Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/WfeCvUGS8uOk4jaw5Gr-P8N5NMo.roa
File: WfeCvUGS8uOk4jaw5Gr-P8N5NMo.roa (raw, json)
Hash identifier: hueh9S0FpowKuKSMGkcquPzUQHIVWrE6UkmCWk/mZkU=
Subject key identifier: 59:F7:82:BD:41:92:F2:E3:A4:E2:36:B0:E4:6A:FE:3F:C3:79:34:CA
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0C4081E2A6599AF24A1E22AFE431E
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/WfeCvUGS8uOk4jaw5Gr-P8N5NMo.roa
Signing time: Wed 07 Feb 2024 05:00:56 +0000
ROA not before: Wed 07 Feb 2024 05:00:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216454
IP address blocks: 2a0f:b241:10f::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:c4:08:1e:2a:65:99:af:24:a1:e2:2a:fe:43:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=59f782bd4192f2e3a4e236b0e46afe3fc37934ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:13:48:d9:c0:14:5d:97:c7:1b:60:f5:6c:83:
f1:f1:93:e8:b4:f0:40:34:86:ac:0f:bc:28:12:41:
ac:c4:57:1a:73:93:1f:ea:a7:74:31:fa:b9:8f:20:
dd:02:4a:d5:08:47:c9:40:ef:d8:72:2f:bd:b9:81:
51:e2:9b:39:1c:7f:12:02:f2:6a:d4:09:1e:c1:28:
c7:ba:43:1b:7d:29:a9:7a:0b:ec:32:32:9b:98:5a:
07:28:84:40:13:98:3e:bf:da:ff:96:55:9b:46:b0:
29:9f:d3:c9:2a:05:42:78:07:9c:53:fa:7e:5c:de:
05:60:9e:ea:fa:9a:4b:bf:d0:e4:90:33:1b:dd:78:
96:bd:83:6c:60:b1:ec:c2:a7:9d:13:5e:e8:03:fe:
94:2c:72:47:02:73:ef:39:0b:d0:f6:da:35:9b:15:
40:52:a5:9b:b7:f6:7f:20:9e:34:2f:94:df:db:07:
c8:45:34:4c:44:36:45:5e:dd:ba:3f:9e:d5:d6:8b:
18:0d:83:c9:51:18:c4:da:25:61:a9:f0:70:d1:19:
57:ec:cc:f6:b7:34:41:82:ac:7a:e8:7d:b5:6a:f8:
03:7d:14:48:2d:ee:61:2e:fb:fa:07:d0:79:b1:23:
d3:66:d9:a5:20:bf:62:c8:a1:1c:2f:ac:0e:0f:1a:
74:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:F7:82:BD:41:92:F2:E3:A4:E2:36:B0:E4:6A:FE:3F:C3:79:34:CA
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/WfeCvUGS8uOk4jaw5Gr-P8N5NMo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:10f::/48
Signature Algorithm: sha256WithRSAEncryption
4a:60:33:ab:fe:01:58:3c:56:a5:b2:ee:d2:0b:6b:93:99:ed:
48:dc:e2:54:c8:db:d9:b2:aa:ce:86:87:2c:db:85:44:25:61:
90:77:0f:85:77:01:7c:1d:bb:5a:83:46:e6:d1:62:ec:20:67:
ed:ba:bc:92:41:67:96:a9:24:a7:d1:f3:9c:04:1b:ba:0d:0c:
b7:ec:19:55:74:e9:cd:b9:6f:41:b4:c8:cc:84:65:3c:8a:d5:
58:f1:99:21:18:cb:f4:21:c6:bf:8e:0a:29:66:48:44:37:4a:
7a:c8:d8:b0:72:28:b3:75:8c:04:13:5a:b1:7e:dd:92:bf:01:
4d:12:df:dd:6d:f7:11:00:3f:19:1a:ac:c8:4f:3e:15:35:35:
f5:af:bb:e4:e3:33:94:0d:88:34:8b:6c:b1:1f:cc:ab:e0:0f:
86:8a:f8:7b:6a:74:dd:c3:37:7d:1f:cb:e9:ba:5d:7d:65:75:
f5:77:1c:36:db:9e:ad:93:0d:78:da:b6:c6:61:4b:30:9c:2d:
32:97:0d:a8:8e:40:e8:58:c1:8f:f2:34:bd:d6:6e:d6:1c:4e:
5b:1a:03:4c:de:26:f3:2e:81:62:c4:7b:02:bd:55:f6:6b:87:
ec:7b:13:ac:9f:0e:5d:a7:4a:0b:93:9b:6f:25:7e:fd:45:17:
a3:48:a3:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org