Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/uyGSSTbtZhBFqOOZWB3tx1AEssw.roa
File: uyGSSTbtZhBFqOOZWB3tx1AEssw.roa (raw, json)
Hash identifier: GamxXJOQ+98x1u4gCr0mNDfbJnY/X+6c3No0wPRjQdU=
Subject key identifier: BB:21:92:49:36:ED:66:10:45:A8:E3:99:58:1D:ED:C7:50:04:B2:CC
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018ECA65B527A96F8D5DDBD5EA69C2104038
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/uyGSSTbtZhBFqOOZWB3tx1AEssw.roa
Signing time: Wed 10 Apr 2024 23:44:06 +0000
ROA not before: Wed 10 Apr 2024 23:44:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 922
IP address blocks: 2a0f:b241:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 10 Apr 2024 23:50:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ca:65:b5:27:a9:6f:8d:5d:db:d5:ea:69:c2:10:40:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Apr 10 23:44:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb21924936ed661045a8e399581dedc75004b2cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:70:11:52:55:15:01:ec:82:09:76:f2:03:f5:
49:80:92:62:ad:02:01:8b:88:d1:c0:cc:e5:34:8f:
58:f0:3a:fc:66:ac:04:b0:bb:86:98:ef:8a:57:e9:
71:1a:16:57:4f:52:49:a4:c3:ee:45:0a:bb:31:8e:
bb:c3:88:35:87:67:35:ca:91:b6:7b:2e:85:8d:d5:
18:b6:e1:9f:6d:b7:bb:7c:49:8b:0c:1f:29:95:a7:
06:55:bc:1e:e6:8b:0e:73:9c:da:4e:9c:c1:6e:53:
20:17:98:58:bc:da:1d:d6:ca:95:08:d9:c5:3f:37:
8d:90:fd:87:6c:de:d0:38:73:0c:60:32:39:e3:60:
04:88:ee:c5:ef:a2:d3:c9:e7:a1:0a:18:c1:bc:c5:
48:72:76:29:05:e0:d5:12:a4:41:74:a5:6d:3f:98:
4d:e2:be:27:f0:fe:69:e3:38:ee:2c:b6:01:45:ac:
ee:b4:40:5c:3c:a7:00:f5:13:23:81:21:d7:03:9a:
d9:60:ce:91:8a:60:51:95:ee:ad:7f:42:bf:23:22:
97:df:02:a0:b3:9b:2e:d0:cd:c4:57:31:2b:8e:b7:
34:84:69:15:85:74:5e:bf:ec:13:8f:21:91:fc:4e:
ee:63:0f:f1:0d:1f:ac:b1:65:da:b1:cc:eb:2b:af:
0e:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:21:92:49:36:ED:66:10:45:A8:E3:99:58:1D:ED:C7:50:04:B2:CC
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/uyGSSTbtZhBFqOOZWB3tx1AEssw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:2::/48
Signature Algorithm: sha256WithRSAEncryption
87:d8:b5:5d:97:0a:44:38:08:3d:e0:f2:05:67:18:25:2b:e4:
0b:d4:5e:39:4e:29:8b:22:0d:5f:fb:61:66:5a:52:23:61:a4:
3c:57:c4:27:c6:d8:d9:41:b4:3d:35:38:c0:72:43:d2:aa:a0:
6a:88:91:78:2d:ee:b0:0c:9a:49:bc:7b:44:0b:ff:c4:e7:9a:
21:05:fa:53:94:45:48:1f:ef:e1:8d:c3:b9:69:36:7d:f2:f9:
ff:dc:9a:c8:a8:09:2d:64:63:6f:19:3f:6c:ca:1f:c8:98:ba:
e5:00:e5:4f:52:58:ea:00:82:10:71:f0:a0:56:e2:9b:7f:fc:
7d:8f:aa:79:9f:23:a7:45:96:3c:3d:e9:99:d5:36:7e:29:1a:
0f:71:3b:3a:de:3d:e7:6e:1f:45:b3:bd:be:5b:d4:ca:f2:1d:
73:27:65:8e:1b:f8:0d:14:a0:f8:84:e0:fe:8f:0c:48:b8:27:
82:b3:12:c2:b9:82:e0:fe:13:e8:9b:a7:d4:30:1a:ed:f7:10:
ed:d1:ad:ad:17:8f:98:da:da:ec:c9:8a:e0:f6:80:ef:10:2d:
cc:a5:14:d4:66:da:9b:91:e8:98:0a:e6:6c:7b:94:da:6d:90:
bc:31:88:8b:d7:ab:7e:e0:82:e2:5a:08:12:c6:1d:f3:83:d9:
e8:a4:df:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:14 2024 by rpki-client on console-fra.rpki-client.org