Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/yRNlBfiVFk3IT9p346RuvdbsyeE.roa
File: yRNlBfiVFk3IT9p346RuvdbsyeE.roa (raw, json)
Hash identifier: +Tg4wtv8tRlCKmdV3nNjaW1lrx6jVythDjVSTmbO0OI=
Subject key identifier: C9:13:65:05:F8:95:16:4D:C8:4F:DA:77:E3:A4:6E:BD:D6:EC:C9:E1
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0BC6301701006C95EA8A9900F96F7
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/yRNlBfiVFk3IT9p346RuvdbsyeE.roa
Signing time: Wed 07 Feb 2024 05:00:54 +0000
ROA not before: Wed 07 Feb 2024 05:00:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216072
IP address blocks: 2a0f:b241:2a::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:bc:63:01:70:10:06:c9:5e:a8:a9:90:0f:96:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c9136505f895164dc84fda77e3a46ebdd6ecc9e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e1:9b:56:41:6f:ca:a8:b9:8c:3f:b2:0c:5f:
82:73:fe:32:96:21:35:2c:60:fa:43:d6:e3:52:82:
17:66:c3:96:95:fe:eb:03:44:b7:c7:6b:33:9e:a9:
b9:9b:39:88:9d:39:a7:12:5a:de:d6:04:1b:d1:56:
5b:61:46:5b:47:f2:7e:5d:81:01:29:0f:c6:42:35:
ac:5f:ef:5b:43:7e:e0:9f:ae:5a:95:cb:55:09:85:
64:60:fe:0c:0d:8d:49:3d:4b:41:4a:17:41:53:fc:
41:e4:68:52:58:85:91:12:05:f8:fa:d0:aa:00:a5:
aa:25:6b:5d:ab:e8:74:46:4a:b0:2c:53:3c:f8:41:
f7:71:50:26:0c:f5:3d:05:e9:f6:cc:3c:12:fe:51:
54:64:85:29:04:5d:23:01:a5:21:ce:b8:53:d2:14:
e5:d4:88:26:9e:a3:99:e4:7b:a0:be:72:bc:e2:b2:
c9:96:3e:2b:9d:b4:1e:d3:86:cf:3d:43:c0:44:32:
46:85:39:7f:63:d1:64:e8:ec:04:11:c7:12:c0:f6:
42:4f:cf:59:06:1e:26:e5:75:4e:7d:9d:7e:28:ec:
a2:b4:d3:ac:18:08:a8:12:d1:4b:fe:cd:a3:46:6f:
66:96:40:dd:43:f1:63:6a:c1:69:14:39:08:73:eb:
3e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:13:65:05:F8:95:16:4D:C8:4F:DA:77:E3:A4:6E:BD:D6:EC:C9:E1
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/yRNlBfiVFk3IT9p346RuvdbsyeE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:2a::/48
Signature Algorithm: sha256WithRSAEncryption
2b:43:5d:42:74:d1:98:94:66:be:c6:6f:28:cb:07:64:01:8c:
e8:a7:78:57:a2:2b:9d:b2:12:d0:d7:dc:ab:99:da:aa:7c:fe:
b9:20:74:82:33:cf:f1:35:b1:6d:64:01:72:ff:3e:bf:69:69:
25:5a:10:de:dc:c5:b3:68:9c:e1:fc:ea:70:ba:a5:bb:74:65:
5a:34:e5:75:09:da:1d:71:42:ff:f5:b3:70:bf:9e:e5:62:40:
d8:08:c5:f8:99:93:8e:50:00:78:00:08:96:f6:ef:4a:82:c8:
a4:8e:c2:ce:79:71:95:5a:de:ee:09:34:5b:8f:94:99:71:28:
af:77:d6:8b:96:18:3f:f4:82:98:aa:c2:9f:5a:a7:3d:b9:0f:
d4:80:83:23:a0:ae:a2:59:a7:65:ec:cb:a9:8c:d7:91:8b:a9:
39:e0:4e:a2:bc:27:f9:46:03:f8:c8:b5:71:d5:dd:b5:2d:21:
90:68:25:fb:30:0c:82:4a:8a:38:b5:5f:17:74:98:a6:03:f4:
71:fa:dd:22:3a:b5:3c:b1:73:fb:85:96:0a:79:55:e2:da:2b:
89:d0:e2:9b:38:84:3d:78:78:4a:b4:b2:d3:67:d1:87:98:92:
5b:04:db:f0:aa:e7:ce:c6:e6:0a:52:3e:ae:17:a5:0d:75:86:
eb:c8:46:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:14 2024 by rpki-client on console-fra.rpki-client.org