Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/vr3hW7tSdlUsA4ys61kPedROSa4.roa
File: vr3hW7tSdlUsA4ys61kPedROSa4.roa (raw, json)
Hash identifier: s8F0dz5+CK1/htzA6wpmtunJ+A7LWwM3NnY0W+VUZcU=
Subject key identifier: BE:BD:E1:5B:BB:52:76:55:2C:03:8C:AC:EB:59:0F:79:D4:4E:49:AE
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F076180F10FC27F2C57EE5565B7684
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/vr3hW7tSdlUsA4ys61kPedROSa4.roa
Signing time: Wed 07 Feb 2024 05:00:36 +0000
ROA not before: Wed 07 Feb 2024 05:00:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199307
IP address blocks: 2a0f:b241:12d::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:76:18:0f:10:fc:27:f2:c5:7e:e5:56:5b:76:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bebde15bbb5276552c038caceb590f79d44e49ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:12:22:45:ce:fd:6a:78:b1:a4:37:4d:94:4f:
f8:d9:c3:81:27:76:65:00:de:fb:27:ab:7d:40:c8:
5e:59:d1:26:6a:4d:7b:ec:f7:e5:26:e7:ae:b0:df:
2c:74:2f:9f:a1:10:44:fc:04:f5:41:1e:0f:e9:41:
78:b9:62:57:0b:bd:56:bd:5d:3b:3b:a9:f3:af:fd:
b6:cc:df:96:5c:d4:ae:6b:31:5a:63:3f:35:ce:00:
96:18:26:23:9f:be:17:ee:e1:9a:22:88:16:59:de:
cb:b5:a4:de:05:a6:2a:80:7a:23:0b:45:19:5c:3b:
84:88:a7:3c:47:6b:a8:0a:2d:a6:bb:b5:4f:39:8f:
2e:9c:b1:e0:c4:76:e2:21:63:93:2f:67:53:0c:df:
48:21:de:7d:8f:f3:45:32:dd:9b:2d:89:23:ed:58:
3c:9c:76:54:0a:eb:80:f1:5e:ce:0a:87:9b:2b:9b:
bf:35:c6:c5:f8:29:29:aa:94:0d:d7:b0:79:ab:5b:
c8:8e:41:38:ba:b6:52:ea:73:1a:93:08:3c:bb:ad:
c1:e8:a3:1b:6b:19:49:b5:bb:3d:30:af:6d:98:5b:
69:fd:78:ff:8b:f9:1b:bc:69:f1:00:3e:9f:9d:ee:
34:01:d5:f5:94:2a:41:68:e5:c1:45:a2:34:32:b9:
fd:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:BD:E1:5B:BB:52:76:55:2C:03:8C:AC:EB:59:0F:79:D4:4E:49:AE
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/vr3hW7tSdlUsA4ys61kPedROSa4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:12d::/48
Signature Algorithm: sha256WithRSAEncryption
0d:0c:d4:72:57:b7:b1:06:94:28:9f:4c:a0:65:5b:c0:16:7c:
63:1b:b3:94:ac:d1:95:ae:cc:5d:85:c2:09:21:f8:94:db:63:
c2:1c:d9:49:d8:3b:a3:d3:54:a9:73:7a:47:16:d5:ec:af:dc:
96:ec:f2:1a:9d:56:73:b2:de:a3:13:a2:ef:d8:01:2e:46:07:
50:fa:b1:fe:e8:8a:21:97:01:41:24:42:e7:d5:37:54:e8:dd:
b0:8d:d7:af:63:2a:16:93:a2:71:30:cc:0d:79:76:da:ec:57:
f5:db:c8:25:d2:c9:73:18:ab:5c:d4:d8:9f:db:ea:fb:ed:df:
b7:b4:cf:55:fc:ee:04:fb:1b:24:b8:64:c1:c5:22:55:04:88:
80:c7:c1:e2:30:4a:05:18:6e:ab:52:b6:d6:78:fa:64:bf:f2:
72:00:e6:0c:9e:85:d3:9c:be:f9:ef:c8:2f:e8:f3:15:8d:2b:
40:bb:1b:00:60:d6:cb:3c:4c:8c:09:ab:71:2e:78:38:a9:80:
85:b0:77:ca:a4:65:65:a6:15:17:bd:77:ce:df:16:30:2c:80:
17:88:eb:fb:07:e9:0d:56:c1:bc:30:45:a5:77:45:70:76:f3:
62:bd:06:57:88:ba:50:14:a6:7a:1c:ad:6c:60:ac:41:c8:d4:
f0:2f:69:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:11 2024 by rpki-client on console-ams.rpki-client.org