Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/FdjWMM10F9PgpYCPHVZyT8I8PhY.roa
File: FdjWMM10F9PgpYCPHVZyT8I8PhY.roa (raw, json)
Hash identifier: 2nq0+oZW+k1rHw4/HsvP3ZZchVnSipSGMWxUxk178xA=
Subject key identifier: 15:D8:D6:30:CD:74:17:D3:E0:A5:80:8F:1D:56:72:4F:C2:3C:3E:16
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F949308864341CBB00C539018A91164
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/FdjWMM10F9PgpYCPHVZyT8I8PhY.roa
Signing time: Tue 06 Feb 2024 18:00:59 +0000
ROA not before: Tue 06 Feb 2024 18:00:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203142
IP address blocks: 2a0f:b241:36::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:94:93:08:86:43:41:cb:b0:0c:53:90:18:a9:11:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:00:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15d8d630cd7417d3e0a5808f1d56724fc23c3e16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:48:b8:77:b0:51:d1:be:b0:af:d1:be:d2:1a:
56:f5:6d:66:5e:89:60:6d:8e:17:39:54:c5:c2:7e:
16:f9:2d:c1:75:82:ab:0e:e9:e5:46:26:45:51:88:
f7:82:99:70:dc:4b:47:93:95:4a:8f:47:70:8b:fc:
18:1e:ca:33:94:cf:a2:58:01:b2:62:fc:7a:19:f6:
f7:5b:b4:5e:7b:5a:5c:87:a1:03:51:1c:a4:67:d2:
4f:b6:ea:35:fe:04:f9:7e:64:96:52:7a:36:77:74:
c4:c7:19:b2:c6:5d:15:76:41:51:97:cb:5e:03:c1:
f7:52:60:e2:17:d1:d7:8d:c0:f0:5b:6d:b0:e0:3e:
9b:0f:6c:64:55:90:e5:df:4a:37:5e:78:8a:33:7d:
92:b6:57:27:fb:20:ae:23:81:eb:27:bf:b5:95:36:
88:34:46:a7:6d:1d:70:b9:bc:69:7f:fa:a9:a5:bd:
86:88:37:fc:d2:a4:31:dd:c7:92:ec:c1:af:47:11:
53:99:06:ea:33:cb:61:d0:49:31:8e:06:25:7c:b7:
9f:1f:c5:ee:03:16:42:2e:6e:b3:97:ff:8f:23:8c:
13:8a:ce:b5:92:b4:ee:27:d0:a0:34:75:11:c6:c0:
95:f3:76:7c:fe:0b:ef:07:fe:51:fb:ea:cc:38:5d:
65:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:D8:D6:30:CD:74:17:D3:E0:A5:80:8F:1D:56:72:4F:C2:3C:3E:16
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/FdjWMM10F9PgpYCPHVZyT8I8PhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:36::/48
Signature Algorithm: sha256WithRSAEncryption
22:7b:a4:e0:ff:56:7e:4b:95:1e:cc:52:24:8f:a1:59:55:39:
ed:6a:e4:4f:2f:99:75:a5:2f:54:9d:6b:60:1c:6a:e2:00:ab:
ce:f8:a4:a2:18:62:05:c9:27:f6:f2:ec:c8:d9:be:3b:e9:0e:
24:8d:b5:1c:e9:46:93:a2:69:18:3a:45:59:5d:b7:94:0b:ef:
f6:7b:61:02:b0:7c:43:de:cc:51:4c:e8:20:12:0e:cc:54:3c:
15:63:e8:cd:6f:a4:9f:dd:00:bb:d1:40:91:da:2f:bb:ed:49:
6a:77:e3:17:34:b5:41:19:e5:dc:6c:d0:8c:80:98:a1:a7:3e:
87:57:52:52:29:18:60:36:0d:36:4a:5e:6c:81:46:a4:05:1d:
a7:4e:fe:b0:b9:71:1f:0a:d6:8f:d8:fa:16:a5:d5:12:3d:3a:
74:bc:9e:89:8b:26:7a:41:48:be:36:dc:f5:2d:ff:dd:3f:57:
82:b9:89:c0:9d:6e:73:e6:1f:33:27:a6:8c:72:eb:97:63:82:
8e:a1:da:27:fb:29:f5:67:5d:a2:21:0f:0d:1f:16:8a:85:13:
9f:c6:9a:34:66:87:d4:dc:f2:35:7d:50:60:e8:b5:47:46:0a:
73:5e:8f:f1:6b:60:b4:a4:a2:c4:8a:0f:7b:46:62:18:80:75:
44:7a:8e:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org