Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Rfcd8SfZ6CjKE5XQhCvYuKZwD_Y.roa
File: Rfcd8SfZ6CjKE5XQhCvYuKZwD_Y.roa (raw, json)
Hash identifier: BCYEdWHoh7AwjuHf/cTBB/y3/OC79o3bRJaekj1RAiQ=
Subject key identifier: 45:F7:1D:F1:27:D9:E8:28:CA:13:95:D0:84:2B:D8:B8:A6:70:0F:F6
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F05B63857A659F36A079BAF4DB16B0
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Rfcd8SfZ6CjKE5XQhCvYuKZwD_Y.roa
Signing time: Wed 07 Feb 2024 05:00:29 +0000
ROA not before: Wed 07 Feb 2024 05:00:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44422
IP address blocks: 2a0f:b241:2e::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:5b:63:85:7a:65:9f:36:a0:79:ba:f4:db:16:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=45f71df127d9e828ca1395d0842bd8b8a6700ff6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f8:d3:92:5c:7f:32:70:11:5c:56:a9:8e:a0:
70:69:cb:97:77:c3:05:10:8b:ff:3a:ee:c9:e0:c9:
81:80:a2:be:bd:b4:f4:7f:39:bc:b0:4b:91:6d:8e:
d3:e7:73:43:01:d3:89:6f:22:b7:b6:e5:c6:ec:be:
ba:27:e4:66:74:fe:51:99:03:6a:2e:03:7d:c3:1a:
41:65:c5:92:3f:3d:f3:61:40:1a:59:a4:76:80:1c:
fa:c7:9b:14:6e:e1:11:02:d2:59:6a:6e:77:29:36:
ba:04:3b:41:b1:6f:8a:56:a9:9d:34:78:5c:fa:d0:
64:51:7c:9a:cb:14:4f:53:56:9b:b3:92:84:c1:d6:
9e:89:46:40:4f:8c:af:ef:c1:fb:3f:d7:59:a7:d5:
8e:d3:13:aa:8d:9d:5a:f2:ff:5e:c5:4b:6c:f9:70:
24:85:85:e6:66:04:53:d8:a0:91:47:a2:c6:07:b5:
71:b7:16:70:a1:0c:bc:00:33:1b:dd:bf:a0:d4:7a:
65:c5:71:e9:8d:4b:10:a0:8c:bf:ee:51:1a:0d:a4:
6f:5b:3e:06:5a:35:00:fa:2c:8f:e3:26:3c:d8:68:
11:21:57:9a:d0:ce:97:c3:eb:d9:93:8c:d0:02:d2:
6d:eb:aa:75:0f:e4:a3:ca:29:51:3a:2a:7a:c9:d1:
f9:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:F7:1D:F1:27:D9:E8:28:CA:13:95:D0:84:2B:D8:B8:A6:70:0F:F6
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Rfcd8SfZ6CjKE5XQhCvYuKZwD_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:2e::/48
Signature Algorithm: sha256WithRSAEncryption
2b:f3:81:59:7c:83:cb:f5:af:fb:49:24:bd:b4:4f:ec:4b:1c:
b6:df:5d:b6:52:b3:c3:44:18:d0:65:1d:ec:0e:b4:cc:46:40:
9b:bd:de:18:90:0f:b2:28:1e:ae:d8:01:e6:4c:ae:42:0e:c4:
e3:a1:94:8c:81:25:38:44:7e:87:8a:2f:4a:65:09:e2:5c:34:
93:af:a6:4e:15:30:c1:83:21:ae:13:68:09:17:55:c3:ce:30:
55:fc:d2:7d:1e:4f:ee:da:d1:d7:6f:cf:ae:0d:2b:2d:c7:5e:
5a:7f:cf:f9:a8:8b:e5:48:21:eb:a6:6e:54:88:39:7e:58:62:
65:ff:9c:46:1b:76:d6:5e:7e:a4:34:94:61:26:bb:6f:ee:83:
92:3c:35:94:20:4a:2d:04:1e:bd:24:97:35:3f:02:7e:ec:59:
a7:f1:9f:d3:f5:dd:b9:40:81:db:07:93:50:68:ca:ee:38:a6:
6b:d6:51:3e:b9:ef:bb:4b:2a:40:b9:61:c5:8a:a9:92:94:a3:
59:2f:cb:49:a1:c1:f1:8f:f8:c4:7f:ba:d2:c3:d8:97:b7:4c:
4e:1d:ea:65:7d:55:5c:5b:d8:bd:23:f5:f6:07:81:48:49:10:
d7:d8:34:9c:4e:60:a1:8b:72:d5:cc:30:14:29:7c:a2:3e:5b:
40:d7:50:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:09 2024 by rpki-client on console-ams.rpki-client.org