Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/P-Lfi81rQN0smcCt6YZgn4gGDao.roa
File: P-Lfi81rQN0smcCt6YZgn4gGDao.roa (raw, json)
Hash identifier: +QxOfSak0tXDoI2nMFW1qjyszMmpNFeyZVYGqTurxDk=
Subject key identifier: 3F:E2:DF:8B:CD:6B:40:DD:2C:99:C0:AD:E9:86:60:9F:88:06:0D:AA
Certificate issuer: /CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Certificate serial: 018E13D3F2FF57C44190E6128B058593E9AC
Authority key identifier: B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/P-Lfi81rQN0smcCt6YZgn4gGDao.roa
Signing time: Wed 06 Mar 2024 12:54:01 +0000
ROA not before: Wed 06 Mar 2024 12:54:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213220
IP address blocks: 2a11:8f87::/32 maxlen: 32
2a12:1805::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 23 Mar 2024 16:10:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:13:d3:f2:ff:57:c4:41:90:e6:12:8b:05:85:93:e9:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Validity
Not Before: Mar 6 12:54:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3fe2df8bcd6b40dd2c99c0ade986609f88060daa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:a4:43:0f:6e:96:49:87:2b:77:e9:e4:7e:01:
52:4d:65:2f:5f:66:cb:ac:aa:c4:99:b5:54:d5:28:
6b:84:5d:f2:17:17:da:9e:66:1b:cf:6c:49:70:ee:
b8:cb:70:e6:d9:b1:1e:06:e5:ab:00:77:64:48:a5:
30:71:f9:6b:76:f8:56:9f:86:29:92:7a:3d:e7:e7:
c6:4d:c2:17:b3:30:f3:76:c4:d3:c8:b8:74:0d:d6:
cc:07:17:7a:12:d9:48:55:ba:cd:8d:b2:05:94:29:
bb:82:57:88:3b:e9:77:30:0b:65:6b:16:be:f8:b2:
ed:2f:aa:03:0e:0f:ba:4e:85:5a:21:2b:31:f9:d3:
a3:2e:14:1c:1c:92:59:bd:f4:cf:b7:ba:1a:98:44:
5f:a3:24:7f:e4:44:fa:0b:68:de:1a:79:15:1e:50:
c1:fd:30:c9:01:0e:c0:2b:ca:ff:61:07:fd:26:a8:
1b:c1:53:e7:8e:05:7f:af:16:65:88:08:c9:dc:6f:
c1:59:bf:a1:81:d0:54:45:0d:73:40:f5:1e:c7:39:
5d:49:e2:8b:34:5d:70:a7:b9:be:fe:2a:70:a4:cb:
e8:78:e3:8c:a9:7e:62:80:44:69:aa:55:a8:bd:5f:
66:7a:ca:dd:0a:90:91:23:41:6c:d5:24:8a:67:a9:
64:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:E2:DF:8B:CD:6B:40:DD:2C:99:C0:AD:E9:86:60:9F:88:06:0D:AA
X509v3 Authority Key Identifier:
keyid:B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/P-Lfi81rQN0smcCt6YZgn4gGDao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:8f87::/32
2a12:1805::/32
Signature Algorithm: sha256WithRSAEncryption
8a:e6:75:1a:42:a5:8a:dc:d9:d7:18:91:e5:41:6a:b5:5b:b6:
41:9a:04:bb:47:2f:3e:c3:25:83:35:7c:b1:db:f3:f6:ef:59:
31:45:02:08:01:bd:70:d3:99:9c:75:42:f4:8e:56:3e:9d:16:
a1:55:cd:ca:9a:22:64:8d:11:d7:bc:97:41:6f:7c:c3:b9:8d:
06:ca:c4:94:f5:91:54:85:9e:1b:d9:07:54:ad:d7:76:4e:9e:
39:64:c7:47:cd:40:56:4f:01:aa:95:bf:8d:ee:1b:2b:ad:05:
8e:ae:b6:32:ee:fd:f5:cd:7a:1b:f7:bd:69:57:96:12:37:c1:
e4:7b:03:e8:11:a0:38:00:46:b5:54:43:b4:38:c6:62:f7:ff:
60:5a:88:08:be:81:e0:40:ab:51:ba:79:68:b4:69:1c:7e:75:
b1:c2:f3:aa:24:ef:7e:c9:77:4b:e6:3e:7a:73:22:cd:2f:16:
97:b4:84:65:e9:a1:89:30:02:eb:65:6b:f0:00:9c:b2:f1:71:
04:22:ab:29:77:7f:b8:86:aa:0e:a6:63:05:f6:11:12:c1:36:
fd:1f:a3:b0:37:30:bf:28:0f:0a:0b:83:c5:54:81:59:36:e9:
1c:d8:c2:73:d6:91:88:60:ee:0c:ef:24:2b:4f:6f:ae:2e:e2:
1b:77:09:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:50 2024 by rpki-client on console-fra.rpki-client.org