Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/6z5We-YxFOnss5fN5tKdX9EJJJI.roa
File: 6z5We-YxFOnss5fN5tKdX9EJJJI.roa (raw, json)
Hash identifier: pvQNkyLh8J/1vNsmOdgTwSAVKw/fTPo4aOh1kO5dwsk=
Subject key identifier: EB:3E:56:7B:E6:31:14:E9:EC:B3:97:CD:E6:D2:9D:5F:D1:09:24:92
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 0189F6E15034A24E14793CF8B51708A24735
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/6z5We-YxFOnss5fN5tKdX9EJJJI.roa
Signing time: Tue 15 Aug 2023 01:48:28 +0000
ROA not before: Tue 15 Aug 2023 01:48:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 2a06:e881:73ff::/48 maxlen: 48
2a06:e881:73ef::/48 maxlen: 48
2a06:e881:650f::/48 maxlen: 48
2a06:e881:9208::/45 maxlen: 48
2a06:e881:9200::/45 maxlen: 48
2a06:e881:7340::/42 maxlen: 48
2a06:e881:9700::/44 maxlen: 44
2a06:e881:9300::/44 maxlen: 48
2a06:e881:9600::/48 maxlen: 48
2a06:e881:9700::/48 maxlen: 48
2a06:e881:9701::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f6:e1:50:34:a2:4e:14:79:3c:f8:b5:17:08:a2:47:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Aug 15 01:48:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb3e567be63114e9ecb397cde6d29d5fd1092492
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:c5:8c:a5:37:cb:5f:b9:42:fa:70:48:ee:af:
f9:94:7a:aa:f8:af:0a:4b:b4:3c:c1:d2:23:4a:5b:
8d:fa:f9:1b:51:94:df:20:4c:b9:24:10:eb:32:e2:
79:75:e2:e6:a2:5e:55:27:27:35:e6:69:64:1a:7e:
7f:0e:73:72:a3:7c:9c:0c:0b:f8:82:e9:e8:c0:b5:
9a:c5:34:be:3e:c4:2c:1c:e4:73:a0:4a:3b:83:e8:
2d:dc:29:31:69:c8:c7:06:d0:75:5f:c6:e1:59:b7:
1d:74:3c:2b:18:c5:8e:0a:38:09:98:5f:2b:0b:ad:
2d:ef:48:32:d8:69:c6:34:d6:48:91:e9:3c:fe:e3:
e9:89:ae:2f:75:bb:c0:0e:85:c5:02:89:df:e5:d3:
56:aa:42:16:0e:d5:b1:c0:35:62:2e:83:f7:b4:cb:
8a:93:1d:d7:98:35:65:d1:ac:f7:4e:3e:6f:87:05:
dc:e5:41:2a:40:08:29:ac:fa:f8:c5:3c:ba:02:0e:
1b:a0:77:d9:bb:7e:dc:74:3c:cd:aa:e8:1f:da:49:
32:76:09:fd:61:a1:ff:5f:b5:3f:42:f3:be:12:a0:
b1:ce:68:e6:b8:02:fa:15:d9:79:3e:54:81:b5:d1:
69:c3:78:bd:d4:27:43:4d:fe:1a:c0:4d:c0:8a:9d:
79:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:3E:56:7B:E6:31:14:E9:EC:B3:97:CD:E6:D2:9D:5F:D1:09:24:92
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/6z5We-YxFOnss5fN5tKdX9EJJJI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:e881:650f::/48
2a06:e881:7340::/42
2a06:e881:73ef::/48
2a06:e881:73ff::/48
2a06:e881:9200::/44
2a06:e881:9300::/44
2a06:e881:9600::/48
2a06:e881:9700::/44
Signature Algorithm: sha256WithRSAEncryption
19:7f:c5:c2:e7:43:3e:79:70:e1:ec:70:db:bf:e7:e6:d6:90:
92:56:1a:4c:ef:f2:64:5c:15:31:24:c9:65:fd:df:e7:92:83:
e8:49:b4:ca:2e:49:b3:3d:62:e8:a1:25:f8:4d:91:e0:95:15:
ba:d3:5b:c6:36:af:16:62:b2:48:ea:3e:30:3e:fe:3a:a2:17:
c5:60:8b:db:f4:6c:94:df:3a:9f:80:72:8d:34:a0:07:b6:ef:
95:62:1e:ae:9a:9b:bf:2a:31:fd:51:32:df:cf:8c:ac:a4:2a:
90:d0:79:bb:80:2a:af:ac:91:58:29:0e:87:e9:7d:be:ae:c4:
37:c7:ce:9d:0c:16:5a:53:8f:4f:31:67:ac:62:97:32:6c:08:
86:0b:65:5d:52:0f:ca:55:ff:66:1d:aa:13:25:dc:cd:8f:18:
46:db:30:47:d7:d9:ac:1b:5f:c6:fe:4e:eb:8e:10:29:87:ae:
89:b7:4e:fa:18:dd:2c:42:0e:c1:f7:f3:6b:c7:fd:97:43:14:
b5:17:2d:a1:88:ee:c9:3e:73:15:39:6d:bf:cf:75:01:c0:c3:
28:9d:43:67:f2:28:e6:00:47:1d:56:7e:da:85:8b:24:b9:e3:
40:3c:20:19:a6:d3:1b:0e:3e:ac:68:0c:6d:20:94:f3:98:b6:
eb:af:c0:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:40 2024 by rpki-client on console-ams.rpki-client.org