Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/wTSICqz-8BPOj3NnqsMYFqrRARY.roa
File: wTSICqz-8BPOj3NnqsMYFqrRARY.roa (raw, json)
Hash identifier: EzFYdJBfhW362e2BCDxJVEXFtQupgyFyyIu0Q5kiu+w=
Subject key identifier: C1:34:88:0A:AC:FE:F0:13:CE:8F:73:67:AA:C3:18:16:AA:D1:01:16
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F09E0C136CE7900F3E1D7507390799
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/wTSICqz-8BPOj3NnqsMYFqrRARY.roa
Signing time: Wed 07 Feb 2024 05:00:46 +0000
ROA not before: Wed 07 Feb 2024 05:00:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209507
IP address blocks: 2a0f:b241:45::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:9e:0c:13:6c:e7:90:0f:3e:1d:75:07:39:07:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c134880aacfef013ce8f7367aac31816aad10116
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:45:90:c2:6e:a4:28:51:72:81:90:8b:5f:66:
33:45:aa:d3:49:69:95:6e:d3:4d:de:e6:2f:e3:c6:
b3:16:95:a8:68:a0:d9:9f:c1:76:43:6c:3d:e3:5d:
5e:c5:e8:72:19:4b:e6:9d:53:a2:07:9e:78:23:d4:
76:a9:12:f1:55:9a:38:c4:58:aa:60:70:e4:87:7a:
45:ca:83:a2:36:ad:d4:de:70:b0:34:be:53:47:64:
35:83:ea:96:89:e5:9f:0b:b6:28:b3:a5:d2:9a:a5:
b4:9d:88:aa:b4:33:24:93:70:8e:91:20:35:2b:1d:
7f:14:3f:24:a4:43:1d:e7:9e:bd:76:93:81:e0:df:
c3:55:6b:23:89:b8:e3:73:69:32:5b:08:52:03:5f:
64:63:a7:90:e1:7f:db:3c:0f:c0:63:82:5e:05:79:
71:69:a4:58:97:ce:45:a5:e6:02:46:d6:06:79:63:
c4:06:f2:20:e1:95:3f:83:5a:36:35:d0:e0:a5:f8:
ae:02:82:43:c9:fb:7a:f2:97:96:28:f9:6a:63:cd:
ae:65:c6:dc:76:04:9b:4c:e6:c2:d0:aa:5f:50:f3:
89:3e:cb:82:bc:c7:23:2d:72:89:fd:f9:f0:7b:2e:
ec:21:19:ed:b5:0c:9b:08:3c:20:ca:44:ac:7e:ef:
05:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:34:88:0A:AC:FE:F0:13:CE:8F:73:67:AA:C3:18:16:AA:D1:01:16
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/wTSICqz-8BPOj3NnqsMYFqrRARY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:45::/48
Signature Algorithm: sha256WithRSAEncryption
19:95:b1:4e:8a:27:c3:28:a1:d5:d2:26:ca:9a:a7:e8:e1:2b:
66:f0:20:9c:ba:46:03:ad:ab:64:74:52:02:41:b4:ab:da:5f:
6b:51:13:ec:1b:8f:aa:d5:5b:7f:07:0c:ee:98:ed:27:22:59:
cc:5b:37:6e:ef:9e:67:c2:18:ed:a6:c1:76:92:09:fd:f2:2c:
88:51:b7:c1:f6:ae:ad:12:2a:a5:2f:46:6b:73:31:9c:93:5b:
75:da:fb:06:a3:73:a9:7e:65:57:92:a5:a8:b4:bf:2a:84:42:
01:f3:39:51:6a:08:ed:98:41:4c:67:b9:e5:77:3b:9a:1d:5e:
f5:ad:f5:4a:ab:2b:ee:ef:a1:12:46:9e:ad:1b:9b:5b:2f:55:
a9:12:91:4c:96:c1:20:74:52:64:88:63:be:72:19:3a:1e:af:
cd:85:83:ca:9a:4c:f3:8d:e3:a7:91:94:1f:52:a3:21:c8:ac:
22:56:e9:41:23:a9:5e:5f:32:f5:23:c8:3d:ac:19:9a:a6:6a:
eb:24:88:c7:a6:bf:81:f9:11:26:a0:be:cb:20:97:63:a0:a2:
a9:37:36:f2:fe:46:8b:6a:4e:04:6b:19:3d:68:e3:86:96:48:
06:e1:cc:69:cc:20:b8:ea:2c:6b:3c:31:25:8b:ef:bb:43:10:
56:b3:17:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:14 2024 by rpki-client on console-fra.rpki-client.org