Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/HqVTaYC8t34YMxIvkzn8P5t9t8Y.roa
File: HqVTaYC8t34YMxIvkzn8P5t9t8Y.roa (raw, json)
Hash identifier: mdEnJ9PYAY9LoNRTNnao0PMeTFfKVz2RYgUHN6PZUpA=
Subject key identifier: 1E:A5:53:69:80:BC:B7:7E:18:33:12:2F:93:39:FC:3F:9B:7D:B7:C6
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0691FBABDD1F81026BC12A82B57F2
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/HqVTaYC8t34YMxIvkzn8P5t9t8Y.roa
Signing time: Wed 07 Feb 2024 05:00:32 +0000
ROA not before: Wed 07 Feb 2024 05:00:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60894
IP address blocks: 2a0f:b241:31::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:69:1f:ba:bd:d1:f8:10:26:bc:12:a8:2b:57:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1ea5536980bcb77e1833122f9339fc3f9b7db7c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:a0:69:fd:75:9d:27:e6:72:2b:4e:7b:d6:09:
4e:95:8e:e3:b4:5b:86:a3:b5:be:9a:42:eb:ae:f5:
56:99:ad:2d:e9:0a:8e:7a:f8:ad:2e:c8:42:13:8a:
76:65:1a:75:c4:23:3d:5b:7d:ec:6c:2f:e0:4c:ba:
15:af:a5:d9:56:d0:6b:54:ef:6d:0d:ce:9b:64:17:
06:20:4a:73:01:08:2d:ed:51:3c:2f:03:aa:28:c1:
00:f4:dd:ad:2e:f7:5f:e2:b8:59:5b:a8:2a:e9:21:
4e:01:a4:d3:b3:c2:2f:ce:c5:09:88:68:6f:34:aa:
45:f3:3c:c8:d0:64:d4:d8:5b:13:24:1b:fc:ec:f2:
f7:36:20:2f:c7:03:72:2f:a3:b4:a3:ab:fd:ee:ae:
b5:48:23:dd:f3:d1:44:c1:03:d7:b7:0f:ef:4d:4d:
4a:b2:4a:f1:31:70:7b:3f:4e:bc:4d:e2:21:87:5a:
86:84:9b:23:c9:e4:e6:e1:07:8e:b7:14:bd:49:06:
61:5e:c0:69:28:a6:82:9b:0f:b9:b2:b9:cf:d4:51:
5e:b5:4b:88:06:fc:57:f4:f2:ab:40:3c:82:fb:77:
90:5a:0c:50:05:98:c6:ba:28:24:b2:2d:db:da:81:
4b:92:23:d4:24:e3:e2:d2:cf:07:ac:8e:2a:e1:a4:
ab:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:A5:53:69:80:BC:B7:7E:18:33:12:2F:93:39:FC:3F:9B:7D:B7:C6
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/HqVTaYC8t34YMxIvkzn8P5t9t8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:31::/48
Signature Algorithm: sha256WithRSAEncryption
76:2c:eb:20:16:21:3e:75:f5:f2:10:84:d4:ea:31:83:1e:72:
87:11:e1:a6:c8:49:99:68:9e:6f:77:76:c1:86:6f:3a:b5:a7:
77:3a:59:39:39:22:27:78:45:85:ee:35:4f:3c:79:f8:1a:76:
84:d8:bd:8d:8e:24:4f:00:6e:55:ab:2a:5a:79:c8:d3:37:6d:
93:12:b2:1d:ee:d9:a9:6d:09:47:da:5a:0f:90:00:b4:71:51:
e4:99:b5:0d:e1:bb:22:79:e8:89:c7:97:92:ab:71:84:94:3f:
80:4a:c2:67:1c:b4:2f:b1:c1:7e:b4:7f:cc:78:93:2a:80:4a:
95:52:27:7e:8d:9c:c1:49:70:a4:5d:17:19:b6:da:04:2a:ef:
10:0e:56:9f:2f:99:ea:1d:e9:dd:c4:75:ae:96:50:c4:e2:d6:
5f:36:7d:6e:43:71:ec:aa:c5:55:2f:be:a1:df:69:cd:f6:7b:
2a:6b:99:05:3d:ca:57:85:01:5c:73:bb:14:3d:0b:8c:ee:ab:
41:ef:ba:e4:ff:84:53:a9:c1:68:42:79:c8:8c:ec:1b:b6:9c:
e3:37:3a:b5:68:62:6c:56:47:1c:3b:21:7a:8d:13:1d:ef:78:
2c:9e:3d:15:33:36:f6:2b:00:d1:b5:94:96:5e:24:56:4e:15:
bc:09:2c:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org