Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/TZOXmJne44h8TuDECsLRGN_3ZgQ.roa
File: TZOXmJne44h8TuDECsLRGN_3ZgQ.roa (raw, json)
Hash identifier: eWMQfNJt7DjGdHETwjGnHpx5iPUU/7u8ug27OylNcLk=
Subject key identifier: 4D:93:97:98:99:DE:E3:88:7C:4E:E0:C4:0A:C2:D1:18:DF:F7:66:04
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA8FA5096CD5EC3389CDC6103726036
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/TZOXmJne44h8TuDECsLRGN_3ZgQ.roa
Signing time: Tue 06 Feb 2024 18:23:17 +0000
ROA not before: Tue 06 Feb 2024 18:23:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200256
IP address blocks: 2a0f:b241:a6::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a8:fa:50:96:cd:5e:c3:38:9c:dc:61:03:72:60:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:23:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4d93979899dee3887c4ee0c40ac2d118dff76604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:32:dc:84:fd:d9:be:95:5c:cb:b5:b4:11:bd:
5d:6e:ca:0e:4d:c6:09:9e:8a:f8:04:7e:15:c2:8c:
11:47:67:dd:54:e3:b6:67:09:e7:6e:95:e9:34:a6:
70:d1:1a:bf:28:2c:54:b1:6b:99:8c:34:dd:dd:cb:
c8:14:47:8e:6a:ad:76:d3:5c:26:81:f8:f0:9a:7e:
19:e6:27:a7:a9:b4:bb:f7:cf:a4:fc:b0:31:10:43:
d2:be:f7:a4:fc:13:33:df:21:36:e4:51:ed:fb:a0:
e9:29:ee:1e:cc:8b:40:35:02:2c:82:fc:1e:8c:ef:
2e:28:27:cf:a1:50:ea:0c:eb:86:0d:35:f1:ca:a9:
8f:59:3c:41:6d:32:27:6d:76:fa:26:d4:27:a2:ec:
10:9d:df:dc:43:3a:34:ee:f2:ee:47:f6:bb:38:7e:
79:42:91:1e:87:0d:fb:89:65:0a:ae:38:8f:11:05:
cc:be:fd:6f:8b:28:54:d2:69:49:96:19:8f:23:22:
12:8e:51:2a:03:c8:0f:0c:c3:ed:77:8f:ca:e1:9e:
4f:39:a9:2a:a4:e7:1f:e4:6f:cc:0e:98:ff:ce:17:
55:de:43:db:b5:14:82:3a:52:1b:ea:11:6a:bb:e9:
f8:06:c2:83:c4:d8:ee:6f:a6:22:37:a0:8b:42:b1:
43:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:93:97:98:99:DE:E3:88:7C:4E:E0:C4:0A:C2:D1:18:DF:F7:66:04
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/TZOXmJne44h8TuDECsLRGN_3ZgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:a6::/48
Signature Algorithm: sha256WithRSAEncryption
53:2a:50:44:34:c7:56:af:ac:fa:17:54:51:aa:e1:41:cf:f2:
b9:5b:42:28:e2:23:47:73:13:52:f7:cf:8b:78:19:a7:dc:e6:
25:79:c5:bc:f1:bf:7b:76:44:f9:9d:d8:82:ab:9e:19:f4:ca:
7a:63:ee:5f:af:29:a0:f5:7b:6d:d8:9f:51:55:cd:db:8e:38:
c3:75:e8:fd:04:c4:91:3b:46:e8:47:40:70:10:34:37:7a:d5:
3e:8d:2d:ef:bb:94:54:41:92:3f:e9:83:f9:b3:d1:e5:ec:aa:
eb:ae:bb:cc:bd:a6:4b:eb:ad:7f:ec:ad:5d:16:ac:65:53:2f:
e9:d5:b0:7e:9d:45:14:e6:cb:d6:ff:67:79:e9:66:d9:e2:a6:
27:e2:24:3f:20:4a:c1:ed:67:0c:3b:e7:5b:bd:8c:f5:f0:50:
eb:b8:49:50:2d:fa:07:7a:05:2f:57:da:90:11:e5:57:46:72:
bf:50:18:84:5d:76:b8:c8:60:ba:49:a7:1a:19:0c:ac:1a:8d:
ab:8f:75:45:3f:c3:91:fd:8c:7b:3b:4a:08:03:e7:c6:57:ce:
10:d1:be:ce:9d:fa:fe:13:80:eb:36:07:c8:20:26:9e:e2:2d:
c6:9a:ad:02:a4:ff:7e:56:e7:f4:e8:24:7d:1e:90:4e:27:13:
10:ee:c4:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:09 2024 by rpki-client on console-ams.rpki-client.org