Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/RQQ0c7PJ-k0dhMyqg7ypyKXBeSQ.roa
File: RQQ0c7PJ-k0dhMyqg7ypyKXBeSQ.roa (raw, json)
Hash identifier: fAq8vcDBtTWojTfXXFOE/fzh6uLUwM54c/4niABriBE=
Subject key identifier: 45:04:34:73:B3:C9:FA:4D:1D:84:CC:AA:83:BC:A9:C8:A5:C1:79:24
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FBEF0749D8E6330F50CB438C21D940E
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/RQQ0c7PJ-k0dhMyqg7ypyKXBeSQ.roa
Signing time: Tue 06 Feb 2024 18:47:16 +0000
ROA not before: Tue 06 Feb 2024 18:47:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208548
IP address blocks: 2a0f:b241:161::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:be:f0:74:9d:8e:63:30:f5:0c:b4:38:c2:1d:94:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:47:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=45043473b3c9fa4d1d84ccaa83bca9c8a5c17924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:2c:e4:4d:f6:5a:81:46:02:44:90:fd:ab:a7:
8f:99:58:af:f3:d1:b2:d6:a1:07:68:9b:7c:ee:a8:
4f:60:c7:7e:a3:a3:1f:a3:f8:8f:d4:a8:6f:85:51:
e1:7f:ee:13:91:cc:b3:ce:fb:c4:44:a8:e1:0a:c7:
c3:97:15:b3:3e:4a:22:82:7d:9a:98:01:f0:79:64:
a6:f7:8d:a8:a8:2a:8d:0d:9e:00:26:d4:06:a1:b4:
b6:b5:4a:38:c9:52:dd:08:4c:5d:2d:33:d1:3b:16:
16:91:b0:e8:98:4c:94:fe:57:58:dd:59:5e:8b:c9:
03:34:76:a4:22:f8:98:8e:21:5a:e9:2f:96:b4:70:
b2:78:16:7c:09:3f:66:1e:e4:2e:52:35:5a:d2:2a:
f1:93:fc:1d:82:4b:20:6d:60:ce:b7:37:11:d9:80:
ed:1d:5c:33:76:67:5a:29:9c:fd:1e:f5:d2:93:06:
f6:5f:31:4b:c9:24:13:ac:3e:83:d6:ea:4c:4d:4e:
90:9f:6a:c4:42:44:1d:fa:a0:ed:c2:a4:0d:fb:93:
f1:4b:fe:14:60:b8:96:ee:d3:0f:24:b4:f8:9d:ad:
66:b8:29:37:71:74:c2:73:50:05:0b:dd:b4:aa:a1:
32:ae:1d:e7:a0:df:76:22:35:53:b6:3f:b1:7e:2f:
4c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:04:34:73:B3:C9:FA:4D:1D:84:CC:AA:83:BC:A9:C8:A5:C1:79:24
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/RQQ0c7PJ-k0dhMyqg7ypyKXBeSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:161::/48
Signature Algorithm: sha256WithRSAEncryption
54:2c:f0:11:e2:34:34:9d:dc:12:1f:b6:35:e8:18:67:8b:35:
88:34:2f:04:ae:a0:d9:4d:76:36:6c:64:05:ac:8f:67:bf:27:
7c:67:39:1b:9b:2d:fb:01:02:b9:f3:f1:f5:d4:37:fd:c5:47:
79:42:9f:90:53:45:96:ab:bb:4f:ee:3e:57:50:ea:81:bb:cd:
c3:7c:54:41:62:e7:b7:37:84:9a:7c:34:a0:a3:50:eb:80:b4:
c7:b6:11:f7:ed:6e:35:23:67:1f:43:fe:c4:cb:b9:f9:1a:12:
77:b6:16:81:a1:00:ed:b5:0e:4b:c1:12:8b:d2:d1:94:9a:cf:
81:58:88:c8:d5:9e:4e:ec:b8:07:e7:72:ff:63:6b:d8:7f:e6:
d1:84:dd:57:cb:12:33:d4:4d:0a:3b:ef:13:23:af:9f:5a:ad:
bb:3d:f0:62:54:79:af:c3:9a:ab:62:8b:5d:36:27:e0:fd:97:
7d:0a:5e:1b:e8:b3:9a:6a:1f:60:04:ec:cb:4f:0c:6b:4a:cc:
05:63:ee:3b:f1:4e:be:f9:2e:f9:ed:45:04:a5:be:e0:6e:fb:
99:9d:a1:8c:20:c7:1a:04:4f:21:c7:cf:43:a7:02:6d:a1:8e:
b3:34:d2:9b:c5:26:99:4f:8b:0c:93:de:5b:f0:25:ba:a9:e1:
5b:92:56:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:09 2024 by rpki-client on console-ams.rpki-client.org