Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/rIuu96nxolJS0JsN2zditzfgQSQ.roa
File: rIuu96nxolJS0JsN2zditzfgQSQ.roa (raw, json)
Hash identifier: NMuLgp5D3Dz+3qZHAiB8QK078McjNtcRu/NeQrxEMiI=
Subject key identifier: AC:8B:AE:F7:A9:F1:A2:52:52:D0:9B:0D:DB:37:62:B7:37:E0:41:24
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA638D03AA1609CB93BA022E076E891
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/rIuu96nxolJS0JsN2zditzfgQSQ.roa
Signing time: Tue 06 Feb 2024 18:20:16 +0000
ROA not before: Tue 06 Feb 2024 18:20:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198092
IP address blocks: 2a0f:b241:77::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a6:38:d0:3a:a1:60:9c:b9:3b:a0:22:e0:76:e8:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:20:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ac8baef7a9f1a25252d09b0ddb3762b737e04124
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:02:75:fe:e4:ba:c8:a1:9a:32:c2:b8:8f:d6:
b6:0c:c6:d9:68:92:b8:8e:71:8d:a4:ec:4e:6d:d3:
6b:60:bb:9b:91:fa:47:38:f2:de:fb:83:f8:5e:e7:
ee:23:ee:00:79:63:5e:0a:df:cb:49:08:7a:ff:63:
25:f7:20:e1:e7:c0:de:bb:dc:ff:22:27:df:b6:c4:
87:54:68:2d:6d:1c:6f:b0:c7:1f:02:2e:a3:a1:69:
b5:9c:d4:6f:6f:0d:4d:34:93:d6:f4:b2:a8:67:90:
fc:db:b6:93:b9:ef:5c:fc:7c:02:92:a3:93:44:c6:
cf:08:ed:32:b9:f9:63:33:cc:e6:a8:23:9b:06:af:
a1:f2:23:02:21:c0:43:2f:28:7c:eb:65:8d:22:94:
c6:87:1b:45:9a:2d:3f:13:e4:0a:9a:5f:97:15:cb:
7e:7b:1d:58:a4:c2:88:f1:3e:d4:b2:05:02:22:88:
e2:72:3f:72:9d:b5:62:35:0c:ab:de:a5:9e:78:b4:
b7:d8:a0:22:c3:94:81:5e:ff:64:ad:ba:c5:53:69:
01:9e:7f:ba:60:61:15:02:e6:08:5e:5f:e1:4b:b0:
c4:37:68:6a:17:9e:54:2f:84:66:15:64:f4:2a:79:
97:26:a1:b2:36:7d:2b:5b:e7:c2:c1:f6:d1:ff:17:
cc:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:8B:AE:F7:A9:F1:A2:52:52:D0:9B:0D:DB:37:62:B7:37:E0:41:24
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/rIuu96nxolJS0JsN2zditzfgQSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:77::/48
Signature Algorithm: sha256WithRSAEncryption
89:64:d1:44:54:88:d1:15:05:cf:69:7a:0a:70:00:57:cb:b0:
80:78:24:14:db:75:f7:98:70:a4:32:14:b3:1a:fa:f6:6a:87:
94:28:2b:79:d8:b3:11:76:2a:a5:45:53:42:b8:23:82:77:89:
63:a8:91:f2:25:2e:6d:0a:5b:09:eb:e1:fa:50:ef:8c:fe:11:
13:b9:7d:ef:26:68:39:57:ee:06:96:56:0e:32:a7:95:d7:4b:
e0:a5:79:a8:2c:c8:7d:b7:55:e2:c3:81:d8:61:cd:72:15:00:
28:ca:c4:d0:fc:d5:b7:d3:45:de:e0:f0:0e:e1:af:3e:ea:5e:
b5:09:0f:7e:f0:0a:79:bf:0b:fc:14:cf:81:54:71:fd:c3:14:
e7:42:1b:37:1b:de:10:ad:b3:4e:8b:eb:3f:ee:4f:28:58:06:
3a:7c:71:f1:3a:be:c2:29:2e:4c:69:fd:d9:9d:a5:b7:e5:8d:
12:58:43:e2:b5:e8:e4:66:5e:42:3d:33:6c:4c:00:47:73:36:
53:0f:fc:26:7f:b5:65:5c:70:89:cf:fc:40:03:a9:2f:af:70:
22:66:3a:cc:c7:45:a3:be:ca:36:20:f2:be:85:81:1d:e1:6d:
de:3c:a0:7c:7e:25:ef:da:b9:e5:de:66:d5:d2:b6:96:2f:2a:
d5:cf:7b:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:13 2024 by rpki-client on console-fra.rpki-client.org