Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/HGRDFnmhb8CaIVPISFEoPPhlUeY.roa
File: HGRDFnmhb8CaIVPISFEoPPhlUeY.roa (raw, json)
Hash identifier: vCpN0RivxRdanV7x3qm9zDNGuh4pCvlmlUK13yG87Ak=
Subject key identifier: 1C:64:43:16:79:A1:6F:C0:9A:21:53:C8:48:51:28:3C:F8:65:51:E6
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F948ED22D011909C0AD01B3A966F20F
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/HGRDFnmhb8CaIVPISFEoPPhlUeY.roa
Signing time: Tue 06 Feb 2024 18:00:58 +0000
ROA not before: Tue 06 Feb 2024 18:00:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197426
IP address blocks: 2a0f:b241:32::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:94:8e:d2:2d:01:19:09:c0:ad:01:b3:a9:66:f2:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:00:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1c64431679a16fc09a2153c84851283cf86551e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:a7:73:cc:ef:d7:8f:f8:32:67:c6:62:4f:cd:
7f:6e:4e:33:fb:07:13:07:74:a5:72:d3:5f:f1:3d:
9b:de:20:13:eb:26:f3:fa:e7:67:03:ab:cb:21:22:
37:3b:4c:ef:31:87:cc:6e:44:ff:b8:a2:cc:f0:6f:
fc:b8:df:36:a5:8d:b7:0b:03:0b:ba:d9:6c:e2:f9:
9a:a9:d8:dd:93:09:0e:1c:a6:08:3f:1b:b3:b5:ed:
82:87:58:22:71:5a:f7:df:1f:6b:c2:1b:69:80:8e:
da:52:2e:57:bd:a1:17:6c:80:93:e3:72:97:18:24:
78:c6:28:0b:ba:53:43:65:90:0a:e8:77:b6:ec:0c:
82:e0:f1:10:3e:37:7e:ce:d8:4d:e3:1c:a7:35:85:
29:a1:98:ce:4d:d4:e6:a1:c5:33:7f:3b:98:42:ec:
c8:4a:42:cf:5a:69:84:10:32:f9:f3:c1:e4:32:b7:
a7:3c:33:9b:1d:8f:89:56:47:9c:a3:73:e9:90:6a:
e2:1f:ed:01:c8:b3:56:94:32:53:0c:9d:62:ea:42:
cf:af:23:fb:69:69:f8:f4:85:d6:9a:d0:54:4e:eb:
b0:f8:8b:e6:cb:e0:ad:f5:a6:17:8c:98:a0:5d:93:
44:7c:c5:c3:13:ac:77:eb:ad:20:d6:77:10:d1:43:
df:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:64:43:16:79:A1:6F:C0:9A:21:53:C8:48:51:28:3C:F8:65:51:E6
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/HGRDFnmhb8CaIVPISFEoPPhlUeY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:32::/48
Signature Algorithm: sha256WithRSAEncryption
67:76:b3:9a:65:ec:e1:5a:53:c6:ce:ee:cb:b8:c7:b2:64:15:
9d:e5:6d:43:23:e9:ae:22:53:2b:2d:f9:1c:13:33:54:e5:8f:
07:30:15:ee:09:80:76:ee:99:67:24:b6:bf:3d:5f:c6:cd:a1:
92:03:b2:a9:e4:55:66:be:dc:45:53:bf:dc:68:83:1a:87:52:
c6:a3:67:7e:37:8e:83:5c:e8:6e:60:33:d3:10:31:8e:00:c8:
e2:90:57:c9:5f:2b:72:33:9f:02:54:18:39:b7:53:fa:32:3f:
ed:b1:09:8f:05:bb:4e:40:a0:2a:cd:0c:95:95:f8:7f:63:dc:
9e:78:83:c2:d0:4a:22:49:05:54:0b:5f:b4:cf:5f:f0:f7:d6:
f0:69:12:db:67:e8:ce:05:f1:d5:e2:1f:2e:f1:b5:bc:b8:df:
7e:15:88:94:17:ee:a5:55:aa:41:53:fd:c7:13:5d:51:c2:4d:
75:36:d0:a7:a5:b8:8e:07:8e:62:4a:9e:06:74:ed:0e:cd:7d:
19:77:e1:4a:13:3e:c0:36:58:09:fc:c9:2d:c0:6b:31:3a:b1:
7e:9a:44:9c:0b:27:4d:9a:68:49:cb:21:34:ae:4b:10:16:f1:
9f:57:25:29:0d:b5:1e:60:b6:d0:66:84:de:f2:d1:c6:fd:e7:
d3:ef:23:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org