Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/RGY3AeAZkvMIXJViN6OhSWlTx1U.roa
File: RGY3AeAZkvMIXJViN6OhSWlTx1U.roa (raw, json)
Hash identifier: +m1E5u4T67PBNwazgWJfIBfUvHbWj1mFW255Wc74qPA=
Subject key identifier: 44:66:37:01:E0:19:92:F3:08:5C:95:62:37:A3:A1:49:69:53:C7:55
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAD8E22A43568A83A37ACB8D0C0809E
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/RGY3AeAZkvMIXJViN6OhSWlTx1U.roa
Signing time: Tue 06 Feb 2024 18:28:16 +0000
ROA not before: Tue 06 Feb 2024 18:28:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215971
IP address blocks: 2a0f:b241:105::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ad:8e:22:a4:35:68:a8:3a:37:ac:b8:d0:c0:80:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:28:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=44663701e01992f3085c956237a3a1496953c755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:46:b3:99:93:13:75:fa:f4:1e:9d:d6:44:3d:
e5:be:1b:03:a0:c0:67:f8:7a:3d:02:7b:b8:37:52:
da:d3:2b:22:3b:41:fb:ad:1f:ff:55:42:8c:2e:22:
f2:7c:5c:76:bd:1c:4b:3f:ce:f6:27:10:f1:5d:78:
72:12:0a:2b:a2:07:64:17:a8:59:11:5e:33:35:39:
33:1c:80:42:bc:ce:38:16:c3:d7:5c:4a:a4:31:68:
0e:63:83:4d:8d:2f:18:56:81:2f:7a:cf:64:7c:b3:
4e:8e:37:48:de:9c:9b:d6:70:fe:59:da:2b:39:fb:
3e:ca:ac:ca:4c:5a:ef:19:3f:38:a6:18:16:f1:d2:
94:b8:20:33:86:c9:4d:e6:ff:09:62:14:de:ec:1f:
07:0e:49:5c:a3:5c:3d:04:92:a2:9d:6f:2f:bf:66:
1f:8c:07:ac:d7:39:f5:4a:c8:ba:b9:61:e1:c8:d6:
ae:a9:be:cb:95:6f:d1:15:16:df:35:18:ab:81:46:
3b:45:35:fa:69:59:4c:c4:fc:f6:d7:8c:b6:aa:d5:
a8:45:e9:1d:67:67:a8:a0:7e:7b:a2:61:d5:e7:02:
c2:ab:4b:83:5c:56:04:06:fd:c8:a6:d0:dc:ff:dd:
ac:8c:fb:85:ec:a4:a0:1d:8d:24:89:da:fc:ac:59:
c4:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:66:37:01:E0:19:92:F3:08:5C:95:62:37:A3:A1:49:69:53:C7:55
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/RGY3AeAZkvMIXJViN6OhSWlTx1U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:105::/48
Signature Algorithm: sha256WithRSAEncryption
72:55:ff:25:79:20:f6:a9:31:18:3a:6d:90:9b:f8:29:4f:7d:
a4:6e:55:de:90:3b:36:23:9e:27:d7:f7:54:91:ca:f8:3d:ac:
43:c4:ee:7d:b5:fc:b3:ff:d2:7e:c4:dc:a0:cd:25:22:cf:29:
db:7a:76:fe:fc:db:46:2f:3f:91:9c:3c:c2:0e:69:dd:db:ec:
e6:09:3b:45:98:45:41:cf:d7:f0:2c:74:ae:7b:f8:58:ae:28:
dd:1a:18:10:a2:04:9b:8e:37:c5:df:ef:f8:53:e0:62:43:88:
48:df:9b:6c:e4:d8:c8:c4:6c:e1:32:d2:30:c5:1d:fc:78:45:
54:32:84:56:80:c3:bf:14:26:ed:48:03:96:a1:e1:ca:db:0d:
37:ec:ee:eb:ed:f9:9c:56:c5:c4:6c:a6:88:93:e2:0a:8d:eb:
e4:e2:58:7e:3e:b0:7c:cb:35:7c:3b:52:07:fe:7d:c9:50:43:
fe:3d:46:a5:9e:0c:35:1b:74:4b:32:ad:f7:22:39:ce:6c:a1:
24:f2:94:3b:bc:b1:b6:49:bd:6b:63:82:82:16:3c:f1:78:34:
3e:0f:91:80:22:83:93:a1:3e:e5:d3:d2:32:c2:2d:2d:e5:9f:
3e:e6:2d:7c:b2:df:07:e0:46:7a:a0:51:dd:6d:92:0a:cf:98:
36:a8:3d:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:09 2024 by rpki-client on console-ams.rpki-client.org