Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/8WoJ1aTfKzWQewNNFe48Sv0H1zE.roa
File: 8WoJ1aTfKzWQewNNFe48Sv0H1zE.roa (raw, json)
Hash identifier: dJ+4O58E0rTFr8Rc/Sgxe1Ae0Y9XLopEihQyliAyeFM=
Subject key identifier: F1:6A:09:D5:A4:DF:2B:35:90:7B:03:4D:15:EE:3C:4A:FD:07:D7:31
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0B4A09FA0AA5D18242D8A64C82ECE
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/8WoJ1aTfKzWQewNNFe48Sv0H1zE.roa
Signing time: Wed 07 Feb 2024 05:00:52 +0000
ROA not before: Wed 07 Feb 2024 05:00:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215716
IP address blocks: 2a0f:b241:51::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:b4:a0:9f:a0:aa:5d:18:24:2d:8a:64:c8:2e:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f16a09d5a4df2b35907b034d15ee3c4afd07d731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:12:b0:5c:f6:28:ac:a2:71:70:dc:0d:af:06:
ba:94:93:98:a1:27:c8:9e:c9:63:6e:08:41:fe:9b:
62:34:71:2b:7b:0c:27:0d:83:85:2a:e9:ec:59:32:
92:78:03:39:2f:17:12:be:4d:ef:75:9f:7b:87:46:
ad:4f:a5:04:05:f1:9d:8e:dd:15:8c:30:5d:4a:d3:
31:78:05:e5:79:a9:7b:48:fd:0a:49:13:d7:36:ae:
31:00:eb:30:53:db:63:f0:e7:59:4c:2c:ff:8c:ef:
3c:b7:a9:59:73:c8:5d:51:88:dd:a6:f6:e5:ec:ea:
d4:60:0f:3a:6c:00:2f:74:de:04:9e:da:de:7b:60:
81:47:e1:c5:e5:d9:27:00:59:95:c9:a0:b1:5c:0d:
36:49:39:8a:b4:0d:cf:d5:6e:1c:54:75:39:b7:12:
6a:2a:55:2d:9b:5b:b7:36:55:39:1e:d8:40:29:72:
0b:cc:6a:e2:09:a2:ca:6d:82:b1:ba:8c:99:1d:6f:
cd:d1:b9:23:76:be:34:fc:e5:70:d3:33:83:70:78:
08:c6:a9:5d:b5:e6:7a:7a:77:cb:6d:e2:a4:50:65:
ef:51:72:39:c2:71:31:2b:1a:f0:34:3a:19:13:a4:
6c:0a:f4:34:be:9f:da:2d:51:d8:0d:3e:7c:bc:08:
07:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:6A:09:D5:A4:DF:2B:35:90:7B:03:4D:15:EE:3C:4A:FD:07:D7:31
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/8WoJ1aTfKzWQewNNFe48Sv0H1zE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:51::/48
Signature Algorithm: sha256WithRSAEncryption
6e:d8:d0:e2:c9:6a:c8:fd:89:c4:56:15:a7:3b:b1:54:39:8e:
d8:11:fe:3b:83:00:ea:27:62:45:c3:bd:53:b2:76:f5:25:9c:
33:ea:94:96:ce:c1:f6:17:c2:58:a8:ae:02:f0:a0:4a:95:1a:
cc:18:9d:36:22:57:fb:38:9a:b7:95:0f:2a:31:6c:f4:05:a4:
87:04:79:2c:04:25:ea:c7:64:ab:ad:99:fd:87:e4:37:c0:cb:
5b:a4:ee:95:aa:66:f9:41:d6:6c:56:3e:c1:18:e8:af:00:49:
b8:14:aa:fa:92:2a:aa:50:3f:88:fd:ac:23:15:76:12:b3:aa:
b2:93:6d:f2:17:1f:67:77:db:78:28:f7:d6:ee:4c:d9:b8:e9:
63:00:af:01:0d:c9:70:a4:d0:59:25:d3:fd:81:f9:ea:96:bb:
c7:e6:bb:08:aa:3e:69:43:76:25:73:8b:cf:de:94:3d:0a:da:
67:5b:52:a5:3d:d0:a6:f6:c3:48:d1:bd:4c:f8:4c:6e:78:48:
cf:5b:50:a7:23:35:0f:c0:7a:35:48:c3:82:7f:61:3f:93:19:
b1:f6:1a:60:6b:e9:65:c7:e4:5d:62:1c:75:82:fb:c4:69:95:
b4:27:7a:ea:0d:17:2c:68:26:d9:2a:0f:de:a3:47:2c:06:e6:
1c:82:d5:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:07 2024 by rpki-client on console-ams.rpki-client.org