Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/CI0truucbuGeHt1l8Ppb2Clishs.roa
File: CI0truucbuGeHt1l8Ppb2Clishs.roa (raw, json)
Hash identifier: EtB/Snu4a61CWICHlIEx6f4VROjwjYkJaEEI2h/yJ94=
Subject key identifier: 08:8D:2D:AE:EB:9C:6E:E1:9E:1E:DD:65:F0:FA:5B:D8:29:62:B2:1B
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA8FA883C981E442F33B7A7B880D36C
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/CI0truucbuGeHt1l8Ppb2Clishs.roa
Signing time: Tue 06 Feb 2024 18:23:17 +0000
ROA not before: Tue 06 Feb 2024 18:23:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200257
IP address blocks: 2a0f:b241:a7::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a8:fa:88:3c:98:1e:44:2f:33:b7:a7:b8:80:d3:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:23:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=088d2daeeb9c6ee19e1edd65f0fa5bd82962b21b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:33:36:4d:6c:21:eb:33:5a:2a:05:a3:c4:3b:
88:c1:96:5e:1f:90:3a:9b:ce:b7:d1:b1:c1:50:06:
6e:bd:13:64:ac:26:62:d4:9c:2b:42:e7:da:54:b3:
46:09:f0:47:d0:ce:bf:8a:53:95:6e:c0:f4:50:ca:
f6:1e:07:e5:b4:a0:0c:90:e9:02:34:94:37:e3:76:
f9:53:c4:43:44:fe:c3:bb:ae:37:79:ee:ef:83:b1:
4f:d2:2a:5b:61:65:c8:c2:27:b4:67:4a:62:39:1a:
9f:6e:f4:e7:dc:8f:f1:53:96:7b:18:cb:ee:13:f3:
14:78:7a:82:49:95:8f:a3:d8:c2:02:2b:85:9d:52:
7a:ae:94:10:28:32:6a:d5:a2:9f:4f:fd:7f:89:2a:
57:b3:59:fe:61:bd:6b:a2:20:8e:a9:0c:04:99:c8:
3f:a6:23:e1:75:5e:5e:f7:f2:b7:99:7c:ec:96:80:
c4:fe:8f:f0:8c:80:3f:86:39:27:64:18:53:83:47:
68:9b:c7:57:3a:78:7d:7e:e2:20:35:ae:f7:69:4a:
0b:a0:65:61:5c:3a:3c:c2:49:21:71:ad:d5:1a:26:
71:4f:fd:97:c7:08:6e:96:ce:bb:f0:ce:6c:bf:0b:
d5:7e:96:09:a4:42:3c:28:47:41:a8:6e:94:b8:a0:
38:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:8D:2D:AE:EB:9C:6E:E1:9E:1E:DD:65:F0:FA:5B:D8:29:62:B2:1B
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/CI0truucbuGeHt1l8Ppb2Clishs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:a7::/48
Signature Algorithm: sha256WithRSAEncryption
5d:d1:c0:73:e2:88:47:7d:42:34:a2:51:cf:1d:19:21:df:b6:
f5:3f:8f:1d:fa:6c:b1:4d:bb:94:bd:21:45:42:2c:25:e7:e8:
b2:c9:ac:79:7d:8a:ef:18:8a:a6:ba:f9:58:ad:99:16:25:b5:
6f:65:42:66:6d:97:d8:85:76:0f:0d:8a:70:1a:af:27:5d:f5:
b2:6f:8e:c5:82:76:5c:88:57:ff:bf:b5:e0:c8:4a:e1:c5:71:
96:6e:fe:ed:13:25:3d:c1:bb:f9:04:f5:62:24:98:2e:be:e0:
30:40:20:11:0c:f7:6f:20:66:b6:24:4e:ae:fa:9a:4a:d8:c6:
5e:16:71:1e:6e:fa:d9:dd:1d:a3:84:4c:4f:24:a6:84:70:14:
0e:82:02:8a:36:47:b8:35:30:40:05:53:e6:23:0f:43:8a:0f:
01:e5:4b:c2:0e:f9:77:00:b2:82:94:2c:ff:bb:bb:28:cb:d4:
3e:91:fe:ec:77:a0:66:30:2f:68:85:f2:5d:b8:0e:89:b8:14:
be:6a:02:c7:25:94:55:06:cf:b4:6a:ca:f7:73:f8:98:8a:9a:
a3:57:68:87:02:b6:33:66:00:ea:0d:df:c2:e7:06:22:9e:c7:
6e:5d:ec:8b:bf:da:ef:d5:73:2b:b2:a4:25:cb:6f:04:ec:08:
eb:76:b2:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org