Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/YrNfEayhtYAZWtqm9TMPBI9pqCc.roa
File: YrNfEayhtYAZWtqm9TMPBI9pqCc.roa (raw, json)
Hash identifier: yRqcng67sSXFa2TMiEuSv6VoB54TAlUELJFCMixw+ak=
Subject key identifier: 62:B3:5F:11:AC:A1:B5:80:19:5A:DA:A6:F5:33:0F:04:8F:69:A8:27
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA900729A3B82CEF154390796C91987
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/YrNfEayhtYAZWtqm9TMPBI9pqCc.roa
Signing time: Tue 06 Feb 2024 18:23:18 +0000
ROA not before: Tue 06 Feb 2024 18:23:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200536
IP address blocks: 2a0f:b241:be::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a9:00:72:9a:3b:82:ce:f1:54:39:07:96:c9:19:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:23:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=62b35f11aca1b580195adaa6f5330f048f69a827
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c5:ed:4c:7c:0d:12:35:7e:d4:e8:ef:3a:e7:
b0:d2:86:bc:f3:d3:78:e7:63:6b:3b:f2:ee:08:a7:
bf:b6:da:9c:ce:04:78:a9:b1:ed:fd:69:5d:71:36:
34:5b:df:9d:fa:f2:fe:33:d8:cc:38:14:2d:57:ea:
c5:fa:c1:86:98:3f:93:ce:75:38:14:31:bd:6a:91:
14:7a:de:d7:7b:33:f6:44:b2:52:98:1b:96:55:b8:
69:14:f5:d6:5f:97:9c:11:6d:7a:42:37:19:fa:2b:
75:63:33:68:62:53:4c:fb:15:7c:42:eb:1f:32:44:
3e:a3:f1:1c:86:ee:53:b9:cb:ec:28:68:af:13:ba:
3c:04:5e:53:70:94:77:88:01:0a:61:a7:82:ac:a1:
36:67:79:a4:a9:c2:e3:7b:58:b5:c8:78:81:38:dd:
a0:78:28:bf:8e:9b:28:1c:7e:35:f9:bb:7d:e0:94:
2c:cf:0d:97:4f:06:2d:c8:a6:fb:1c:48:84:28:a1:
70:94:c7:11:29:ea:90:5d:73:86:3a:c0:01:8c:c6:
30:54:61:c4:95:58:8b:ae:0b:57:d8:b8:31:71:4f:
13:3c:88:fd:4c:ed:f5:3b:d0:34:fb:ee:88:56:9c:
98:47:08:78:00:7c:c1:cc:39:47:2e:83:62:d9:8d:
04:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:B3:5F:11:AC:A1:B5:80:19:5A:DA:A6:F5:33:0F:04:8F:69:A8:27
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/YrNfEayhtYAZWtqm9TMPBI9pqCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:be::/48
Signature Algorithm: sha256WithRSAEncryption
87:49:24:ce:b9:c6:bb:8f:30:e2:17:c2:b1:cb:06:a3:b2:7c:
e7:a0:3c:f8:25:98:1d:e0:a8:8a:49:d8:ba:09:77:b9:f6:06:
39:0f:f2:7e:8e:ff:76:5b:b5:e1:4e:ba:0b:b4:9c:29:16:f6:
f5:1f:58:f1:32:a7:80:8f:2f:d3:62:5c:e3:5c:8c:67:0e:79:
a3:bd:ef:5b:5c:88:f8:b9:22:4e:ee:5f:95:fa:35:da:34:13:
6a:ca:79:d0:4e:2a:31:0c:9d:b5:7f:db:99:3e:15:3b:97:2b:
ee:53:60:1a:3b:54:67:45:e1:ee:17:9d:b8:53:5f:8a:40:96:
b1:40:e4:2b:22:8c:14:22:d7:0b:8a:d8:06:f4:ad:76:5c:cb:
a3:3b:54:cf:d6:ff:22:f4:e3:8b:7e:ca:ce:7e:7c:66:9b:32:
49:fd:58:47:33:9f:8e:5c:1d:04:2e:1a:12:1c:e7:ad:15:84:
89:e3:68:43:ce:4e:97:36:8d:5e:cc:3d:6e:45:c4:b9:0c:25:
44:36:1d:07:f3:59:22:84:ec:3c:a0:2b:6f:fb:a1:f6:b6:10:
0a:6d:87:a1:56:e1:26:3c:8b:00:73:c7:e3:c1:10:0f:e1:38:
ca:ec:fb:d0:d0:9d:8c:5b:6c:64:f1:64:94:05:7a:ba:18:f2:
fa:22:cc:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:09 2024 by rpki-client on console-ams.rpki-client.org