Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/QdhIZ9nVhZwdI3MhSmKqd5FWeu4.roa
File: QdhIZ9nVhZwdI3MhSmKqd5FWeu4.roa (raw, json)
Hash identifier: xpUGgmpiZgzPgvv+EEOKJZIKY+dEtcYxbgtIvFSDbdQ=
Subject key identifier: 41:D8:48:67:D9:D5:85:9C:1D:23:73:21:4A:62:AA:77:91:56:7A:EE
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FACA60FBC994961FE7928DD8BE742AC
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/QdhIZ9nVhZwdI3MhSmKqd5FWeu4.roa
Signing time: Tue 06 Feb 2024 18:27:17 +0000
ROA not before: Tue 06 Feb 2024 18:27:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211576
IP address blocks: 2a0f:b241:fd::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ac:a6:0f:bc:99:49:61:fe:79:28:dd:8b:e7:42:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:27:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=41d84867d9d5859c1d2373214a62aa7791567aee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:a1:4e:01:5a:64:63:e5:f6:6f:5d:60:23:c6:
d1:c3:34:98:f6:3c:f3:61:17:85:39:67:fc:79:79:
bf:b8:22:5b:4a:23:9c:13:15:1f:f7:19:80:1e:1c:
dd:c3:49:92:9f:12:0e:02:45:cb:5b:c8:56:e1:cb:
67:57:6b:41:f9:0f:4c:0d:a9:e2:36:88:52:41:b4:
38:19:82:2f:69:43:62:cd:33:2f:b9:08:b5:80:f0:
ac:ea:d7:0b:2a:11:13:57:d7:a5:4f:f9:c6:e2:9a:
b8:d4:c6:81:62:84:c6:10:a2:40:33:83:6c:55:d6:
54:0d:71:49:7d:81:25:f0:a0:be:97:1a:b5:00:29:
18:cf:bf:56:cf:20:c2:38:61:7c:4e:29:0f:3b:7f:
5b:53:8e:84:53:7a:4f:08:d0:d1:c3:43:c1:44:a4:
49:0b:a5:33:8e:d1:20:84:b6:eb:85:c5:b2:c5:aa:
8f:d3:94:d6:31:16:74:86:21:3c:07:32:7c:1b:a6:
3e:f0:5b:25:25:be:72:85:5a:c7:4c:58:1f:f1:94:
7b:a3:8a:be:6a:06:7f:e3:84:45:26:5f:84:2d:c8:
35:a4:5a:61:8b:a6:38:13:7a:a1:1f:15:4b:94:72:
7b:12:81:8a:c2:8d:09:84:50:93:4f:e3:c6:87:c5:
8b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:D8:48:67:D9:D5:85:9C:1D:23:73:21:4A:62:AA:77:91:56:7A:EE
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/QdhIZ9nVhZwdI3MhSmKqd5FWeu4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:fd::/48
Signature Algorithm: sha256WithRSAEncryption
29:e7:25:2b:44:96:4e:f5:d3:17:b9:0e:59:c9:6b:fd:a5:14:
b3:61:8f:3b:11:29:e6:fa:1c:8f:07:07:ca:5b:01:d6:bf:d5:
88:0e:c6:8b:06:4c:fa:83:c5:5f:b5:d1:e6:45:4c:16:b6:73:
7e:a3:14:e7:be:09:5b:ae:ae:b3:95:80:e2:2f:8e:df:c5:cd:
85:0a:ff:67:dc:fd:b2:e5:79:9b:04:ca:f9:95:92:19:29:ff:
c6:d5:a8:76:a3:fe:01:58:c0:0b:cc:bd:c9:55:a8:d0:b5:83:
8b:34:8d:01:14:f2:5f:0c:e4:9e:5d:8d:ac:35:18:b9:82:67:
27:d5:73:71:01:39:ca:e5:49:ba:71:c6:58:89:78:95:b9:cc:
9c:7d:e9:4d:a3:4c:ef:5b:ad:d6:b8:00:a0:d5:29:e9:d4:bb:
a1:43:fe:6d:da:54:d9:92:c2:a5:fa:d3:54:70:4b:e2:6d:0a:
76:46:18:b0:1d:95:65:87:df:2c:4d:d4:24:86:7d:b7:c4:ea:
02:97:e5:27:20:f3:1a:9a:20:7f:37:07:ca:25:ed:af:c0:40:
78:a1:98:e6:dc:e7:bb:9b:c1:7a:4b:ab:d0:41:e1:ca:b4:eb:
22:51:e9:c7:12:dd:fc:56:be:e3:60:4b:5c:28:ff:4f:f7:55:
a0:79:0a:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:09 2024 by rpki-client on console-ams.rpki-client.org