Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/8oO0Vu-pIN3VpcfgN8om0MI2NSA.roa
File: 8oO0Vu-pIN3VpcfgN8om0MI2NSA.roa (raw, json)
Hash identifier: tFA7tHH1yVFp4lVRmK98v4XOD+YIB90emMhFGqauMmg=
Subject key identifier: F2:83:B4:56:EF:A9:20:DD:D5:A5:C7:E0:37:CA:26:D0:C2:36:35:20
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F93A6731F0834F968E6D50D243A80E8
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/8oO0Vu-pIN3VpcfgN8om0MI2NSA.roa
Signing time: Tue 06 Feb 2024 17:59:59 +0000
ROA not before: Tue 06 Feb 2024 17:59:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59920
IP address blocks: 2a0f:b241:30::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:93:a6:73:1f:08:34:f9:68:e6:d5:0d:24:3a:80:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 17:59:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f283b456efa920ddd5a5c7e037ca26d0c2363520
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b3:b9:57:f4:44:bf:d2:9f:48:46:28:c4:38:
50:28:f0:47:27:6c:6d:ed:13:52:0c:c5:32:6d:85:
22:fb:21:43:af:15:92:8b:31:f6:b4:87:24:8d:ba:
1b:44:74:6e:71:d7:25:63:c8:05:87:c2:19:b1:3e:
84:da:10:20:c7:07:0e:c5:b2:1c:87:5a:0f:8c:71:
78:f3:e3:3f:43:85:40:48:7b:74:58:3d:c3:e1:dc:
f3:38:34:7c:f8:fd:47:2a:12:40:de:39:84:33:f8:
7c:04:61:b6:26:7e:49:29:77:48:88:8e:92:68:2d:
35:2d:5d:5d:1a:15:54:df:b7:69:68:1e:f0:83:2e:
62:34:da:82:5b:92:97:e0:57:ee:90:36:30:68:6b:
a8:1c:22:c9:96:65:7c:15:b8:27:11:b2:65:11:fb:
2f:f6:da:f7:ee:c0:b4:c4:9d:13:2b:ae:54:ea:06:
8b:03:6b:c1:b9:d3:e4:86:d0:24:05:03:86:75:2d:
18:35:82:30:01:0d:b2:96:23:26:1f:f4:2c:f6:f5:
5c:3e:ca:f8:ed:05:d0:d9:63:04:1e:e8:19:e9:73:
45:8e:d8:44:2e:29:05:12:c3:22:c7:53:64:d3:b7:
5f:ff:82:5f:10:2f:bb:79:dc:0e:b5:e8:a8:a3:08:
b7:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:83:B4:56:EF:A9:20:DD:D5:A5:C7:E0:37:CA:26:D0:C2:36:35:20
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/8oO0Vu-pIN3VpcfgN8om0MI2NSA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:30::/48
Signature Algorithm: sha256WithRSAEncryption
0f:c7:87:03:d4:2e:6d:4c:c7:38:b7:b6:15:ec:97:1b:29:12:
a6:30:5f:bc:b7:42:89:5e:e1:76:cd:db:e3:ec:9d:51:89:8f:
3d:cc:20:2b:d8:bc:32:e5:5b:c9:62:de:17:25:b1:c7:ab:d7:
06:3d:fa:a1:43:18:a3:95:d0:15:43:74:32:30:27:37:d4:05:
50:60:24:72:29:ec:a7:3b:c1:b7:68:77:54:e7:8f:f5:60:30:
ae:f4:ca:a9:70:2f:4a:70:b0:b3:1b:b9:86:ae:a1:da:df:84:
a6:74:76:17:f3:06:8e:55:d6:7f:34:ea:47:87:7c:6b:49:73:
72:0a:23:5a:64:a4:c0:76:fe:a8:a9:b9:10:5a:da:c4:f8:35:
e4:a7:ca:82:28:25:cf:ff:bf:83:a4:48:25:0a:fc:51:99:0c:
42:96:b0:54:a9:92:26:5f:66:59:e6:d5:dd:a8:6e:66:13:7d:
fb:0f:f8:a5:54:b1:f4:e6:b8:07:54:ab:c1:f6:82:26:cb:1d:
45:2a:44:46:9e:91:64:c4:d3:cb:1e:e9:74:97:28:59:bc:58:
06:0e:78:89:1b:52:40:2b:ed:a7:a0:2b:3b:f1:55:ad:d2:c1:
4a:bc:37:79:d0:15:b0:f4:c4:9f:63:83:47:94:09:b2:ca:bd:
f9:c9:dc:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:07 2024 by rpki-client on console-ams.rpki-client.org