Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ydeA1Q0YCgZ_yHBGUbrBak9_R1E.roa
File: ydeA1Q0YCgZ_yHBGUbrBak9_R1E.roa (raw, json)
Hash identifier: AHXfxIRjNpQVLHgkIett67OTIba6S/Q2x1nL5pQ6sY8=
Subject key identifier: C9:D7:80:D5:0D:18:0A:06:7F:C8:70:46:51:BA:C1:6A:4F:7F:47:51
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81EBAD63F8F13E5E239FEB66D59DDD4E
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ydeA1Q0YCgZ_yHBGUbrBak9_R1E.roa
Signing time: Wed 07 Feb 2024 04:55:22 +0000
ROA not before: Wed 07 Feb 2024 04:55:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212468
IP address blocks: 2a0f:b241:c7::/48 maxlen: 48
2a0f:b241:cf::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:eb:ad:63:f8:f1:3e:5e:23:9f:eb:66:d5:9d:dd:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 04:55:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c9d780d50d180a067fc8704651bac16a4f7f4751
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c7:c7:9b:cc:a6:c9:46:a1:8c:ae:47:e2:29:
9d:b1:d9:26:35:5b:41:66:f9:81:f3:f5:cd:6b:4b:
fb:e2:2a:4e:a8:bf:6f:52:eb:a4:0b:20:4b:b2:9a:
77:fe:c5:dd:77:88:6a:70:19:0f:8d:de:89:7d:df:
e2:32:24:04:1e:a5:45:ba:8f:3b:75:86:80:06:53:
74:0e:c9:3b:4f:63:2a:08:9d:a5:b4:84:90:fb:c6:
23:d2:13:c4:0f:60:7b:6c:5b:89:58:c1:0d:84:8d:
37:43:37:c5:a9:4d:da:d6:66:4e:ca:6b:e0:98:e0:
7f:aa:82:e8:00:d4:2a:96:37:76:cf:18:bd:fc:23:
01:5e:1b:75:7b:1a:a5:44:91:e6:84:b6:08:07:94:
21:c8:ff:09:fe:02:5d:8b:90:56:bc:35:43:64:34:
2a:76:07:dd:32:02:d1:71:02:6a:b9:77:cb:34:fb:
28:bf:63:52:6c:16:d3:01:d6:f0:66:2c:55:ab:e5:
07:4d:db:e2:f7:7e:dc:34:b2:e7:da:95:c8:52:3e:
ac:68:50:08:5e:af:68:4d:ef:3d:a5:e2:46:bc:94:
53:f5:70:57:72:d4:6e:b2:da:d0:7b:47:7d:c1:af:
f6:3a:ae:97:76:c1:11:1d:f5:16:84:56:5e:6c:db:
28:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:D7:80:D5:0D:18:0A:06:7F:C8:70:46:51:BA:C1:6A:4F:7F:47:51
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ydeA1Q0YCgZ_yHBGUbrBak9_R1E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:c7::/48
2a0f:b241:cf::/48
Signature Algorithm: sha256WithRSAEncryption
8a:0e:4d:84:86:11:c3:ae:6d:6f:75:dd:28:41:b3:58:bb:6a:
43:a1:f9:b7:42:dc:be:8a:bb:e6:e6:89:17:bb:16:9a:af:6f:
26:8f:90:e4:77:c3:37:b3:de:de:d0:0f:fd:15:42:20:30:d0:
f7:9e:76:f0:5f:63:3d:65:c0:dc:4c:01:f6:81:25:7c:75:b2:
84:e0:91:67:b3:ac:9b:a8:0b:f6:12:86:33:29:f4:29:12:7d:
c7:33:85:d4:14:75:38:a1:a4:f2:5c:3d:71:45:cc:97:f8:66:
18:4d:20:28:b3:00:b1:d8:e6:c1:06:b2:1a:ae:b3:0c:bc:95:
48:fd:2e:a4:a0:2d:7d:86:b7:e8:46:75:33:a8:83:a5:75:0f:
d6:9f:f0:9b:99:36:5d:a9:e2:d7:5d:cb:d2:88:38:9e:e0:90:
6a:be:7e:00:35:b2:a7:75:91:d1:79:45:c4:a3:4a:4b:41:eb:
ad:a3:fe:2e:38:b0:a0:1e:92:ec:21:41:b9:cd:30:9d:69:c5:
1f:e0:94:bc:bd:d9:7d:6b:62:46:0e:74:4f:78:1c:1e:8b:d6:
27:3c:f5:9f:ff:b7:6f:52:4d:51:2b:d7:ca:c1:d7:d8:26:dc:
29:2e:06:ef:aa:51:91:2d:c9:8a:58:49:c5:7e:ef:a7:44:97:
2a:9d:cb:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:11 2024 by rpki-client on console-ams.rpki-client.org