Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/f3cxisNEqJVmEvR3VvFhj5R6HtA.roa
File: f3cxisNEqJVmEvR3VvFhj5R6HtA.roa (raw, json)
Hash identifier: wo6vDyzk57JQtaW5Y8Kc6+B28oQjboNF4OUnczfpXVc=
Subject key identifier: 7F:77:31:8A:C3:44:A8:95:66:12:F4:77:56:F1:61:8F:94:7A:1E:D0
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F95BED3FBC642137572E84156EF364E
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/f3cxisNEqJVmEvR3VvFhj5R6HtA.roa
Signing time: Tue 06 Feb 2024 18:02:16 +0000
ROA not before: Tue 06 Feb 2024 18:02:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209552
IP address blocks: 2a0f:b241:44::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:95:be:d3:fb:c6:42:13:75:72:e8:41:56:ef:36:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:02:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7f77318ac344a8956612f47756f1618f947a1ed0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:b4:8b:cb:78:3c:1c:19:7d:2f:99:61:63:29:
84:06:bc:24:09:9e:12:15:c0:5e:e4:a9:96:6e:a1:
78:73:1e:7b:c8:a0:e8:4e:fe:9c:63:e5:06:b3:15:
a2:2f:d9:c4:ec:11:62:61:18:03:52:63:22:eb:e8:
e7:f5:8a:88:3e:fc:6d:da:ab:d3:ca:9e:6c:26:cf:
99:81:12:0e:e6:f3:3e:cf:e0:47:73:a9:ab:79:99:
93:66:44:70:f3:d4:c0:e7:13:7a:c0:ed:73:20:da:
cc:54:31:4e:b7:d4:34:e6:c4:62:b4:14:c5:b1:3a:
69:17:53:2b:75:4d:dd:8e:c6:a2:45:47:b0:c8:76:
dc:11:3a:67:22:a9:d0:40:7b:9f:f2:28:66:be:dc:
7a:f9:2d:e7:e0:2a:33:5c:12:7d:e7:0f:b6:c5:89:
02:37:7a:26:3b:6d:41:20:30:ee:fb:25:59:3e:01:
db:fe:a9:fb:bf:cd:91:0a:25:88:16:10:63:24:ca:
41:06:b7:ba:99:c4:45:19:07:b8:06:b6:ed:90:e5:
cb:38:7e:8b:a3:fc:53:b3:4b:22:44:92:39:79:ba:
0b:5c:71:26:96:dd:a0:c0:71:a2:33:cc:28:b1:cd:
21:4b:0c:ed:22:8c:d0:42:ee:30:65:02:14:b8:0d:
49:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:77:31:8A:C3:44:A8:95:66:12:F4:77:56:F1:61:8F:94:7A:1E:D0
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/f3cxisNEqJVmEvR3VvFhj5R6HtA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:44::/48
Signature Algorithm: sha256WithRSAEncryption
3b:d2:1d:cd:57:2f:e2:41:a5:0d:e0:cf:77:ad:9a:06:93:28:
b8:b1:c3:b0:44:34:9b:51:6a:9a:54:0f:f9:75:bd:52:00:91:
23:55:47:24:a7:58:b9:d5:7a:84:37:f4:9d:4f:51:17:e3:bf:
44:e7:9d:ab:d0:d9:69:cd:ae:9f:87:db:56:b1:8d:51:bc:f9:
ad:59:dd:7e:06:90:02:25:86:d7:80:6e:34:48:bb:de:fa:43:
3b:c0:94:c4:99:6e:f6:a1:58:2b:bd:9e:81:23:77:68:24:71:
96:0a:56:58:b0:3f:7f:00:f1:66:49:e5:50:34:0a:c6:26:11:
91:54:85:be:e2:ad:e6:59:a2:8a:b3:76:e2:5c:bb:1a:a7:24:
34:23:d8:63:bd:3a:a0:ed:6c:0c:88:2a:39:af:08:ca:de:84:
4d:7b:a6:65:01:b0:cf:86:66:b1:ae:55:5f:54:68:7c:19:76:
f1:17:ed:89:34:88:40:ea:aa:f7:59:70:29:12:75:54:68:f2:
3e:a8:2a:0a:79:ec:d0:55:ed:cc:ed:d9:7e:c1:7b:d6:94:0e:
01:f8:a6:a6:c3:95:b4:36:20:c9:a5:d8:42:16:9a:f7:31:c8:
61:4b:56:2d:34:b6:fe:dc:16:ee:9f:8e:76:f9:d0:58:b4:df:
04:49:78:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org