Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/55MicfYpgVMXKPzXlcggYSQCyWg.roa
File: 55MicfYpgVMXKPzXlcggYSQCyWg.roa (raw, json)
Hash identifier: j+d1lBPl4jH6KWt9Pwui2cjc1de8Ke2S0d0bYA5j0/8=
Subject key identifier: E7:93:22:71:F6:29:81:53:17:28:FC:D7:95:C8:20:61:24:02:C9:68
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F07BFFC8CA4814ED55F0850F838B5A
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/55MicfYpgVMXKPzXlcggYSQCyWg.roa
Signing time: Wed 07 Feb 2024 05:00:37 +0000
ROA not before: Wed 07 Feb 2024 05:00:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199742
IP address blocks: 2a0f:b241:34::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:7b:ff:c8:ca:48:14:ed:55:f0:85:0f:83:8b:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e7932271f62981531728fcd795c820612402c968
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d3:64:89:98:c4:e6:63:f1:e5:1d:57:3b:b3:
e8:6c:58:5b:d3:e9:4b:6d:ab:05:a5:7d:51:d1:bd:
30:b9:dd:fd:51:ea:0e:e0:a8:fc:98:97:5b:05:d5:
89:12:ab:4c:5c:32:c1:75:a5:b8:c3:2e:7f:6c:bb:
73:39:bb:1b:91:ec:c7:24:a4:49:8e:e1:fa:1d:63:
a7:13:ca:43:69:73:52:4b:d1:b6:ac:6a:24:ee:ea:
02:2b:cf:1a:94:d3:0c:56:9c:1b:53:97:c2:91:da:
4b:f8:75:8a:a8:2e:44:ec:9b:1a:86:a1:5d:45:16:
e7:ae:66:b6:b4:6c:7c:5a:3b:36:17:b7:48:1b:15:
3a:c0:a8:63:88:dc:70:26:b8:60:12:1c:c8:dc:c9:
7f:78:9f:05:7a:d3:89:75:99:b2:cb:74:0b:66:fd:
f4:8e:47:a3:69:61:6f:0f:d4:e8:99:d6:bc:c0:f2:
ef:49:34:1b:b5:60:2e:21:ee:8d:3f:98:3e:eb:a6:
68:16:71:f3:44:3a:6b:bc:cb:0d:62:ce:90:cd:e3:
f3:44:e1:5c:f2:16:dd:0e:98:a4:f7:e8:76:8a:d5:
3b:43:5e:54:dc:95:7e:a9:fb:2f:3d:df:3c:4a:1a:
1f:1d:7b:0a:51:f6:ea:ab:4b:13:24:98:19:da:6f:
b3:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:93:22:71:F6:29:81:53:17:28:FC:D7:95:C8:20:61:24:02:C9:68
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/55MicfYpgVMXKPzXlcggYSQCyWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:34::/48
Signature Algorithm: sha256WithRSAEncryption
4d:ad:72:84:38:ad:c8:38:08:36:a1:2b:ac:f6:bb:ac:d3:8b:
24:14:80:a1:00:12:9d:2f:fd:e6:d6:3f:94:41:09:9d:91:29:
64:6d:e9:dd:3a:04:9f:e8:b6:6e:5c:dd:8e:85:73:e4:f7:da:
c3:17:03:c2:82:1e:2f:bb:f8:72:38:82:02:86:df:27:a3:f6:
9e:4c:d9:06:71:14:81:f0:3a:99:9e:df:3c:6b:87:a5:73:29:
0a:1f:1b:36:17:c7:2c:a4:9a:ee:68:a0:51:ea:ab:e7:02:db:
92:2e:28:9b:d8:cc:3e:d5:39:e7:56:b7:cf:ae:01:e2:58:37:
14:ef:33:d0:c3:7e:57:9a:ab:d4:ad:df:5f:6d:ea:ae:b3:d2:
5d:63:27:a2:31:45:60:57:c8:ee:f8:f2:be:7f:31:e1:3c:30:
5c:08:6d:24:0c:44:95:11:2e:9e:25:07:3d:44:6c:02:0c:01:
a6:b3:4e:fa:31:46:52:ce:1c:42:3e:db:93:10:c5:c1:60:7c:
ec:73:d1:35:c3:de:6e:47:eb:b9:0d:80:27:90:e3:a9:1b:db:
42:cc:c1:d9:4f:37:34:5f:6d:f6:92:1b:ed:1f:50:36:be:af:
69:c9:4d:d3:42:5a:32:f7:a5:00:a3:c0:86:8c:2e:ef:d3:b9:
0b:a7:4b:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:07 2024 by rpki-client on console-ams.rpki-client.org