Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/tn0CE1tiBmr_OovxHTyeX8-RXgg.roa
File: tn0CE1tiBmr_OovxHTyeX8-RXgg.roa (raw, json)
Hash identifier: GVWO48X+Z2zhiykKmS7fgK0K7t6AV7Scl/lEDCAouUc=
Subject key identifier: B6:7D:02:13:5B:62:06:6A:FF:3A:8B:F1:1D:3C:9E:5F:CF:91:5E:08
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB890C288B2598DCE72BE595F74515C
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/tn0CE1tiBmr_OovxHTyeX8-RXgg.roa
Signing time: Tue 06 Feb 2024 18:40:18 +0000
ROA not before: Tue 06 Feb 2024 18:40:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216166
IP address blocks: 2a0f:b241:155::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b8:90:c2:88:b2:59:8d:ce:72:be:59:5f:74:51:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:40:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b67d02135b62066aff3a8bf11d3c9e5fcf915e08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:60:cc:de:80:7c:6e:8f:96:33:e5:97:98:a7:
99:d6:2a:4d:7c:15:23:d1:dd:db:de:ed:d1:b0:b2:
68:32:0c:34:bc:5b:2a:db:8a:42:a2:60:dc:78:79:
e3:39:8e:f4:fe:48:51:0c:3b:68:21:68:95:47:ea:
43:4c:a3:01:81:ba:5b:6f:5b:d5:e7:04:e6:57:02:
8d:58:b4:ec:99:36:c5:72:0d:3c:cd:29:e6:34:62:
c8:0c:9d:59:60:34:9f:9d:3a:97:87:85:42:c6:03:
41:cc:a1:ac:37:f5:12:f4:0a:ba:16:85:5f:f6:29:
f4:29:50:fc:36:98:65:26:2d:9a:50:c1:fd:02:7f:
90:10:5c:3e:16:25:bb:7b:7a:7b:2d:bc:8f:f3:22:
87:cb:5f:47:0b:97:56:08:44:93:7e:92:b7:8a:05:
c2:bc:3d:74:70:3c:dd:36:03:9b:2e:06:69:64:07:
e9:26:8c:2f:f5:6d:e1:16:83:4c:51:a3:97:d9:78:
fc:85:b6:b1:68:d4:c8:2c:4e:1d:1c:c8:06:15:71:
b9:e9:0f:bc:e4:eb:35:38:0d:7d:b3:d8:db:79:8a:
29:9d:ee:ac:78:0f:6c:ec:b7:b1:56:30:47:18:98:
8c:43:ce:57:da:4e:11:7f:1d:96:39:2d:88:1d:b3:
3c:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:7D:02:13:5B:62:06:6A:FF:3A:8B:F1:1D:3C:9E:5F:CF:91:5E:08
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/tn0CE1tiBmr_OovxHTyeX8-RXgg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:155::/48
Signature Algorithm: sha256WithRSAEncryption
58:90:43:13:2e:52:5c:b5:3f:21:38:7d:61:28:e5:e3:ff:62:
83:91:40:97:19:fc:82:78:c8:4c:a6:e4:f2:89:ca:74:f9:c0:
46:b9:ef:f3:1c:24:4e:3e:59:40:45:85:67:5d:1f:d8:c6:f6:
ae:c6:60:f5:49:d5:0d:2e:af:4f:be:24:72:f3:9e:73:64:c9:
cb:7d:bf:90:31:64:89:41:f6:81:0b:70:19:40:a1:0d:93:69:
36:60:15:29:84:17:9e:40:7a:8e:e4:ff:3d:e5:5d:be:55:9b:
7f:6e:bf:dd:e8:f0:31:4f:97:a2:63:1f:61:57:25:27:ca:4c:
f2:e9:1b:d1:42:2b:30:85:3b:13:be:a5:a3:34:e4:ee:6b:7c:
42:58:fa:7b:7c:f4:0f:d3:6c:55:5d:d3:62:df:c3:3b:00:c3:
27:2f:f2:4b:33:1e:e5:d3:55:d7:34:bb:35:8d:8c:d1:4b:1e:
93:af:54:c0:de:4d:40:27:d4:df:f6:13:dc:5b:7f:22:db:36:
bb:21:16:45:6f:96:09:e9:38:13:01:66:5e:ca:f5:66:28:d7:
07:b6:4a:14:9a:b1:d9:28:cc:3e:8e:5f:44:f4:f4:4c:61:6d:
fd:ff:39:cb:7d:0f:01:db:bb:bc:a4:52:f1:b5:1b:45:a5:cc:
07:85:dd:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:11 2024 by rpki-client on console-ams.rpki-client.org