Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Uwd-gYFjfUV4G8tL_G1zQLNAGkY.roa
File: Uwd-gYFjfUV4G8tL_G1zQLNAGkY.roa (raw, json)
Hash identifier: aAk2R43wuSikEe64mT7LB3UDxE01Jq9t0l9wwndaYf4=
Subject key identifier: 53:07:7E:81:81:63:7D:45:78:1B:CB:4B:FC:6D:73:40:B3:40:1A:46
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F8D85B02BD269B8A25D1439A5C328D6
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Uwd-gYFjfUV4G8tL_G1zQLNAGkY.roa
Signing time: Tue 06 Feb 2024 17:53:17 +0000
ROA not before: Tue 06 Feb 2024 17:53:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216013
IP address blocks: 2a0f:b241:28::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:8d:85:b0:2b:d2:69:b8:a2:5d:14:39:a5:c3:28:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 17:53:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=53077e8181637d45781bcb4bfc6d7340b3401a46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:0b:e7:41:c2:1c:4a:2d:32:ec:cb:34:d0:b6:
8c:da:8f:83:02:d3:4c:fe:f5:3e:c0:43:a5:04:27:
bf:e5:ca:c8:ef:79:92:00:37:d6:01:2d:ab:a7:c2:
ed:5b:c0:af:c8:80:b5:84:88:1b:4f:a8:97:92:2a:
ab:e9:21:d0:e7:03:1d:cb:40:2d:26:8e:48:57:5d:
1c:c7:cf:43:4e:9b:e0:e7:5f:43:be:b0:fc:9e:81:
69:85:14:e7:68:4d:af:77:d0:27:92:1a:9b:02:2c:
4f:d6:6d:ba:c2:bd:33:88:a7:92:8d:1e:92:84:61:
e0:83:fc:20:81:e7:75:c1:9e:49:21:fc:ad:0a:a0:
78:57:96:9c:e8:f3:ef:bf:50:fe:dd:bb:27:a5:96:
33:89:21:1b:c0:8b:2b:43:87:ad:0f:9d:29:de:93:
e0:ee:f1:ca:e7:11:28:b0:a8:2c:b3:96:60:4e:7d:
bb:3d:b6:4b:ed:9c:ea:e8:4b:93:39:bf:7f:0d:e5:
9b:7d:05:05:e8:7e:0c:4f:19:a7:20:6b:5b:7f:07:
60:6b:d4:ab:6d:dc:7c:3f:52:c9:bd:85:a4:e7:37:
60:a8:db:21:30:21:50:6c:1f:1f:4e:e4:18:bd:0c:
7d:5e:e8:f7:c5:64:a8:3f:a1:08:1d:2c:23:79:71:
38:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:07:7E:81:81:63:7D:45:78:1B:CB:4B:FC:6D:73:40:B3:40:1A:46
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Uwd-gYFjfUV4G8tL_G1zQLNAGkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:28::/48
Signature Algorithm: sha256WithRSAEncryption
66:71:1d:75:18:15:34:00:0a:05:06:87:67:5f:1c:22:2c:fa:
ea:13:f0:0a:bc:23:81:99:f7:30:17:88:a1:2b:4f:9b:0b:c0:
6f:72:bc:a0:80:35:ad:21:f6:84:ef:4e:82:e3:2b:14:1a:0a:
3c:73:6b:12:5c:86:01:73:81:9f:c8:80:75:71:73:17:e3:71:
ec:0e:5e:a0:86:c4:2f:4c:61:e6:ec:b2:c2:c3:a6:09:ef:f4:
d6:7a:40:0f:9a:95:e0:a0:2c:87:df:21:f2:0d:3e:93:a3:d8:
fb:51:d0:96:cd:73:41:a8:bb:63:c9:ae:ee:48:ea:a6:a5:20:
7d:ca:cf:51:a4:c0:d6:65:11:c7:4b:cc:1d:aa:86:6b:8a:c2:
b7:d1:74:58:e1:e8:eb:48:a7:ee:8b:cc:29:27:ec:22:da:87:
e3:9b:88:86:7d:b9:06:42:67:04:e7:29:97:6a:46:73:81:cb:
6c:cc:6c:f6:f3:79:2d:79:6e:10:5e:f6:5b:f0:b3:a3:f6:dc:
c5:45:ca:aa:21:cb:07:a3:be:ca:55:eb:7c:10:06:d9:ec:b1:
2f:5d:3a:54:ba:bc:1e:47:d0:c1:d3:23:7c:12:23:83:0c:aa:
99:06:90:8c:75:4a:8e:1c:c1:de:b5:54:8f:2b:fe:64:93:5a:
46:9c:59:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org