Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/tyiH2ip2_q8dLJn7J8TxYEA06CI.roa
File: tyiH2ip2_q8dLJn7J8TxYEA06CI.roa (raw, json)
Hash identifier: 5EVkmi232soSzDZW17BQuR78/JC9IxVx7iadVSZ1o/I=
Subject key identifier: B7:28:87:DA:2A:76:FE:AF:1D:2C:99:FB:27:C4:F1:60:40:34:E8:22
Certificate issuer: /CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Certificate serial: 0186B7067B48D44BAE6FE538A7F6B857912A
Authority key identifier: B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/tyiH2ip2_q8dLJn7J8TxYEA06CI.roa
Signing time: Mon 06 Mar 2023 13:05:00 +0000
ROA not before: Mon 06 Mar 2023 13:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204916
IP address blocks: 2a0e:fb43::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b7:06:7b:48:d4:4b:ae:6f:e5:38:a7:f6:b8:57:91:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Validity
Not Before: Mar 6 13:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b72887da2a76feaf1d2c99fb27c4f1604034e822
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f2:b8:cc:92:1d:55:98:3e:23:d9:c9:02:d5:
12:06:af:26:24:b5:9d:7a:e0:a7:88:2b:6f:a3:fc:
8f:f6:90:ec:cc:f0:0c:59:02:05:37:91:d1:87:20:
73:41:2b:3a:b8:03:a0:e4:09:ee:b5:34:c7:93:cc:
08:e1:44:07:82:24:42:e4:d1:41:25:97:8b:8e:e6:
15:9f:cb:93:29:a2:02:83:59:62:c1:12:c4:a1:29:
41:56:c1:b5:3a:64:f3:de:fd:d5:53:95:02:4a:3d:
b9:7b:43:7e:90:d6:b4:5a:b7:8a:4c:fb:7c:84:8e:
1a:60:10:14:05:27:d5:e3:34:ac:a1:90:c9:22:2e:
ae:92:2e:ec:80:a0:47:bd:fe:ee:8b:42:33:6d:f2:
09:4c:af:5f:9b:25:67:9f:e8:e5:e1:23:39:3b:69:
2d:d3:8b:86:5e:4b:e5:8e:c7:d0:f1:1f:38:28:b1:
84:69:7c:77:4c:7b:d7:ea:6e:38:57:39:90:fa:72:
0f:7f:74:e3:85:3e:c5:e6:c9:f0:6f:c8:5c:ad:40:
62:8f:eb:51:c4:2b:b0:8b:e2:ea:4f:46:65:bc:1f:
fa:5c:1a:e3:ff:56:b7:95:dd:c1:d8:09:5c:c2:59:
5b:ae:d0:53:4d:31:f3:85:35:59:4d:de:7e:6e:ec:
f8:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:28:87:DA:2A:76:FE:AF:1D:2C:99:FB:27:C4:F1:60:40:34:E8:22
X509v3 Authority Key Identifier:
keyid:B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/tyiH2ip2_q8dLJn7J8TxYEA06CI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:fb43::/32
Signature Algorithm: sha256WithRSAEncryption
08:cb:ee:68:09:d7:32:3a:fb:e8:5e:7a:35:6f:dd:f2:d7:63:
41:7e:01:06:ef:82:a5:4b:ac:4b:5c:dd:90:fb:0f:37:ea:ef:
8b:5e:c0:a5:bb:95:8b:cd:23:a1:51:19:82:8f:82:64:97:55:
55:f5:ba:bc:44:c8:26:e1:ea:24:be:dc:6f:1a:70:80:d2:4c:
a4:fd:bb:8e:39:46:a1:e9:43:d0:3b:13:05:86:9b:3d:3b:27:
29:ea:21:2e:24:60:29:dd:2a:35:a0:49:eb:c2:88:43:57:1d:
7e:ee:4c:f2:32:70:d1:2f:42:54:d2:64:9c:96:d5:fc:e3:ce:
e4:7b:0a:29:f6:c3:3f:5f:be:e4:eb:0c:05:72:3d:be:91:d3:
3a:53:2b:1d:95:e1:21:e4:65:41:92:07:65:9b:d0:17:2d:e1:
e8:56:2d:ce:1c:30:84:b6:02:be:77:08:d6:9d:70:48:a7:dc:
98:36:6b:1a:a8:59:91:c3:f5:11:6d:70:f5:9b:f3:22:1f:f6:
4d:ec:34:77:4c:8e:c3:c5:6a:a6:10:c8:a6:46:e2:68:c8:d7:
bc:d4:32:9e:dc:5c:d1:46:93:63:40:01:b3:8b:bc:cc:c7:73:
84:51:7e:b5:81:20:62:b0:db:c2:5a:d7:62:e6:cc:14:d4:cb:
54:6e:7f:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:51 2024 by rpki-client on console-fra.rpki-client.org