Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/VyVT7OVAW6ghPpqNGpmvWJcOLIY.roa
File: VyVT7OVAW6ghPpqNGpmvWJcOLIY.roa (raw, json)
Hash identifier: LP163Jl9uE0tFaKCp9N9SuV7VVV9y7GUBUQqZ8o9cdo=
Subject key identifier: 57:25:53:EC:E5:40:5B:A8:21:3E:9A:8D:1A:99:AF:58:97:0E:2C:86
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F06FC982BBD34C788C29F8AB8E4605
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/VyVT7OVAW6ghPpqNGpmvWJcOLIY.roa
Signing time: Wed 07 Feb 2024 05:00:34 +0000
ROA not before: Wed 07 Feb 2024 05:00:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198057
IP address blocks: 2a0f:b241:14::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:6f:c9:82:bb:d3:4c:78:8c:29:f8:ab:8e:46:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=572553ece5405ba8213e9a8d1a99af58970e2c86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:90:60:06:93:2f:34:82:a7:cb:6d:7f:74:0d:
be:30:20:ec:46:02:1d:bb:64:57:95:b2:b0:8b:52:
f2:2b:dd:4a:c2:37:5e:0f:3a:16:58:89:b2:3f:b2:
7a:d4:fc:5d:be:d5:cc:e8:67:cc:ab:45:b7:a4:52:
d8:bc:93:19:d4:22:17:e6:7d:0e:27:d6:bd:85:91:
71:09:30:e6:1f:dd:69:a7:60:4c:16:32:2a:51:e3:
12:17:c0:2b:10:d8:50:1a:7b:78:aa:5c:70:03:c5:
08:df:ad:77:70:c8:fc:bd:61:71:be:17:01:5b:69:
c3:f6:ec:09:46:91:d6:88:bc:99:7a:97:f0:d2:0e:
b8:74:9d:e5:25:74:3d:6d:54:a2:5b:78:5b:c1:33:
7d:34:e8:99:2f:fb:2b:60:73:87:f8:dc:54:27:63:
2f:2e:71:11:11:6c:cc:33:28:b4:21:49:e9:e5:0e:
1f:83:79:22:fe:1b:25:1f:fd:9a:12:d3:12:e8:6b:
93:68:e6:e2:83:b0:72:ef:08:b3:d7:d8:23:3a:ad:
75:08:4a:e1:c8:90:1f:64:7f:56:b1:5e:40:ee:6e:
c0:f3:b7:cd:04:d2:b8:35:e0:c7:95:d3:3c:2d:46:
d3:51:ab:5d:61:c8:1c:53:6d:2d:8e:27:ca:5d:bf:
a9:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:25:53:EC:E5:40:5B:A8:21:3E:9A:8D:1A:99:AF:58:97:0E:2C:86
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/VyVT7OVAW6ghPpqNGpmvWJcOLIY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:14::/48
Signature Algorithm: sha256WithRSAEncryption
53:7e:8a:b3:c9:25:d2:10:77:0a:ff:28:c5:92:89:07:77:89:
52:af:6d:14:c4:1d:96:8f:fd:8d:1c:af:e4:b3:cb:da:1d:64:
5b:f9:ab:ea:80:2d:c8:34:4a:96:c6:11:91:cf:a5:d8:a6:bf:
cd:c1:ae:b0:72:b5:9f:95:41:5d:00:9a:61:86:30:f0:e5:f9:
bf:d8:e3:7c:6f:74:cd:6a:96:f3:b9:43:57:b7:6f:1a:e9:2e:
8d:ff:65:fc:73:db:a1:2d:94:48:0a:1e:56:07:16:ad:89:13:
f3:c7:bd:59:c8:e5:fa:b0:58:06:d2:19:76:77:16:42:48:66:
59:4c:f6:5e:23:34:40:c8:3c:81:cb:65:df:0d:fc:58:37:b4:
2d:93:8c:a7:c7:1f:bd:ff:99:37:fa:24:e4:30:de:a7:ba:24:
0a:dd:1e:2c:9f:1e:1c:da:b6:78:18:46:be:d0:39:d0:e9:38:
59:fc:92:27:59:a6:52:e0:4d:e6:53:15:cd:40:f3:8d:07:7c:
2d:8f:ec:e3:a5:11:01:cc:78:e4:95:e1:86:f9:b8:83:27:e4:
fd:2d:88:95:25:93:64:c4:a8:68:f0:b1:6d:7e:ab:0f:82:e1:
d2:40:ac:31:6e:a4:e2:f8:c4:a2:dc:f5:f4:70:af:06:bd:5b:
3f:60:72:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:09 2024 by rpki-client on console-ams.rpki-client.org