Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/7CA83YThnz-cSYh8yM-rKVsPcbs.roa
File: 7CA83YThnz-cSYh8yM-rKVsPcbs.roa (raw, json)
Hash identifier: YV/Q8a76rXCmmvtbHVdv7uUmooUJOfg8UNTI5hf8xL4=
Subject key identifier: EC:20:3C:DD:84:E1:9F:3F:9C:49:88:7C:C8:CF:AB:29:5B:0F:71:BB
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FACAA2F97311E7B60439D806197C040
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/7CA83YThnz-cSYh8yM-rKVsPcbs.roa
Signing time: Tue 06 Feb 2024 18:27:18 +0000
ROA not before: Tue 06 Feb 2024 18:27:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212762
IP address blocks: 2a0f:b241:102::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ac:aa:2f:97:31:1e:7b:60:43:9d:80:61:97:c0:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:27:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ec203cdd84e19f3f9c49887cc8cfab295b0f71bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f2:f2:f6:0b:8e:9b:5a:fd:96:da:73:44:d3:
7f:64:0f:9b:cb:af:a7:9d:c0:e0:25:d7:e6:b3:9d:
36:77:60:2c:23:fa:d5:07:db:cb:2b:45:83:8c:5d:
c0:26:b9:7a:d4:fc:8f:89:fd:3e:16:4c:8a:18:62:
d8:7b:04:b4:a3:c0:93:25:11:38:8e:1b:2f:d9:ae:
ab:88:97:ea:a7:7a:51:94:5c:b7:93:ef:4d:58:c2:
df:1d:ba:07:24:3a:22:42:77:4d:05:7a:12:6e:de:
15:68:70:e9:73:2e:40:c1:c5:4a:3a:01:75:f5:35:
e5:71:2b:de:90:83:f9:88:d9:65:e4:67:d4:ad:1f:
dd:43:37:e9:3a:f6:96:63:c6:d9:ca:ea:65:d8:0c:
d1:10:66:af:14:92:37:04:69:b1:4f:42:4e:04:da:
fc:57:46:b8:36:16:4f:d2:e4:97:c0:20:3b:f1:ac:
21:e0:49:ac:e1:d4:b7:16:e6:8b:47:3f:7e:0a:c9:
7b:d3:9d:2c:d4:cb:18:b8:cc:ae:d4:26:fe:3f:af:
d2:56:6a:7c:0c:42:8e:09:68:fa:df:d2:80:00:c5:
3e:c5:aa:23:b7:68:7d:16:78:27:16:45:df:0c:d0:
cd:31:25:e1:b2:8b:3f:3d:46:8f:06:10:80:38:30:
45:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:20:3C:DD:84:E1:9F:3F:9C:49:88:7C:C8:CF:AB:29:5B:0F:71:BB
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/7CA83YThnz-cSYh8yM-rKVsPcbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:102::/48
Signature Algorithm: sha256WithRSAEncryption
0c:70:21:ae:17:61:20:70:39:fb:95:bb:8c:b0:14:a7:99:b2:
97:e9:80:81:e8:bf:d6:9e:10:09:6a:de:f8:ea:63:a1:cd:84:
f7:e3:cf:e7:8b:4e:1e:78:2f:ac:11:89:4c:21:b0:b6:99:fd:
db:38:52:fb:12:3c:cf:9e:ae:34:b0:a2:96:a2:c4:12:d5:57:
45:9c:bb:a7:f0:0d:46:45:fb:ad:17:ac:22:d5:69:f5:bc:32:
5e:fd:81:3f:9a:69:34:aa:9c:5b:50:88:99:50:af:44:b0:a6:
2a:e7:4a:e9:7d:ef:10:a6:69:13:3b:bd:69:dd:57:a0:c1:e6:
ea:a3:cf:9a:7f:be:89:92:33:2e:5c:7c:a2:83:ec:36:bc:77:
29:86:f1:b3:9a:b5:20:dd:75:fb:7d:1d:cd:c1:76:7b:e7:4a:
a9:d0:22:3d:8f:e8:8d:4e:77:20:3f:fa:9c:5f:44:cc:b4:5b:
ed:17:8d:73:cf:0e:1f:06:17:80:d5:ff:99:c9:08:cd:04:74:
72:3e:a1:ef:58:9e:30:5d:8e:15:f9:9c:d1:e8:fc:cd:1e:f7:
1e:b8:78:fc:db:02:cd:a7:20:92:91:90:70:3c:8a:c5:32:50:
17:15:b7:23:7f:ef:5b:a3:d0:aa:3d:40:76:e8:96:76:42:29:
56:7b:0a:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:07 2024 by rpki-client on console-ams.rpki-client.org