Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/XC_cfJtVtVGW0UTKsRTIfPI5J9A.roa
File: XC_cfJtVtVGW0UTKsRTIfPI5J9A.roa (raw, json)
Hash identifier: PGH5QM0rf8ddfTb9Nt21d4eu4VkhwevxDa6vTMkYOHE=
Subject key identifier: 5C:2F:DC:7C:9B:55:B5:51:96:D1:44:CA:B1:14:C8:7C:F2:39:27:D0
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F08EA1268A0761249D9D6B81AA62E2
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/XC_cfJtVtVGW0UTKsRTIfPI5J9A.roa
Signing time: Wed 07 Feb 2024 05:00:42 +0000
ROA not before: Wed 07 Feb 2024 05:00:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203888
IP address blocks: 2a0f:b241:e9::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:8e:a1:26:8a:07:61:24:9d:9d:6b:81:aa:62:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5c2fdc7c9b55b55196d144cab114c87cf23927d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8d:1c:31:79:f5:e2:de:f9:76:7c:99:8b:87:
e8:42:5c:6c:ec:73:d0:65:13:75:ee:b8:a3:35:3b:
8e:a7:b9:e7:9b:d8:eb:f5:2b:d1:94:44:9e:7c:ce:
57:ac:4c:b6:06:9f:08:36:12:3f:5f:91:76:c9:aa:
69:49:65:3e:5c:6f:19:28:ae:a8:19:9f:4b:83:da:
28:e8:53:de:b5:4c:02:3b:03:d5:a1:ad:57:bb:1f:
f8:16:99:c3:44:39:ac:e1:f2:7e:5c:b8:a2:1a:da:
af:26:70:b8:d8:00:9b:88:57:c1:82:97:ce:b2:f9:
d0:1c:41:e3:af:12:b6:2f:66:e4:bd:39:64:cc:f3:
8c:a6:b1:8e:3c:d9:26:6e:c0:fa:02:b4:ee:98:34:
cc:88:7c:ba:2a:e0:f5:dd:6c:44:bb:10:48:b9:b3:
c4:b5:5a:53:dd:fe:3d:9d:94:9e:a9:05:f7:ce:42:
53:6b:e2:99:dc:5b:c9:07:5a:96:ff:61:d4:8d:15:
90:c4:9c:0b:cb:37:8c:eb:6d:07:6f:dc:00:31:ee:
e8:a0:71:d6:29:92:cf:84:39:bd:a3:1a:86:7c:b9:
ed:3d:0a:eb:a2:cf:cf:97:30:de:e1:ad:a3:fe:1c:
17:dc:21:f7:b9:c8:88:d7:2e:df:9f:52:14:09:6f:
0f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:2F:DC:7C:9B:55:B5:51:96:D1:44:CA:B1:14:C8:7C:F2:39:27:D0
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/XC_cfJtVtVGW0UTKsRTIfPI5J9A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:e9::/48
Signature Algorithm: sha256WithRSAEncryption
30:c0:96:98:26:66:e1:c4:45:82:2a:88:1c:dd:0c:33:be:fe:
a5:4c:f3:e4:55:1c:3c:fb:fa:a3:fc:a4:97:d6:c6:f8:76:8c:
59:0f:08:77:0c:c2:7c:0a:83:6f:59:47:fa:a9:06:50:c8:3d:
e2:c1:6d:eb:d9:5d:db:8e:1a:75:00:9b:e4:aa:8e:e6:20:53:
5e:3e:11:58:d1:6c:30:c5:62:e7:e7:49:06:d7:3b:3a:c5:54:
dd:e3:44:30:1c:aa:38:1a:79:1c:71:4f:e3:a7:8d:8a:1c:ce:
c6:99:b7:a5:10:1e:88:47:93:c9:06:ef:fd:a2:62:7e:a9:ba:
0c:f7:51:0a:fe:2b:22:10:61:83:d8:39:48:e5:9b:63:20:fe:
b4:42:5f:cb:93:2d:65:a7:20:84:fe:0d:72:e4:1c:1d:4d:b0:
8f:50:6e:ee:d0:66:eb:f9:90:87:39:3c:e4:65:97:e8:05:4b:
8e:e5:82:68:9d:2c:5c:20:8b:80:a7:97:32:95:e7:41:8a:8d:
69:b7:d3:69:f1:f5:14:2e:3c:c3:d3:01:4b:1c:c7:03:aa:8c:
c2:72:fb:8e:01:b2:08:07:33:e0:4c:55:0b:e0:70:7a:58:39:
6b:97:0e:0e:42:7b:a4:5c:43:37:70:f1:96:45:fa:aa:83:cc:
29:61:f3:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org