Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/SZYNG8BwEe27vDzBQSPitshIxXA.roa
File: SZYNG8BwEe27vDzBQSPitshIxXA.roa (raw, json)
Hash identifier: eKniHpj6+QrmmVSEdbrBNZt/eLgdTOZ3XAH8IX7iiMk=
Subject key identifier: 49:96:0D:1B:C0:70:11:ED:BB:BC:3C:C1:41:23:E2:B6:C8:48:C5:70
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0993C422DE72FE7C1B6282E10A144
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/SZYNG8BwEe27vDzBQSPitshIxXA.roa
Signing time: Wed 07 Feb 2024 05:00:45 +0000
ROA not before: Wed 07 Feb 2024 05:00:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207609
IP address blocks: 2a0f:b241::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:99:3c:42:2d:e7:2f:e7:c1:b6:28:2e:10:a1:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=49960d1bc07011edbbbc3cc14123e2b6c848c570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:2e:2e:47:a3:1b:e4:84:d6:63:dd:ea:4d:ed:
5e:0b:95:2a:7a:8f:37:fc:1a:64:2f:9b:da:8a:f1:
d1:33:84:25:81:21:e8:52:83:67:97:ce:6d:da:c8:
a7:4d:94:c5:ee:f4:26:28:e8:2c:f5:70:e2:8c:47:
f7:68:bf:d9:de:bf:c1:bd:03:5b:6d:cb:6f:0d:26:
8e:2b:9f:9a:17:64:02:4c:9b:c0:9d:db:79:3d:ed:
65:05:d5:92:1e:ff:7e:2d:d3:4a:50:ec:0f:0a:d9:
aa:ad:93:e4:ae:3c:bf:c7:16:a0:4d:c0:8e:29:d1:
da:cf:0d:32:7d:1a:89:9f:87:68:44:d0:89:96:ed:
32:62:c2:6f:34:e2:72:b7:a1:64:fc:42:b1:c1:e7:
9d:da:03:dd:47:de:fd:60:f7:5d:33:7e:e9:6b:ee:
d1:96:66:f2:c6:32:2d:59:06:eb:7b:0c:99:c0:6e:
f6:5e:92:2c:77:ce:39:fa:61:8d:39:01:a3:37:3c:
17:ac:db:45:87:fd:26:6d:69:3e:68:d5:24:b2:46:
24:6c:74:e9:64:90:9f:25:72:61:cc:a2:47:35:62:
3c:e8:b1:8f:ed:e5:5a:36:df:3f:cc:48:92:12:cd:
ef:6a:03:90:a1:bd:fe:77:29:b7:2f:a1:bd:81:50:
6b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:96:0D:1B:C0:70:11:ED:BB:BC:3C:C1:41:23:E2:B6:C8:48:C5:70
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/SZYNG8BwEe27vDzBQSPitshIxXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241::/48
Signature Algorithm: sha256WithRSAEncryption
54:96:c4:fb:02:bc:22:b5:84:c0:8b:5a:1b:ff:8a:81:4b:b1:
d8:23:12:c5:68:7d:0e:79:e3:d1:6d:8c:d2:95:ab:5e:27:70:
12:04:7b:21:33:21:1a:2f:24:e1:e1:f1:af:29:a7:0f:07:99:
31:ad:f0:35:35:7d:1b:10:db:e9:cd:07:97:04:91:80:38:fb:
ac:c0:38:2b:cb:2e:ab:b4:2f:16:25:f7:54:69:4c:1c:60:b6:
5e:29:32:a5:50:d1:a9:f5:40:5d:69:83:3c:71:1f:07:94:37:
69:d7:af:f3:34:6a:6c:52:24:8d:10:3d:65:19:e6:06:5b:43:
2e:57:73:48:c3:b5:e5:bb:ce:67:ba:d8:05:d5:da:cc:2e:cb:
cb:94:66:16:4d:de:2a:b8:2d:2a:00:fe:44:47:25:94:a9:46:
90:87:c5:fd:db:c4:8e:2c:f5:e5:8a:45:fe:b9:27:29:2c:2f:
e7:32:9f:ac:86:70:f7:a8:f6:0b:d1:06:64:f7:7b:9b:10:26:
b7:5c:d0:bb:2a:ff:e0:7e:23:75:4f:2c:21:ab:b3:cb:f1:96:
c6:b1:3f:07:6f:0d:0c:ca:7d:52:f5:d1:18:9d:43:14:d0:2a:
42:04:ea:e3:20:04:29:01:0b:90:ce:47:44:e9:66:fd:c7:2e:
bd:29:88:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:09 2024 by rpki-client on console-ams.rpki-client.org