Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/pT4ugKLtTORJcW3esRKfyVRiBEs.roa
File: pT4ugKLtTORJcW3esRKfyVRiBEs.roa (raw, json)
Hash identifier: 2dOyo92YPVnVFXXtwxGyKMtqZKT/sVfWFAGj1kmmaPs=
Subject key identifier: A5:3E:2E:80:A2:ED:4C:E4:49:71:6D:DE:B1:12:9F:C9:54:62:04:4B
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB8891DCDCB464E35B92C13B46D7B56
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/pT4ugKLtTORJcW3esRKfyVRiBEs.roa
Signing time: Tue 06 Feb 2024 18:40:16 +0000
ROA not before: Tue 06 Feb 2024 18:40:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213170
IP address blocks: 2a0f:b241:14c::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b8:89:1d:cd:cb:46:4e:35:b9:2c:13:b4:6d:7b:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:40:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a53e2e80a2ed4ce449716ddeb1129fc95462044b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:2b:7d:c5:71:ef:56:11:31:d4:6a:e5:29:7a:
cd:f2:10:06:6e:7b:08:ac:9d:ed:54:36:df:b4:51:
78:82:7a:c6:d1:d2:cd:f4:af:76:99:2e:1a:b2:fc:
9a:13:22:3b:75:06:25:ba:f6:ca:69:67:35:2a:ad:
7b:ad:f9:cc:5f:19:c4:cd:c9:75:d2:18:9e:6f:37:
54:1f:19:4f:85:3c:74:4a:95:89:66:ae:26:f1:bb:
b9:cd:bc:46:e2:57:6a:bd:9a:44:f7:75:c0:f6:28:
59:7b:ec:26:4b:64:07:77:32:11:93:c4:07:74:f8:
d7:ec:43:ba:f1:26:8a:02:ff:d6:2d:bd:6b:01:5c:
33:19:40:17:17:8d:1b:72:24:c1:b7:bf:e4:96:cb:
d2:d5:df:e1:e4:c4:c1:6b:b4:51:3f:1c:df:80:ff:
30:0f:99:e7:7b:3f:c4:94:cf:01:8d:cb:d2:d2:57:
88:33:15:2c:6b:32:ba:28:30:8d:0f:75:db:8a:59:
b1:c3:ed:17:a8:0b:06:01:5a:1c:ec:a1:86:f5:55:
1d:1a:6e:d2:49:97:8a:8d:6a:e7:a6:92:1e:de:36:
61:1b:0c:3e:98:c8:bf:56:cc:17:e9:25:c1:c9:ac:
f5:b5:c0:b2:59:1c:a2:64:d1:b4:27:5a:2f:a0:1e:
b1:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:3E:2E:80:A2:ED:4C:E4:49:71:6D:DE:B1:12:9F:C9:54:62:04:4B
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/pT4ugKLtTORJcW3esRKfyVRiBEs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:14c::/48
Signature Algorithm: sha256WithRSAEncryption
20:78:a4:59:5b:9c:dc:a7:ab:54:62:a3:59:82:e7:2c:58:e6:
c6:6c:00:48:a8:2b:3f:91:13:f8:15:8f:7c:91:3d:98:69:9e:
d3:cc:0a:6c:93:8c:9d:80:aa:31:92:d1:58:f7:99:81:aa:bf:
49:fb:3e:1a:8e:2e:29:15:9f:d9:80:92:d5:1a:c2:88:c8:ac:
32:cf:57:20:0a:f4:4c:23:c1:1a:16:29:fd:33:ca:b9:a3:fb:
4f:e6:b8:6e:4d:0e:73:b1:3c:f4:7b:ce:d8:a8:3e:b0:19:b8:
6b:34:1d:33:01:85:a9:83:74:b6:34:35:01:a4:0c:f0:a3:a9:
a4:ce:c4:5a:bb:39:8f:88:29:b3:59:21:22:d3:67:a1:d9:82:
f2:dd:fc:d1:3a:ee:62:5c:04:a3:2d:33:0e:34:0b:a3:aa:97:
1b:bc:eb:f6:8d:e7:23:a5:1e:1c:82:14:52:08:cd:51:b7:3f:
27:ff:59:5f:55:14:39:da:4c:51:38:0a:1e:d8:5a:d4:96:29:
2b:74:5f:af:ff:11:29:0f:9a:ed:3e:b1:30:98:aa:ee:3f:85:
4e:86:29:d7:ed:ef:7e:0b:76:d0:3a:52:38:12:ad:31:3c:aa:
77:10:54:fe:11:7e:7d:65:e0:d1:39:ed:4a:4c:3c:39:74:41:
99:66:99:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org