Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/G-1F7wq6QmDITsLegvaxfS2a_5c.roa
File: G-1F7wq6QmDITsLegvaxfS2a_5c.roa (raw, json)
Hash identifier: FRu7F+QZ5w/M0zTQLwwpgPBovQLjTBBXyavdEiPGzYA=
Subject key identifier: 1B:ED:45:EF:0A:BA:42:60:C8:4E:C2:DE:82:F6:B1:7D:2D:9A:FF:97
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0862DA7F2337D83D06F055CE999CD
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/G-1F7wq6QmDITsLegvaxfS2a_5c.roa
Signing time: Wed 07 Feb 2024 05:00:40 +0000
ROA not before: Wed 07 Feb 2024 05:00:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200853
IP address blocks: 2a0f:b241:d6::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:86:2d:a7:f2:33:7d:83:d0:6f:05:5c:e9:99:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1bed45ef0aba4260c84ec2de82f6b17d2d9aff97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:67:25:88:73:c9:55:bd:d0:1f:ad:55:66:92:
97:16:3e:f0:cc:81:5a:01:5f:ce:46:db:85:d1:1b:
2e:98:ee:0e:b9:2f:ae:d9:be:0e:e2:57:fa:27:29:
e1:2f:9d:74:c0:d8:ed:b2:ad:9c:b4:fa:1a:f9:fd:
dd:0f:9e:81:9e:d6:7e:2f:2d:95:59:91:f4:ad:ac:
34:f8:39:67:81:1d:ae:91:40:44:db:0e:cd:11:8a:
17:52:57:2c:de:94:81:0b:3f:b5:82:6a:ee:d8:dc:
12:20:2e:a7:06:77:e4:1e:7c:e6:6f:70:74:40:8a:
c5:f5:07:d7:44:51:f0:9b:40:dd:d1:82:9b:a3:00:
79:08:db:15:0c:73:b3:d3:52:01:1d:df:b5:3d:3f:
f5:b1:69:59:19:bc:42:17:06:69:9d:8d:fd:1f:2b:
eb:fe:0f:91:d1:32:91:f3:b6:15:0b:b5:08:c4:df:
f1:b0:49:7b:ab:82:f2:fa:c6:b3:a1:5f:eb:8b:ad:
97:51:0b:09:a0:72:4e:c4:62:64:81:2b:71:88:ba:
a6:c2:e1:cd:fb:0f:a0:79:32:64:af:b1:1a:18:e3:
39:de:2d:17:38:30:a8:3a:90:ea:c0:5b:73:ed:55:
fb:d2:02:49:f2:df:2e:a9:0c:f7:b6:ba:7f:9d:73:
ce:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:ED:45:EF:0A:BA:42:60:C8:4E:C2:DE:82:F6:B1:7D:2D:9A:FF:97
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/G-1F7wq6QmDITsLegvaxfS2a_5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:d6::/48
Signature Algorithm: sha256WithRSAEncryption
1e:00:ff:4b:2b:48:f2:dc:d7:52:fa:a1:26:79:a9:9f:bf:5d:
1e:94:50:de:0e:9f:6f:5b:c0:4f:8f:28:06:37:13:7e:5f:98:
35:d8:cc:3a:a7:6b:8b:36:c0:1b:6f:1e:d8:b2:ba:d5:61:97:
de:d8:46:2e:a7:cd:42:b5:43:cd:97:17:26:e5:7c:70:5d:9b:
51:6b:70:75:5b:1c:fd:6c:1f:c9:32:b7:7a:fe:c8:fa:7d:a2:
7c:e9:22:2f:5d:c5:f5:a4:64:68:18:ed:41:36:90:d3:38:54:
f3:65:94:8b:2c:8d:42:90:99:ef:fa:45:10:f2:5b:88:27:a7:
79:e8:d0:b4:78:d1:5c:a3:d4:93:ef:c0:09:43:28:7d:45:86:
c3:f4:05:08:5b:b8:81:a6:db:ad:f5:81:cb:83:5f:b8:9f:7f:
73:aa:a3:91:ab:db:f3:80:48:ba:ec:ad:40:07:48:fa:88:f8:
7d:95:ca:7f:90:a8:ee:e6:1c:fc:af:03:c0:c6:00:c7:6e:ba:
8b:fa:3a:c6:84:e6:04:10:7e:f3:fb:81:f6:b1:b9:d0:24:41:
8f:91:5d:d8:95:40:b8:dd:7c:d1:60:3e:1b:10:53:95:e7:a7:
53:f2:86:fd:92:37:de:89:3a:28:a7:4a:9c:2a:51:e5:74:b8:
74:ed:86:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org