Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/FNvgD5nLxUdx22tqmnl275RcHL8.roa
File: FNvgD5nLxUdx22tqmnl275RcHL8.roa (raw, json)
Hash identifier: yld6+/b+BLJoRBqmoI63oi/Quups5zcrQEIIPvHDYwY=
Subject key identifier: 14:DB:E0:0F:99:CB:C5:47:71:DB:6B:6A:9A:79:76:EF:94:5C:1C:BF
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FABBDDC7F2F94EEB3AC83C1E8E093F9
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/FNvgD5nLxUdx22tqmnl275RcHL8.roa
Signing time: Tue 06 Feb 2024 18:26:18 +0000
ROA not before: Tue 06 Feb 2024 18:26:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208078
IP address blocks: 2a0f:b241:f4::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ab:bd:dc:7f:2f:94:ee:b3:ac:83:c1:e8:e0:93:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:26:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=14dbe00f99cbc54771db6b6a9a7976ef945c1cbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:37:ad:96:97:29:1b:0e:71:b5:2f:62:a2:d0:
fe:d9:e8:bb:34:d2:ed:4f:81:8d:cc:9a:4f:57:a5:
5a:d9:4e:76:7a:df:b9:68:4e:58:17:7e:ef:f3:17:
7e:bd:db:8a:60:d3:05:bf:68:06:77:ea:9f:88:99:
b2:8d:28:85:23:08:49:80:f9:c0:71:30:1e:be:3a:
9d:be:7d:e4:c1:83:08:7b:cd:46:57:5a:1a:89:65:
0b:92:fa:e2:40:42:e2:84:cf:69:46:12:5f:46:c7:
d0:d1:1e:a1:c7:96:63:b0:75:00:36:12:f7:58:d3:
b9:b7:2c:2e:dc:59:d2:c6:6b:8f:e2:70:c5:d7:df:
8b:2d:da:62:70:2d:79:9e:5a:7c:5d:99:40:ad:db:
16:d2:b2:66:d5:c5:d1:1d:76:f5:90:48:d6:99:bc:
22:c5:e4:1d:c5:56:a7:69:83:6d:42:46:65:10:5b:
06:5d:4c:4d:c5:ef:5b:a0:64:de:1b:3e:80:27:3d:
c2:7a:2e:6d:89:b0:ab:c0:06:a7:0e:a1:fe:0f:35:
14:92:c9:62:19:ff:db:5a:51:54:ea:53:2c:61:12:
86:1b:88:28:d5:19:38:4b:46:72:9f:1d:59:04:97:
49:9d:fd:0e:61:08:76:30:52:e2:b7:1a:fe:65:fb:
63:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:DB:E0:0F:99:CB:C5:47:71:DB:6B:6A:9A:79:76:EF:94:5C:1C:BF
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/FNvgD5nLxUdx22tqmnl275RcHL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:f4::/48
Signature Algorithm: sha256WithRSAEncryption
4d:84:49:56:54:f7:27:38:d6:74:e3:3b:72:94:9a:35:db:10:
38:44:f8:b7:83:cb:60:8e:ee:d0:d4:51:c8:9a:21:f4:79:bd:
e7:c9:ff:e0:42:aa:a2:f4:64:73:5a:59:bb:07:9f:fa:44:ea:
50:d7:3b:32:62:5f:c6:53:a7:77:1c:97:a7:c0:6e:39:8b:3b:
45:13:d1:e1:bd:ee:43:e9:19:50:03:37:d3:3e:bb:5c:17:4e:
85:75:55:64:75:1b:ab:0b:0a:b1:b5:a0:00:79:5d:43:93:03:
94:99:0a:33:b2:04:e1:34:35:c8:93:c4:81:d9:03:18:b1:7e:
a6:d7:8d:1e:ef:33:78:4c:00:5f:de:6e:a8:b0:f7:20:1b:40:
98:af:2a:0c:36:27:eb:82:0d:b0:af:7b:c3:de:f7:31:5f:1b:
22:5d:5d:3b:c4:56:26:1d:f3:11:1a:10:af:24:7f:f4:f2:71:
48:1e:1c:54:a4:fe:27:c4:7a:6b:c6:07:66:11:13:14:2e:da:
61:0a:e8:c4:d5:b5:b9:f5:f4:df:d5:fd:8e:6a:1c:6f:aa:5f:
58:46:4e:00:6b:bf:3d:03:6e:1b:be:d3:e7:bc:4e:4b:c4:a0:
d6:41:f0:4d:79:89:24:b0:6f:4c:1a:4a:6b:8e:2c:28:3c:35:
09:0b:92:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org