Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/UHW-_io07dKmOb6rPSs1iOkxze0.roa
File: UHW-_io07dKmOb6rPSs1iOkxze0.roa (raw, json)
Hash identifier: zwodNw/iM1LvXyeIr26f1I/6tBEYxHLuE1FqXa7dyYA=
Subject key identifier: 50:75:BE:FE:2A:34:ED:D2:A6:39:BE:AB:3D:2B:35:88:E9:31:CD:ED
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FABBBAD03DF964FFAA3EFE7AEFF2487
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/UHW-_io07dKmOb6rPSs1iOkxze0.roa
Signing time: Tue 06 Feb 2024 18:26:17 +0000
ROA not before: Tue 06 Feb 2024 18:26:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206919
IP address blocks: 2a0f:b241:f1::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ab:bb:ad:03:df:96:4f:fa:a3:ef:e7:ae:ff:24:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:26:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5075befe2a34edd2a639beab3d2b3588e931cded
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:01:7a:9a:c3:d3:e5:15:0d:01:33:f0:6f:29:
f1:2d:a7:6c:77:43:49:33:3e:19:92:4b:46:7e:30:
49:e4:60:f0:f4:03:98:2d:fd:5b:a1:ae:8a:57:98:
9b:ad:92:cc:78:7b:a3:aa:0b:1c:b2:1f:0d:ae:19:
9a:fd:b6:70:2e:ac:da:6c:d3:3c:1f:9b:de:89:c9:
59:0a:6c:66:99:d4:16:f8:90:09:7b:92:53:b1:87:
35:88:66:6a:2d:80:a6:c2:68:4d:d3:9e:eb:98:9f:
c4:72:ce:1c:90:73:ad:4b:67:39:f2:f7:08:35:04:
e5:8b:c0:7c:8e:2b:2a:b3:76:3a:b7:b5:b2:7e:c8:
d3:0d:9c:d5:58:9a:ad:3b:f1:98:66:aa:72:50:d1:
0d:58:d0:81:4f:55:79:60:c3:28:dd:c7:68:98:02:
35:cc:d6:e4:2a:e1:84:c8:a7:95:e8:8c:58:e0:f0:
ad:d1:76:bf:7a:29:81:bb:b8:ec:e8:fb:09:0e:50:
d3:cf:03:44:17:24:a4:fc:2c:e8:cf:2a:7f:ca:30:
99:31:9f:01:56:48:23:ab:a7:7a:b4:cf:08:f8:2a:
87:14:63:52:18:07:67:f6:f4:96:96:f1:c9:84:6e:
7c:73:7e:48:bc:3a:64:cf:22:d6:f9:85:50:c3:93:
94:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:75:BE:FE:2A:34:ED:D2:A6:39:BE:AB:3D:2B:35:88:E9:31:CD:ED
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/UHW-_io07dKmOb6rPSs1iOkxze0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:f1::/48
Signature Algorithm: sha256WithRSAEncryption
8a:30:14:e6:f5:9d:ce:d7:f1:34:f5:4b:13:70:76:30:1f:9b:
87:d7:b0:f3:c3:27:6f:2b:8d:90:7b:a1:b2:22:3e:69:2e:88:
31:53:3e:d4:77:92:40:0b:5e:d7:9a:37:bb:7c:2c:7d:f9:8c:
eb:14:b4:3d:eb:fc:06:23:97:a1:59:de:d5:df:07:eb:b8:57:
3c:44:55:cf:70:20:de:af:33:1d:f1:10:6a:93:70:b6:23:ce:
b1:b8:c7:ec:24:e2:54:71:7d:68:4e:84:93:70:88:c0:4a:7f:
3c:23:90:a5:0f:21:3a:4c:e4:8d:44:bf:0f:15:a9:fd:c6:84:
f0:88:f7:07:ea:85:69:76:7a:65:05:40:09:04:59:0e:9a:09:
d1:17:62:b9:88:87:49:23:89:66:7f:88:00:ed:2c:5f:91:b3:
8d:5a:11:5a:17:c7:ae:b8:db:a5:bd:0e:4c:fc:c9:64:db:b1:
23:81:7e:55:82:86:74:7f:a1:de:9c:ed:c2:84:18:b7:20:ab:
de:76:af:af:e1:82:d8:8c:04:a6:41:f2:20:0a:fb:f6:df:a6:
ad:e1:b1:30:3d:b8:55:81:42:2b:58:e0:a8:13:b5:23:9c:d3:
2c:a3:fa:1f:bb:b9:d8:d3:2b:cf:ef:0f:e3:ae:1b:da:86:2c:
c7:d1:d2:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org