Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/FAYGN5Cu5icGSvp-wpOF4ZJqevs.roa
File: FAYGN5Cu5icGSvp-wpOF4ZJqevs.roa (raw, json)
Hash identifier: flS/hoXvEOXvLpYvvMmoaYAWkdstxQoNLJVCbggqPUo=
Subject key identifier: 14:06:06:37:90:AE:E6:27:06:4A:FA:7E:C2:93:85:E1:92:6A:7A:FB
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F96AFF49E92DA6468803B898DB60A34
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/FAYGN5Cu5icGSvp-wpOF4ZJqevs.roa
Signing time: Tue 06 Feb 2024 18:03:18 +0000
ROA not before: Tue 06 Feb 2024 18:03:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216360
IP address blocks: 2a0f:b241:5f::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:96:af:f4:9e:92:da:64:68:80:3b:89:8d:b6:0a:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:03:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1406063790aee627064afa7ec29385e1926a7afb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:a0:60:0a:c1:30:8e:fb:14:64:de:91:ad:3d:
7b:9c:46:15:17:05:a3:98:78:cf:d7:57:7f:49:ff:
75:e8:77:40:e8:3d:9e:15:4a:3c:b2:e0:43:1f:38:
da:b9:22:d3:71:14:c0:37:5b:44:39:70:dc:1b:c2:
c5:6e:0f:20:a9:31:ef:32:1e:d1:d0:1c:c9:ee:3b:
42:10:7d:e0:2d:60:b3:f9:f0:5a:3b:c3:44:26:3a:
29:2e:98:aa:9a:d3:cc:45:c2:84:46:c7:72:80:e2:
de:5d:ff:4b:11:0a:5c:d0:29:37:c0:c5:00:2d:ab:
9a:a7:5d:c5:2c:87:62:38:b2:1e:7b:47:09:e2:80:
7f:0b:a6:25:1f:af:58:e8:33:95:51:07:9d:80:73:
a9:7a:96:56:d8:b0:ce:fa:7c:b2:47:d8:15:89:65:
77:79:ec:0a:03:ac:31:58:02:e5:57:1f:41:a7:7e:
ff:f7:68:15:9a:34:4d:ab:29:ba:6e:90:64:cd:3a:
d7:69:1d:7a:dc:5d:15:1c:0f:98:e2:ab:8b:5d:13:
24:62:4c:b0:b4:81:dd:b5:ec:96:7c:da:31:9f:fa:
10:ea:09:4c:b0:fa:e7:87:93:ea:4c:3d:13:15:40:
52:70:6d:92:bb:4f:19:85:a8:11:91:a5:0f:9d:ba:
4e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:06:06:37:90:AE:E6:27:06:4A:FA:7E:C2:93:85:E1:92:6A:7A:FB
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/FAYGN5Cu5icGSvp-wpOF4ZJqevs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:5f::/48
Signature Algorithm: sha256WithRSAEncryption
4b:45:d4:d6:d9:f4:d0:28:aa:40:1b:50:67:8f:be:64:73:5b:
41:ce:9f:d4:92:b7:6c:2c:07:8e:c5:8b:e7:3b:9a:4b:32:76:
46:c2:c3:b5:91:5b:af:e0:24:58:45:f2:d8:ca:1c:90:17:f1:
a9:b8:15:cf:fe:67:f3:d6:cd:b0:91:35:42:80:98:8d:ce:76:
56:1a:b5:13:70:db:5f:5c:a8:61:b1:86:b3:bf:d4:a5:32:9b:
bf:db:b6:c9:cf:08:d4:2c:5a:24:65:a4:c7:e5:46:83:6d:d6:
d4:6b:ec:00:38:3e:70:8b:69:8e:d2:45:49:88:f5:a8:e4:bc:
cc:b0:f7:65:3b:ff:ed:68:71:ed:ee:8e:cc:2a:a6:27:75:36:
99:cf:a3:f3:d5:9d:48:24:af:fb:34:6a:05:82:33:fd:17:0a:
8c:a2:b5:32:22:1e:f8:db:d9:9a:33:5d:cf:8f:88:b2:bf:55:
d7:05:17:0d:97:49:b7:73:92:94:98:8b:3c:42:d3:4a:d4:f5:
89:4a:29:bc:28:f4:5e:bc:d9:52:67:7f:b9:53:bc:4e:e6:bc:
9d:40:36:1e:09:5b:11:f7:ea:ac:2d:65:38:43:97:13:46:ac:
74:8c:a4:ee:d9:47:88:61:51:ff:b1:a8:ba:65:76:0e:e2:f2:
58:00:05:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org