Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/InH9V4OYVM7PVukXjPM52ogv-a8.roa
File: InH9V4OYVM7PVukXjPM52ogv-a8.roa (raw, json)
Hash identifier: KII5afE+5zsPJrDbLnBJsO0biYG5VstIjPZfncCqvJk=
Subject key identifier: 22:71:FD:57:83:98:54:CE:CF:56:E9:17:8C:F3:39:DA:88:2F:F9:AF
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F08C8AA38175F502A31F01EDE61091
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/InH9V4OYVM7PVukXjPM52ogv-a8.roa
Signing time: Wed 07 Feb 2024 05:00:41 +0000
ROA not before: Wed 07 Feb 2024 05:00:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203142
IP address blocks: 2a0f:b241:36::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:8c:8a:a3:81:75:f5:02:a3:1f:01:ed:e6:10:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2271fd57839854cecf56e9178cf339da882ff9af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:04:0d:2f:af:2e:26:18:3a:18:42:8a:6c:84:
03:87:e9:b2:9f:92:62:a7:06:a7:db:64:c0:76:1b:
0b:25:6d:7b:ff:b8:84:91:c9:9c:81:1d:79:e0:47:
ba:e1:06:e7:3f:4e:4b:93:dd:d2:d5:8a:db:32:13:
f6:ba:6b:3c:91:59:bf:64:eb:34:18:fc:51:72:99:
28:30:a7:06:9a:6c:57:2e:62:11:73:e8:45:d1:69:
e2:38:82:64:56:3d:98:06:c2:a3:be:d3:09:7c:d3:
3d:aa:9c:89:df:4a:0a:53:fd:79:3e:3e:4b:f2:b8:
32:35:25:8f:8e:18:3d:a7:04:89:84:f5:ba:5c:4d:
1c:86:45:04:99:7b:1b:15:f6:53:dc:67:1e:04:b4:
0f:e3:9b:2d:d9:d9:ed:86:0e:23:11:57:7d:99:3e:
0e:b1:05:6b:09:4f:df:4a:ea:e4:b8:e9:3b:b0:0f:
90:38:35:bc:81:4d:bf:a7:95:65:98:26:4b:b3:f1:
8c:58:76:19:23:48:70:f2:f9:18:cb:4c:b2:17:b3:
9d:f1:01:37:df:04:91:e8:d4:96:45:58:33:4c:d5:
18:7b:1f:f2:a8:0b:2b:60:75:42:db:4c:e5:33:11:
8b:3a:e8:4f:18:65:4a:ca:8a:63:62:e0:f7:97:c9:
d5:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:71:FD:57:83:98:54:CE:CF:56:E9:17:8C:F3:39:DA:88:2F:F9:AF
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/InH9V4OYVM7PVukXjPM52ogv-a8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:36::/48
Signature Algorithm: sha256WithRSAEncryption
66:85:a6:95:65:d7:7e:ec:07:c8:24:e4:9b:7f:01:1f:10:86:
18:af:23:84:39:79:cd:33:b3:7c:7a:f9:16:7b:74:aa:93:16:
d6:c4:90:9a:1c:f0:8c:a1:e4:48:69:e8:c8:db:42:68:21:70:
27:fe:8d:ac:ca:6c:ef:32:c0:ce:01:2a:f0:e0:14:22:b1:3d:
f3:ee:a8:ca:9e:a9:c5:7f:0d:64:74:d8:f8:40:70:00:91:66:
e2:c5:2c:60:7b:20:86:c1:96:f5:4b:a3:86:9a:ba:e4:83:ed:
a7:53:90:7b:54:51:38:0e:9a:c3:fa:5d:32:19:22:d0:48:32:
53:d7:ce:5d:c3:08:3b:3a:d2:40:8f:96:45:66:6d:87:4e:46:
44:61:4a:8b:97:28:14:5b:68:b9:80:a7:55:53:0b:99:4b:85:
e8:3e:24:01:b9:22:b3:c2:f6:b1:e1:94:55:e6:7c:b9:3a:3f:
6a:e0:45:d4:80:3d:44:ad:0b:9c:e5:8e:b9:cd:4d:c4:a4:16:
20:ae:4a:6b:ff:8f:85:8a:af:67:5b:35:5a:dd:ae:6c:c9:18:
de:60:78:7c:ec:80:2f:b4:da:4a:f2:18:30:44:a5:00:18:8e:
07:7d:9c:c1:82:32:e4:75:a6:d8:34:70:f5:13:ff:3a:38:1c:
04:60:49:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org