Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/bofqdSH-u2dt15JQXlZ88dd-uwo.roa
File: bofqdSH-u2dt15JQXlZ88dd-uwo.roa (raw, json)
Hash identifier: 5o9/X1lSjKxoPZTGjDSDzpEdZT2+WGBee70/rrzGQdc=
Subject key identifier: 6E:87:EA:75:21:FE:BB:67:6D:D7:92:50:5E:56:7C:F1:D7:7E:BB:0A
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 01856F42DEDAC39A90087E1A8000F8F1D9F0
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/bofqdSH-u2dt15JQXlZ88dd-uwo.roa
Signing time: Sun 01 Jan 2023 21:35:31 +0000
ROA not before: Sun 01 Jan 2023 21:35:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211517
IP address blocks: 2a0e:8f02:f03f::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:de:da:c3:9a:90:08:7e:1a:80:00:f8:f1:d9:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: Jan 1 21:35:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e87ea7521febb676dd792505e567cf1d77ebb0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:3c:2e:c8:dc:2d:5d:dc:29:4b:11:e7:ff:cd:
7e:2b:55:3e:c6:a3:71:00:4d:22:d2:50:e0:5a:c1:
9d:51:18:f7:5a:9e:76:f6:5f:f4:75:32:8e:80:2b:
60:8a:ac:1c:23:c5:c4:9e:f0:b2:10:ab:3c:e4:2f:
5c:2f:59:1f:1d:43:cb:87:7b:43:e3:6c:4a:d8:fd:
eb:56:d1:35:86:71:89:23:b7:a6:a4:c2:f8:dd:92:
70:3c:85:64:c2:70:a3:bc:ec:e6:dd:6a:17:f6:1a:
11:4d:f5:1e:f4:58:0f:21:98:09:06:00:d0:da:e4:
46:23:7d:d7:13:c3:df:f7:35:10:e3:3b:28:b7:43:
2c:99:0f:b7:8b:84:3e:f2:b7:e6:f8:f6:50:28:87:
88:82:91:7b:bd:90:9c:a1:0b:cc:2e:fc:7c:7e:cc:
1f:e1:b6:c5:3b:85:45:74:56:38:68:5a:99:85:a4:
5a:61:b6:9d:88:63:8b:97:8b:e7:0b:bd:9f:db:f6:
6e:0d:f5:2c:49:6f:d7:b9:e2:46:16:67:e3:c9:4b:
d3:5e:0c:b4:6b:bd:7d:9d:e3:2a:54:59:1e:82:2b:
83:ea:9f:8f:9e:c8:3d:22:65:0f:49:15:b5:27:f4:
53:6d:0d:65:03:89:d0:dd:49:c1:2e:28:60:44:af:
39:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:87:EA:75:21:FE:BB:67:6D:D7:92:50:5E:56:7C:F1:D7:7E:BB:0A
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/bofqdSH-u2dt15JQXlZ88dd-uwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f03f::/48
Signature Algorithm: sha256WithRSAEncryption
44:a5:c0:69:5d:7a:71:85:e7:55:a8:2b:9f:3e:e5:b1:06:dc:
fb:c8:12:1a:22:ad:7f:6e:1c:8a:a4:45:cf:57:6a:6d:48:cc:
1d:63:aa:83:45:55:1a:77:58:ec:18:0f:04:5e:7c:5d:c1:1e:
41:71:9f:bd:6f:2c:74:e0:35:ae:d9:40:17:c8:e8:54:f9:8b:
88:d0:32:49:1c:c3:aa:fe:4c:47:d7:f3:98:19:7a:6d:38:90:
4d:bc:bf:f4:74:0e:6e:fe:8b:67:bc:a8:8d:ca:44:51:61:e9:
9b:a5:30:53:49:80:f0:95:fa:73:ac:90:72:60:15:a4:90:e5:
96:66:df:e1:91:6f:42:f0:1c:67:3d:30:ae:1f:93:92:49:80:
d5:aa:cb:28:5a:4a:a3:77:c2:b7:a3:a3:f0:96:d2:18:86:73:
eb:a4:66:d2:a1:f0:56:ba:9d:44:e2:e5:7d:ac:dd:3a:0e:40:
c3:23:9f:37:86:2b:e3:89:73:ea:c2:52:c1:02:c3:12:1e:19:
0a:46:37:7c:32:96:7e:55:c9:59:5f:03:66:0d:e9:1f:b3:7b:
2e:07:38:0c:b5:df:67:f5:ee:ad:4d:66:72:f5:e9:3c:33:22:
16:a0:c0:83:b8:6c:b7:f1:00:79:50:de:89:0c:83:6f:94:20:
6a:68:dd:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:00 2024 by rpki-client on console-ams.rpki-client.org