Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/Ql5v4DMKQRCXqTo0jmAYXSOeiSM.roa
File: Ql5v4DMKQRCXqTo0jmAYXSOeiSM.roa (raw, json)
Hash identifier: Ba8r1SBsZfe7kWhbqw7n9WaIQF0SENi8ihSosZK+p9I=
Subject key identifier: 42:5E:6F:E0:33:0A:41:10:97:A9:3A:34:8E:60:18:5D:23:9E:89:23
Certificate issuer: /CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Certificate serial: 018E0A1522BA57C004286EB97B7A18F09F20
Authority key identifier: B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/Ql5v4DMKQRCXqTo0jmAYXSOeiSM.roa
Signing time: Mon 04 Mar 2024 15:29:01 +0000
ROA not before: Mon 04 Mar 2024 15:29:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213220
IP address blocks: 2a11:8f87::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 06 Mar 2024 12:54:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:0a:15:22:ba:57:c0:04:28:6e:b9:7b:7a:18:f0:9f:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Validity
Not Before: Mar 4 15:29:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=425e6fe0330a411097a93a348e60185d239e8923
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:fc:3e:6f:78:a8:63:92:cb:3a:d1:ac:5e:26:
11:17:6e:3f:bf:60:d4:a8:0f:41:fa:a8:8b:0a:f6:
74:9c:90:bb:9b:fe:88:41:6b:9f:14:76:ae:40:85:
7f:7a:93:df:fc:d9:53:b4:7f:f8:1b:06:c1:31:e2:
fc:5f:96:b8:a6:3f:5b:40:93:90:93:3c:61:9e:43:
1d:f5:18:02:5d:06:4d:60:06:b1:56:01:af:9c:8e:
3b:c1:cf:75:03:b4:38:aa:ed:84:a9:d1:75:cd:2f:
ae:48:1c:65:80:6f:fe:28:f4:b9:28:f8:18:99:95:
8c:24:29:64:0e:dd:94:2c:f6:11:98:72:4f:ed:e1:
77:0c:b5:17:0b:ea:a5:4a:44:81:e8:26:0a:6b:fa:
35:f0:53:f9:75:8b:4b:3e:1e:a5:f6:a6:02:d5:a9:
ec:21:54:90:6d:7c:50:ff:4d:25:9d:99:fe:a9:f5:
99:5f:c5:8a:ac:63:32:33:1e:ac:fe:93:49:1c:ee:
1f:39:9c:23:9d:eb:a0:29:27:f8:e4:42:c6:2c:1e:
10:c7:31:d1:5c:39:53:97:cb:3f:73:69:de:e0:1e:
c2:d2:b4:79:d5:b0:95:7d:5b:52:73:04:9d:3a:f1:
d3:91:4a:bc:ef:8e:5c:53:3c:8c:c0:fa:9a:b6:78:
fb:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:5E:6F:E0:33:0A:41:10:97:A9:3A:34:8E:60:18:5D:23:9E:89:23
X509v3 Authority Key Identifier:
keyid:B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/Ql5v4DMKQRCXqTo0jmAYXSOeiSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:8f87::/32
Signature Algorithm: sha256WithRSAEncryption
97:a7:77:e7:5c:79:f6:9a:f7:01:dc:52:e7:fd:2b:6e:36:fc:
ff:f8:96:a7:9a:3c:fd:28:99:b0:4c:66:15:1f:c7:f3:f1:27:
70:8b:e5:9a:c9:24:8e:34:35:ff:c8:9a:8c:a7:0f:e8:a1:aa:
58:5a:48:10:f0:a2:7b:c6:02:77:7f:bc:4a:f4:74:8d:ea:0d:
0d:84:6f:b7:47:ea:29:a1:9b:db:66:30:3f:fc:82:65:99:0a:
51:37:43:cd:ac:03:4e:2c:01:f9:5d:75:71:76:6c:38:e6:2f:
21:f9:c0:1c:69:51:5f:d0:2a:46:a6:2b:71:5e:86:e7:f5:ab:
56:09:4a:bc:7e:00:a1:a3:b2:45:c5:8f:bd:0b:13:6a:8e:3f:
e6:63:d7:c8:e8:a0:39:a9:0c:48:69:15:c6:57:28:6e:82:e0:
8d:fa:ae:30:2f:bf:56:7f:aa:f2:3a:46:21:0d:b5:43:82:aa:
35:06:c9:cd:6b:45:54:d1:32:b2:b7:fa:61:19:2c:41:8b:54:
2a:ed:15:73:c6:be:81:9e:e2:d2:79:d4:51:e9:58:e3:fe:d5:
1e:4b:27:a3:10:c5:d1:36:3d:fd:ca:16:f0:53:8e:44:06:8d:
a8:6d:02:ed:5e:8e:6d:ec:1b:1f:88:75:6b:c3:c4:f5:24:f3:
3c:a5:0c:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:50 2024 by rpki-client on console-fra.rpki-client.org