Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/KSCWBUqPXreOJ7d3Bkm-ZTIZLSQ.roa
File: KSCWBUqPXreOJ7d3Bkm-ZTIZLSQ.roa (raw, json)
Hash identifier: 8y+/vW2tp2e2RFMb5OCt/b4Qu3E1/DuUgTvc9sZjdAU=
Subject key identifier: 29:20:96:05:4A:8F:5E:B7:8E:27:B7:77:06:49:BE:65:32:19:2D:24
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB8921C3EF07F98C268CD68C07C4FE8
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/KSCWBUqPXreOJ7d3Bkm-ZTIZLSQ.roa
Signing time: Tue 06 Feb 2024 18:40:18 +0000
ROA not before: Tue 06 Feb 2024 18:40:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216339
IP address blocks: 2a0f:b241:156::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b8:92:1c:3e:f0:7f:98:c2:68:cd:68:c0:7c:4f:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:40:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=292096054a8f5eb78e27b7770649be6532192d24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:6d:79:a7:a4:c1:9f:cc:60:9b:1a:b4:23:be:
41:86:7d:45:c0:0c:13:88:ba:b5:b5:8e:ca:91:45:
27:e4:2d:b6:29:07:59:68:9a:88:b4:c1:b7:4e:f9:
61:9d:20:9c:9c:5f:48:29:0c:9a:96:12:cf:da:cb:
43:58:bd:ef:2e:07:ed:0c:a3:e0:1b:5f:2f:fa:fe:
1f:4c:1b:c2:4b:e0:2d:fa:4f:ac:57:2e:3d:14:96:
5f:73:d9:19:85:3e:3f:f7:56:f8:3e:9c:6d:c7:fb:
96:11:c1:8a:14:2c:20:29:93:4c:eb:84:ff:4d:79:
87:eb:e2:d7:71:c2:ae:f1:5b:89:41:6a:72:ea:e3:
3c:1e:36:26:19:d6:60:b1:c5:a7:25:4e:5f:ac:b5:
c9:aa:8a:22:67:d7:ec:a9:e0:4e:7f:3a:f7:77:80:
41:b2:81:0b:f2:d4:51:54:e2:e4:95:50:ce:16:1c:
f7:8a:f3:6b:56:64:2c:42:37:50:f3:d9:f7:0a:89:
ff:03:e2:59:88:55:4d:fd:12:a3:81:b9:24:e1:34:
f6:b6:6a:f7:ef:c3:c0:51:e7:6f:c7:7d:36:93:6c:
a1:45:e3:12:dc:34:19:c2:6f:ba:3b:32:f7:05:6d:
db:43:b4:51:2e:f7:9d:a9:e9:2e:62:f8:57:05:9d:
0b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:20:96:05:4A:8F:5E:B7:8E:27:B7:77:06:49:BE:65:32:19:2D:24
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/KSCWBUqPXreOJ7d3Bkm-ZTIZLSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:156::/48
Signature Algorithm: sha256WithRSAEncryption
49:9e:68:36:27:fb:af:19:62:03:ed:ea:df:70:0a:d2:27:9f:
d0:54:4f:bf:05:b0:4d:f5:be:ee:9c:74:6a:8c:50:69:34:e1:
a2:02:84:12:c5:a6:f1:89:bd:a2:51:2d:c1:c8:a2:47:47:2c:
09:9f:a3:cd:c2:01:3d:3d:95:d0:13:a2:fb:af:50:12:d6:64:
37:13:03:74:73:83:ea:d1:61:e7:11:3a:76:44:ea:e6:6d:98:
b7:fd:71:41:78:7f:cc:fd:04:fc:6d:ac:01:08:08:95:b1:6c:
4c:06:df:f3:78:71:1c:09:bd:79:40:5a:f9:0d:f6:4d:0f:90:
30:b4:30:8f:d9:7d:10:e5:7a:5b:d4:01:3b:7e:55:2a:4f:db:
61:b8:04:80:a1:04:79:33:8b:96:49:70:09:65:eb:9b:37:cc:
93:8d:1d:91:3d:92:92:46:75:9c:3b:b2:24:1c:95:4f:ca:37:
47:14:12:19:9e:15:44:c3:92:f3:35:03:2c:1f:3e:b9:c0:71:
56:8d:07:71:78:9b:ff:2c:4b:48:47:9a:f5:ab:54:97:5d:1d:
e2:c3:a6:9a:fe:e0:dd:52:3a:88:98:f5:b0:00:4b:6c:c8:be:
c0:73:64:c7:83:e1:e7:31:05:c4:49:e8:37:ff:21:c1:3d:8d:
98:bf:cd:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org