Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/6_a4_zzj18nDE67Bb0PrHKyU1qo.roa
File: 6_a4_zzj18nDE67Bb0PrHKyU1qo.roa (raw, json)
Hash identifier: dTkg7lfeOFndhs+/9szg3IexG3kHITz7V3oPVnHeboY=
Subject key identifier: EB:F6:B8:FF:3C:E3:D7:C9:C3:13:AE:C1:6F:43:EB:1C:AC:94:D6:AA
Certificate issuer: /CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Certificate serial: 018AB8E20E7EF128D79A20475A62E09C87C9
Authority key identifier: B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/6_a4_zzj18nDE67Bb0PrHKyU1qo.roa
Signing time: Thu 21 Sep 2023 17:55:37 +0000
ROA not before: Thu 21 Sep 2023 17:55:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213220
IP address blocks: 2a11:8f81:fcca::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 28 Nov 2023 11:09:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b8:e2:0e:7e:f1:28:d7:9a:20:47:5a:62:e0:9c:87:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Validity
Not Before: Sep 21 17:55:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ebf6b8ff3ce3d7c9c313aec16f43eb1cac94d6aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:a2:88:2a:a3:61:5c:12:cf:7f:b4:0a:84:bd:
2c:96:01:c0:40:81:cc:49:04:32:fd:2d:dd:fd:e4:
a1:22:21:d0:14:50:02:cf:01:10:85:2d:d8:4d:80:
de:61:3a:5c:78:96:67:6d:06:00:94:13:30:7a:a8:
e5:fa:f4:a9:9c:ce:30:e0:a4:8e:56:6d:c8:b2:7a:
62:02:52:38:0a:ed:69:73:ff:54:7d:ff:5c:d4:99:
96:1b:5d:e0:1e:5a:18:e9:85:68:a8:28:88:92:7b:
0e:7e:ae:d4:34:03:cb:61:9d:57:20:93:a4:ea:e3:
ca:6f:e1:7d:18:15:cb:04:87:58:fc:f6:a2:01:f3:
eb:ff:06:77:08:78:fd:49:ce:7e:43:d7:28:9d:51:
48:49:83:ea:16:ed:19:62:9a:17:9c:cd:af:ca:da:
d9:0e:2b:43:22:39:e6:71:27:2d:2c:4f:14:ca:ce:
35:c3:30:ca:54:7e:cc:8f:90:e7:5b:36:be:11:30:
48:b8:5a:9b:35:2e:aa:b8:76:ec:fe:3d:2f:82:2a:
75:71:a6:36:61:ad:8e:17:a7:cb:1f:8d:5d:c0:30:
e1:e9:62:69:07:cf:5e:90:51:b3:3e:42:ce:df:64:
7e:83:01:fa:0c:f9:01:85:f1:dd:6c:78:0a:13:43:
60:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:F6:B8:FF:3C:E3:D7:C9:C3:13:AE:C1:6F:43:EB:1C:AC:94:D6:AA
X509v3 Authority Key Identifier:
keyid:B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/6_a4_zzj18nDE67Bb0PrHKyU1qo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:8f81:fcca::/48
Signature Algorithm: sha256WithRSAEncryption
58:84:47:48:dc:cb:57:7c:d2:d9:e5:15:f6:fe:19:3e:04:8f:
ed:a1:c0:47:2d:4f:de:ad:3d:f9:76:01:13:a5:56:6f:06:ac:
08:9f:8f:0c:c3:06:e3:df:e3:b5:a4:c5:a8:65:21:39:bf:91:
c2:43:d0:15:ae:4c:13:6b:34:0b:cb:d9:c4:84:ad:ff:4e:3e:
21:52:f3:e8:b5:9b:d9:e4:e3:6b:29:17:4f:48:cb:cb:31:71:
37:a1:0c:79:cd:a0:33:54:4e:7f:cf:3c:32:84:d8:6d:ea:c2:
c8:4e:1a:b0:f1:be:23:80:cb:e5:4a:73:cd:c8:4c:10:a4:80:
50:6f:50:1d:83:68:0a:0e:0a:b3:1c:78:83:29:82:b7:28:fd:
ff:31:ba:f1:5a:27:26:40:db:19:6d:8c:ca:6c:9b:98:bf:e5:
8f:f7:1f:d4:bf:1a:ba:8d:8e:aa:10:fd:4e:8c:73:7b:1d:f3:
f5:b4:b5:bf:a3:75:55:df:2b:5e:52:60:89:e2:c1:62:97:43:
3d:fa:03:98:5f:20:25:d2:3e:96:46:c4:f8:dd:79:c0:40:4b:
66:be:38:7e:9c:60:d6:c4:e7:ed:48:78:08:43:67:b5:29:3d:
43:f6:6c:ba:4b:ad:a0:26:a4:63:fd:d7:f4:fb:19:db:ef:bd:
09:c4:c6:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:50 2024 by rpki-client on console-fra.rpki-client.org