Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/bopINQtyOwWuMvajXvHHd1B2NPs.roa
File: bopINQtyOwWuMvajXvHHd1B2NPs.roa (raw, json)
Hash identifier: afhxXu80l1KrT/wift7E6JrNjY2n8hI+u3wypXOib4c=
Subject key identifier: 6E:8A:48:35:0B:72:3B:05:AE:32:F6:A3:5E:F1:C7:77:50:76:34:FB
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 01929C026B779995CE13D5E965C558BFE52F
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/bopINQtyOwWuMvajXvHHd1B2NPs.roa
Signing time: Thu 17 Oct 2024 19:44:17 +0000
ROA not before: Thu 17 Oct 2024 19:44:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209641
IP address blocks: 2a0e:4bc7::/32 maxlen: 32
2a0e:5901::/32 maxlen: 32
2a0e:8080::/32 maxlen: 32
2a0e:ccc5::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 23 Oct 2024 13:47:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:9c:02:6b:77:99:95:ce:13:d5:e9:65:c5:58:bf:e5:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: Oct 17 19:44:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6e8a48350b723b05ae32f6a35ef1c777507634fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:07:ac:c4:60:6d:36:60:76:82:f9:38:e5:18:
d0:7d:63:a2:22:42:01:65:ad:cf:bd:c5:8a:1c:7b:
7d:4f:57:a1:83:eb:cf:14:60:3c:1c:6c:0d:9f:f8:
70:22:d2:3c:f8:5b:4e:b0:a4:92:9e:c1:e6:66:cc:
4e:cf:ba:74:1a:14:30:65:81:b2:fc:0c:27:62:71:
a3:bb:4a:0d:78:7f:ee:6b:2f:76:da:61:54:e9:ed:
79:46:b2:d3:81:4c:6c:16:95:b7:8c:07:30:94:eb:
84:bb:5f:2f:3f:10:14:92:d6:c5:70:46:7f:cb:03:
41:c0:d5:69:9a:d1:25:b1:aa:24:96:cf:60:5f:ed:
72:eb:fa:ce:12:41:04:29:c6:e7:98:58:e7:7d:59:
d9:c1:e5:9c:57:f5:e3:a9:e4:b7:19:93:d8:01:25:
3e:a8:82:a1:0b:13:ea:8c:6a:6b:e1:b0:b5:79:30:
f2:39:6b:07:55:3b:8d:fb:23:2a:72:d3:69:3e:71:
50:45:88:e5:68:8a:38:d7:f7:d3:be:b5:06:a5:f6:
44:f3:20:40:e2:b0:15:85:40:4d:19:ff:95:74:ea:
d3:5b:7a:a9:0f:4e:48:f9:d0:88:e4:80:a2:74:d0:
0b:9d:d5:f1:9b:ac:7e:8c:9b:a5:fe:6b:14:e0:8e:
8a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:8A:48:35:0B:72:3B:05:AE:32:F6:A3:5E:F1:C7:77:50:76:34:FB
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/bopINQtyOwWuMvajXvHHd1B2NPs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:4bc7::/32
2a0e:5901::/32
2a0e:8080::/32
2a0e:ccc5::/32
Signature Algorithm: sha256WithRSAEncryption
89:bd:6e:2c:80:37:5a:7a:0c:34:92:92:83:83:0f:d9:72:69:
27:6a:cf:d4:9a:1c:d8:8f:03:e9:6a:d5:d3:71:a4:98:fc:ab:
2d:a7:e1:0f:e5:62:ec:85:0a:9c:ba:bb:1e:7a:43:61:33:3d:
4f:f2:f4:6a:bb:13:32:5b:71:51:78:14:ad:91:c8:9f:bc:10:
ab:f6:1d:db:30:10:a5:70:d5:56:b7:e9:e1:8d:15:7d:01:65:
f1:d7:90:02:0d:3f:3f:5d:34:c5:87:d0:e7:25:a8:f4:5e:19:
e0:00:8d:e7:6a:e8:0f:ff:3e:7a:96:92:84:b1:46:83:2c:62:
ff:9d:bd:cc:85:d8:e3:e5:56:60:56:fc:79:6f:81:61:a4:1e:
04:05:3c:5b:6d:4c:1a:da:5c:c4:08:44:91:8a:01:a0:9a:73:
d7:9d:43:d3:1e:7a:6f:09:99:ff:40:0d:bd:1f:3e:e0:d1:34:
73:fc:c7:1f:2c:02:0f:be:0c:86:14:a1:69:e6:25:e3:7b:3c:
f5:4a:bb:1e:34:ca:b3:60:fc:fd:79:e4:52:5f:71:80:27:b9:
8a:9d:a8:3f:0f:72:3a:bb:01:5c:ea:c8:cf:2e:98:b2:0c:f4:
0a:9a:4b:db:8d:09:20:01:5d:d0:b9:67:49:a1:c2:15:2d:c2:
87:9f:8e:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 23 16:24:29 2024 by rpki-client on console-fra.rpki-client.org