Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/xOSnoNVY10Vw6x_CiGAeRYGjxdA.roa
File: xOSnoNVY10Vw6x_CiGAeRYGjxdA.roa (raw, json)
Hash identifier: ZIgj0zPGpg3V3e2UuDm8zTp3MnU1cxbyaZBreJgdvg0=
Subject key identifier: C4:E4:A7:A0:D5:58:D7:45:70:EB:1F:C2:88:60:1E:45:81:A3:C5:D0
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA80A81704558AF8BB658F3F9E56682
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/xOSnoNVY10Vw6x_CiGAeRYGjxdA.roa
Signing time: Tue 06 Feb 2024 18:22:15 +0000
ROA not before: Tue 06 Feb 2024 18:22:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199607
IP address blocks: 2a0f:b241:87::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a8:0a:81:70:45:58:af:8b:b6:58:f3:f9:e5:66:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:22:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c4e4a7a0d558d74570eb1fc288601e4581a3c5d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:d8:e2:06:cf:86:c3:22:25:dc:85:9c:61:a2:
98:e9:4b:23:f6:2d:03:47:d1:28:38:12:02:0e:71:
85:31:5a:5e:eb:38:1d:95:20:ac:ca:33:87:cf:95:
ee:99:63:74:ba:08:12:51:f6:1e:ab:6c:31:db:58:
e5:aa:f4:a2:95:21:be:b9:35:6d:36:b9:8f:08:fb:
2a:e9:09:67:e3:09:ae:e7:5c:83:db:17:a0:1c:ad:
ac:a6:fd:c4:88:03:93:96:6b:43:12:f5:e9:b8:22:
6d:fd:53:f7:fb:83:f2:60:ab:6b:a4:80:02:2e:ad:
72:3b:4b:f9:b6:a6:8b:ff:f8:78:e6:96:47:4e:55:
8e:ee:f2:d3:a5:9b:67:cd:f6:4a:fc:6b:e8:47:4d:
8b:d7:c6:a8:94:ee:4d:92:20:aa:f2:c9:80:95:c0:
19:9a:4d:a1:60:7f:98:45:f4:14:e7:e6:5d:0d:37:
d3:74:9b:40:69:07:ca:72:c2:78:d8:3f:21:24:90:
51:e2:8e:e1:80:eb:45:89:a5:db:7b:56:7b:a1:78:
9a:16:c6:0a:f7:43:33:dd:40:be:b5:c8:f3:ec:b2:
33:d1:d5:e9:ae:3f:dc:1d:3f:17:1a:e0:f9:be:cb:
c8:b1:05:70:19:eb:d6:6d:d9:90:81:af:f2:52:00:
71:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:E4:A7:A0:D5:58:D7:45:70:EB:1F:C2:88:60:1E:45:81:A3:C5:D0
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/xOSnoNVY10Vw6x_CiGAeRYGjxdA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:87::/48
Signature Algorithm: sha256WithRSAEncryption
62:fb:c5:eb:d0:87:16:58:ab:65:09:f6:50:25:72:35:89:bb:
a2:b4:e6:0a:43:a4:61:e4:8d:91:67:12:f5:ff:84:69:b4:99:
fb:e2:3d:21:34:cc:aa:63:04:7c:ce:46:39:d1:52:37:df:e4:
ab:6e:6e:a5:0b:d8:99:1f:8b:8b:28:9a:a0:41:97:b2:85:4e:
51:bd:43:80:83:d0:95:e3:54:7a:32:7d:50:64:17:00:80:92:
d0:e7:62:70:3e:93:3d:da:9b:56:60:bb:09:c1:91:fc:76:df:
78:dd:e4:1f:95:67:b3:67:7f:c6:75:e6:54:55:3d:85:3f:0e:
09:e0:68:5d:d0:2d:9e:a7:14:88:cd:6c:86:28:a7:31:6b:e1:
b5:f2:46:58:9e:3f:2a:dc:1d:59:bd:ff:33:48:b9:83:08:17:
47:d1:d6:f8:c0:9e:4a:26:f6:7b:c3:c4:a8:30:88:68:8a:c0:
d2:64:97:54:41:51:23:ac:06:93:a2:d8:e9:69:be:e9:22:f5:
6d:11:95:35:71:ef:9a:7d:65:2a:c2:13:4a:e9:1b:ca:4c:37:
eb:34:c0:30:9a:1b:23:08:76:6a:8c:78:23:0f:7e:b3:73:87:
fc:28:70:e5:28:4c:6e:50:20:56:59:ee:36:7f:c7:34:23:c0:
1d:58:e5:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:14 2024 by rpki-client on console-fra.rpki-client.org