Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/DfPpiWUGWJyCXGRW2awoq3CVf70.roa
File: DfPpiWUGWJyCXGRW2awoq3CVf70.roa (raw, json)
Hash identifier: RgD4DBFq1yoTx73s1wRhA4+xcigKh0/gWJ1SLSFDoF8=
Subject key identifier: 0D:F3:E9:89:65:06:58:9C:82:5C:64:56:D9:AC:28:AB:70:95:7F:BD
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAD8ADDEC5FA6C2E561D56B3ACEC0FA
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/DfPpiWUGWJyCXGRW2awoq3CVf70.roa
Signing time: Tue 06 Feb 2024 18:28:16 +0000
ROA not before: Tue 06 Feb 2024 18:28:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44810
IP address blocks: 2a0f:b241:110::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ad:8a:dd:ec:5f:a6:c2:e5:61:d5:6b:3a:ce:c0:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:28:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0df3e9896506589c825c6456d9ac28ab70957fbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:18:72:c7:fc:77:76:36:55:37:08:23:db:20:
29:0b:67:21:92:6c:13:c0:86:19:51:68:9b:8c:ca:
0d:9f:7b:f9:84:87:08:1d:e7:7a:cd:a1:72:37:da:
9a:24:b8:9b:a9:85:9b:81:52:e5:31:48:d9:40:c0:
8c:37:02:b6:d1:f9:93:f5:6c:61:92:9c:74:42:c6:
78:7d:20:35:0d:ca:18:cb:36:1f:e6:06:d7:80:2e:
f3:37:13:ea:c1:75:52:51:ca:fb:81:05:f2:59:12:
24:da:34:35:72:11:58:9b:67:5a:1c:24:62:66:32:
00:2e:21:3e:da:c1:ab:3e:88:af:ee:27:a0:14:9d:
40:1e:97:f4:61:8f:d6:40:4d:5c:f2:20:42:e3:0a:
49:22:05:99:a2:c4:db:90:9a:eb:0c:7a:1f:2d:43:
01:54:5a:1d:24:fb:2c:70:b3:36:44:19:bf:a6:15:
2b:84:54:4d:9b:14:f4:57:65:e6:cb:2e:0a:c4:ae:
87:95:0f:68:c8:5c:05:ec:f2:14:b6:73:31:a4:af:
cf:e9:ed:af:dc:13:01:0d:b1:57:a6:df:ec:f5:94:
9d:d1:dd:0b:cb:30:48:b0:01:d8:2d:34:72:16:b1:
3b:cd:3a:06:8b:7e:ca:da:fa:63:f6:7f:02:04:3d:
85:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:F3:E9:89:65:06:58:9C:82:5C:64:56:D9:AC:28:AB:70:95:7F:BD
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/DfPpiWUGWJyCXGRW2awoq3CVf70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:110::/48
Signature Algorithm: sha256WithRSAEncryption
3b:4a:12:30:d9:c8:86:b5:c4:9d:ed:aa:4a:87:7d:c7:55:6c:
13:8b:72:79:1f:be:aa:ab:7d:d9:dd:74:0b:42:bf:20:b4:76:
8e:7e:37:99:f3:54:d8:dc:55:7f:60:76:8c:8d:63:d3:ce:5f:
6a:db:d8:d1:6e:f7:b0:23:56:f2:f9:71:aa:dd:ee:3c:80:19:
44:3f:a1:44:81:3e:27:fd:e3:fa:e9:f4:e6:b2:3d:f8:db:b6:
22:83:e2:a5:2c:1d:10:73:0e:64:da:0e:3e:a8:33:3a:24:ff:
d2:23:78:9d:1d:09:58:fb:dd:2e:b7:8a:0f:3a:ef:16:11:fb:
3f:21:c4:73:73:76:bf:32:0f:00:0a:5e:d2:0a:99:df:de:86:
62:60:4d:b0:15:62:22:49:a3:69:cf:8a:5c:92:f0:0c:8c:04:
bb:0f:f4:72:36:3e:30:7a:b0:78:f5:1c:60:e0:2e:fe:03:0f:
13:a9:c9:03:e1:4e:56:f3:6c:a9:8d:2e:a6:1c:b7:d3:b3:22:
23:51:b6:6b:9d:7d:ee:26:be:1d:e0:93:f9:76:1e:11:3a:c9:
a0:30:e4:ac:e9:e8:3d:00:61:4c:a3:31:d7:e3:44:c2:11:07:
08:10:fd:1b:8d:4b:a1:f2:ce:55:4e:d1:1b:35:9e:65:3e:0e:
a5:72:67:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org