Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/WcXNaGe2xRNEf6TYo5lsDyWYkrk.roa
File: WcXNaGe2xRNEf6TYo5lsDyWYkrk.roa (raw, json)
Hash identifier: fSkafCF86ke8yAREP8LniG2YuJFnop3da4xXrtfa6Ic=
Subject key identifier: 59:C5:CD:68:67:B6:C5:13:44:7F:A4:D8:A3:99:6C:0F:25:98:92:B9
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAD953380112B27A574FC0268CA465D
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/WcXNaGe2xRNEf6TYo5lsDyWYkrk.roa
Signing time: Tue 06 Feb 2024 18:28:18 +0000
ROA not before: Tue 06 Feb 2024 18:28:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216454
IP address blocks: 2a0f:b241:10f::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ad:95:33:80:11:2b:27:a5:74:fc:02:68:ca:46:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:28:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=59c5cd6867b6c513447fa4d8a3996c0f259892b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:07:d1:6c:03:96:3e:a1:6b:5c:06:ef:e5:e1:
9e:11:a3:e5:9f:95:a4:03:5d:27:d2:92:35:b4:de:
28:0b:f7:76:2e:97:0b:6f:98:91:b3:07:b0:59:98:
4f:8c:bc:9e:8d:eb:fb:de:34:90:f3:d9:2f:ed:ac:
2c:a9:16:3c:b7:b6:82:68:c0:47:f2:4e:2d:4f:1a:
52:1d:e7:7f:4a:2a:6e:cf:1f:62:1b:fb:ec:07:f8:
03:a5:07:b9:4f:44:b9:73:99:da:0f:51:c1:d9:15:
6a:ff:f9:be:63:97:09:dc:db:e3:af:ad:ea:95:87:
8b:62:0a:96:fb:74:1e:c2:65:ae:57:0a:d8:55:dd:
16:7b:a5:a8:55:60:7d:ba:97:2f:e9:b8:7b:56:43:
a0:f7:dd:6d:c5:c2:d8:94:f2:ae:7a:0d:ef:3a:f5:
28:7e:91:f7:92:3e:e7:5c:5a:d5:07:07:76:33:79:
27:15:78:fe:2e:63:30:ac:27:8e:10:73:35:a4:b3:
fe:86:27:6a:a9:9f:f6:c5:a7:be:a5:55:c7:a2:65:
e4:91:b9:de:a3:28:ff:0b:35:9c:43:9f:76:d0:33:
2a:58:49:d3:0b:c3:29:69:00:8b:ff:46:a8:40:b0:
48:b8:51:b5:f9:ae:6b:14:37:cf:72:d7:76:a3:35:
7a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:C5:CD:68:67:B6:C5:13:44:7F:A4:D8:A3:99:6C:0F:25:98:92:B9
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/WcXNaGe2xRNEf6TYo5lsDyWYkrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:10f::/48
Signature Algorithm: sha256WithRSAEncryption
80:55:20:f2:0f:03:fc:00:67:0c:73:a8:0d:c1:83:5e:58:45:
e4:2d:0a:cf:f8:7b:9b:b1:eb:93:c0:11:e9:f9:88:d9:c0:58:
ec:3c:59:05:05:0b:f3:74:65:ad:88:0f:83:13:1b:74:ba:0e:
dc:67:a7:57:3a:50:77:33:6d:af:a1:32:bf:90:78:57:90:45:
7e:5e:4d:b9:7d:48:5c:23:e3:b3:ad:39:3d:bd:ec:14:6d:ba:
ba:ac:4c:1e:bf:2a:aa:6b:32:31:13:21:3e:ce:ff:b8:8f:a3:
56:7f:8b:6c:8d:d6:db:b0:36:e0:37:9f:db:a8:90:ba:64:c6:
b7:ec:9c:27:72:5c:5f:77:bd:4f:b6:ee:19:90:f7:4d:1f:c9:
c1:55:fa:ac:4e:4b:f3:04:73:b6:6c:e1:b1:d0:02:5c:2c:0f:
08:68:b0:cf:b6:56:a8:77:6b:f1:cd:65:f6:15:ad:fd:df:26:
46:0d:c8:70:a9:1e:68:4f:b8:ce:d8:32:e5:7b:a8:86:17:9e:
d3:90:e7:3b:d1:e1:5d:b8:99:53:41:9f:09:96:d3:19:06:32:
d7:28:7f:7a:a7:80:6d:ba:34:fb:94:14:a1:ad:bb:69:a2:66:
a1:60:a3:a6:fa:ed:f6:81:4c:fc:82:3e:bf:71:95:7a:c3:ec:
f4:3e:14:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org