Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/6B8Hs3zt4WYRCoNDpM5vXPYW5vY.roa
File: 6B8Hs3zt4WYRCoNDpM5vXPYW5vY.roa (raw, json)
Hash identifier: 9EnZ7HwGp+gEvx72TNJxehCGpolCpFiDzGuzHhnBKko=
Subject key identifier: E8:1F:07:B3:7C:ED:E1:66:11:0A:83:43:A4:CE:6F:5C:F6:16:E6:F6
Certificate issuer: /CN=38203463eb944b25c65135ca47bdbdab646f3984
Certificate serial: 01856E141ACB2313BA9CCEE3F5074D8C64A7
Authority key identifier: 38:20:34:63:EB:94:4B:25:C6:51:35:CA:47:BD:BD:AB:64:6F:39:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCA0Y-uUSyXGUTXKR729q2RvOYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/6B8Hs3zt4WYRCoNDpM5vXPYW5vY.roa
Signing time: Sun 01 Jan 2023 16:04:49 +0000
ROA not before: Sun 01 Jan 2023 16:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39239
IP address blocks: 2a00:8860:b00::/40 maxlen: 64
2a00:8861:b00::/40 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:1a:cb:23:13:ba:9c:ce:e3:f5:07:4d:8c:64:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38203463eb944b25c65135ca47bdbdab646f3984
Validity
Not Before: Jan 1 16:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e81f07b37cede166110a8343a4ce6f5cf616e6f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:cf:0c:c8:a6:fc:a1:7e:4d:4d:ee:0c:2a:45:
93:e1:a8:73:74:ab:ca:a5:e8:7f:db:7e:92:5f:6e:
7c:0c:ca:0a:35:82:6c:35:16:0b:a7:5c:bf:1a:a9:
a9:24:dd:01:7a:c9:f9:73:f4:df:61:05:52:8e:34:
87:cb:d2:c4:14:eb:fa:93:34:8a:c4:5e:02:82:1c:
e1:2d:7a:6a:59:bc:ba:ad:fb:0c:94:03:1c:97:f9:
7d:e6:08:ba:8d:71:04:35:63:79:1b:db:d2:ab:ec:
66:39:56:c9:31:54:14:cc:22:0b:56:f7:af:f1:23:
ab:2f:06:b8:83:d2:df:c9:c6:d5:9b:6a:97:39:41:
1b:de:f6:98:d3:7d:26:ee:e2:f4:3c:b2:e3:ce:68:
bd:6f:14:ce:63:0f:5d:70:a0:c4:28:90:6e:bd:de:
d4:41:70:e9:51:d8:4f:d4:c2:1d:45:64:2e:ae:eb:
7f:0a:01:18:79:1a:17:e8:97:88:0a:a6:bf:0a:5d:
3b:b9:c1:78:88:9e:c7:37:84:79:ce:ce:96:ad:92:
8e:fd:28:4b:bd:c7:ae:7c:4d:4b:8f:31:50:09:e1:
c5:12:c3:54:96:28:97:30:8b:67:94:c3:c7:90:57:
81:25:aa:bd:22:ec:7c:c4:19:c9:02:6d:87:8e:84:
8e:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:1F:07:B3:7C:ED:E1:66:11:0A:83:43:A4:CE:6F:5C:F6:16:E6:F6
X509v3 Authority Key Identifier:
keyid:38:20:34:63:EB:94:4B:25:C6:51:35:CA:47:BD:BD:AB:64:6F:39:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCA0Y-uUSyXGUTXKR729q2RvOYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/6B8Hs3zt4WYRCoNDpM5vXPYW5vY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/OCA0Y-uUSyXGUTXKR729q2RvOYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:8860:b00::/40
2a00:8861:b00::/40
Signature Algorithm: sha256WithRSAEncryption
94:ff:fe:23:8d:4f:9f:2a:a3:76:49:ec:30:76:7a:40:8d:d6:
8b:55:02:c5:42:a7:c3:d7:fa:94:f2:87:fd:34:f6:7b:86:2f:
53:3b:1c:69:84:fd:93:18:75:44:c0:de:c4:8c:4b:bf:5b:cf:
71:d7:36:fd:91:64:36:e6:e6:33:7f:f9:4d:e2:38:26:d2:79:
b8:1a:6b:78:53:83:23:a2:ec:97:80:57:28:68:68:41:8a:e6:
fa:6d:59:30:5b:a0:87:c4:4d:5b:5a:88:dd:d1:02:f6:c9:8d:
a6:12:d0:dd:64:01:4a:bf:7e:b8:20:ca:15:70:74:ed:d9:a6:
89:33:f1:26:e8:ee:76:ee:f2:8a:b2:55:1c:23:0a:15:5e:45:
aa:65:d2:dc:7b:c6:7f:78:76:45:be:bf:e5:be:64:e3:6c:a3:
75:f8:f1:24:e0:2e:a2:92:be:bd:77:49:5d:0b:f4:34:5e:5d:
5c:4b:14:e9:55:66:b6:d2:1a:cf:e9:7a:bf:46:c7:de:a9:22:
dd:ac:1e:83:3c:06:4e:18:53:d6:56:1d:1a:e0:1b:85:94:f3:
69:87:97:d8:84:dc:25:9f:43:4a:c5:4f:94:d8:be:5b:96:c9:
13:4c:1b:84:01:2b:af:14:2a:80:e0:8f:c7:9b:41:37:c5:8f:
81:c3:94:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:26 2024 by rpki-client on console-ams.rpki-client.org