Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/5uSIR86tExJPkpRZU2Q7ge4tss0.roa
File: 5uSIR86tExJPkpRZU2Q7ge4tss0.roa (raw, json)
Hash identifier: NhsX3PYxu/mnSx81lEv0CNCRBy+Qc+YUMgqzD2sBffw=
Subject key identifier: E6:E4:88:47:CE:AD:13:12:4F:92:94:59:53:64:3B:81:EE:2D:B2:CD
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F948FBC94F771C9A21084B0FCB0BB55
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/5uSIR86tExJPkpRZU2Q7ge4tss0.roa
Signing time: Tue 06 Feb 2024 18:00:58 +0000
ROA not before: Tue 06 Feb 2024 18:00:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198075
IP address blocks: 2a0f:b241:33::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:94:8f:bc:94:f7:71:c9:a2:10:84:b0:fc:b0:bb:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:00:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6e48847cead13124f92945953643b81ee2db2cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:b8:82:a5:d4:e8:e4:cf:a9:e1:d3:30:b0:fb:
21:65:0e:6f:e1:ce:ca:a3:84:44:08:41:c2:cc:c2:
af:11:f8:33:98:08:0f:15:32:c6:c9:5d:10:20:d0:
48:7c:58:5b:14:e3:1e:25:02:0d:9e:e9:01:2e:81:
c8:5f:a7:ee:1a:fa:fb:31:08:49:21:39:64:36:ab:
98:52:0a:81:db:3e:a1:90:7e:da:b2:25:5b:25:0b:
9a:eb:ad:fd:4a:4d:0a:49:2b:68:18:cf:e0:f1:91:
b0:6f:01:ee:aa:30:bc:a0:71:bb:0c:04:fc:15:1d:
69:fb:ec:72:6d:c1:db:c6:7f:03:d7:38:89:39:bb:
ee:95:c9:59:46:c9:2e:90:57:87:29:74:30:57:ee:
8b:8c:2a:19:d5:57:0c:e6:30:4d:40:1b:30:4b:bf:
32:5f:f9:91:32:b8:ef:32:27:09:6d:3f:f6:2c:03:
18:96:4e:b8:e4:5a:8b:ad:db:f9:6c:2f:49:96:f0:
24:15:ed:c5:71:6d:88:9b:ce:18:b1:d2:cd:03:fb:
fd:a8:89:3e:5a:c8:d0:e6:98:26:2b:6f:13:95:5e:
2d:c4:6c:3b:66:df:94:e9:d5:e1:50:fe:01:79:14:
d7:18:4c:73:5c:49:5c:16:6e:83:c3:92:50:35:20:
46:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:E4:88:47:CE:AD:13:12:4F:92:94:59:53:64:3B:81:EE:2D:B2:CD
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/5uSIR86tExJPkpRZU2Q7ge4tss0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:33::/48
Signature Algorithm: sha256WithRSAEncryption
16:4c:8d:41:46:13:39:32:ef:79:1b:04:a0:bb:08:3c:77:1e:
92:e8:01:c4:0c:56:81:71:d7:d4:01:af:29:e4:27:a9:d4:f6:
7c:50:5d:6f:35:64:71:f4:ef:a6:b2:c3:5f:4a:cc:e4:ec:14:
8f:c8:45:9c:d9:54:a6:9d:5c:bb:c8:f3:14:a2:78:49:75:c7:
f5:d7:cb:3c:19:e1:be:23:82:49:3a:86:ea:e1:ce:7e:2a:8e:
de:14:da:f7:f2:cf:f9:18:5f:bd:87:bd:f4:a6:90:49:4c:04:
cd:f4:a4:a1:c8:36:83:2f:5c:cf:2c:54:78:87:66:94:e2:80:
d9:d9:32:d6:94:bd:89:0d:bd:e7:2d:8e:12:f9:45:01:02:82:
d4:40:c0:c9:2d:fc:be:44:0c:01:0b:be:09:1b:ee:8c:cc:35:
8a:1c:9f:74:28:d9:10:1d:e1:6e:e6:ee:28:d6:04:6b:c7:ca:
19:bb:cc:a6:24:ca:ae:bb:c0:34:d2:1c:7c:dd:e4:14:46:1f:
e6:89:42:43:3f:94:40:f6:0c:0b:d9:a9:ca:a2:77:e2:24:61:
fa:7e:1c:cf:54:73:b1:fa:39:57:a1:cf:88:cb:03:f2:e0:a0:
7a:fc:4c:95:ea:a1:06:a5:96:cb:0f:20:21:1b:e9:7a:7c:62:
13:42:0d:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org