Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/WZjtls3IFTYlkvKFAGho0FSo0xs.roa
File: WZjtls3IFTYlkvKFAGho0FSo0xs.roa (raw, json)
Hash identifier: Oif6iQfoDLAGBbVaCEyEdTU6caTbN4sOrsdjA3g9oBM=
Subject key identifier: 59:98:ED:96:CD:C8:15:36:25:92:F2:85:00:68:68:D0:54:A8:D3:1B
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F95C24553E2138A8853E7A104F5C0F8
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/WZjtls3IFTYlkvKFAGho0FSo0xs.roa
Signing time: Tue 06 Feb 2024 18:02:17 +0000
ROA not before: Tue 06 Feb 2024 18:02:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212056
IP address blocks: 2a0f:b241:4a::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:95:c2:45:53:e2:13:8a:88:53:e7:a1:04:f5:c0:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:02:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5998ed96cdc815362592f285006868d054a8d31b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:77:e0:07:27:2a:df:9a:fa:c6:91:d5:59:5d:
c1:50:c2:64:43:17:9c:9b:b9:15:35:6d:62:26:b7:
8f:22:3d:9e:b3:fa:fa:d3:0e:ab:2f:b6:76:ff:ef:
4a:07:65:30:66:7f:eb:20:3d:e3:2c:77:29:b6:c1:
70:a6:f8:34:5e:11:1c:86:31:8c:c9:fb:be:51:26:
0d:e3:83:c4:a1:21:e5:fc:ad:12:f8:a7:3a:16:81:
e7:49:90:d9:ef:22:fd:16:25:e8:f4:ed:56:81:19:
32:0d:6c:94:22:f2:8f:94:f3:07:c0:b3:e6:31:1a:
a0:4a:20:4a:9e:39:a5:dd:c9:be:95:ed:66:3e:c2:
c3:69:bb:cf:e8:03:03:b2:21:66:c1:54:5b:d6:43:
aa:65:8c:a0:6b:a7:7a:8d:d2:28:6a:ca:48:31:fb:
39:74:e0:52:a0:8e:e5:a4:4c:80:92:0a:a0:d8:be:
c8:66:ff:82:22:df:8a:f3:b1:65:0f:02:52:6d:26:
11:cb:43:df:d0:a8:71:de:37:37:2c:cb:12:9a:8c:
ae:5e:ce:bf:ea:b1:ac:a1:fb:5e:06:eb:2c:13:54:
8e:b5:0f:9d:e3:a8:09:7b:a5:4e:8f:a3:43:10:bf:
c9:47:7a:1e:ca:32:b6:de:b1:9b:0b:1b:9d:b3:7e:
1f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:98:ED:96:CD:C8:15:36:25:92:F2:85:00:68:68:D0:54:A8:D3:1B
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/WZjtls3IFTYlkvKFAGho0FSo0xs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:4a::/48
Signature Algorithm: sha256WithRSAEncryption
00:92:52:70:af:90:88:56:d8:75:a4:4d:08:33:1b:7e:82:6d:
9f:f6:09:08:04:e6:6f:f5:5c:68:c8:d5:8f:19:d9:92:f2:b1:
ec:b5:6b:f1:23:17:cf:df:ba:3e:a8:c8:32:2c:e8:12:66:84:
9a:89:93:06:d3:8a:4b:a0:06:e5:ab:20:fe:56:2d:f4:1c:38:
58:0d:25:37:a3:25:7b:a6:69:da:ee:cc:33:24:cb:2e:bc:dd:
36:10:b8:3c:8f:0d:d8:ef:83:4f:95:d9:40:b5:a6:9c:b9:cb:
ef:56:83:80:b4:af:e9:a6:91:35:f8:f4:0a:da:fa:f4:c4:35:
5f:fd:87:30:46:0c:aa:67:ea:e1:50:69:41:8b:4a:1e:57:4c:
f8:df:c8:b2:ce:47:b9:de:bb:7f:3e:bb:2c:04:98:99:74:a5:
e2:a7:65:94:f3:07:aa:8c:96:bb:87:a8:d2:cc:2f:5b:01:fc:
9c:ca:7a:af:71:63:d5:75:25:ac:5f:50:9b:69:e3:97:40:4b:
0a:a5:25:fb:bd:e6:c3:fb:e8:a7:c7:69:6c:5f:39:05:5e:f1:
8d:30:3f:22:2a:d9:b6:43:7e:5e:33:80:c0:65:28:fc:8e:78:
00:1e:29:75:8d:c3:05:4e:44:c1:b4:42:ab:ed:c4:c4:f8:28:
da:6b:46:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:09 2024 by rpki-client on console-ams.rpki-client.org