Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/cfdQeM9Gm3WCjY5Pkr3AJ80hL_8.roa
File: cfdQeM9Gm3WCjY5Pkr3AJ80hL_8.roa (raw, json)
Hash identifier: UMwRhI1s8uJuQjf44DCGGnkYX5cntMmYqieJe/ijdiI=
Subject key identifier: 71:F7:50:78:CF:46:9B:75:82:8D:8E:4F:92:BD:C0:27:CD:21:2F:FF
Certificate issuer: /CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Certificate serial: 018BF16F3EDB0CFD61CDA13D2E4FB2BA1AE2
Authority key identifier: B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/cfdQeM9Gm3WCjY5Pkr3AJ80hL_8.roa
Signing time: Tue 21 Nov 2023 10:31:21 +0000
ROA not before: Tue 21 Nov 2023 10:31:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51659
IP address blocks: 2a11:f186::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f1:6f:3e:db:0c:fd:61:cd:a1:3d:2e:4f:b2:ba:1a:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Validity
Not Before: Nov 21 10:31:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=71f75078cf469b75828d8e4f92bdc027cd212fff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:db:5c:32:86:f6:3f:1d:5f:b8:41:8b:00:bc:
57:97:27:ee:26:2f:b3:8e:91:28:a6:ea:f0:25:e8:
82:9b:22:67:1d:71:13:60:cf:63:0c:da:02:d8:ca:
6b:33:2e:3c:49:c0:fb:be:b2:47:e9:d2:11:76:0d:
e1:b4:bb:f2:a1:ac:c0:23:77:ef:f4:cd:7f:42:db:
bc:57:f6:d8:bc:5c:10:08:f7:49:84:11:64:c7:0b:
c8:ac:ec:50:99:ae:d8:ff:2e:75:b8:e6:2c:c4:be:
59:2f:eb:9c:3e:09:8c:fc:69:ec:1f:05:a6:6e:f2:
80:91:d4:23:f6:b1:0e:11:08:39:86:18:56:a4:36:
77:77:9e:5a:a8:af:1d:cf:fd:94:5d:4e:1c:a9:d8:
a8:72:99:45:8c:b9:73:df:d0:2e:7d:22:c1:28:6e:
28:8e:24:6e:51:c9:d6:ca:26:b4:27:a6:73:72:46:
73:9d:57:bd:5d:7e:ba:ee:17:42:80:de:e0:48:9b:
ba:79:10:71:a0:d2:b5:68:a8:14:b2:38:eb:b9:1f:
f8:b3:db:6d:83:48:e8:bd:f7:b6:a7:b6:e9:b6:37:
0f:29:fb:18:79:da:5d:c1:c2:9e:cc:f3:0a:c3:3d:
7f:e2:b2:ad:07:f6:20:2e:6b:c0:82:5b:be:28:ea:
66:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:F7:50:78:CF:46:9B:75:82:8D:8E:4F:92:BD:C0:27:CD:21:2F:FF
X509v3 Authority Key Identifier:
keyid:B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/cfdQeM9Gm3WCjY5Pkr3AJ80hL_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f186::/32
Signature Algorithm: sha256WithRSAEncryption
a1:fd:b3:b3:1f:e3:46:00:ea:c7:75:16:18:1c:42:cf:71:50:
ac:48:45:2e:83:ea:66:3b:66:c2:c5:d4:cd:40:5e:07:d2:b3:
00:08:b6:ee:16:ab:69:d3:e0:1f:75:e1:56:86:db:26:47:6d:
e7:8e:59:14:19:ea:4f:fe:8d:a2:2e:f0:5d:76:b5:b0:2b:3b:
fc:a4:02:b8:95:6d:8d:0e:47:74:45:18:41:8b:2b:cd:2b:73:
38:ea:ef:c9:47:2b:ff:1d:64:47:ff:0f:f9:1a:56:d4:ad:44:
d3:63:33:98:1b:5c:df:5a:92:1b:2b:41:2b:13:79:2e:8b:69:
d4:15:9b:aa:b8:41:df:05:a6:52:b4:63:f2:1f:5a:f1:fd:3b:
84:45:8a:b2:0f:11:93:41:54:d7:11:df:1f:e1:38:e5:df:99:
9a:40:ff:f2:d9:86:5f:f3:4c:1b:8d:a8:bb:47:1d:d7:b7:47:
11:65:78:d2:ca:c8:71:be:b9:e2:46:bc:ba:39:20:fb:19:3a:
5c:8e:fc:cf:cf:bd:7a:e4:d0:e9:be:d3:00:4a:95:ae:ea:3b:
9e:3f:b6:54:f8:8b:e4:f7:9c:d4:10:ed:0c:85:ce:dd:36:00:
18:6b:ba:4b:13:38:76:1d:24:2e:92:25:17:9b:bd:7e:82:15:
1d:b6:4c:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:50 2024 by rpki-client on console-fra.rpki-client.org