Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/uoIgr9YkkbTfREKScnvO8Pi6pMw.roa
File: uoIgr9YkkbTfREKScnvO8Pi6pMw.roa (raw, json)
Hash identifier: ggI9Oc4nBRr3KiZEwwNo/gdbR1F1IrAy+5YqK8esc/A=
Subject key identifier: BA:82:20:AF:D6:24:91:B4:DF:44:42:92:72:7B:CE:F0:F8:BA:A4:CC
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F8D8789ADD7A834AA83E91DCC5E4ED3
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/uoIgr9YkkbTfREKScnvO8Pi6pMw.roa
Signing time: Tue 06 Feb 2024 17:53:18 +0000
ROA not before: Tue 06 Feb 2024 17:53:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216072
IP address blocks: 2a0f:b241:2a::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:8d:87:89:ad:d7:a8:34:aa:83:e9:1d:cc:5e:4e:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 17:53:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ba8220afd62491b4df444292727bcef0f8baa4cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:0a:86:de:a5:27:e1:5f:0e:1d:ac:7c:89:99:
5a:7c:43:98:68:6b:2b:e8:40:6c:f7:43:06:1b:12:
8a:0f:47:23:07:02:6c:27:8b:03:b1:98:59:c3:a9:
3b:7f:54:ea:f8:d7:f6:c1:a4:fb:ce:3a:db:6d:40:
4c:43:36:30:38:e0:71:7f:05:8e:81:83:b9:fa:ae:
0d:d0:28:df:40:b2:09:66:b8:31:58:d7:96:6f:29:
bd:2c:1b:1c:bd:d9:c6:b0:54:91:8f:26:55:97:e4:
8e:67:17:13:c4:d0:d9:e0:c9:d3:29:f0:cb:69:f5:
f6:8e:87:47:45:7a:4e:37:5a:1f:25:b8:de:ff:52:
01:f4:cb:b3:dd:95:82:83:43:e0:4d:83:d1:1c:ff:
4d:53:d2:cf:d0:23:58:89:61:e3:0c:f5:80:74:8c:
a0:ea:4f:6e:20:8b:a8:1a:6d:69:f9:24:9e:f6:11:
ca:1b:21:ab:db:d5:03:19:9d:a8:d5:86:0d:ff:2c:
23:f3:c3:dd:e0:ca:00:a0:a5:fa:26:66:b3:1d:f9:
77:27:70:7f:ac:70:b5:08:f6:7f:cd:0e:39:46:38:
31:c5:8e:63:cf:dc:a3:f2:8e:c8:6d:82:bc:77:b3:
c1:ff:64:50:20:93:a3:19:12:41:e9:03:cf:37:97:
e5:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:82:20:AF:D6:24:91:B4:DF:44:42:92:72:7B:CE:F0:F8:BA:A4:CC
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/uoIgr9YkkbTfREKScnvO8Pi6pMw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:2a::/48
Signature Algorithm: sha256WithRSAEncryption
61:c3:0e:a3:5c:1f:6d:36:e4:a2:93:32:e0:ff:b4:e3:8c:68:
ee:54:f2:4c:06:84:25:b0:b1:35:47:9e:ac:42:02:63:33:bb:
b6:4f:d1:b6:34:d1:69:cd:e0:a1:1b:aa:dd:c4:9d:c0:0a:80:
b2:a3:bd:62:50:28:99:a4:b3:72:9b:ce:4a:4a:12:4a:8f:11:
f5:4f:f9:a7:0b:d6:42:34:ae:42:de:a5:d2:04:42:7e:fb:a9:
a2:ee:59:1b:9e:ed:37:b6:3e:7f:eb:8e:c3:56:1e:93:57:31:
08:b8:a6:22:ce:d6:c5:4b:ee:33:08:8c:46:8e:3b:f9:8d:da:
0e:28:6e:2c:ec:94:f4:ad:a6:4e:84:bf:4b:a8:55:43:6a:94:
e1:c7:67:1d:49:57:92:2b:a0:32:a5:2a:14:65:66:61:63:7e:
9f:b1:c6:74:38:11:24:08:3e:79:8d:b0:ad:2b:5c:57:b0:27:
11:db:e0:3d:ae:6b:03:eb:1a:d2:9f:b9:2e:9c:ec:6f:9a:ab:
73:7a:bd:1b:ef:37:63:5f:87:db:c4:0e:1e:4f:a0:1c:d7:7d:
6c:5c:4f:c5:a0:13:85:b0:12:94:44:d8:66:9e:97:1d:b9:f0:
c1:85:2d:22:e4:7f:5f:d6:6d:0c:5e:b7:d4:15:33:75:04:a8:
0c:89:a3:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:11 2024 by rpki-client on console-ams.rpki-client.org