Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/IUdDBuAsp5igxBKRyARDw-QAEPw.roa
File: IUdDBuAsp5igxBKRyARDw-QAEPw.roa (raw, json)
Hash identifier: coMhQcll6kYsO3hOXsSgIpL1UEWr5b6Qo6lt4DFHraE=
Subject key identifier: 21:47:43:06:E0:2C:A7:98:A0:C4:12:91:C8:04:43:C3:E4:00:10:FC
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA80B9BA684FAE7FCFD0D99E9F696EA
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/IUdDBuAsp5igxBKRyARDw-QAEPw.roa
Signing time: Tue 06 Feb 2024 18:22:15 +0000
ROA not before: Tue 06 Feb 2024 18:22:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199650
IP address blocks: 2a0f:b241:88::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a8:0b:9b:a6:84:fa:e7:fc:fd:0d:99:e9:f6:96:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:22:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=21474306e02ca798a0c41291c80443c3e40010fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:2e:39:eb:e2:d0:91:d7:d1:24:dc:6f:59:e6:
21:f9:76:98:24:7f:ce:68:e7:57:05:d6:41:de:d1:
4f:12:53:13:76:3a:e1:bf:c6:6e:b2:c8:74:19:70:
95:1b:d1:c1:d0:ee:41:15:75:45:32:1e:8a:46:1a:
03:73:80:11:9a:a2:75:dd:30:64:7e:fe:33:06:85:
24:55:06:1c:42:2e:fc:0c:6e:aa:9f:16:27:36:f0:
75:e3:88:9e:a9:d0:82:a3:48:54:9c:80:ee:c7:20:
e8:db:b4:07:8c:99:7b:ca:ba:b9:81:b8:86:f6:33:
32:ea:90:0f:cc:5c:13:96:6d:0d:ae:58:e3:b0:df:
a1:34:85:21:15:0c:8d:8c:da:1f:65:d3:cf:9d:24:
3b:40:e4:62:f2:22:7a:9d:a9:12:b7:91:7d:eb:01:
12:be:8f:d6:17:a5:b5:ac:55:5b:f0:0d:8f:7f:df:
ee:fd:0f:0a:44:d3:16:2f:a4:a6:95:25:a8:10:f7:
79:22:2c:f3:a7:ae:a9:f6:d2:64:05:63:1b:2f:b0:
15:cf:c2:a3:c4:eb:04:80:58:06:8a:bd:2b:d6:77:
b6:72:06:f8:30:af:52:86:ee:37:20:5c:f2:eb:40:
3f:3b:7e:c3:d0:6e:99:f4:f7:dd:9a:2b:2f:68:8d:
7b:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:47:43:06:E0:2C:A7:98:A0:C4:12:91:C8:04:43:C3:E4:00:10:FC
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/IUdDBuAsp5igxBKRyARDw-QAEPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:88::/48
Signature Algorithm: sha256WithRSAEncryption
03:45:6b:d8:1a:4e:d0:e4:54:e0:80:1f:7e:e0:ae:76:28:9c:
b5:9f:5b:70:2e:47:3f:aa:e1:12:3e:64:6a:9c:7e:e8:6f:d8:
aa:97:92:4e:af:82:0c:73:62:cd:93:49:b4:fd:ba:1a:26:0b:
14:67:d3:fe:46:30:51:c4:a6:ad:67:e8:e1:2f:e8:b1:f0:38:
42:c4:f5:e9:f1:14:24:ee:a4:21:f6:59:c9:fc:ec:7c:4e:04:
61:04:d3:b4:40:6c:c9:f1:be:96:a6:65:8f:35:9d:62:bb:51:
34:65:ab:b5:db:76:d0:20:2b:b9:a6:02:ef:8f:d4:cf:63:6e:
de:85:d4:bb:e2:87:a9:d5:88:bd:03:23:f6:ad:7e:15:0b:b0:
8c:de:fc:73:bf:1c:a5:34:e2:54:a4:c0:7a:cc:98:1c:4b:51:
4e:4c:65:a4:8d:05:12:5f:6a:9d:69:b6:94:48:34:24:6b:f3:
56:29:83:67:4e:4f:49:46:23:17:59:1c:ea:3c:d1:c1:06:4a:
ae:0c:7d:5e:95:22:91:0c:81:37:5e:ac:9b:d3:31:8a:91:d8:
6c:df:d1:11:5b:42:07:38:3f:f7:b1:a8:d9:78:c9:8d:1e:77:
cb:1f:27:75:1a:91:6c:e3:f8:4d:e6:ad:7e:95:d2:cc:29:36:
ea:51:a1:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org