Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/HWjF8c5skNKqtM1Ca37Y8JzmLCQ.roa
File: HWjF8c5skNKqtM1Ca37Y8JzmLCQ.roa (raw, json)
Hash identifier: L0el6Lnhi5VV4FJ8Ol6qvijZcl4rdL5myTgc0q8WF0c=
Subject key identifier: 1D:68:C5:F1:CE:6C:90:D2:AA:B4:CD:42:6B:7E:D8:F0:9C:E6:2C:24
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0C24177152471A76957FF766EA66A
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/HWjF8c5skNKqtM1Ca37Y8JzmLCQ.roa
Signing time: Wed 07 Feb 2024 05:00:55 +0000
ROA not before: Wed 07 Feb 2024 05:00:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216362
IP address blocks: 2a0f:b241:158::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:c2:41:77:15:24:71:a7:69:57:ff:76:6e:a6:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1d68c5f1ce6c90d2aab4cd426b7ed8f09ce62c24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:36:05:ca:04:9e:8e:7c:c2:14:ea:01:12:11:
86:4c:d2:26:ff:ad:c0:2c:8c:c0:c2:78:12:ab:e3:
5e:77:5f:9f:6c:cc:3b:da:b6:54:86:60:32:08:95:
d8:52:e4:1a:30:40:2a:77:8b:6b:89:ec:dc:0d:f8:
ab:c6:59:a1:d1:85:da:99:e2:0d:43:63:d2:1c:a2:
48:ec:da:54:be:21:83:15:e9:d3:b8:83:a5:22:0e:
ed:4f:42:8e:ea:27:a2:3a:75:63:3b:15:03:0c:7b:
86:47:e1:3e:1b:56:1d:72:d5:4d:3f:32:25:25:47:
d9:e5:2d:b6:82:05:0b:46:46:86:37:51:6d:84:d3:
85:4a:90:ec:c6:b2:68:68:73:1a:78:38:1b:19:79:
e1:e5:50:b6:6d:32:ce:d7:e8:88:94:bd:b2:cc:12:
9e:cf:1f:63:01:72:5e:56:16:36:4a:39:3d:62:82:
68:de:07:cc:d7:79:d4:e5:16:43:28:9d:41:ed:04:
aa:3c:96:fa:66:50:04:34:a6:6d:ba:c4:80:34:ce:
b7:9d:7d:77:70:7f:8d:22:50:cb:1a:ee:93:5f:e6:
b0:f5:fb:d6:27:f4:b3:24:ce:d5:b1:cf:43:cf:a4:
93:05:f5:91:29:e1:de:a8:0e:d6:12:51:2d:e0:c9:
c1:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:68:C5:F1:CE:6C:90:D2:AA:B4:CD:42:6B:7E:D8:F0:9C:E6:2C:24
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/HWjF8c5skNKqtM1Ca37Y8JzmLCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:158::/48
Signature Algorithm: sha256WithRSAEncryption
32:c3:9a:0b:f5:16:90:cb:9a:d2:9a:ab:91:27:7a:ad:a6:a4:
a0:2c:51:58:6e:74:8f:87:52:b3:8b:12:14:f8:be:72:c1:0a:
2e:d4:66:07:d4:6f:da:62:e5:61:3a:69:4f:89:98:11:3e:6f:
34:d0:a7:b9:23:b7:4e:7f:79:3e:44:d1:16:0b:af:b4:15:3e:
a6:a4:cd:ef:43:97:32:27:d8:90:3b:6f:bf:fe:a9:42:88:ae:
3c:44:7f:5f:e4:c1:ec:ee:68:3f:90:c4:c0:67:db:ae:ec:8b:
49:1d:de:13:63:41:39:33:74:d2:e2:f3:e9:a1:c1:5d:a6:c9:
0a:d9:9d:02:74:1a:10:b3:53:6f:95:e1:6f:ab:4f:1a:bc:27:
3f:10:4d:ed:a3:31:e5:dc:ce:92:ed:4b:cf:d4:ca:ad:f5:4a:
98:8d:2b:aa:32:fa:e4:0b:0c:c7:fd:5f:ff:61:54:94:02:4f:
c0:88:f1:dd:31:36:de:5f:cc:e6:2f:82:e9:d0:85:02:64:c6:
d6:33:ff:c2:f6:8e:7f:8d:3f:ca:81:de:fb:87:4c:97:cd:88:
e1:db:6b:85:22:5a:51:b2:20:fb:d5:a4:5f:af:37:22:0c:84:
67:f6:63:20:0d:41:79:f3:c9:6f:e8:47:fd:d4:ca:a5:e4:84:
4b:0b:75:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org