Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/CuwNHWth0Nb2smHwHas6iuqw5Wc.roa
File: CuwNHWth0Nb2smHwHas6iuqw5Wc.roa (raw, json)
Hash identifier: KPXKr0SOq92u9Aiz1ubIIkTePLdq1cU0vPhPH8guryM=
Subject key identifier: 0A:EC:0D:1D:6B:61:D0:D6:F6:B2:61:F0:1D:AB:3A:8A:EA:B0:E5:67
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB5CB12E1B2ACCFAA3D01638A48171E
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/CuwNHWth0Nb2smHwHas6iuqw5Wc.roa
Signing time: Tue 06 Feb 2024 18:37:16 +0000
ROA not before: Tue 06 Feb 2024 18:37:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197951
IP address blocks: 2a0f:b241:12a::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b5:cb:12:e1:b2:ac:cf:aa:3d:01:63:8a:48:17:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:37:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0aec0d1d6b61d0d6f6b261f01dab3a8aeab0e567
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:39:c0:1e:f5:d5:ed:37:f1:f2:bf:82:14:cc:
69:51:d0:a2:45:c6:52:ec:c8:a3:28:78:20:48:7d:
c9:b4:96:11:ae:90:18:7a:4f:47:ef:0a:56:64:39:
78:1b:e0:5b:7b:86:2a:5e:d0:f1:d3:9f:a1:2d:1a:
42:e7:82:56:0d:8c:30:21:2b:01:a8:11:cf:e3:f2:
6e:51:67:ea:6e:60:f6:98:68:ad:1a:63:00:ba:ed:
b2:b4:53:47:32:db:65:de:46:88:d5:cf:66:9d:3b:
5d:a7:70:eb:e0:fb:ab:6f:53:4c:20:96:f1:3a:e2:
d2:e2:60:2b:45:59:6d:ca:08:bf:91:bd:22:7d:55:
a1:b1:ae:95:b0:fb:97:3b:4f:08:d9:6b:08:06:7a:
6f:86:5e:a9:c5:0e:ab:da:c6:77:1a:c4:23:78:66:
5a:54:0d:c2:45:5d:c8:43:f2:e1:d7:86:75:34:1f:
df:11:d1:65:02:5a:0a:af:42:16:82:a1:81:fe:50:
75:ea:99:3a:05:39:c5:dc:29:00:b1:14:7b:59:1b:
20:24:49:08:19:ac:c2:f7:03:9a:2e:77:43:ab:1c:
2a:70:69:d2:5e:64:2b:02:b0:83:79:59:2a:7d:25:
f2:5c:e5:48:63:a0:26:00:4f:9e:56:86:82:5a:8e:
58:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:EC:0D:1D:6B:61:D0:D6:F6:B2:61:F0:1D:AB:3A:8A:EA:B0:E5:67
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/CuwNHWth0Nb2smHwHas6iuqw5Wc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:12a::/48
Signature Algorithm: sha256WithRSAEncryption
86:dd:b3:c4:9d:9e:97:03:b2:90:7f:3c:90:e9:28:ea:ae:5e:
8c:6c:4d:63:fc:49:7c:d4:52:c2:ee:a9:46:9a:8f:c2:2f:f2:
38:6f:19:0a:e1:e3:59:d4:76:4e:7b:f2:4b:95:e3:a8:f0:62:
f2:0c:b9:d7:f6:33:10:e4:b7:a7:1b:22:09:3d:1a:56:7f:dd:
87:a0:68:e4:5c:60:e2:9b:7f:90:1c:47:02:60:d6:77:ef:eb:
47:6f:b8:22:ed:5d:44:eb:1b:e2:3b:d6:b0:8e:40:5b:89:4e:
5c:36:c8:fb:51:43:62:39:34:e4:dd:4a:a0:73:7e:72:f2:16:
08:48:cf:e3:3f:63:db:5f:36:65:4c:88:69:ba:5c:2c:56:b7:
35:01:06:ce:16:37:57:42:3e:96:a8:bb:af:3c:f0:f5:44:96:
22:be:7b:44:d3:22:3a:42:c9:cb:0a:23:cc:96:63:2f:2e:17:
36:c5:97:06:a5:6a:c3:fe:24:8a:38:0e:0d:d5:00:50:0d:87:
f7:45:d1:46:97:39:dd:5a:57:09:02:04:b8:8c:c4:2c:9c:1d:
c1:9b:4e:dc:c1:8c:1c:cd:8e:32:2a:53:d3:21:20:66:73:b4:
3d:3e:44:88:ad:63:76:14:38:a9:60:d0:39:a0:30:1c:de:e0:
d6:30:b5:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org