Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/sv0yDHlAfUud5013olyhlOxJmDI.roa
File: sv0yDHlAfUud5013olyhlOxJmDI.roa (raw, json)
Hash identifier: saxURxgTqKbBhLrmwVhkt+P/vaM458S31dJBvhvWdWI=
Subject key identifier: B2:FD:32:0C:79:40:7D:4B:9D:E7:4D:77:A2:5C:A1:94:EC:49:98:32
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F06A019C03A557E05F229026C6B407
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/sv0yDHlAfUud5013olyhlOxJmDI.roa
Signing time: Wed 07 Feb 2024 05:00:33 +0000
ROA not before: Wed 07 Feb 2024 05:00:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 139321
IP address blocks: 2a0f:b241:127::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:6a:01:9c:03:a5:57:e0:5f:22:90:26:c6:b4:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b2fd320c79407d4b9de74d77a25ca194ec499832
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b3:35:90:90:1a:ed:81:17:97:e6:1b:ae:66:
58:52:fa:f0:0e:35:4b:ef:05:49:50:2a:c6:d3:ef:
63:a7:8a:77:9c:f9:35:e4:9b:8c:40:94:99:e8:b3:
49:d7:19:1f:0c:63:f3:48:f1:3c:3f:e2:f1:aa:0e:
b7:f1:85:66:ee:37:70:5c:98:3b:44:5d:07:ba:a1:
35:f7:fa:87:a3:bf:d8:39:76:25:be:e4:59:d3:30:
4a:83:1b:02:45:45:89:98:12:b6:4a:a2:85:48:1b:
78:f5:76:af:17:8c:97:61:a6:97:eb:77:4d:9c:15:
0e:4c:13:88:99:cd:e1:1d:f3:d8:97:4f:1a:ab:1e:
ac:c1:20:8c:8f:0f:b5:2f:60:9a:ee:8e:a4:7e:7a:
4b:7a:70:b2:2c:5a:f6:f7:b5:bc:ec:05:ac:ed:bc:
d4:86:6a:df:e2:b2:65:41:c6:22:a8:59:36:3f:d2:
ca:de:23:f1:14:65:8b:0b:37:32:ac:ba:41:bb:b1:
7a:90:6d:cf:fe:f2:11:39:2e:aa:f8:34:0a:cd:e5:
f2:c6:4e:52:bb:e4:aa:f4:c0:5d:c8:d4:66:2d:63:
41:5a:8b:59:82:5e:05:53:31:16:0e:1e:d6:ea:ef:
c5:69:fb:49:21:db:61:7d:63:0d:f9:4a:41:28:65:
4a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:FD:32:0C:79:40:7D:4B:9D:E7:4D:77:A2:5C:A1:94:EC:49:98:32
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/sv0yDHlAfUud5013olyhlOxJmDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:127::/48
Signature Algorithm: sha256WithRSAEncryption
2e:82:7b:d8:fb:a6:2f:82:e7:be:2d:b7:e8:cb:06:6e:2c:9b:
fd:96:93:f3:b3:1a:8e:b5:b4:b5:7d:e7:c0:db:47:28:9c:49:
a9:6c:f7:8f:08:00:b6:c7:b8:9f:14:df:cb:b2:dc:cc:ff:26:
60:81:77:91:8e:ff:43:ac:b3:81:7e:18:c4:90:35:98:8e:26:
5d:5d:87:7d:bf:01:d0:32:44:a5:c8:fe:0d:c3:49:9b:a3:24:
fd:c0:5e:76:e1:df:5b:c8:90:10:80:b7:f0:42:19:1e:53:ab:
6c:a9:45:cc:cb:c8:ef:98:ca:80:88:db:b3:ef:40:a4:31:93:
bd:88:d9:54:af:2f:b7:86:07:89:0d:c7:a9:08:39:ae:b5:82:
f4:62:c0:8d:ca:ff:d3:cd:a6:e4:c0:57:f8:16:a2:8f:61:e7:
bf:38:55:78:f4:e7:b0:39:a3:72:af:d2:02:22:d2:2a:f5:15:
aa:51:75:96:aa:80:1b:34:a3:9a:19:d4:6d:91:59:85:c6:95:
7a:6c:c5:e2:34:ed:d3:27:87:7a:0a:e0:5f:24:db:3b:bc:d6:
be:b3:87:2a:79:ef:15:a8:0c:38:65:87:d6:c3:65:2b:50:d0:
e1:6b:c5:73:18:bb:5a:c9:00:1d:ba:f3:59:82:b2:5b:54:c9:
ac:54:8e:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:11 2024 by rpki-client on console-ams.rpki-client.org