Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Hw5zxNbTw2c-LVu01jG4RKAZHcQ.roa
File: Hw5zxNbTw2c-LVu01jG4RKAZHcQ.roa (raw, json)
Hash identifier: Xvp3QqJeigElaVGj8J2252SED7PKsOdNAlqhGx0VnGQ=
Subject key identifier: 1F:0E:73:C4:D6:D3:C3:67:3E:2D:5B:B4:D6:31:B8:44:A0:19:1D:C4
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB6BAB86A1693441C4061D59FABE71D
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Hw5zxNbTw2c-LVu01jG4RKAZHcQ.roa
Signing time: Tue 06 Feb 2024 18:38:18 +0000
ROA not before: Tue 06 Feb 2024 18:38:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204660
IP address blocks: 2a0f:b241:138::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b6:ba:b8:6a:16:93:44:1c:40:61:d5:9f:ab:e7:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:38:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1f0e73c4d6d3c3673e2d5bb4d631b844a0191dc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:c4:3c:07:18:af:e0:36:ef:8c:ee:11:88:0e:
54:db:94:84:f7:27:26:98:5e:4f:f8:f7:60:d9:88:
6b:14:f5:2e:d2:0b:b4:b1:60:30:2e:ca:af:10:30:
48:d8:d5:d4:2d:cf:a8:cd:92:89:1d:ef:55:94:1b:
1c:65:4c:49:84:f3:b6:e9:fd:bf:a6:ab:6e:d8:5e:
29:c3:1d:cc:40:c7:a2:5d:ad:cf:dc:b0:9d:cd:8c:
f6:a1:5c:09:38:b2:b7:76:69:65:be:15:3f:c2:15:
76:2b:05:21:71:6c:0b:06:6d:34:8f:a7:e8:28:1a:
d0:18:e4:0c:fd:4e:4d:ac:51:41:2f:48:9d:de:0d:
8e:06:3d:49:b9:30:7c:d3:6d:57:2c:43:bf:0b:a1:
81:bc:da:08:04:f6:3d:94:8f:d5:22:8c:1d:78:95:
93:15:7b:bf:d0:5b:b4:d4:50:c2:36:0e:12:01:92:
fb:92:2d:55:4c:10:40:0b:8e:eb:24:18:ef:74:78:
24:dc:d8:91:3b:bb:4f:cd:fe:bb:32:47:0d:5e:1d:
24:c5:37:44:90:0b:c8:d3:9a:26:da:55:82:f5:67:
77:22:a3:a8:1a:0b:9f:52:72:70:46:dc:4c:9c:f4:
44:99:f3:79:3f:00:b5:0c:b9:20:e7:5a:a4:33:91:
9b:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:0E:73:C4:D6:D3:C3:67:3E:2D:5B:B4:D6:31:B8:44:A0:19:1D:C4
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Hw5zxNbTw2c-LVu01jG4RKAZHcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:138::/48
Signature Algorithm: sha256WithRSAEncryption
70:58:73:b5:8e:a7:a8:c0:30:bd:5d:4c:75:0e:29:ee:04:79:
a2:0b:08:b3:04:ab:3b:99:b2:eb:f6:62:15:4b:e3:3e:00:27:
96:09:0a:a0:04:86:e2:03:00:92:4c:de:ae:2a:be:79:1a:2b:
e2:f4:a6:b9:f8:ed:04:f1:ec:fc:c7:74:86:9a:2d:8c:c3:30:
5c:38:e5:1d:ee:3a:52:27:7d:d7:79:61:3b:e1:08:a5:13:e4:
7b:d2:35:a7:ef:1d:56:19:76:ad:8f:c9:91:5e:8a:82:d8:a6:
57:42:ff:c9:a2:50:20:dd:21:8f:cb:00:88:3d:37:bb:1a:da:
ee:c1:b9:9c:e9:46:41:c7:94:b1:48:e5:46:7e:c3:68:8c:d4:
eb:dd:f6:0c:43:82:83:86:26:eb:e7:1d:98:f9:1a:ec:40:8b:
de:8d:c3:d0:a9:41:ac:ac:8c:a5:c7:5f:37:e1:c8:01:e9:a7:
22:f5:b1:ed:90:93:24:13:bb:61:ba:f2:64:e8:7d:98:62:d3:
e1:95:ae:ac:08:b8:6a:e6:96:8d:f4:27:35:b8:99:40:6d:61:
80:94:db:98:03:f0:26:e3:c1:d8:97:ff:12:99:1e:79:ab:80:
19:ac:d6:cf:1a:4f:87:12:1a:e4:c1:f4:22:84:80:c4:5d:f8:
05:77:55:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org