Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/FHpSBSoGuMPK6LDt26urx9z4-jk.roa
File: FHpSBSoGuMPK6LDt26urx9z4-jk.roa (raw, json)
Hash identifier: GtSKUosuixLEbrPLK6a1ZVHnCpKdgOTGtW9prcQCMcY=
Subject key identifier: 14:7A:52:05:2A:06:B8:C3:CA:E8:B0:ED:DB:AB:AB:C7:DC:F8:FA:39
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F8D806AFBB1BEE4B04DAD4C04138ADD
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/FHpSBSoGuMPK6LDt26urx9z4-jk.roa
Signing time: Tue 06 Feb 2024 17:53:16 +0000
ROA not before: Tue 06 Feb 2024 17:53:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210623
IP address blocks: 2a0f:b241:22::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:8d:80:6a:fb:b1:be:e4:b0:4d:ad:4c:04:13:8a:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 17:53:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=147a52052a06b8c3cae8b0eddbababc7dcf8fa39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:a7:22:6f:d5:70:bd:83:c3:56:7b:18:a6:33:
f5:c9:f3:5f:8b:fb:87:a6:fc:6b:db:25:0e:8e:e6:
17:47:27:c0:21:fa:fb:0c:ba:d0:f4:e5:ba:6c:32:
e0:f9:52:1a:b4:8c:18:ee:36:98:09:d0:a0:8b:71:
04:a2:fc:7b:c8:d6:6f:a8:0c:25:e5:11:77:e1:89:
b3:5f:5e:8b:c3:a8:76:6b:70:92:be:70:71:54:af:
84:45:2c:68:4d:8e:24:12:ef:44:8c:37:83:85:17:
8c:d9:26:b9:99:bc:39:2c:e1:b4:0b:9e:8d:d2:c3:
cb:a9:81:11:02:7b:e1:38:b2:c0:5c:1d:d9:ac:14:
b9:09:0d:d1:ae:71:ba:ed:d9:a5:a1:de:24:15:ac:
9d:e8:45:59:9d:49:1f:eb:47:a5:e4:a4:cd:cb:83:
1e:15:a9:60:f9:eb:a6:34:e3:6c:5d:cf:5a:81:08:
ef:15:74:f2:63:d0:80:52:ac:d2:a1:60:c9:24:0f:
34:1b:89:87:ba:92:2f:f1:92:9b:11:87:af:9d:d6:
f0:a2:2e:e5:89:b9:18:2b:51:72:ee:b6:32:d6:71:
29:2b:d5:94:24:f2:f6:9f:75:90:65:17:d3:da:ab:
a1:90:53:1e:72:4c:31:8c:e0:36:6c:30:ed:83:c8:
99:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:7A:52:05:2A:06:B8:C3:CA:E8:B0:ED:DB:AB:AB:C7:DC:F8:FA:39
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/FHpSBSoGuMPK6LDt26urx9z4-jk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:22::/48
Signature Algorithm: sha256WithRSAEncryption
1d:e7:82:17:09:76:bd:c8:2c:cc:76:38:84:42:2e:e6:0f:a7:
41:8c:34:88:25:74:3c:d0:6d:39:6c:4a:72:b8:2a:36:44:82:
ec:f0:54:1a:33:d1:33:fa:f4:90:fa:a3:d3:2f:6a:58:15:dc:
1f:eb:0c:3e:54:5d:4c:da:1c:5b:52:be:16:a5:aa:ed:af:bd:
8d:b6:01:23:db:af:a0:d2:72:2c:87:b4:c4:a7:4b:de:88:39:
bb:4e:ac:44:c3:a4:89:fa:e1:c7:27:71:c2:9f:77:82:47:99:
ac:98:5d:83:d6:2d:91:75:c1:7f:e5:9b:f4:f9:e2:04:8a:98:
c9:dd:2d:be:fa:95:cd:7e:3b:4f:29:0a:25:fe:9a:5f:52:1a:
ed:b6:44:11:b3:0c:56:77:f6:88:92:e8:6e:72:35:1a:c7:a8:
5b:4f:0d:c4:b7:e8:9a:b2:60:2f:7b:e0:42:e8:ad:ab:a3:67:
43:96:49:a7:d5:1b:cc:86:ae:36:d1:b0:46:ce:2f:00:6b:d1:
6a:9d:83:2c:85:09:9f:e9:21:d3:5c:89:12:a2:af:c0:07:b7:
cc:27:ca:ee:2e:3d:89:3e:8e:88:7b:10:ec:ff:ab:83:e8:1e:
69:9a:0f:74:9a:da:df:3f:10:42:25:e3:f5:41:98:74:62:7f:
3c:30:c6:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org