Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/zZzMo4onf8CzUCjltfB9ch9AUUg.roa
File: zZzMo4onf8CzUCjltfB9ch9AUUg.roa (raw, json)
Hash identifier: lYf1C5CkMWDG1Wfa5scEWanbIGawXdC+T1Du5/hLwF0=
Subject key identifier: CD:9C:CC:A3:8A:27:7F:C0:B3:50:28:E5:B5:F0:7D:72:1F:40:51:48
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FACA25DCADE0943C620FD12F44ED35B
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/zZzMo4onf8CzUCjltfB9ch9AUUg.roa
Signing time: Tue 06 Feb 2024 18:27:16 +0000
ROA not before: Tue 06 Feb 2024 18:27:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210397
IP address blocks: 2a0f:b241:f8::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ac:a2:5d:ca:de:09:43:c6:20:fd:12:f4:4e:d3:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:27:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cd9ccca38a277fc0b35028e5b5f07d721f405148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:2c:e5:fb:06:d0:4e:e4:92:e5:46:ed:31:e2:
bc:16:38:29:bf:9f:c7:d0:d9:9d:71:37:20:ab:1a:
23:34:90:a2:86:51:fa:20:5e:ca:a9:4d:54:b2:11:
ce:e1:6a:8c:d8:af:b1:95:e2:50:05:cd:9a:8e:8e:
94:44:04:08:91:ec:da:51:58:81:0a:e8:18:6b:88:
96:5c:17:8e:0b:b8:5b:28:f8:e2:aa:95:d2:95:c9:
90:af:22:a4:5d:e3:57:aa:58:fd:00:63:18:57:54:
61:08:95:d2:c6:4b:cb:22:88:fe:76:83:ea:b5:f7:
83:a2:d5:c6:0c:5e:6b:5e:59:fa:67:e6:c2:78:c0:
13:2d:cc:28:9a:b0:c3:43:cb:3e:55:3b:33:ea:96:
ed:2b:07:a9:91:59:2e:b2:8b:6a:a8:82:9d:40:5b:
01:07:5e:d9:c0:17:19:c6:74:d5:be:e2:b3:13:cf:
11:fd:4c:10:4f:3b:5c:37:d9:bf:44:47:12:a4:7a:
52:04:b7:f8:4a:5a:f7:f4:6a:f1:86:d8:b6:57:40:
77:3a:96:3a:57:a7:60:03:80:7d:46:f5:1b:18:2b:
b8:28:6c:43:8d:8e:50:dc:ae:59:44:85:70:26:29:
4a:93:a7:1d:cf:b6:3f:97:2e:a4:3d:fe:72:c2:cd:
cc:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:9C:CC:A3:8A:27:7F:C0:B3:50:28:E5:B5:F0:7D:72:1F:40:51:48
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/zZzMo4onf8CzUCjltfB9ch9AUUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:f8::/48
Signature Algorithm: sha256WithRSAEncryption
3a:5b:eb:1a:76:73:2e:6c:b3:ac:53:4f:e7:df:88:59:c6:36:
36:87:d9:d8:cb:8d:05:06:be:31:35:3c:6d:f8:03:24:83:43:
4f:eb:80:89:73:81:31:6a:5e:41:eb:c5:06:dd:61:a8:bb:6e:
ed:1d:88:40:47:18:1d:c5:dd:5c:b2:8d:e0:1c:25:2f:af:77:
05:56:f3:2d:86:92:bc:19:14:d2:dd:ba:91:6f:a6:f9:45:00:
be:04:b7:bf:d3:16:86:fb:e4:e3:2d:b4:1b:1b:1f:9c:de:03:
a7:66:b3:30:da:ae:a6:89:b6:99:f2:5f:6f:4b:6f:30:0b:be:
5b:06:c3:c2:57:f5:ee:b9:05:74:e7:81:e8:4c:d7:36:ac:f1:
6b:9c:0b:1f:a4:bd:d8:01:06:a8:c3:2a:89:d7:45:bd:48:46:
17:b1:1d:2a:f4:7f:78:08:c7:d9:57:03:58:54:88:3d:6f:3c:
36:99:ab:c5:26:8d:1b:90:7f:ae:d6:0b:a9:c3:c6:54:d4:ac:
80:9b:5a:dd:33:df:da:5c:14:c0:77:40:8d:5a:6f:07:10:9e:
10:94:fc:02:62:e3:e8:64:ef:e8:ba:80:c9:9c:69:fb:5e:91:
88:2c:c0:14:4f:00:9c:ec:d4:2f:0b:b9:c2:bb:a3:48:cc:c6:
49:0a:45:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:11 2024 by rpki-client on console-ams.rpki-client.org