Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/WfHg3OaDYqGlKuR5ltHXBwW_DX8.roa
File: WfHg3OaDYqGlKuR5ltHXBwW_DX8.roa (raw, json)
Hash identifier: DLEYashKxG2gUpo6VOx/qtVE+90/Bbkeq0NaukqkjkM=
Subject key identifier: 59:F1:E0:DC:E6:83:62:A1:A5:2A:E4:79:96:D1:D7:07:05:BF:0D:7F
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FACA80364864CE3859D1A53976EDD2B
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/WfHg3OaDYqGlKuR5ltHXBwW_DX8.roa
Signing time: Tue 06 Feb 2024 18:27:18 +0000
ROA not before: Tue 06 Feb 2024 18:27:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212178
IP address blocks: 2a0f:b241:ff::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ac:a8:03:64:86:4c:e3:85:9d:1a:53:97:6e:dd:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:27:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=59f1e0dce68362a1a52ae47996d1d70705bf0d7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:c4:9b:69:35:a5:b9:a3:2c:11:69:98:8f:ea:
83:04:38:65:e6:1a:75:86:49:2d:63:00:b0:03:53:
7a:92:64:a8:43:a9:52:bb:db:8d:35:14:96:cb:0c:
12:6b:88:74:4b:eb:a8:26:da:73:d3:b6:bc:fc:3e:
c0:bb:fb:f6:31:00:bf:b9:97:37:2c:d4:07:ff:c3:
e9:66:cc:e8:c2:f2:3d:0e:a8:cb:1a:bc:65:b1:fd:
b3:8d:c6:8b:d1:01:ca:59:0f:5b:a0:de:c3:0b:d5:
10:e9:a2:ae:75:29:09:ef:bb:9b:c0:ff:89:83:6f:
96:5c:73:6f:a1:65:f1:27:29:12:93:a5:b8:cc:51:
42:c6:be:be:fb:67:05:81:3f:1b:11:dd:fa:c8:e6:
f5:52:79:09:4a:2c:70:14:5c:fd:25:eb:b5:b2:9b:
1a:ab:48:67:1b:93:11:87:ca:f3:73:db:20:77:b1:
4a:15:f8:6a:11:a8:c1:90:2d:d5:87:df:00:5a:04:
d7:8b:8f:62:03:63:0c:0e:94:6d:22:63:de:87:50:
ae:23:3e:7a:9a:2a:d2:f4:67:b6:85:c0:ca:a3:d1:
c9:fd:4a:eb:23:7c:e9:6d:91:3f:da:e2:3d:a0:9b:
48:60:46:94:85:88:e4:e6:75:49:1f:4d:f0:5c:9d:
e3:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:F1:E0:DC:E6:83:62:A1:A5:2A:E4:79:96:D1:D7:07:05:BF:0D:7F
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/WfHg3OaDYqGlKuR5ltHXBwW_DX8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:ff::/48
Signature Algorithm: sha256WithRSAEncryption
84:d2:e3:5c:12:07:2f:22:32:75:14:b4:8e:80:b9:1e:bc:99:
17:63:a5:d2:bc:54:51:9e:d6:9b:d2:08:0c:59:7b:3e:87:45:
1e:c0:a4:ce:a0:bb:73:fd:e9:6b:b3:40:08:7d:df:a8:d4:58:
58:b4:1d:28:80:78:ce:a4:ac:13:32:de:1a:a5:50:50:3d:60:
c0:8d:2d:c3:32:74:9d:ee:50:f4:32:cf:61:66:a6:48:01:14:
db:1e:c4:35:56:12:21:5d:0a:50:b6:27:a0:68:5e:0f:ee:b2:
ae:3c:6f:c3:04:ab:bc:c6:a6:8a:17:d8:17:6a:bc:4c:7a:84:
3e:7f:31:c5:71:fc:21:c4:d9:8a:01:83:9e:ce:07:21:c0:2f:
52:3d:7c:b7:47:d9:6c:6a:be:d3:83:f5:9e:63:5a:17:ae:49:
94:ac:86:69:cf:10:fc:d5:68:a4:a9:b6:f7:1d:f8:64:0c:53:
14:32:97:6b:48:ca:08:36:76:46:5c:54:25:96:53:d2:f2:4b:
49:47:94:7f:ee:d8:db:95:64:ff:d6:30:04:c4:6e:ea:a4:4b:
f9:d8:f0:7c:98:b5:7f:94:bb:55:90:2c:31:f4:f7:9d:36:4f:
68:cc:c9:01:09:33:15:43:84:83:53:0b:5d:cf:3c:9c:9a:5c:
5e:c3:74:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org