Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/LvB7IHTlw19xxPPPUVPcE53SGks.roa
File: LvB7IHTlw19xxPPPUVPcE53SGks.roa (raw, json)
Hash identifier: NxVXU0ugNJIAEMO5x0tX+9v++Gvj044KcJHzAjO9fuA=
Subject key identifier: 2E:F0:7B:20:74:E5:C3:5F:71:C4:F3:CF:51:53:DC:13:9D:D2:1A:4B
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0731142D0B2C8F96CC7CABD1785F2
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/LvB7IHTlw19xxPPPUVPcE53SGks.roa
Signing time: Wed 07 Feb 2024 05:00:35 +0000
ROA not before: Wed 07 Feb 2024 05:00:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198679
IP address blocks: 2a0f:b241:12c::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:73:11:42:d0:b2:c8:f9:6c:c7:ca:bd:17:85:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2ef07b2074e5c35f71c4f3cf5153dc139dd21a4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:ab:be:e8:c2:50:46:24:74:1e:41:33:34:1a:
ca:a4:79:3f:66:53:bc:8f:a9:b1:0f:ed:1d:1e:22:
3e:eb:79:52:a8:f3:5a:63:a8:7f:e1:80:45:b1:d1:
60:1f:14:49:23:82:ff:e6:05:87:30:36:10:84:ab:
d2:d1:4c:2c:6b:d4:63:9c:44:ae:3f:62:14:c3:42:
d1:25:63:ee:4e:d1:91:1e:45:f6:b0:f6:b1:97:7a:
3f:d4:db:c3:07:26:d7:d8:09:75:36:ae:05:81:37:
cc:c4:ca:f0:b3:71:c9:63:72:87:5d:ae:9e:1b:db:
cd:42:33:73:01:04:16:94:71:43:0a:00:c2:1e:c2:
30:b1:fa:96:84:12:db:b5:8c:e4:97:f7:6f:34:fa:
28:9d:91:05:e9:2e:a6:fc:74:9d:70:ed:f8:20:33:
e7:e1:d5:67:c3:4a:49:c0:09:4c:7e:24:7c:b2:c6:
af:06:d0:1c:e8:cc:76:34:14:c1:4f:92:db:27:b3:
64:7c:28:fb:10:0a:3d:d6:c5:23:7e:d0:89:ac:a1:
33:79:75:12:62:2d:19:9d:28:a1:55:d4:00:d9:19:
20:79:8c:0a:10:74:0e:3d:06:77:e7:dd:05:8f:1f:
97:a9:5b:be:ed:f5:e5:d9:d6:74:e8:c7:73:48:3b:
55:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:F0:7B:20:74:E5:C3:5F:71:C4:F3:CF:51:53:DC:13:9D:D2:1A:4B
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/LvB7IHTlw19xxPPPUVPcE53SGks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:12c::/48
Signature Algorithm: sha256WithRSAEncryption
3e:f6:ce:bd:51:ad:e6:8e:62:c5:b1:35:1a:8c:10:6a:b3:4a:
e3:31:c2:ac:1d:41:4b:55:6a:b8:49:0b:47:45:a0:65:71:34:
87:dd:35:b0:d8:8e:ef:d5:bc:b9:f2:08:79:15:fe:a8:ea:36:
10:d3:53:23:97:33:69:3f:92:f7:03:cc:9d:91:5b:07:90:78:
7a:88:66:5c:62:28:44:24:ce:10:db:5c:10:df:fc:9f:3b:6d:
f9:2c:c9:e6:f3:d5:6d:5a:5c:40:e3:9a:72:83:9e:76:3d:bb:
dd:31:5f:ce:65:38:07:ad:ea:ab:b1:16:9b:67:5a:12:10:77:
2e:51:0d:ee:33:87:ed:c1:51:1d:c7:32:bf:8d:38:99:33:4f:
8b:3a:53:07:9c:b1:33:f7:65:db:e2:68:07:e2:7a:c5:11:c1:
d5:80:8c:08:40:0e:77:53:3b:e4:60:20:f6:63:6b:cd:bc:e3:
59:dc:01:57:dc:f2:f0:62:ed:4e:4d:39:56:6d:02:90:a6:13:
c4:57:ba:00:66:9a:2e:67:b0:75:24:53:62:a3:5d:e1:9e:a0:
0a:a9:d9:42:4e:55:aa:40:ba:8b:77:a4:d2:3d:bb:bb:f6:57:
9f:0a:b7:3e:2b:b8:82:62:4f:30:a3:57:72:c4:4c:cd:8d:8d:
ff:a0:7a:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org