Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/YFoxqQwMZN0acBJbFPqjbqs_iuU.roa
File: YFoxqQwMZN0acBJbFPqjbqs_iuU.roa (raw, json)
Hash identifier: cTEoaMJOZ5jxRPJm189KKR2hsQSAfVHn7Em1W2Am3/I=
Subject key identifier: 60:5A:31:A9:0C:0C:64:DD:1A:70:12:5B:14:FA:A3:6E:AB:3F:8A:E5
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB6B45D4F7EFA4662834805784EC666
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/YFoxqQwMZN0acBJbFPqjbqs_iuU.roa
Signing time: Tue 06 Feb 2024 18:38:16 +0000
ROA not before: Tue 06 Feb 2024 18:38:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199737
IP address blocks: 2a0f:b241:12f::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b6:b4:5d:4f:7e:fa:46:62:83:48:05:78:4e:c6:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:38:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=605a31a90c0c64dd1a70125b14faa36eab3f8ae5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e2:ad:0b:5f:9d:3e:09:e4:32:6f:93:dd:c7:
ef:ca:16:bd:c8:ee:52:87:fb:74:7b:cb:78:1b:97:
39:10:68:8e:e3:f1:41:72:ba:a2:8e:e3:06:87:28:
c4:84:0a:f1:2e:c8:d1:64:48:e1:5d:3d:08:a8:45:
a9:7d:4b:ee:61:d1:76:23:d9:4d:31:6e:40:ba:02:
ca:52:0c:a5:96:80:13:63:02:c5:73:3c:f8:1d:75:
5d:00:77:82:ab:e0:64:6f:2f:66:f9:28:f9:a5:bd:
0f:90:05:18:b1:bd:3c:69:c1:ca:95:09:1d:ea:a5:
c6:3f:83:33:4c:b5:c4:82:dd:f5:a3:2e:0e:b1:a9:
ae:ae:f4:38:7b:42:12:4d:57:fc:09:5e:d3:ff:32:
1a:90:9c:52:ff:a5:77:38:34:b1:05:61:16:de:10:
46:27:95:51:5b:9f:e7:2b:4a:0b:31:af:12:a6:a2:
16:ff:c3:ea:76:b0:26:a5:15:a0:8c:8c:9c:2b:41:
73:b0:a0:cc:09:3d:21:2c:00:53:ce:cc:92:40:e3:
c7:8a:97:97:11:a6:1a:2b:bb:1a:9d:79:db:93:07:
f2:f0:50:14:0e:a5:58:37:6b:1d:d9:47:3c:81:20:
89:32:1e:76:d2:99:0a:46:f0:c7:3d:d4:a4:65:2c:
a2:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:5A:31:A9:0C:0C:64:DD:1A:70:12:5B:14:FA:A3:6E:AB:3F:8A:E5
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/YFoxqQwMZN0acBJbFPqjbqs_iuU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:12f::/48
Signature Algorithm: sha256WithRSAEncryption
23:30:19:37:5f:1c:ea:36:14:c5:e6:6d:86:1b:6b:ba:d0:47:
6d:e5:74:d4:23:c8:0d:07:42:49:67:ca:c0:fe:12:5f:26:b9:
96:69:88:e4:5b:33:29:c1:6c:fe:f8:d7:24:ca:5d:a8:2b:09:
1f:6d:8f:c5:38:19:23:f6:f5:bc:4d:64:2b:b1:f3:92:3e:06:
ab:fe:af:eb:3f:d9:2d:40:6c:5e:2c:d8:fc:ec:d0:5e:00:8f:
ba:ad:0b:20:5e:e2:fd:9c:71:01:cd:1d:53:07:59:d5:b7:ee:
93:f5:05:48:37:21:53:d3:e4:fe:3c:a7:eb:96:fa:ff:a1:20:
c3:24:dd:f1:d9:32:b8:ae:de:ef:d7:8c:b9:b5:23:ba:84:b1:
45:99:a7:5f:7a:4c:21:a5:87:cc:8b:2c:86:a0:75:f1:11:17:
4d:db:ca:da:dd:e8:58:46:a3:38:bd:54:da:e2:5e:e1:a0:4b:
eb:73:1f:fc:e9:f7:f9:a4:41:58:a9:23:dc:b3:1e:aa:5c:3d:
b6:ed:80:42:20:32:31:2a:d6:6b:82:2d:07:73:89:15:7d:f1:
ff:e9:d6:c4:6b:bc:46:89:cf:31:ce:7d:a1:04:58:16:5e:cd:
11:e4:cc:13:bc:1d:6d:24:56:5e:af:3d:8b:fa:0d:0b:4c:04:
d8:21:87:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:09 2024 by rpki-client on console-ams.rpki-client.org