Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/6bbf55-4d87-4e42-ba5e-e2f93533d6e4/1/87mEb8N0MM1P8P5mR9jD31oC-r4.roa
File: 87mEb8N0MM1P8P5mR9jD31oC-r4.roa (raw, json)
Hash identifier: ffjP2ESY7blFfrA7eDuheO2AiBXELbfZ2MjuqGRgZOY=
Subject key identifier: F3:B9:84:6F:C3:74:30:CD:4F:F0:FE:66:47:D8:C3:DF:5A:02:FA:BE
Certificate issuer: /CN=d4b39fc8a53be1dc674b6da755e86110952174e4
Certificate serial: 018CC86F185FB9C58918D80E669272169980
Authority key identifier: D4:B3:9F:C8:A5:3B:E1:DC:67:4B:6D:A7:55:E8:61:10:95:21:74:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1LOfyKU74dxnS22nVehhEJUhdOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/6bbf55-4d87-4e42-ba5e-e2f93533d6e4/1/87mEb8N0MM1P8P5mR9jD31oC-r4.roa
Signing time: Tue 02 Jan 2024 04:29:32 +0000
ROA not before: Tue 02 Jan 2024 04:29:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64457
IP address blocks: 2a0f:a302:500::/40 maxlen: 40
Validation: Failed, certificate revoked on Tue 06 Feb 2024 10:26:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:18:5f:b9:c5:89:18:d8:0e:66:92:72:16:99:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4b39fc8a53be1dc674b6da755e86110952174e4
Validity
Not Before: Jan 2 04:29:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f3b9846fc37430cd4ff0fe6647d8c3df5a02fabe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:97:f4:c5:9a:ef:55:30:65:e4:50:0b:45:31:
db:50:4e:30:e9:fa:5b:a8:86:4a:ff:a3:e0:fd:aa:
30:f9:90:99:04:b3:a5:04:22:f7:43:0b:3a:5a:bd:
fa:6f:cc:b3:69:59:82:fb:f3:53:aa:6f:53:d6:73:
ed:59:0b:db:d9:e9:12:25:b4:97:dd:ed:b5:cf:35:
56:03:ba:56:32:3d:9e:e8:89:09:2d:f6:78:e0:9c:
b4:88:8d:b7:84:75:f2:a2:f0:7f:94:17:cc:8b:f2:
89:2b:62:8d:f0:6f:52:a6:92:ef:d0:40:e0:c7:d8:
13:bc:97:68:64:86:91:e2:72:b5:2c:f5:b4:9c:c4:
08:0f:ef:c6:cc:89:2d:a1:3c:6b:0a:cd:ad:5b:ec:
e0:0f:37:8b:d9:96:9e:91:4c:19:5d:82:fc:1c:38:
eb:d2:1a:b9:30:29:1c:dc:50:eb:5c:22:13:fb:41:
82:3b:0a:b7:73:a4:23:02:f0:1b:bc:95:93:df:6c:
32:f7:37:71:cb:5c:0b:02:9d:16:d2:2f:d1:ff:d3:
de:dc:25:ad:27:97:2c:48:ad:61:4d:9b:75:c5:9e:
a8:7f:7b:f8:0b:e2:21:55:8a:46:16:1e:cc:32:67:
cd:c0:15:5d:0d:cc:91:57:30:50:fb:56:a7:a7:fe:
93:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:B9:84:6F:C3:74:30:CD:4F:F0:FE:66:47:D8:C3:DF:5A:02:FA:BE
X509v3 Authority Key Identifier:
keyid:D4:B3:9F:C8:A5:3B:E1:DC:67:4B:6D:A7:55:E8:61:10:95:21:74:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1LOfyKU74dxnS22nVehhEJUhdOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/6bbf55-4d87-4e42-ba5e-e2f93533d6e4/1/87mEb8N0MM1P8P5mR9jD31oC-r4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/6bbf55-4d87-4e42-ba5e-e2f93533d6e4/1/1LOfyKU74dxnS22nVehhEJUhdOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:a302:500::/40
Signature Algorithm: sha256WithRSAEncryption
7c:35:42:17:91:ec:a7:ca:02:87:12:f2:5c:f2:1b:e3:94:c3:
5a:2a:a4:5b:b1:43:69:99:73:b8:1c:1e:0e:1e:44:72:62:07:
a6:05:be:ba:ca:58:29:6a:c9:a1:b7:58:1a:e7:8b:6a:b6:f8:
60:97:65:a4:65:ae:4c:9a:5e:ed:16:5f:61:28:85:5e:08:32:
fa:4c:aa:97:16:8b:a2:f9:80:71:fc:39:c5:d3:8c:36:ca:61:
d9:95:f6:b2:51:12:0c:0c:70:f5:9f:77:11:3a:07:d9:ef:f3:
60:07:f6:b4:f0:17:51:aa:7e:9a:e7:56:b6:13:81:5d:c1:89:
d1:8e:ae:fc:22:17:32:72:9e:ec:83:a0:92:e8:74:94:13:18:
ed:24:f5:13:f4:f0:73:20:d6:72:b6:90:f5:8d:29:e5:2b:02:
1a:f6:0a:d1:44:44:22:90:96:28:f4:fa:fb:28:44:8d:b4:71:
fc:cd:d6:39:e9:44:c2:fd:85:0b:de:c4:82:74:39:7a:07:b9:
63:61:0e:2f:04:59:dc:05:9d:35:9a:50:a8:d5:fe:fc:31:4d:
ae:7f:d5:d7:83:85:34:9b:d4:6e:3f:e0:38:d5:e3:15:e2:75:
02:54:2e:0b:2a:80:9d:5b:b2:90:4c:87:07:db:12:49:1c:1f:
7c:68:dc:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 6 15:18:28 2024 by rpki-client on console-fra.rpki-client.org