Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/rQZ5V5C-sFHOZ3NtnbM2H5hUmU0.roa
File: rQZ5V5C-sFHOZ3NtnbM2H5hUmU0.roa (raw, json)
Hash identifier: eRAaHPQVTKEtXL0GZvs8cu/1gce05dOO4bSAXhE5JR0=
Subject key identifier: AD:06:79:57:90:BE:B0:51:CE:67:73:6D:9D:B3:36:1F:98:54:99:4D
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F07CA24E15AE175A07A522FD3CB106
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/rQZ5V5C-sFHOZ3NtnbM2H5hUmU0.roa
Signing time: Wed 07 Feb 2024 05:00:37 +0000
ROA not before: Wed 07 Feb 2024 05:00:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199767
IP address blocks: 2a0f:b241:8d::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:7c:a2:4e:15:ae:17:5a:07:a5:22:fd:3c:b1:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ad06795790beb051ce67736d9db3361f9854994d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:3e:8d:13:59:ba:24:7a:76:0c:8a:e4:29:a3:
44:1e:84:87:f5:0e:56:07:06:63:73:1f:4d:6d:bc:
d7:25:0e:35:29:2e:93:f0:f4:14:57:7f:94:29:61:
18:a9:bc:6b:20:6f:65:32:22:b2:d0:3a:8a:a2:04:
c6:ed:d9:00:45:ab:2c:56:b2:bf:f7:a9:ce:e2:2d:
a4:27:07:07:a8:f0:3e:5b:11:48:5d:bd:6d:9b:d3:
77:e2:06:fe:34:44:43:04:e1:3c:71:77:ce:f9:0c:
ee:ed:9f:ea:20:9a:ab:50:09:e3:31:80:e8:dd:f2:
e0:26:00:9e:94:1b:5f:2d:d6:a6:ea:5b:9f:28:a6:
6f:0d:2b:bc:ff:1f:05:c5:6b:16:58:93:53:63:15:
57:2d:c2:0d:75:80:d9:8e:99:c5:44:f0:23:21:d4:
1f:4b:eb:f9:49:54:4f:dc:f3:95:be:17:bf:12:c3:
5e:ef:b1:8c:77:d1:75:68:ed:eb:b4:6f:9d:37:d9:
89:e2:d6:77:00:c7:14:29:ff:43:a1:73:89:0d:db:
52:72:21:4a:9e:bf:29:49:d1:22:f1:35:1d:8b:c8:
1c:74:47:b2:33:86:04:e1:87:95:5c:8d:6e:26:19:
7f:0b:95:bd:f1:45:37:8e:53:6c:f3:3b:b0:93:e7:
a2:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:06:79:57:90:BE:B0:51:CE:67:73:6D:9D:B3:36:1F:98:54:99:4D
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/rQZ5V5C-sFHOZ3NtnbM2H5hUmU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:8d::/48
Signature Algorithm: sha256WithRSAEncryption
01:28:98:5f:b6:ee:3d:be:d4:33:b9:64:79:ee:71:30:c3:d4:
2e:d8:81:de:96:fd:78:36:81:ec:9f:c8:e7:ca:a4:3b:c9:83:
54:9a:cb:da:8a:a3:d9:1b:47:f9:4f:2b:f5:01:1c:49:f9:fc:
e3:a6:1b:3c:48:cc:5d:cd:56:10:d6:e7:bc:e0:eb:2d:93:17:
b9:b6:d7:3e:f8:c7:d3:a3:0a:82:4b:83:a8:7f:73:3c:a9:a4:
71:40:2a:fb:e7:48:40:d9:d8:dc:24:cd:52:80:c9:7b:a0:48:
66:a2:e5:76:6b:f2:e1:f4:85:43:4f:4a:92:16:01:40:eb:27:
64:e5:25:8a:5f:cd:e3:72:49:b7:12:39:1b:ad:ee:00:74:5c:
1c:c3:16:ab:1a:cc:c6:eb:6f:09:4b:16:8f:12:65:f7:9a:0f:
12:f8:29:bf:86:f2:9f:37:0b:92:fb:8e:c3:63:84:b9:a3:10:
83:2f:7f:61:6c:67:b1:52:0c:c0:6e:da:e7:82:b4:68:b3:79:
66:e5:75:d9:60:74:b5:dc:62:2a:0e:7f:fa:37:be:fd:6b:97:
a7:60:b1:72:3b:55:b6:1f:30:11:2b:d9:47:14:c9:d4:0b:22:
25:0d:ba:82:e0:85:c0:ef:b8:60:94:eb:82:70:69:4a:49:78:
17:63:57:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:11 2024 by rpki-client on console-ams.rpki-client.org