:3b:0c:3e:42:7a:37:d4:28:8e:9c:9a:
5f:78:14:38:81:d9:28:20:c0:58:ea:ac:9e:91:a4:d0:45:70:
0d:2e:f2:ce:87:1a:46:6f:77:90:c2:42:49:7c:89:4f:dc:56:
36:da:45:0b:51:c3:be:fb:5e:79:9e:65:cb:d5:78:c4:2d:23:
38:05:6a:5f:d4:77:94:d6:68:db:4d:ab:2d:a8:6d:75:bb:eb:
62:8b:06:cb:56:c0:11:b4:3c:c6:17:3b:cc:e3:10:d4:2d:1c:
d6:0f:56:d3:d0:67:af:f4:3f:30:34:51:35:01:c3:58:0a:fe:
ca:80:8c:93:da:e8:54:02:f9:9a:3b:78:6f:59:10:ca:90:62:
8b:36:2c:33:9c:35:5a:e4:08:81:fd:e2:0c:96:18:07:f3:f9:
55:14:4a:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org