Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/_tOCZKU8OMv4_MfC82XVvOcXyy4.roa
File: _tOCZKU8OMv4_MfC82XVvOcXyy4.roa (raw, json)
Hash identifier: ZibYSNl9p30kE5iXqPzSEN0eXdnb8OiuJV3WOXjpFNw=
Subject key identifier: FE:D3:82:64:A5:3C:38:CB:F8:FC:C7:C2:F3:65:D5:BC:E7:17:CB:2E
Certificate issuer: /CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Certificate serial: 01924C6658B157F86073C38B02C3EE958770
Authority key identifier: B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/_tOCZKU8OMv4_MfC82XVvOcXyy4.roa
Signing time: Wed 02 Oct 2024 08:43:48 +0000
ROA not before: Wed 02 Oct 2024 08:43:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204490
IP address blocks: 2a11:6503::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 04 Oct 2024 08:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:4c:66:58:b1:57:f8:60:73:c3:8b:02:c3:ee:95:87:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Validity
Not Before: Oct 2 08:43:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fed38264a53c38cbf8fcc7c2f365d5bce717cb2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f7:31:a0:44:fc:4e:1b:f8:14:5a:94:0d:0e:
46:4b:7b:f2:ef:4a:ac:67:6e:50:a4:d6:bc:45:85:
78:b4:bd:6a:5a:2b:7b:02:ba:ad:d5:fd:1d:24:ce:
9e:40:4c:7d:68:ec:b9:2b:4c:9a:81:58:f7:0b:c4:
48:ec:6a:ee:cb:80:d6:41:6a:c3:3f:89:ba:74:97:
8f:0e:a3:8f:a2:19:33:c4:cc:30:db:1f:8c:38:80:
6f:ed:5a:2e:64:9f:1c:79:6a:cd:39:c4:f4:24:2f:
97:18:80:cf:a8:d3:13:58:df:97:a2:d1:00:c2:f9:
9d:78:2e:a4:42:db:49:e0:de:5f:38:37:60:43:db:
f5:3b:54:6f:87:8f:03:17:02:71:17:69:55:be:dd:
95:6b:28:a8:48:c3:00:b9:2b:69:16:03:c6:68:71:
18:69:df:8a:35:02:78:43:96:b1:8a:db:bc:d7:61:
56:7b:06:47:6a:1f:6c:f2:d6:c4:d6:16:8e:a0:09:
83:af:6b:35:74:80:0b:d7:03:7d:dc:38:62:b8:fc:
21:cd:5a:8b:d2:88:af:c2:03:52:2b:a2:a3:e7:5a:
96:82:cf:ae:cd:1e:78:19:0d:c9:1a:48:ac:9d:c9:
88:36:9d:80:0f:e2:99:24:20:29:3a:81:92:41:fb:
5b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:D3:82:64:A5:3C:38:CB:F8:FC:C7:C2:F3:65:D5:BC:E7:17:CB:2E
X509v3 Authority Key Identifier:
keyid:B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/_tOCZKU8OMv4_MfC82XVvOcXyy4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:6503::/32
Signature Algorithm: sha256WithRSAEncryption
61:aa:d3:77:0e:77:fd:de:b7:fc:fb:ab:64:cd:cb:d0:69:34:
fb:e2:82:e1:5c:2e:1b:1d:f9:f6:fe:1d:43:91:54:ac:36:29:
b2:da:e6:38:d7:0a:b8:c3:cd:ef:0a:45:db:f7:27:35:98:e2:
b3:8a:d7:b2:0b:f8:b5:6a:65:86:ec:43:a3:8b:6b:b0:38:58:
9f:94:32:02:cf:7b:4f:3e:76:74:83:47:fd:4b:5e:c7:b3:bc:
8a:57:50:0b:c9:58:fe:97:ea:e8:0e:14:f4:da:40:4f:3e:cd:
61:f3:8a:db:86:54:aa:19:db:92:b2:3e:ad:af:a7:83:4b:d4:
23:b4:b0:d9:a0:f7:df:c4:36:28:e8:15:d2:9b:1c:27:e2:bf:
7b:3a:45:06:90:ff:b3:2f:0e:1a:94:b1:98:d5:ed:ac:b8:f8:
a9:dd:c7:b3:6a:75:f2:1b:35:d3:92:aa:0c:01:c3:c3:69:bf:
12:58:9f:ad:6a:7d:20:4d:b2:0b:0c:da:67:1e:4c:91:87:aa:
06:79:89:01:28:41:94:ca:c3:88:d6:c8:db:3e:b5:05:62:9d:
d8:62:0d:59:90:59:ed:54:71:35:b4:89:d1:1b:2d:f9:cb:ea:
71:47:21:35:07:b9:eb:9a:23:a2:b3:53:d5:35:9b:ac:ef:51:
d8:21:83:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 4 10:11:12 2024 by rpki-client on console-fra.rpki-client.org