Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/McQDHFiN8XU8BRSgMvx0OGb0jYU.roa
File: McQDHFiN8XU8BRSgMvx0OGb0jYU.roa (raw, json)
Hash identifier: sybcqI9uaXOiGZ8BLhMZVIw0gSy5wIvYBz5b9WrCoHE=
Subject key identifier: 31:C4:03:1C:58:8D:F1:75:3C:05:14:A0:32:FC:74:38:66:F4:8D:85
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA9E6CCE73B769324354A410478AB8A
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/McQDHFiN8XU8BRSgMvx0OGb0jYU.roa
Signing time: Tue 06 Feb 2024 18:24:17 +0000
ROA not before: Tue 06 Feb 2024 18:24:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200850
IP address blocks: 2a0f:b241:d5::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a9:e6:cc:e7:3b:76:93:24:35:4a:41:04:78:ab:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:24:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=31c4031c588df1753c0514a032fc743866f48d85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:13:88:58:69:f2:63:3e:c7:8d:5b:7f:f6:10:
f7:d9:69:a0:d5:1c:c7:25:10:df:5a:08:3b:45:a4:
fb:1f:36:e3:9a:49:ba:2e:c3:07:8c:23:e2:ee:7f:
74:1f:21:41:19:95:4e:6e:d8:82:7d:b6:17:71:25:
10:6f:9c:61:48:c8:23:d8:5d:ab:50:f5:5a:33:e4:
2d:62:a0:2d:b5:7b:ab:b1:15:b4:cf:bd:84:70:97:
82:8b:0f:55:31:7e:19:50:6c:b9:28:ce:38:84:a6:
fe:1d:ca:c7:b9:05:b4:ef:31:0d:04:da:da:19:be:
22:f4:b8:9d:6f:2d:49:a9:5f:ad:b1:f5:91:ec:b8:
f1:71:45:40:f4:73:5c:f5:74:46:a8:19:2d:ff:24:
68:26:5e:df:e7:72:c1:bf:54:97:a7:2f:00:13:2d:
ce:c3:da:97:85:7e:84:d1:69:46:3d:86:cf:d8:9e:
5a:71:a8:ce:fa:fc:2f:9b:6e:aa:f6:14:81:48:4e:
0e:48:58:da:f2:67:89:74:ea:e4:91:a9:bd:0a:23:
05:50:89:3c:c3:5e:d9:b5:cd:99:e2:8d:23:63:99:
92:e9:d9:7b:06:f4:6d:7e:cc:72:87:ae:62:57:ee:
8e:93:aa:0d:00:9b:d3:a4:b0:33:ed:98:d8:90:2a:
79:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:C4:03:1C:58:8D:F1:75:3C:05:14:A0:32:FC:74:38:66:F4:8D:85
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/McQDHFiN8XU8BRSgMvx0OGb0jYU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:d5::/48
Signature Algorithm: sha256WithRSAEncryption
4a:80:cf:02:ff:c0:b7:0f:c9:49:57:cb:c2:d3:34:66:3d:85:
3c:d3:fc:69:58:d6:c1:0f:e5:6e:e5:c6:20:c4:21:a6:21:6a:
43:84:b9:3f:da:7b:22:a3:3a:bd:7e:72:a5:76:5a:2e:57:54:
50:90:98:db:d7:d6:1c:3e:bf:91:a2:7b:9b:c4:38:50:7a:b4:
fd:09:6c:60:4a:e0:b0:49:ae:51:41:ad:37:a7:68:1f:2c:28:
21:25:b0:44:4e:9e:c1:98:fe:35:dd:96:f4:37:ff:8b:61:23:
2a:11:83:cd:14:d7:3b:e8:d1:75:ca:46:76:ef:b2:c5:b4:8e:
32:f8:14:45:ad:04:72:48:44:a8:33:1f:c6:d9:30:b1:72:42:
72:10:27:79:e2:f7:e2:62:3c:9f:80:78:e5:40:22:cd:ca:c0:
cc:9d:1d:b1:6a:fa:99:be:58:5b:e7:e4:a8:c6:b6:ec:8b:8f:
1a:a2:03:b5:b8:29:c9:38:12:c0:04:59:6e:3b:3e:0a:df:75:
22:ee:19:fe:3e:42:78:5a:f5:c3:46:f6:e6:87:a5:73:c8:31:
63:30:39:18:e5:fd:ef:99:52:10:01:4f:20:43:ef:89:da:f3:
55:09:4f:b2:3b:30:82:b8:27:dd:59:e5:fb:2d:30:43:ef:9e:
a9:47:d8:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org