Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/cPOD3Rkkxv10JBgVfrlLggUH3PU.roa
File: cPOD3Rkkxv10JBgVfrlLggUH3PU.roa (raw, json)
Hash identifier: Zt6btDqMwGTlGTD7akCxUVi/IyGA3yrALDXdGk1yxoE=
Subject key identifier: 70:F3:83:DD:19:24:C6:FD:74:24:18:15:7E:B9:4B:82:05:07:DC:F5
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA728E1AA336E93D3379A44B6EA13EB
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/cPOD3Rkkxv10JBgVfrlLggUH3PU.roa
Signing time: Tue 06 Feb 2024 18:21:17 +0000
ROA not before: Tue 06 Feb 2024 18:21:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199488
IP address blocks: 2a0f:b241:82::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a7:28:e1:aa:33:6e:93:d3:37:9a:44:b6:ea:13:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:21:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=70f383dd1924c6fd742418157eb94b820507dcf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d8:56:e7:ab:b7:f8:ce:91:0e:ab:bc:9b:b8:
31:bd:fb:79:d2:62:fd:54:16:50:be:6f:d6:a7:ef:
97:cb:16:74:8e:2d:e1:34:cd:5f:3c:5f:20:0f:15:
2a:d7:00:e6:dd:4d:3c:28:d8:e9:82:c2:c9:4b:33:
bf:29:64:24:43:ac:51:1b:ed:5e:b4:e2:e4:a6:2f:
9a:32:3d:4a:c7:84:da:6d:16:c8:58:76:7e:31:c7:
c2:96:9a:35:34:3c:73:52:18:73:46:e2:51:8e:bb:
6d:8d:7f:8f:d4:44:84:c1:82:a3:3f:eb:0f:7e:fa:
86:da:61:cb:af:ab:d8:f2:45:7f:d7:95:0b:9c:dc:
b1:5a:2d:02:d2:16:0e:ff:5e:64:3f:de:cc:ff:1d:
34:35:98:d1:88:5e:cb:71:8e:54:da:e3:58:21:a3:
55:03:29:b1:66:0d:ec:5f:2f:ee:01:f2:52:cb:f0:
8d:ac:89:35:87:cf:2d:07:c2:42:a4:01:9e:a6:ab:
b2:9a:9d:c8:3d:e1:31:10:69:ae:13:fc:f2:5a:bf:
1f:e3:7a:a8:6a:97:b4:cf:08:6d:f0:9f:47:75:92:
b1:76:6e:8d:51:35:15:54:8c:1b:df:d9:18:58:74:
dd:8d:47:cc:cb:45:83:7f:d4:56:4a:74:c1:1b:26:
04:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:F3:83:DD:19:24:C6:FD:74:24:18:15:7E:B9:4B:82:05:07:DC:F5
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/cPOD3Rkkxv10JBgVfrlLggUH3PU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:82::/48
Signature Algorithm: sha256WithRSAEncryption
5c:1a:82:3e:bc:27:1b:29:22:8c:b8:50:14:6e:94:ce:dd:39:
33:0e:1b:d4:a4:b3:ac:97:a8:7a:9f:a1:2a:ff:93:a9:02:35:
bd:b6:a2:4f:95:be:67:87:65:50:c9:42:45:9a:4e:c6:17:79:
8d:5a:e5:b8:bd:9f:9c:c2:00:ff:52:9c:8a:ee:1b:be:c5:3e:
45:ee:c1:30:a2:5a:f6:78:5e:8d:e6:1e:38:71:c0:68:af:66:
fa:81:15:d4:bb:f2:c4:0f:a7:59:45:27:e6:15:84:69:4b:b8:
09:cc:53:77:8a:07:0e:b1:77:18:4e:f3:f8:48:2c:29:ac:73:
4d:9d:af:71:8b:74:9e:f4:8a:82:c4:ca:c4:d6:bb:d8:a8:7f:
5b:0c:93:46:df:73:87:dc:7b:17:f4:ff:c0:a1:e8:7d:53:7e:
76:fe:b2:ae:74:11:23:93:62:fa:5c:1e:ab:71:03:c9:44:a5:
40:6c:a3:9a:fb:fc:ff:34:b1:38:fb:69:a7:cc:35:2a:cc:6c:
45:bc:27:fe:45:7a:29:e5:15:3c:65:de:9e:29:86:57:a6:e2:
a1:76:de:09:cb:20:50:13:42:a7:8d:fd:e3:0c:04:55:9c:57:
45:65:c3:f5:9a:aa:88:b3:3c:74:c8:5b:69:f0:53:d3:b4:7e:
2c:8c:c4:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org