Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/hE2ha_1yqovw4f23elgyK8Sc7ts.roa
File: hE2ha_1yqovw4f23elgyK8Sc7ts.roa (raw, json)
Hash identifier: D2sU4XHHpRJtjzhMUJC4Fys/15/gsis5mbx0dgRdReo=
Subject key identifier: 84:4D:A1:6B:FD:72:AA:8B:F0:E1:FD:B7:7A:58:32:2B:C4:9C:EE:DB
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0AA531E61CCBD73FD5687E017FCFE
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/hE2ha_1yqovw4f23elgyK8Sc7ts.roa
Signing time: Wed 07 Feb 2024 05:00:49 +0000
ROA not before: Wed 07 Feb 2024 05:00:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211758
IP address blocks: 2a0f:b241:149::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:aa:53:1e:61:cc:bd:73:fd:56:87:e0:17:fc:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=844da16bfd72aa8bf0e1fdb77a58322bc49ceedb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:f2:13:af:3d:3d:65:61:e1:a2:1f:62:d6:c1:
8b:a7:88:eb:5b:36:15:70:4f:cb:3a:1c:2c:7e:df:
59:c6:2c:d1:80:d8:16:10:42:39:6f:41:50:07:6c:
81:2f:0b:25:c5:68:9f:3d:71:da:1e:07:4a:90:1a:
85:54:3b:c6:01:73:56:27:3f:ae:a4:0c:a5:e4:8e:
b1:ab:df:f5:28:1a:94:36:19:d7:08:f3:08:20:4f:
1e:cc:de:38:37:04:cb:97:e2:c3:0c:dc:d7:44:ad:
2d:7c:94:a7:e5:a6:c5:2d:8b:77:e6:c6:af:4a:18:
ad:b1:84:95:79:20:49:15:0b:d9:ae:b8:fc:ea:10:
19:97:d1:c7:ad:9b:22:3f:75:7b:a6:8b:cf:76:74:
40:76:d5:da:85:95:74:95:43:6e:6d:28:4f:10:0c:
fd:f4:c1:b9:e5:f6:50:d4:3e:7d:62:f6:93:ec:77:
31:ae:48:ac:05:e1:67:07:36:8d:50:39:34:a9:c8:
68:98:71:8d:cd:49:98:86:52:9c:8d:b5:17:31:b6:
a6:d5:e2:04:b2:21:ea:e3:f0:54:a5:9c:d2:4d:40:
3c:c5:5c:6c:af:b8:d0:44:7b:76:34:6a:ec:92:23:
f6:bf:00:28:00:61:b0:78:45:d3:0b:39:27:55:12:
cd:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:4D:A1:6B:FD:72:AA:8B:F0:E1:FD:B7:7A:58:32:2B:C4:9C:EE:DB
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/hE2ha_1yqovw4f23elgyK8Sc7ts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:149::/48
Signature Algorithm: sha256WithRSAEncryption
83:21:b1:f3:66:a6:f3:0f:f6:3b:49:c9:70:43:1d:95:7b:78:
b4:aa:aa:e5:d7:96:ee:a5:fc:de:6f:ae:5a:1f:f8:2e:76:2c:
13:8b:3d:30:6f:e4:6e:78:65:dc:17:f0:0d:73:2a:87:dc:2d:
fb:b8:2d:06:6b:de:e3:7d:0b:09:3f:a3:8e:09:ce:12:bd:43:
46:13:6b:28:d0:a2:69:ca:86:80:37:a7:39:4e:24:82:a8:67:
74:32:ec:48:2f:cf:18:48:3d:59:b1:d4:fa:8b:ec:cd:27:4b:
14:f9:46:8d:6e:85:a9:0b:b9:59:cf:a6:f1:4b:61:e8:85:8d:
3d:3a:bf:1a:0b:9d:80:21:dc:47:55:60:61:0a:76:e9:30:dd:
c1:80:21:de:c2:57:8e:0a:6f:53:a7:84:07:34:58:4c:12:0a:
d0:b6:04:c7:4d:3d:26:79:fc:66:2b:7b:ff:00:8b:78:2c:d0:
98:8e:e9:c2:c5:a5:6e:4f:ad:16:cd:df:77:c9:ba:19:a1:04:
34:93:e8:c3:fe:ca:c2:02:c3:d3:a2:a7:8a:be:6e:2c:b4:57:
a3:e8:54:f5:e0:51:2a:af:73:46:9d:cc:ae:27:02:95:e3:c7:
0d:75:69:3c:61:5b:27:e3:84:26:c1:61:85:29:64:eb:71:50:
73:1e:ac:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org