Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/B4L_hH4JqA-6PaQDA9_l5yqVLv4.roa
File: B4L_hH4JqA-6PaQDA9_l5yqVLv4.roa (raw, json)
Hash identifier: WkSBNZqio+mmihCxMCiitNODXHyPNMhmY5LsRVy6OPY=
Subject key identifier: 07:82:FF:84:7E:09:A8:0F:BA:3D:A4:03:03:DF:E5:E7:2A:95:2E:FE
Certificate issuer: /CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Certificate serial: 018C3EE529A0525437E666AA96E678F963F5
Authority key identifier: B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/B4L_hH4JqA-6PaQDA9_l5yqVLv4.roa
Signing time: Wed 06 Dec 2023 11:30:54 +0000
ROA not before: Wed 06 Dec 2023 11:30:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 2a11:8f85::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3e:e5:29:a0:52:54:37:e6:66:aa:96:e6:78:f9:63:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Validity
Not Before: Dec 6 11:30:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0782ff847e09a80fba3da40303dfe5e72a952efe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:84:dc:49:64:77:fe:06:a2:06:9d:25:7b:ca:
0b:36:b1:42:1d:97:b9:b9:7f:ef:74:84:cf:15:da:
8c:0d:7e:5e:49:a9:2f:48:8e:d7:8f:2d:79:28:46:
4e:5f:ae:55:1a:9b:9a:2a:bd:20:6f:8d:f9:ba:a0:
fc:a5:ea:7d:16:07:5d:a6:60:c7:29:6f:bf:b0:a6:
01:5f:d6:16:ed:22:4f:24:94:61:07:38:f3:69:69:
a1:41:c1:80:32:69:5d:3e:f7:9b:a8:16:75:74:34:
e9:43:5a:91:2d:f3:a9:da:5e:84:bc:3d:06:2c:47:
4d:00:a0:16:76:28:a0:4d:ff:02:f9:eb:c3:da:77:
7e:db:20:5c:47:d3:66:4f:ae:c5:1c:20:86:75:4e:
88:41:a3:a9:d4:6f:d5:84:ec:70:0c:12:f3:fb:b4:
f1:02:43:4c:78:d8:a9:e0:9c:f6:c3:84:0d:93:c7:
2c:c0:40:13:74:7b:7e:f6:c6:58:77:0e:31:9e:d7:
2c:bc:de:63:14:52:cc:78:30:4f:bc:61:b3:71:12:
d0:2d:85:5f:00:9d:2e:71:60:96:41:47:11:52:7a:
e5:d9:d9:0c:27:cc:f3:d0:8f:5c:53:c6:ef:ea:10:
2a:de:e6:6a:24:b7:eb:08:53:a8:f2:0f:52:df:3d:
d2:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:82:FF:84:7E:09:A8:0F:BA:3D:A4:03:03:DF:E5:E7:2A:95:2E:FE
X509v3 Authority Key Identifier:
keyid:B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/B4L_hH4JqA-6PaQDA9_l5yqVLv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:8f85::/32
Signature Algorithm: sha256WithRSAEncryption
5c:22:f1:39:37:e9:d0:22:ef:9d:7e:53:77:cf:8a:96:cb:54:
4b:fc:0e:88:ad:1f:b2:31:fb:a0:ef:6f:1a:a3:f2:6f:66:12:
6d:cf:cb:d3:83:1b:b1:4b:6b:a2:95:8f:b3:fd:28:1b:ac:f3:
34:6d:af:9c:3f:e0:63:c0:e5:5e:43:6b:e1:25:78:8c:ea:7c:
d5:fa:99:a6:d4:3c:21:9b:b7:db:cf:4b:34:24:40:d3:81:22:
1e:67:61:ed:fa:82:cb:e2:62:2d:1e:f1:b3:ee:bd:95:db:08:
ab:c6:96:b1:22:3e:1a:1a:36:75:ab:af:e4:5c:f4:55:44:8d:
bb:55:38:b8:ee:02:17:d1:e5:fb:b5:45:fc:10:6d:e7:c6:8b:
31:60:45:b4:5a:92:9b:87:84:bc:85:75:02:50:79:3e:d0:27:
a3:78:6b:37:b5:bd:6e:b8:af:60:9c:17:f8:58:bc:d8:da:82:
91:9d:81:ad:c4:61:94:c4:1b:cc:3f:5e:21:dd:a4:be:ec:36:
6f:4d:09:e4:77:d8:c8:82:74:eb:96:9f:e7:33:35:f3:03:87:
61:b9:56:8e:f2:9c:05:45:8a:31:de:70:ee:30:99:6a:42:e3:
d2:47:72:2d:da:03:21:84:68:e7:86:a9:99:ec:3a:4e:f0:ac:
40:09:83:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:18 2024 by rpki-client on console-ams.rpki-client.org