Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/SxkapZM4diPwbt9p4d19jpTSin0.roa
File: SxkapZM4diPwbt9p4d19jpTSin0.roa (raw, json)
Hash identifier: lTFa6DVBIJQPiDDziB/HOcFBLHaMtLkzuJaniORQW9Q=
Subject key identifier: 4B:19:1A:A5:93:38:76:23:F0:6E:DF:69:E1:DD:7D:8E:94:D2:8A:7D
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAE7E85BD5B971E8E1F70E4E36AA870
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/SxkapZM4diPwbt9p4d19jpTSin0.roa
Signing time: Tue 06 Feb 2024 18:29:18 +0000
ROA not before: Tue 06 Feb 2024 18:29:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60301
IP address blocks: 2a0f:b241:122::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ae:7e:85:bd:5b:97:1e:8e:1f:70:e4:e3:6a:a8:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:29:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4b191aa593387623f06edf69e1dd7d8e94d28a7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:c8:36:1b:75:15:30:07:d8:37:34:64:48:9a:
1c:a9:db:ec:43:30:56:1f:7f:0e:1d:72:f9:4b:84:
42:26:91:bd:80:99:d4:92:77:d2:8c:22:88:31:cb:
9d:58:41:9f:16:d9:ea:b2:d5:5c:5c:5f:cc:3f:0b:
83:95:cc:1a:25:08:66:6e:36:cb:2e:70:65:40:77:
01:7e:ee:e5:f6:7b:b7:e6:2b:54:f5:c0:bf:1b:7d:
db:ba:a3:fc:5e:9d:6d:f3:5b:40:dc:91:4a:87:ad:
8d:98:f7:76:7c:28:c3:2d:f5:96:b2:6f:9b:fb:81:
1e:a9:b2:30:05:3a:bc:65:78:0f:25:8b:b4:b5:a8:
0e:e3:04:98:63:e3:76:20:93:42:ac:83:c0:9f:4d:
76:65:e9:50:40:3c:81:a3:bc:a7:15:5f:43:3a:eb:
fe:e3:48:79:b9:46:d3:37:75:f6:b7:09:6d:0e:28:
70:60:5e:22:a0:e5:f4:14:66:a5:d5:e1:ce:2f:77:
44:46:9c:5e:67:c3:4a:44:c0:2f:70:86:97:86:0d:
52:46:34:75:3f:38:38:a5:87:13:c3:8f:b7:d7:e9:
b3:7a:89:a9:08:f6:ea:b4:c8:aa:76:80:f1:f5:4b:
7e:f9:b5:6f:7d:dd:0d:e2:89:fc:55:c0:4a:63:8a:
46:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:19:1A:A5:93:38:76:23:F0:6E:DF:69:E1:DD:7D:8E:94:D2:8A:7D
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/SxkapZM4diPwbt9p4d19jpTSin0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:122::/48
Signature Algorithm: sha256WithRSAEncryption
02:af:e7:be:13:85:69:4d:b8:22:9d:f6:da:9b:e4:e7:a6:c2:
91:87:11:99:66:75:ec:b5:10:97:ef:08:7a:14:95:d3:90:64:
4b:dd:bb:de:72:01:d3:11:c6:a7:78:1f:2a:7a:a4:ae:30:58:
10:b7:f6:1c:08:a2:f2:1e:5a:a7:b7:84:51:09:80:cc:fa:6a:
56:8a:68:07:43:40:54:c9:c7:31:18:03:4a:0c:e8:35:98:23:
52:64:3c:03:e1:ba:de:88:97:d5:94:4f:82:ea:bd:8e:bc:09:
f6:d2:b5:e5:a3:89:c5:32:41:48:61:df:63:ce:99:9a:ec:0a:
34:0e:36:db:ce:54:6b:63:70:51:54:d0:22:93:6a:01:01:44:
70:90:fe:86:3a:21:c9:96:a1:d2:01:a5:07:63:cf:27:97:3a:
d3:42:4e:df:94:be:f3:fc:7b:c2:77:34:0a:ff:3d:38:f5:f9:
42:04:48:fa:5f:8a:b9:f0:85:25:40:11:54:e3:8d:e8:08:df:
78:28:07:30:c8:06:8e:d5:7e:6e:bc:bb:d9:8a:2a:fa:2c:5d:
eb:25:bf:c8:54:56:31:67:b4:a8:87:49:62:24:cf:ed:4e:43:
6a:e8:66:2c:5e:4e:63:ee:5c:79:2a:9f:30:dc:4c:cd:1a:7e:
dc:62:51:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org