Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/xWJpt5KZ3qR07CQj8wDTW9Zwpj4.roa
File: xWJpt5KZ3qR07CQj8wDTW9Zwpj4.roa (raw, json)
Hash identifier: +oZqTHPDK8Wjj/+fWLzxqBDPJRQp2vr5FTBVoXzDt6o=
Subject key identifier: C5:62:69:B7:92:99:DE:A4:74:EC:24:23:F3:00:D3:5B:D6:70:A6:3E
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA90271BD633DE84E36B0F7139DC8FE
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/xWJpt5KZ3qR07CQj8wDTW9Zwpj4.roa
Signing time: Tue 06 Feb 2024 18:23:19 +0000
ROA not before: Tue 06 Feb 2024 18:23:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200570
IP address blocks: 2a0f:b241:c2::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a9:02:71:bd:63:3d:e8:4e:36:b0:f7:13:9d:c8:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:23:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c56269b79299dea474ec2423f300d35bd670a63e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:b7:8a:de:80:97:3e:17:c0:06:19:80:87:fe:
48:b9:55:9b:d4:fe:59:68:95:78:25:35:21:b5:64:
21:15:f4:f2:22:76:55:69:5b:31:32:65:39:1f:b5:
52:f5:b6:06:5f:a3:0d:3a:01:37:93:ae:3b:b1:d0:
30:28:65:b0:d9:db:70:26:e5:a0:ba:3d:0a:f9:ed:
5f:95:92:e1:b7:a1:a7:cd:44:6e:9e:9a:dc:b9:9d:
db:18:60:51:80:96:67:03:f8:bd:68:78:0a:27:a6:
94:0c:fa:2c:74:29:0c:d6:68:92:af:be:73:da:6a:
07:d0:2a:9f:d8:68:b6:da:18:58:aa:96:01:60:7f:
51:7e:c9:92:cd:bc:76:1e:f6:87:0e:74:63:10:a2:
e3:ad:31:43:79:8d:ae:79:e3:e6:f3:df:12:7a:d7:
d6:3d:f1:24:2f:20:d8:91:e8:28:f9:b1:4b:83:b0:
0d:01:2e:e9:6a:ea:12:41:9e:e2:d0:c2:36:3f:d9:
82:06:75:ef:b3:d6:a4:6d:fe:0e:95:78:e7:92:8c:
46:84:63:ff:8f:ec:e3:06:78:cf:c7:5e:72:ea:be:
f5:d2:34:24:95:43:4a:8c:be:6d:b3:33:2e:46:aa:
ac:46:d3:ea:57:b3:e1:32:1a:69:cd:12:b5:b4:5f:
87:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:62:69:B7:92:99:DE:A4:74:EC:24:23:F3:00:D3:5B:D6:70:A6:3E
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/xWJpt5KZ3qR07CQj8wDTW9Zwpj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:c2::/48
Signature Algorithm: sha256WithRSAEncryption
4a:6c:5d:65:41:fe:ae:14:4a:94:75:14:dc:00:bd:d6:33:5a:
d3:c2:62:1a:4b:f0:7d:88:ba:11:33:1a:4e:b7:54:2f:0e:ef:
e9:1f:62:0b:ed:b0:04:22:24:89:d0:37:ef:8f:52:0d:0c:60:
f3:04:fa:42:91:98:82:d5:37:78:88:c6:f0:28:89:dc:df:50:
b7:f1:f0:68:d0:4e:2d:61:74:03:66:bf:58:03:b2:cd:a5:62:
dd:f3:21:87:30:66:a2:07:84:f1:e2:03:7e:d1:72:51:5a:d3:
ea:be:75:64:1f:2c:e0:2e:d0:74:3e:29:47:ec:0e:af:36:e0:
6e:bc:80:b8:cd:3a:73:9e:4b:0c:94:0f:94:cd:8a:d4:2c:3c:
10:66:33:12:17:24:98:d5:e8:69:89:94:fb:fa:30:46:c7:d4:
6c:6e:8e:c3:e6:36:cb:7d:bd:6f:c3:bd:20:1f:f9:58:42:73:
dd:e0:c0:c3:82:59:e7:9b:03:e6:b3:18:78:c6:1f:0d:d1:35:
e0:e6:f0:58:f2:7c:95:84:94:2f:50:23:83:bc:83:8f:8e:92:
3e:b8:a6:39:c2:51:73:12:e0:91:86:a2:40:45:86:ec:51:0d:
64:78:e2:76:4c:ba:bf:37:8e:0b:5a:18:fd:fc:79:3a:7f:55:
51:e0:53:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:11 2024 by rpki-client on console-ams.rpki-client.org