Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/xMoRVba6Yszn8ncmd5kHiKYZbQs.roa
File: xMoRVba6Yszn8ncmd5kHiKYZbQs.roa (raw, json)
Hash identifier: p9H1rkGc6fSWUeCcJiTq2YBU3z8JB58MoHpYEcltrhQ=
Subject key identifier: C4:CA:11:55:B6:BA:62:CC:E7:F2:77:26:77:99:07:88:A6:19:6D:0B
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB8934013EF8332A907716C730EAAE4
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/xMoRVba6Yszn8ncmd5kHiKYZbQs.roa
Signing time: Tue 06 Feb 2024 18:40:19 +0000
ROA not before: Tue 06 Feb 2024 18:40:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216382
IP address blocks: 2a0f:b241:159::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b8:93:40:13:ef:83:32:a9:07:71:6c:73:0e:aa:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:40:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c4ca1155b6ba62cce7f2772677990788a6196d0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:de:03:8e:0a:ca:11:3b:dc:ac:8b:78:48:1d:
9e:8b:f7:dd:ac:31:99:70:ce:bf:cc:8e:4c:2b:29:
1c:e8:93:b6:dc:1e:31:e1:32:c7:23:e5:2b:83:65:
a1:00:9c:ec:b1:c0:2f:ff:d4:47:ec:09:46:74:7b:
50:e5:40:cd:7e:67:9f:5c:d6:1b:9c:d1:c2:68:db:
89:39:87:23:a5:74:a8:1b:c3:e1:54:70:83:81:b9:
ea:b2:8a:fa:56:c0:97:07:e9:86:00:4a:57:30:7c:
5d:31:8f:5a:dd:b6:42:39:dc:8d:29:c1:10:5c:ab:
3b:01:cf:21:15:87:cb:89:18:8c:2e:be:f8:a8:aa:
00:70:41:f8:22:f6:d9:f6:db:6a:a8:61:14:a3:0a:
90:b5:37:60:14:52:ad:2d:ea:03:0b:28:6d:09:8e:
4b:4b:9e:9b:75:84:8a:7a:5e:dc:47:2c:dd:59:39:
1a:2e:87:93:dd:db:e8:64:df:80:54:2f:a1:77:cb:
c8:4f:47:06:4a:2b:e8:c6:e5:61:9c:46:51:bf:ed:
02:fe:32:ab:f7:20:a0:de:e0:9a:aa:ac:34:3d:4c:
3a:bf:da:26:94:c6:35:fe:87:05:3c:0c:83:fa:a2:
30:80:ad:fa:63:80:6b:d7:c9:a8:7e:4a:54:df:dc:
15:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:CA:11:55:B6:BA:62:CC:E7:F2:77:26:77:99:07:88:A6:19:6D:0B
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/xMoRVba6Yszn8ncmd5kHiKYZbQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:159::/48
Signature Algorithm: sha256WithRSAEncryption
72:81:fd:85:f6:5f:f8:18:b5:48:0d:98:c8:e8:c1:fa:22:bd:
cc:7f:37:ce:85:b2:28:51:6f:71:25:d8:5a:e3:f8:9b:7d:60:
6f:9e:cc:21:5c:16:df:b6:9f:61:03:ca:04:59:25:14:f2:77:
8d:7a:dd:69:6b:de:35:80:e8:6e:f8:8c:b3:75:8c:22:4a:91:
07:c7:3a:64:60:b9:14:1c:ee:0d:63:fa:c8:5b:61:12:8b:37:
10:a9:52:f7:32:73:02:05:b0:fe:e4:fe:c2:e7:7c:b0:5e:27:
b5:3f:7c:8e:6a:b7:ed:4d:87:24:7b:ef:24:2e:df:3d:d3:65:
c3:3d:26:33:56:59:57:a9:85:bf:66:00:cb:91:14:66:5c:6b:
0f:1f:47:38:8f:ba:fb:4c:fd:43:31:51:98:aa:a7:85:d4:03:
9a:fa:16:63:a6:1c:4e:81:5c:9b:fb:f2:5a:77:68:f1:52:7b:
de:a3:66:f6:f9:05:b7:1b:58:f8:dd:0d:d1:f5:9d:26:9d:74:
50:ab:b4:92:04:e5:90:db:37:bb:f2:cf:4a:d6:5c:e0:14:d1:
11:a1:fb:c4:ac:b5:f8:67:d4:a4:c6:58:78:c5:e9:c4:22:6a:
23:9a:11:b7:f4:13:8a:04:f0:0c:73:84:c3:0a:27:11:25:15:
06:62:c0:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:11 2024 by rpki-client on console-ams.rpki-client.org