Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/BhB_6A1stmx4cSdKJKGRGivwwNw.roa
File: BhB_6A1stmx4cSdKJKGRGivwwNw.roa (raw, json)
Hash identifier: J7hwH2d+MFF+9wyZdBGDbvW+9CxWReeQkdQwCLPG7Es=
Subject key identifier: 06:10:7F:E8:0D:6C:B6:6C:78:71:27:4A:24:A1:91:1A:2B:F0:C0:DC
Certificate issuer: /CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Certificate serial: 018BAEB4F7EFEC178213D460ED633D806347
Authority key identifier: B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/BhB_6A1stmx4cSdKJKGRGivwwNw.roa
Signing time: Wed 08 Nov 2023 11:32:57 +0000
ROA not before: Wed 08 Nov 2023 11:32:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56694
IP address blocks: 2a11:f182::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ae:b4:f7:ef:ec:17:82:13:d4:60:ed:63:3d:80:63:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Validity
Not Before: Nov 8 11:32:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06107fe80d6cb66c7871274a24a1911a2bf0c0dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:35:bf:45:bd:af:f5:0e:d1:f7:37:60:db:21:
38:6a:0a:b2:2e:bb:4d:7c:a1:a9:87:6c:49:47:47:
7b:e0:28:9c:3b:40:a3:57:c3:5b:5b:cb:7e:7a:a7:
66:7a:ab:36:5f:56:f4:82:e0:3b:d4:1c:06:2f:8a:
88:71:be:91:3c:be:ac:f8:1b:c6:6e:03:ec:cc:c6:
70:cd:83:99:8d:10:81:d3:63:11:d1:bb:2c:20:36:
f0:20:d5:82:8a:f4:c2:93:b4:a6:71:08:e9:1a:de:
41:7b:59:cf:ff:ca:a2:72:27:dd:b7:24:81:d8:e2:
d8:f1:bc:a6:d2:d9:12:95:dd:12:22:8e:59:3a:72:
c4:32:28:9d:de:57:b0:41:8f:e2:c7:98:07:df:d0:
3e:2a:4f:00:b3:23:1a:a1:d2:44:95:fa:4e:18:ee:
85:f8:ba:0c:2c:66:d0:48:9a:b8:41:c8:98:4f:df:
5d:c0:25:1e:b5:6c:cd:1e:b7:d8:7b:5e:d0:b4:f3:
63:34:58:d1:10:78:53:b1:5f:e3:93:ef:0c:b1:0b:
4e:09:00:2d:99:eb:42:b3:9b:67:6a:38:23:b7:66:
2a:5e:6f:b7:dc:31:13:9b:7f:cd:7a:0f:57:42:a1:
40:59:bd:01:e1:19:5d:1a:3d:15:3d:ef:af:a0:47:
00:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:10:7F:E8:0D:6C:B6:6C:78:71:27:4A:24:A1:91:1A:2B:F0:C0:DC
X509v3 Authority Key Identifier:
keyid:B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/BhB_6A1stmx4cSdKJKGRGivwwNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f182::/32
Signature Algorithm: sha256WithRSAEncryption
54:2f:9c:bd:30:cc:68:7d:4b:5b:bf:34:ff:65:b3:ff:3e:b7:
8e:0b:99:5f:51:fa:d1:d5:62:60:de:17:05:49:f1:b5:ad:62:
87:2c:5e:48:9a:2f:af:7a:a5:81:12:a5:7c:ce:10:69:2a:e6:
01:e9:a5:db:db:d5:18:1a:4b:c0:26:5d:02:59:c0:91:a8:63:
d6:03:d2:6a:63:53:5c:e6:af:f5:5d:36:4d:c5:ed:0b:d0:64:
71:de:cc:aa:bd:43:58:44:b2:58:a6:a8:20:dd:c4:1d:ea:ca:
4e:cc:a4:ee:e3:38:39:de:2f:04:a7:2a:7c:7e:cd:40:55:40:
81:79:fa:25:72:58:ac:d3:a6:95:f9:86:b3:c8:96:6d:ac:57:
18:93:49:4b:52:61:c0:e7:f8:f8:6f:e0:2b:fc:63:8f:a4:85:
68:f2:0b:8d:f9:d8:d3:e4:ef:ab:56:68:bc:9c:13:78:77:56:
14:70:f7:ee:46:03:ef:b7:3f:86:b3:31:35:c1:40:be:8e:26:
2d:0f:dc:df:29:53:77:6a:b3:59:f8:26:0e:af:a9:ef:c4:51:
3e:c1:74:a3:62:3b:c2:0f:f2:0a:80:20:92:23:1f:12:03:32:
59:42:30:f9:93:9b:99:b4:78:00:12:2e:4e:5f:3c:e0:59:eb:
66:9c:1a:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:18 2024 by rpki-client on console-ams.rpki-client.org