Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/k-PIYM4fmiF3TSG8NPGTii2ozBg.roa
File: k-PIYM4fmiF3TSG8NPGTii2ozBg.roa (raw, json)
Hash identifier: juio5Lg13HQoHiJ68ZG4LECsCaHYv0MjNFHTICH6a0s=
Subject key identifier: 93:E3:C8:60:CE:1F:9A:21:77:4D:21:BC:34:F1:93:8A:2D:A8:CC:18
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F06A734FB581EC81AB9D79886577B3
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/k-PIYM4fmiF3TSG8NPGTii2ozBg.roa
Signing time: Wed 07 Feb 2024 05:00:33 +0000
ROA not before: Wed 07 Feb 2024 05:00:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197510
IP address blocks: 2a0f:b241:b::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:6a:73:4f:b5:81:ec:81:ab:9d:79:88:65:77:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=93e3c860ce1f9a21774d21bc34f1938a2da8cc18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ee:bc:62:e9:0f:d8:ee:4b:4b:0c:ce:31:2b:
d4:e7:1e:45:38:4b:78:cc:a8:ad:fe:bf:a8:3b:b3:
da:14:99:17:d5:3a:78:9f:2c:4e:de:1b:d9:d0:40:
93:11:ad:d5:c1:a8:6b:ce:7c:20:15:19:6a:f7:d1:
19:b8:e6:f6:88:d5:e6:35:66:ca:41:eb:31:8b:52:
c7:ed:b9:25:fc:a2:3d:0d:3e:fc:47:99:d8:6d:18:
24:cd:e4:cc:ad:d0:f1:90:9c:bb:c1:40:b4:c3:7d:
ac:4c:bd:d6:02:40:e9:b5:a1:58:44:37:1c:d9:d5:
12:47:0c:ef:53:a7:b9:f2:2a:cd:ad:1c:42:48:c5:
65:b0:e4:22:19:ca:89:4d:9c:69:57:c0:5f:e2:35:
e0:be:60:98:2e:07:53:d4:a0:06:40:a7:29:ce:e4:
75:48:a1:d5:51:26:48:aa:6f:56:51:62:ce:8a:eb:
64:8e:b5:be:ef:74:22:1e:ca:bf:c1:9e:3d:7c:8b:
44:4f:7f:37:65:b8:67:b9:39:18:da:c3:60:38:8d:
1d:a3:3a:bb:a4:ff:f1:80:e6:9f:7e:09:4c:1c:c4:
03:e9:55:d7:12:a6:21:15:e4:62:83:f9:4c:68:d2:
95:23:ab:12:42:0b:76:d1:5a:54:1d:69:fb:e8:d0:
ea:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:E3:C8:60:CE:1F:9A:21:77:4D:21:BC:34:F1:93:8A:2D:A8:CC:18
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/k-PIYM4fmiF3TSG8NPGTii2ozBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:b::/48
Signature Algorithm: sha256WithRSAEncryption
1a:23:76:4e:7b:75:0f:d5:a4:c5:af:9e:2d:49:3b:5b:a4:02:
aa:79:b9:fe:89:81:0a:36:ce:fb:08:fe:57:4b:d7:0e:bc:cb:
cc:fe:39:d1:47:49:78:f3:74:7b:56:7d:8c:23:1c:81:d7:68:
44:d0:93:d5:a2:b6:b6:66:c0:e7:32:a0:41:18:e6:e9:f7:ef:
a1:64:24:13:00:ff:b3:e0:35:96:f7:7b:e8:7e:41:b9:39:ca:
4f:2a:25:7c:dd:53:17:d9:58:4e:a8:68:e0:29:f1:cc:99:e5:
ea:53:2c:a8:6d:48:6c:50:fe:d2:7c:f6:64:be:54:4d:f5:68:
7c:1f:05:3f:ce:0c:d4:6a:0e:47:99:2e:aa:fa:30:b7:4b:2e:
ee:e9:83:f3:6b:3a:7e:64:a3:13:39:cb:16:e1:90:12:95:1a:
0c:04:73:d5:2f:e0:b9:07:42:aa:e4:52:51:7b:18:40:c1:e3:
77:15:0f:97:72:84:0d:2d:63:46:4d:5c:3d:23:33:b3:8a:67:
da:af:a6:89:91:e6:c6:06:75:a2:f0:a0:2f:e7:ea:b2:88:9a:
a8:bf:ff:8b:f0:45:5c:eb:b3:12:b8:57:38:3c:dd:5c:6f:4a:
9c:7c:6d:01:1d:30:06:f0:47:f2:f5:cb:8b:a1:9c:43:73:b5:
a8:f1:a7:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org