Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/CVDemK5JaeqaJp2lgGFMi0irkoI.roa
File: CVDemK5JaeqaJp2lgGFMi0irkoI.roa (raw, json)
Hash identifier: +AFf6sLdkUHUpFRV2elcttxp6xZtqVVbjLQD+5SZWqE=
Subject key identifier: 09:50:DE:98:AE:49:69:EA:9A:26:9D:A5:80:61:4C:8B:48:AB:92:82
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FABB5EDBABA941BAB3B72F319DAAE72
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/CVDemK5JaeqaJp2lgGFMi0irkoI.roa
Signing time: Tue 06 Feb 2024 18:26:16 +0000
ROA not before: Tue 06 Feb 2024 18:26:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204225
IP address blocks: 2a0f:b241:e8::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ab:b5:ed:ba:ba:94:1b:ab:3b:72:f3:19:da:ae:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:26:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0950de98ae4969ea9a269da580614c8b48ab9282
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:03:13:fa:b3:45:e8:7d:c5:b1:4d:07:18:f8:
0c:f7:3a:8b:e5:f2:8c:e8:9a:f4:6c:24:fd:10:df:
55:67:11:9f:5c:69:32:74:67:ec:67:ed:21:7c:40:
75:b0:01:bf:6e:69:de:4d:60:27:10:c5:4a:bf:6a:
7a:0a:79:b2:04:df:59:01:13:ce:ec:d0:a0:2b:5f:
eb:9a:a0:ac:c0:cc:e2:23:d0:b6:df:cf:71:a7:68:
b6:21:8f:3d:df:6e:e4:18:8b:d1:c3:a4:f5:92:2d:
8c:6f:67:db:0e:7c:82:3e:d0:ec:fa:01:af:92:42:
c4:48:d6:5b:3c:30:ab:5c:e2:0c:ea:eb:d4:d9:80:
68:7b:20:fc:c9:63:81:52:d7:6e:8f:e1:3d:fb:68:
59:79:c5:e1:04:53:87:a3:f8:7b:73:d2:7e:97:72:
5e:07:7f:13:15:d3:60:d8:45:ed:f8:79:ea:b6:22:
71:55:f6:06:aa:c8:27:f1:23:f8:f7:2b:a9:f0:0d:
79:64:c8:2d:2b:21:0d:73:d8:c7:3a:98:4d:0f:26:
2f:24:e4:96:04:37:36:da:f0:3c:59:15:e4:d9:c6:
98:6a:9a:aa:69:5e:59:19:1c:31:28:20:1a:f1:f6:
1e:93:e4:ce:8d:b1:8f:0c:0a:17:b6:04:7b:4f:3a:
6b:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:50:DE:98:AE:49:69:EA:9A:26:9D:A5:80:61:4C:8B:48:AB:92:82
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/CVDemK5JaeqaJp2lgGFMi0irkoI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:e8::/48
Signature Algorithm: sha256WithRSAEncryption
72:55:dc:96:81:57:e6:98:b7:07:38:c5:47:ef:84:0c:fc:3f:
7e:ce:43:12:ee:1c:cc:d2:01:38:e1:c7:b1:f7:89:cb:0f:1c:
80:8d:d4:e3:75:f7:07:c7:e4:4c:68:75:a2:a7:05:c7:61:d8:
91:75:56:bf:d0:ec:61:79:3f:80:33:5d:2e:5d:03:f1:32:48:
f9:9d:0f:19:8b:b9:c3:21:f3:d2:02:0d:8c:7b:ac:1d:03:e7:
13:af:60:c8:ee:0c:fc:5b:8c:cd:28:1d:44:95:1a:31:77:25:
28:5a:0a:99:a5:e8:e2:ea:8a:47:30:69:16:f1:7a:e2:8d:79:
67:1b:9d:0e:c9:27:98:18:70:3d:e1:ee:fd:95:a6:52:30:64:
37:e8:20:4b:f3:f1:9c:2a:94:0a:48:5d:47:91:a9:f0:ec:39:
a5:96:eb:cd:cd:76:4a:d6:46:5b:90:b0:7b:d2:87:f9:8b:44:
d0:35:80:65:01:bb:c2:a2:fc:c4:2a:d7:74:18:5e:76:f8:08:
18:7f:ae:74:c9:15:51:7b:f3:f7:c9:ed:d3:97:83:c7:f3:51:
44:57:2d:33:11:68:5f:ec:68:68:e3:82:1d:87:33:85:2b:10:
9c:51:42:85:89:87:01:cd:72:96:4f:5e:53:fd:90:de:0b:41:
32:6e:9b:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org