Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/CNqbxeIH4-c_4mhlaOLFYhbCZHA.roa
File: CNqbxeIH4-c_4mhlaOLFYhbCZHA.roa (raw, json)
Hash identifier: DKm+oTNBFUQvAgy3PhYcEED0cijv5f8cCMfAb8GKE7I=
Subject key identifier: 08:DA:9B:C5:E2:07:E3:E7:3F:E2:68:65:68:E2:C5:62:16:C2:64:70
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA8F7E42B0C4526F1DA3122CAB625BA
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/CNqbxeIH4-c_4mhlaOLFYhbCZHA.roa
Signing time: Tue 06 Feb 2024 18:23:16 +0000
ROA not before: Tue 06 Feb 2024 18:23:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200227
IP address blocks: 2a0f:b241:9d::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a8:f7:e4:2b:0c:45:26:f1:da:31:22:ca:b6:25:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:23:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=08da9bc5e207e3e73fe2686568e2c56216c26470
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:47:c7:ed:73:d8:c0:ac:c4:9d:41:45:86:72:
1c:c5:c5:9c:02:05:fa:4f:18:13:c0:e0:7a:64:77:
64:25:fd:fb:76:34:08:62:8a:46:85:9e:64:02:d5:
01:b8:4e:7c:cb:d7:89:bb:a9:60:e3:fe:73:30:93:
fd:31:c5:22:2e:0f:11:1e:34:01:98:cb:dd:86:b0:
51:bb:d2:b8:64:43:a7:9f:70:52:0a:e9:45:52:f5:
89:6f:fe:ca:60:d9:af:db:9e:d3:0f:80:30:af:7d:
1e:ce:88:7f:bc:5e:26:ce:d3:41:18:b7:8a:48:85:
5f:25:bd:2b:8d:76:cf:03:92:40:e8:20:b0:62:24:
d6:ab:53:04:c8:36:b7:3f:af:96:99:b1:cd:37:0f:
6f:c1:c6:f5:32:95:d0:e1:06:2b:e8:5f:77:9c:5c:
64:6b:26:d2:59:3d:dc:a4:fc:5d:08:8b:27:35:75:
72:39:96:e6:2a:79:54:af:61:a6:b0:e3:11:91:35:
2a:71:31:a2:42:92:dd:87:11:0f:df:01:1a:f9:dd:
4e:8b:53:17:81:35:3a:21:f6:fd:23:21:3c:08:5e:
4f:5b:6d:7e:97:ee:9f:92:6b:2b:fb:8e:ff:f9:0c:
77:28:aa:4e:18:db:41:38:66:b7:ce:85:43:cf:81:
3e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:DA:9B:C5:E2:07:E3:E7:3F:E2:68:65:68:E2:C5:62:16:C2:64:70
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/CNqbxeIH4-c_4mhlaOLFYhbCZHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:9d::/48
Signature Algorithm: sha256WithRSAEncryption
8e:6b:10:34:03:32:23:77:34:18:49:64:f2:10:2d:45:70:a0:
41:05:12:be:1c:84:eb:ea:cb:eb:4c:78:46:57:82:d9:ab:e0:
1e:19:12:71:83:76:4b:48:20:8e:b6:05:75:e9:38:4a:6e:e1:
c0:43:b1:bc:5a:05:b5:ce:0d:6c:ac:02:96:f3:e8:e9:8b:3a:
a5:f8:c0:39:11:13:49:44:00:79:76:91:26:40:35:30:01:77:
ec:55:6f:5c:8a:88:18:5b:3f:b8:bd:b3:41:76:9c:43:48:1f:
8b:be:22:d8:b3:8b:34:78:81:26:bf:b4:dc:ca:b3:9f:b7:b8:
12:13:c9:7e:ae:00:bc:30:27:34:88:f9:1f:46:42:4e:7b:99:
cd:7c:e1:58:4b:97:d1:a1:2f:15:1f:09:65:02:a1:4c:9c:d7:
0c:43:27:e8:20:64:ea:ed:04:75:d0:58:a9:12:da:80:fd:8f:
d6:30:d9:1c:07:73:93:dd:e3:c3:31:87:f8:8e:d6:e6:4d:0e:
3d:1c:c6:c8:9e:a2:d4:f2:4b:99:b7:ac:e4:bc:f4:d8:00:65:
eb:86:c1:af:fe:5b:1d:a7:84:ad:25:25:06:84:9b:3a:02:9e:
ec:6c:2c:eb:43:d0:6d:9b:14:7d:cc:51:aa:a7:75:8d:53:b6:
91:80:72:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org