Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/0g0fbd2cxd-EiBskjUIFu8BkZW8.roa
File: 0g0fbd2cxd-EiBskjUIFu8BkZW8.roa (raw, json)
Hash identifier: Fj4d4RfNzBil+MSP7liGz9fqcbSkfqRxeQdfEXeuNo8=
Subject key identifier: D2:0D:1F:6D:DD:9C:C5:DF:84:88:1B:24:8D:42:05:BB:C0:64:65:6F
Certificate issuer: /CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Certificate serial: 0192B9A1BB383A1397C502E4771A7737F661
Authority key identifier: B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/0g0fbd2cxd-EiBskjUIFu8BkZW8.roa
Signing time: Wed 23 Oct 2024 13:47:16 +0000
ROA not before: Wed 23 Oct 2024 13:47:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209641
IP address blocks: 2a0a:f587::/32 maxlen: 32
2a0e:fb44::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 31 Oct 2024 19:07:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b9:a1:bb:38:3a:13:97:c5:02:e4:77:1a:77:37:f6:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Validity
Not Before: Oct 23 13:47:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d20d1f6ddd9cc5df84881b248d4205bbc064656f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:47:9c:37:5e:3c:7e:11:cb:2a:f7:93:da:21:
dd:9d:8e:95:d4:4e:06:20:15:69:ed:fe:cb:a4:a9:
54:ba:71:99:cf:b7:59:c1:51:47:e4:75:bf:8c:30:
60:bd:8a:4b:80:57:0b:35:f6:35:4e:53:d5:41:e8:
89:2a:97:1a:19:0b:94:48:0a:83:64:97:df:54:3f:
76:a6:51:e6:fc:26:ed:ac:bb:94:78:b2:31:1a:d8:
fa:9c:4b:84:e4:ab:9f:d0:05:4c:24:52:63:fc:24:
83:20:2c:1d:8d:7b:4a:ef:f2:78:7a:be:f2:66:2d:
6c:ab:d4:f1:2a:61:84:b0:ed:59:97:22:0a:51:76:
97:50:82:56:c8:51:3c:0f:45:f0:12:7b:13:7a:43:
2f:f3:63:0e:35:09:67:66:20:20:c7:66:81:3a:db:
f4:c1:81:74:5e:87:81:f2:d3:00:57:5d:20:a8:af:
aa:22:72:36:7f:61:80:62:eb:39:d1:5e:28:63:db:
b7:68:e9:e2:d3:03:26:87:ae:aa:cc:3c:f8:a4:db:
47:b7:95:1b:39:eb:df:09:2c:f9:3d:91:d7:9d:73:
71:c7:85:0e:44:00:92:4f:d1:a9:79:a8:22:2f:e6:
b9:ad:29:25:6c:3f:16:07:99:91:f4:e8:e4:1b:9e:
63:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:0D:1F:6D:DD:9C:C5:DF:84:88:1B:24:8D:42:05:BB:C0:64:65:6F
X509v3 Authority Key Identifier:
keyid:B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/0g0fbd2cxd-EiBskjUIFu8BkZW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:f587::/32
2a0e:fb44::/32
Signature Algorithm: sha256WithRSAEncryption
bf:b0:e1:76:73:0a:a8:0d:41:f9:88:3d:07:42:4a:65:dc:a1:
b9:7b:a0:d1:0e:fb:dc:a2:92:21:d3:53:fc:a9:41:44:b7:96:
a2:68:ac:98:43:10:a6:63:3f:06:fe:8a:49:ea:ca:33:fe:5d:
6b:39:7e:3e:b5:b7:2a:c8:a1:e6:5f:d3:a2:06:85:c6:0d:d3:
24:84:28:27:6c:18:78:47:8d:2f:b1:40:94:08:9a:12:6e:3e:
95:6c:8a:dc:e3:a4:ba:d7:71:67:87:c1:35:8e:87:6b:c7:d9:
2d:e9:f2:e8:c9:e6:3f:ae:4b:4d:e0:04:1c:c2:b6:16:f1:cf:
e3:fb:0c:9c:bf:de:3f:3b:df:ff:5b:02:f1:e1:63:82:ca:8b:
21:13:1e:66:70:31:7a:45:20:a1:ed:82:1e:e6:f7:84:2e:c8:
fc:92:44:4e:06:f3:3a:fc:6e:28:77:dc:3a:09:7b:a8:6c:80:
28:11:fb:c3:52:f3:f7:18:7a:72:5a:71:f8:32:08:e6:68:51:
c2:55:6f:ae:c1:38:0e:f4:1c:44:1e:57:b1:44:f7:1e:42:3a:
f3:79:35:23:6b:d2:33:78:0f:61:23:b5:ad:9d:2f:84:3e:16:
d8:84:08:32:ca:f0:f9:1f:37:11:26:1c:3e:cc:a1:56:8a:c0:
df:a6:3f:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 31 21:20:00 2024 by rpki-client on console-ams.rpki-client.org