Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/p3mMYtS_zWjuuu9YGMV5Bdp99Hs.roa
File: p3mMYtS_zWjuuu9YGMV5Bdp99Hs.roa (raw, json)
Hash identifier: +VH/8QdCt2rhBC94Vku+SBU5fruUPtqFZO5WjmAMtiw=
Subject key identifier: A7:79:8C:62:D4:BF:CD:68:EE:BA:EF:58:18:C5:79:05:DA:7D:F4:7B
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F077D13609FFB221235F313E21E0A0
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/p3mMYtS_zWjuuu9YGMV5Bdp99Hs.roa
Signing time: Wed 07 Feb 2024 05:00:36 +0000
ROA not before: Wed 07 Feb 2024 05:00:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199501
IP address blocks: 2a0f:b241:6f::/48 maxlen: 48
2a0f:b241:84::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:77:d1:36:09:ff:b2:21:23:5f:31:3e:21:e0:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a7798c62d4bfcd68eebaef5818c57905da7df47b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:73:82:68:b7:b8:00:3d:7a:4b:e2:34:89:90:
dc:ec:23:c7:60:3c:56:92:5f:51:12:56:1a:df:92:
c9:dd:11:0e:be:a8:e4:d8:f0:3e:af:85:df:40:91:
ae:de:87:65:8b:84:4d:05:40:76:f3:6f:4f:1c:4c:
12:c4:2d:e1:fa:f5:a2:41:da:3f:96:5c:18:75:9f:
ec:3b:c2:75:73:35:e3:d2:c9:42:32:51:1d:ea:f6:
fe:2a:fb:d5:40:e8:5e:1e:04:9c:2f:b4:51:5f:dd:
5c:f5:ad:22:0c:86:d6:15:25:eb:29:b7:55:38:1c:
a1:73:e6:49:52:64:bc:28:ff:cb:e8:41:47:11:a8:
87:02:3c:00:01:b9:34:19:e5:22:a0:4c:1c:31:ca:
00:9a:b0:cd:2e:5e:1e:79:fa:c1:40:9b:14:c5:8d:
78:b2:7c:a9:fa:9a:9e:9c:5a:6f:18:89:5e:56:05:
a9:83:00:ea:89:19:4b:a5:95:b2:d0:53:7c:7f:0e:
b2:5a:bc:fb:51:20:ed:b0:26:17:fe:5a:b1:ce:2f:
80:ac:30:96:33:19:19:fa:af:3a:8a:fa:cb:ed:41:
17:da:4a:b3:26:9d:eb:23:3d:fd:93:3f:f5:bb:19:
62:a2:a7:c4:a1:28:35:16:33:f3:ac:42:f9:84:3d:
23:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:79:8C:62:D4:BF:CD:68:EE:BA:EF:58:18:C5:79:05:DA:7D:F4:7B
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/p3mMYtS_zWjuuu9YGMV5Bdp99Hs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:6f::/48
2a0f:b241:84::/48
Signature Algorithm: sha256WithRSAEncryption
27:af:8f:f4:db:b8:bd:91:d1:31:b0:a2:5d:fc:30:a7:ad:2e:
ca:71:fc:28:9a:a4:e1:26:98:21:56:74:b2:d4:9d:c1:3a:20:
96:6a:1d:26:3c:05:8c:19:20:0c:e6:bc:c0:ce:77:d7:9a:66:
dd:30:12:19:a5:27:9f:e5:7a:f3:20:72:e0:60:bc:5d:43:cf:
e5:69:4e:ab:91:2f:69:21:36:39:ed:13:82:f4:4c:19:ea:11:
8d:f9:1d:03:7a:be:86:8f:f4:5e:66:2d:3e:56:8c:04:47:57:
97:89:fd:5b:9a:5b:3f:8b:40:1c:cc:05:78:58:49:e5:52:eb:
02:c7:7d:78:d9:6d:21:ff:0d:c8:60:ef:cd:36:4f:6f:eb:6b:
43:81:1a:94:ac:0c:a8:00:5c:6e:22:fe:34:6c:0d:79:13:25:
d9:fa:90:c1:81:2b:a9:c6:58:b9:d3:66:2f:fa:1c:ab:89:76:
cb:89:93:c5:99:dd:12:45:20:3c:ff:91:53:fa:62:c0:9b:5d:
d8:19:26:56:76:b2:f5:78:da:46:3e:e7:5c:80:c5:28:b3:0e:
3a:f5:08:c7:04:e1:58:75:96:42:9e:f4:07:07:55:b7:e5:57:
07:38:7c:5e:50:ba:49:f3:2c:ec:1b:1e:e5:0b:9e:7d:af:44:
c6:98:05:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org