Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/UbWT5QPoyjVfMciTRFQZM2lnRto.roa
File: UbWT5QPoyjVfMciTRFQZM2lnRto.roa (raw, json)
Hash identifier: h+jhyucDtfet5aa22MqaIST41fc5ZLJeiUyRWtk3h4Y=
Subject key identifier: 51:B5:93:E5:03:E8:CA:35:5F:31:C8:93:44:54:19:33:69:67:46:DA
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F949ACC38F8994EA996E40766625F9D
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/UbWT5QPoyjVfMciTRFQZM2lnRto.roa
Signing time: Tue 06 Feb 2024 18:01:01 +0000
ROA not before: Tue 06 Feb 2024 18:01:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207764
IP address blocks: 2a0f:b241:3d::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:94:9a:cc:38:f8:99:4e:a9:96:e4:07:66:62:5f:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:01:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=51b593e503e8ca355f31c89344541933696746da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:54:e3:4d:1c:c5:22:71:77:7c:c2:ef:a2:2f:
a5:ba:a4:ca:7b:78:62:47:4b:f4:51:45:6c:b5:fe:
e6:f3:ac:a0:01:fa:7f:7b:6b:b1:43:02:92:f3:11:
89:cf:aa:b5:a8:80:5c:80:ba:dd:a4:11:3a:e0:0c:
53:fb:a4:e4:fd:17:e7:2e:4f:84:64:ed:41:75:7d:
ec:5c:e6:19:cc:d9:5d:2c:86:5d:e9:97:ec:b3:e2:
3f:25:2b:0d:32:a1:2e:9a:6c:43:f5:c2:2f:dd:09:
e3:e8:35:cf:6f:cf:ca:59:5e:c2:f2:60:32:31:81:
9a:24:35:ae:99:f4:d0:41:04:b5:73:cc:9e:1b:d3:
51:b0:f6:eb:aa:18:39:fd:b6:38:cc:ac:fa:66:20:
cd:7f:a8:cb:fb:2b:79:78:ed:6c:6f:db:be:01:b9:
c2:f6:53:46:c0:ea:5c:c0:23:87:d2:90:06:98:6e:
5b:35:f7:ad:d3:5d:45:a0:02:d3:42:4e:c1:66:04:
09:5d:51:6b:18:9e:55:7a:45:fd:f1:b4:03:71:22:
48:a8:2c:b8:51:de:64:e6:47:95:54:e3:2a:5e:ea:
de:0e:e9:96:4e:d2:29:2d:a4:17:41:c9:9f:cc:59:
cd:70:52:ea:08:7d:3c:4a:b2:af:c8:5b:ac:52:db:
de:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:B5:93:E5:03:E8:CA:35:5F:31:C8:93:44:54:19:33:69:67:46:DA
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/UbWT5QPoyjVfMciTRFQZM2lnRto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:3d::/48
Signature Algorithm: sha256WithRSAEncryption
5c:c0:03:de:57:b4:8c:53:79:e0:d6:9e:75:c9:5a:11:e1:d8:
db:b0:04:62:84:b3:da:03:cc:d2:ac:c6:cc:47:02:6e:30:34:
0f:7a:f2:49:af:c2:fc:6d:2a:9f:c7:0a:37:1a:ba:11:13:2a:
fc:27:9b:fb:24:e8:b2:e9:5a:2f:4c:04:cb:df:b6:40:61:aa:
c4:18:06:74:b1:3e:9a:8b:51:a8:b4:54:8c:5c:ed:ee:2b:30:
ee:70:00:7e:5f:99:ee:b4:40:94:6b:9b:60:09:b9:94:4f:f2:
47:7b:09:74:b5:11:15:8e:78:0a:ca:e3:9b:31:08:7b:2a:23:
1b:e2:a4:b5:54:e7:6d:fe:b1:d2:6a:68:92:1f:89:9e:18:ea:
80:da:d9:d2:fb:65:64:cc:75:ac:c4:99:4e:24:c5:3d:45:24:
45:58:32:50:e3:91:50:db:f6:3a:92:c0:3c:15:11:15:0e:c5:
11:50:bd:87:da:48:fb:28:72:56:63:31:08:b2:fe:3d:f3:ca:
57:ad:7e:12:b9:d0:7a:43:6b:c6:10:e5:2e:21:3b:22:96:cd:
3d:93:a3:70:28:4a:4a:97:19:6b:fc:52:72:a1:6b:0f:8b:4b:
64:3c:b2:ce:9e:94:88:bd:1d:de:43:d0:d4:66:35:23:a6:32:
61:53:86:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org