Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/PtdzXIPPmYBCiLYuO2ujRiz9Dvs.roa
File: PtdzXIPPmYBCiLYuO2ujRiz9Dvs.roa (raw, json)
Hash identifier: 42rDa0t6wKu61HM1vBpGd0Xev0PqitFbqqqIURubxN4=
Subject key identifier: 3E:D7:73:5C:83:CF:99:80:42:88:B6:2E:3B:6B:A3:46:2C:FD:0E:FB
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA81351751AA18D89DF4DCF6D37469D
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/PtdzXIPPmYBCiLYuO2ujRiz9Dvs.roa
Signing time: Tue 06 Feb 2024 18:22:17 +0000
ROA not before: Tue 06 Feb 2024 18:22:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200172
IP address blocks: 2a0f:b241:95::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a8:13:51:75:1a:a1:8d:89:df:4d:cf:6d:37:46:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:22:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3ed7735c83cf99804288b62e3b6ba3462cfd0efb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f7:c2:dc:e2:34:f2:6b:f1:28:fb:14:ae:14:
ec:1e:1c:91:7e:4d:df:d6:74:dc:3b:99:f9:91:cf:
cf:b8:ef:12:96:d5:69:fa:0a:e9:c7:98:23:c5:59:
22:9c:3e:32:92:94:f0:81:d7:bb:5c:b9:68:fa:96:
55:11:2a:b2:83:d9:dd:b2:85:e1:c5:53:05:22:c8:
57:43:9c:41:37:95:1c:1a:63:0b:ee:ad:6e:48:3d:
fc:62:11:07:4b:97:70:3d:15:f1:18:80:c7:65:ea:
10:8e:f0:6f:3a:9e:34:02:96:0d:16:43:b4:ef:11:
b9:97:08:9b:53:96:22:d8:73:45:4c:ae:49:15:12:
95:3c:eb:ae:a1:88:5c:ca:b4:64:bb:43:49:6b:f1:
c1:bd:f0:17:51:ad:4e:c0:27:33:96:0c:fa:2e:2f:
fb:65:f6:19:34:ac:5d:1b:3b:a0:9b:bd:11:17:b8:
8a:4e:04:82:52:84:54:9a:fb:ff:a8:51:ee:34:ee:
ad:86:ff:1c:e0:4f:6f:a3:e4:91:d9:2a:98:f9:75:
5f:64:c3:b9:63:a6:1b:80:58:52:c1:fc:18:5e:09:
2f:c4:86:63:cc:c6:08:63:c9:33:c8:23:2a:48:5c:
56:5e:3c:6f:25:78:38:59:f2:ff:13:b9:ad:ad:df:
1d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:D7:73:5C:83:CF:99:80:42:88:B6:2E:3B:6B:A3:46:2C:FD:0E:FB
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/PtdzXIPPmYBCiLYuO2ujRiz9Dvs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:95::/48
Signature Algorithm: sha256WithRSAEncryption
01:ce:c5:80:a4:b7:aa:19:6d:68:97:b5:af:16:52:79:c4:2f:
d0:c4:0e:b6:e5:53:a6:20:62:82:87:74:75:04:00:83:66:27:
fa:c4:03:3a:4e:df:1a:e6:fb:8f:17:27:1b:d7:bf:00:21:dc:
8b:58:bc:c3:83:a0:e1:ff:5a:67:93:b6:d0:60:89:63:c4:68:
01:e0:8b:84:a7:cd:90:13:6a:7b:26:3c:29:64:bf:42:d8:e5:
ff:b3:7b:d4:bc:6e:fa:b4:c6:30:3c:9a:bb:1b:00:87:b8:8d:
cc:c5:3f:f6:3d:08:e3:c5:50:e6:a4:b1:50:09:89:ca:b0:6d:
0a:bf:2b:78:b8:de:b4:62:33:24:58:25:22:94:c2:7f:b9:de:
94:84:cd:f8:0c:93:f9:8e:82:8e:2a:2f:2a:f3:9c:e8:34:5e:
25:88:91:b9:79:62:bb:7e:8d:76:ca:57:ea:51:14:6a:c3:5b:
87:33:a2:f1:57:88:cb:b1:c0:a0:9a:c9:64:0e:f7:4a:49:ba:
30:c7:76:c0:ce:84:ee:59:e7:2a:44:2b:23:cf:fb:00:4f:ac:
05:af:84:f4:b7:b6:2b:c1:1c:05:9e:4e:83:ad:ac:50:3b:e1:
40:6f:b3:73:00:48:5b:35:d5:4b:fe:4f:31:ce:7c:06:9e:4e:
b4:18:ce:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org