Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/xBBr2y0CbjMIHERGL6bWX1IuIPw.roa
File: xBBr2y0CbjMIHERGL6bWX1IuIPw.roa (raw, json)
Hash identifier: FmY7HviinZYjM4AZpO+OT5kX2SSzoHMzAePB5pAmemo=
Subject key identifier: C4:10:6B:DB:2D:02:6E:33:08:1C:44:46:2F:A6:D6:5F:52:2E:20:FC
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F95BF144FC395E014B3933128D77AB9
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/xBBr2y0CbjMIHERGL6bWX1IuIPw.roa
Signing time: Tue 06 Feb 2024 18:02:16 +0000
ROA not before: Tue 06 Feb 2024 18:02:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209735
IP address blocks: 2a0f:b241:46::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:95:bf:14:4f:c3:95:e0:14:b3:93:31:28:d7:7a:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:02:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c4106bdb2d026e33081c44462fa6d65f522e20fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:29:6f:70:eb:95:d2:2a:fb:c4:a7:f5:b7:9f:
b8:48:fa:d5:20:59:d9:4e:24:19:98:7f:5c:9d:ac:
b7:4f:c7:a5:e1:dc:01:21:41:09:07:3f:c1:bc:b6:
3a:4d:b7:24:c2:e4:d4:c8:bc:17:95:62:5c:9a:af:
fe:bf:5d:c0:92:f3:23:01:f7:23:ce:5c:98:c1:00:
20:b1:33:29:11:0a:3b:c3:c8:34:25:3b:ee:ed:b0:
51:89:08:31:af:57:fc:12:bf:82:fa:b0:e9:ea:04:
4e:4e:c3:97:e8:d6:43:ff:4a:39:3a:f9:83:08:20:
bc:7b:64:9e:ec:30:6d:0f:75:92:da:2d:f2:60:1f:
1b:24:e1:78:07:72:21:7c:93:94:e4:f6:61:0e:e4:
04:16:55:2e:b7:48:2a:83:19:c1:cf:59:d0:be:52:
d9:54:4c:11:89:15:ed:aa:f1:e2:e2:d5:35:7d:69:
d5:2b:ea:3e:68:22:84:6b:63:27:cb:24:82:49:34:
ba:6f:b9:8b:03:38:d0:40:a9:62:23:b4:44:9e:32:
f4:4f:b0:d6:a9:c3:fb:ba:fa:15:c0:c6:84:a7:8f:
e2:a1:b0:a7:71:79:81:61:88:4a:ae:26:95:99:71:
71:b6:06:7c:b7:29:36:40:6c:0e:3c:81:42:7d:c5:
11:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:10:6B:DB:2D:02:6E:33:08:1C:44:46:2F:A6:D6:5F:52:2E:20:FC
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/xBBr2y0CbjMIHERGL6bWX1IuIPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:46::/48
Signature Algorithm: sha256WithRSAEncryption
53:ee:64:4c:2c:ce:41:43:54:cb:dc:4f:95:44:d4:09:c5:0f:
65:e9:6f:86:c0:9f:b6:73:1a:3b:0e:9b:dc:da:75:48:4b:12:
f5:07:05:3f:70:3b:26:03:83:36:da:ff:2d:71:0c:83:7a:40:
25:29:2b:cb:b0:2a:8b:40:da:dd:07:1a:69:55:5b:00:c5:28:
cf:96:a5:72:b3:e1:d1:58:ee:b1:87:6c:36:70:cc:aa:c6:19:
13:99:08:73:7d:1b:32:60:5c:fe:da:b8:cf:65:f4:26:ad:7f:
ab:5a:01:f1:d8:21:18:d5:bc:54:4b:c7:62:28:0b:88:3b:d9:
03:49:b7:e4:ca:7d:c2:db:f4:0d:68:76:cf:a7:f5:4d:63:09:
1d:b5:0c:62:ff:f2:62:0d:40:7e:e4:48:90:64:73:c4:97:47:
57:4f:b0:a0:1e:1f:08:7d:f0:38:de:aa:21:56:a4:e1:08:ad:
03:01:72:ea:ef:81:8b:a1:56:bb:63:b7:8b:12:48:1f:4a:91:
3f:54:fc:2c:14:b4:b0:84:3d:20:6d:83:11:ec:7d:3a:a4:12:
9c:1c:6e:74:b8:4c:6c:e6:11:90:4a:f7:f3:eb:20:f4:eb:8c:
f2:da:bc:e7:ee:75:9d:cc:32:c8:81:96:3c:10:39:65:e5:02:
0c:97:26:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:11 2024 by rpki-client on console-ams.rpki-client.org