Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/GJnCeWSHYIJH1NRwBueoi35D7cs.roa
File: GJnCeWSHYIJH1NRwBueoi35D7cs.roa (raw, json)
Hash identifier: fbXpqn6oE0HYmLDjuDj4u4Ckwpa+9qfZ5P/WQRFr0DY=
Subject key identifier: 18:99:C2:79:64:87:60:82:47:D4:D4:70:06:E7:A8:8B:7E:43:ED:CB
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F95C74CFE54E8F5D106A111886C7D70
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/GJnCeWSHYIJH1NRwBueoi35D7cs.roa
Signing time: Tue 06 Feb 2024 18:02:18 +0000
ROA not before: Tue 06 Feb 2024 18:02:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215648
IP address blocks: 2a0f:b241:4f::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:95:c7:4c:fe:54:e8:f5:d1:06:a1:11:88:6c:7d:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:02:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1899c2796487608247d4d47006e7a88b7e43edcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:0e:ed:8e:bc:85:7d:3e:48:b7:0c:fd:9c:c3:
27:96:1c:8e:62:7d:b7:61:05:63:be:b0:f2:6b:d9:
56:c6:71:f2:7a:2a:2d:58:d1:61:ab:71:e3:ac:e0:
b1:32:b3:d1:b7:37:c9:4b:a2:ae:4f:07:27:90:d3:
b8:a0:3a:85:72:aa:9a:96:60:ff:3a:84:b8:dd:63:
11:89:20:c9:5f:33:1d:cb:bc:5b:2a:44:ff:00:f4:
b0:44:c5:ba:98:a9:8f:73:7e:01:29:3e:96:db:1a:
59:60:92:a1:d4:32:d4:eb:39:67:a0:cb:53:aa:82:
f6:8d:68:06:e1:9d:a6:d8:db:10:4c:6d:88:82:f3:
11:41:b9:14:d5:55:b2:2e:2e:10:f2:5a:2e:21:ef:
a9:a1:36:09:96:92:0e:30:23:e6:77:bb:8d:b0:f5:
9b:93:3d:2c:e1:c0:fb:4f:de:5b:06:fb:98:ec:72:
73:3f:c5:e5:1d:3b:2b:71:aa:6d:bb:6b:11:5b:ff:
33:81:0d:fe:96:95:21:b0:c7:a6:2e:bc:45:2a:fe:
a4:c3:7d:01:43:ed:29:0f:cb:b5:5b:bd:31:e8:4a:
d3:c9:39:11:63:91:fb:44:5e:46:7c:39:ac:9b:b4:
fa:cf:46:55:8c:45:2e:1f:4f:1f:4b:a8:7b:56:23:
9c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:99:C2:79:64:87:60:82:47:D4:D4:70:06:E7:A8:8B:7E:43:ED:CB
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/GJnCeWSHYIJH1NRwBueoi35D7cs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:4f::/48
Signature Algorithm: sha256WithRSAEncryption
78:0f:0e:58:c8:d4:9f:6c:b1:c1:c9:48:79:06:19:f2:eb:a6:
0e:27:e0:23:89:3b:2a:e2:d8:4d:de:e5:a8:32:87:e7:44:80:
e9:f8:bd:3e:08:8d:6f:18:ad:e0:26:ec:cb:d5:2f:22:3d:2d:
2c:af:33:84:fd:c3:02:cb:20:8a:1f:8b:18:f4:cf:7c:1b:96:
c1:aa:4c:5e:c1:a7:1d:99:0c:7c:fd:0b:af:75:e5:5c:96:63:
01:8b:6f:e8:eb:85:43:b9:2c:28:93:ae:23:86:8a:15:0a:ea:
ab:03:e9:b9:dd:0b:49:b0:24:a7:f1:48:2b:ed:52:03:49:37:
af:c2:bc:3c:04:84:64:fc:a6:22:9d:d6:30:0e:28:b0:69:91:
62:c0:42:50:3a:b1:98:bd:f9:ec:7a:fe:71:4c:5f:1a:fc:f5:
af:04:11:47:1e:8e:5d:26:a3:e0:3e:31:fe:1d:fd:3c:a0:07:
5d:8f:db:d9:81:af:23:5a:ab:a4:6e:bd:0f:ba:e8:8d:27:57:
0e:60:84:62:66:ec:b3:d5:d7:0c:0e:02:8e:92:68:d0:46:48:
c6:89:6e:d4:24:42:ee:8d:ab:88:53:bb:97:33:f9:ef:b7:2a:
23:b6:78:b6:2e:f6:8c:ee:b8:7b:77:4e:b5:c9:e9:d4:d6:08:
20:92:c1:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org