Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/qw1bkCUbP1c3zSr_5CqtNgGoDTs.roa
File: qw1bkCUbP1c3zSr_5CqtNgGoDTs.roa (raw, json)
Hash identifier: jCMxQRHUVyh173lfBBJpgSdJI9GYp0vvvdCf4k5WOVE=
Subject key identifier: AB:0D:5B:90:25:1B:3F:57:37:CD:2A:FF:E4:2A:AD:36:01:A8:0D:3B
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0B140947A7B0E32F6D8E36DFC647D
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/qw1bkCUbP1c3zSr_5CqtNgGoDTs.roa
Signing time: Wed 07 Feb 2024 05:00:51 +0000
ROA not before: Wed 07 Feb 2024 05:00:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215563
IP address blocks: 2a0f:b241:14e::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:b1:40:94:7a:7b:0e:32:f6:d8:e3:6d:fc:64:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab0d5b90251b3f5737cd2affe42aad3601a80d3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e4:8c:5d:70:7e:92:b4:5a:66:73:53:55:0d:
d5:d0:16:fc:e4:69:02:b3:22:0a:a4:2e:bc:dd:bd:
75:e9:4d:30:b5:f9:99:c3:bc:b4:1c:4a:9a:48:49:
e9:4d:89:7e:dd:e7:f2:dd:e6:6f:63:bb:b0:60:12:
aa:88:c8:cd:fb:11:be:43:7c:45:40:58:29:a9:94:
1b:eb:65:56:cb:4b:a6:86:e3:a1:d6:f9:53:db:0b:
ca:31:9b:5f:56:68:9e:17:76:92:db:b1:d6:33:fa:
49:2b:90:19:46:ef:ec:1f:41:e3:b1:3e:06:73:92:
91:82:09:6c:82:03:a3:ce:50:1b:fc:03:d7:b2:33:
c5:dc:ba:57:ef:eb:a5:4c:89:00:34:35:8d:50:aa:
c5:a8:a5:b3:b9:11:d8:f1:28:fc:cc:4a:dd:4b:a0:
42:99:8f:16:98:d2:7f:e8:3a:71:24:1c:20:ce:a9:
c6:7c:5c:39:d8:e9:36:d6:63:6e:83:33:65:76:f3:
c2:e8:5f:86:00:67:2b:95:01:c7:6d:0b:ca:01:c2:
57:f0:f4:11:c3:ac:2a:76:09:b0:fc:c4:5a:52:9f:
08:1d:3b:33:78:c2:6a:83:ec:ed:59:5e:19:34:f2:
dc:f8:4b:48:26:2f:b2:d4:d2:5e:49:3c:e0:1e:e7:
9e:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:0D:5B:90:25:1B:3F:57:37:CD:2A:FF:E4:2A:AD:36:01:A8:0D:3B
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/qw1bkCUbP1c3zSr_5CqtNgGoDTs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:14e::/48
Signature Algorithm: sha256WithRSAEncryption
1f:61:95:8d:4b:66:21:e3:35:ee:6c:f3:98:5b:47:9f:02:f7:
c7:20:09:32:1c:32:7b:63:8b:40:69:7f:15:d6:ae:74:51:35:
7b:3b:90:cc:2d:69:73:05:88:1d:68:79:c3:8e:d5:68:0a:56:
d4:78:58:96:90:ac:50:10:79:c0:39:39:8f:e6:3a:6c:b7:90:
16:c7:03:62:d5:6b:99:32:93:84:04:57:99:35:25:42:88:dd:
9f:59:0e:65:59:58:d4:17:6e:8c:60:88:84:6e:64:c6:85:c0:
75:5a:f1:86:31:23:1e:ec:db:3d:90:09:24:56:e8:b9:e0:63:
a0:b0:ef:5b:68:d8:a1:73:1e:7d:b8:2e:84:37:67:44:91:d8:
a6:34:ac:7a:a8:9a:ea:24:63:83:a1:a1:c4:f6:47:44:7f:59:
5e:e5:34:5b:70:98:f5:c2:5d:81:72:c9:b1:f5:fd:9a:22:4c:
65:32:42:98:36:90:a1:bd:64:c1:b5:d2:0c:16:77:4b:90:5f:
0e:48:9b:a5:15:b9:15:7c:97:8b:78:8c:ae:92:ab:9c:7b:d5:
06:e7:e0:1a:96:ae:a0:88:12:9d:06:d7:27:2f:a2:b6:d2:f3:
4c:3e:94:91:c9:81:51:ae:5a:c2:52:89:a6:a6:6d:58:7a:57:
60:ee:97:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org