Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/p88UxbC9UohrBl93AwfuMmgs-Jo.roa
File: p88UxbC9UohrBl93AwfuMmgs-Jo.roa (raw, json)
Hash identifier: sSPvof66eE1sh7pXZYiXQWYPQOigM0R1vU/OzT4o1RI=
Subject key identifier: A7:CF:14:C5:B0:BD:52:88:6B:06:5F:77:03:07:EE:32:68:2C:F8:9A
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7DFAA8ABA871CA2CF36D374F2AAB7737
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/p88UxbC9UohrBl93AwfuMmgs-Jo.roa
Signing time: Tue 06 Feb 2024 10:33:15 +0000
ROA not before: Tue 06 Feb 2024 10:33:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197723
IP address blocks: 2a0f:b241:d::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7d:fa:a8:ab:a8:71:ca:2c:f3:6d:37:4f:2a:ab:77:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 10:33:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a7cf14c5b0bd52886b065f770307ee32682cf89a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:89:af:b4:95:7d:b6:d2:9e:12:ec:93:45:42:
dc:7d:89:65:92:ed:01:03:9e:2a:7c:92:78:73:cb:
0c:70:68:fc:e6:26:71:c4:37:40:b3:59:e9:84:81:
f0:5a:2e:ed:55:95:56:2c:80:56:64:e4:c9:36:9f:
a5:cc:d0:77:c1:f1:f2:be:1b:ae:ae:3f:89:85:9a:
f9:df:03:91:dc:60:d9:13:fb:45:09:35:8e:dc:2e:
67:2d:a5:a9:43:39:1f:a3:36:62:5b:7a:a4:6f:59:
06:23:c7:01:e3:85:98:1a:96:66:ed:21:17:40:44:
99:4b:1e:88:72:e5:30:66:7c:2b:db:31:25:64:db:
f1:be:df:27:a6:5f:0b:0f:3c:77:f6:35:c7:ab:3b:
c1:c2:69:18:3e:9b:0c:42:e0:cc:cc:58:24:2d:ca:
54:ee:ec:6a:a3:ed:8d:fb:fc:37:94:aa:a3:e7:0a:
1a:6d:a9:a9:52:df:5f:4a:7e:24:41:9d:47:2b:8f:
31:9f:d5:6b:aa:a6:ed:a1:08:d2:f1:19:82:e3:5a:
04:03:ed:18:46:e2:05:0e:da:57:b0:e4:24:7c:29:
3f:44:ef:1d:29:0a:6d:fa:d6:ea:f3:03:ac:7e:ea:
23:91:d0:27:8d:eb:28:ce:e3:6e:55:49:a0:8a:0b:
76:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:CF:14:C5:B0:BD:52:88:6B:06:5F:77:03:07:EE:32:68:2C:F8:9A
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/p88UxbC9UohrBl93AwfuMmgs-Jo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:d::/48
Signature Algorithm: sha256WithRSAEncryption
2d:0a:34:0f:b1:6c:a3:41:ea:f1:f8:90:fe:ec:93:c7:e1:1a:
05:43:ce:7e:93:43:13:a7:9c:75:2e:85:05:01:75:31:c9:bd:
c9:2d:2f:0e:ec:e1:3a:7d:88:2f:65:9b:d0:cf:eb:4c:ae:52:
45:b8:3b:6c:cf:99:8c:32:57:0c:96:0e:7d:7a:92:c1:22:33:
0d:e0:f8:27:25:15:5b:b0:63:94:64:86:20:6f:f8:cf:b6:81:
5c:31:64:df:44:ba:d4:11:53:3f:e5:00:f0:fd:e7:5d:0a:7b:
75:8f:99:f2:74:83:e7:aa:00:db:3a:50:1f:51:14:51:c6:2f:
a7:ea:17:45:83:66:4e:36:73:dd:f4:3c:9f:8c:3d:e6:88:b4:
23:11:1e:e3:d5:cb:74:a4:97:45:e3:2d:fe:7c:59:6c:85:a5:
b8:54:23:87:2c:af:ad:36:aa:1b:79:d2:d8:28:56:a6:87:7e:
06:3d:54:6e:85:07:89:be:9d:32:07:74:ae:aa:93:f7:ce:f4:
39:3d:37:5f:70:89:6d:fd:d4:e9:f0:c1:03:08:7e:f0:c5:1c:
55:2b:95:93:08:db:71:3c:d9:8f:9f:8c:67:03:f6:c2:c2:6e:
06:a8:d7:96:00:6b:04:34:4e:47:63:b8:76:57:a3:c8:fe:1f:
7f:64:eb:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:13 2024 by rpki-client on console-fra.rpki-client.org