Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/114a10-8ef7-4903-963e-d4d59a095c7f/1/8BLEghsHyx4qjFO2098kVWv5wQI.roa
File: 8BLEghsHyx4qjFO2098kVWv5wQI.roa (raw, json)
Hash identifier: XfS+rgty8wfYrZOvhgTvLnyHC+PQbPwM3MKRVLG7qUk=
Subject key identifier: F0:12:C4:82:1B:07:CB:1E:2A:8C:53:B6:D3:DF:24:55:6B:F9:C1:02
Certificate issuer: /CN=0f025fa357c20abbf118426234658e62d7dc7076
Certificate serial: 0191B96E59B120F9CBFBA7A02FD3F1218854
Authority key identifier: 0F:02:5F:A3:57:C2:0A:BB:F1:18:42:62:34:65:8E:62:D7:DC:70:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DwJfo1fCCrvxGEJiNGWOYtfccHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/114a10-8ef7-4903-963e-d4d59a095c7f/1/8BLEghsHyx4qjFO2098kVWv5wQI.roa
Signing time: Tue 03 Sep 2024 19:48:22 +0000
ROA not before: Tue 03 Sep 2024 19:48:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214294
IP address blocks: 2a01:ee80:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 06 Sep 2024 18:53:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b9:6e:59:b1:20:f9:cb:fb:a7:a0:2f:d3:f1:21:88:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f025fa357c20abbf118426234658e62d7dc7076
Validity
Not Before: Sep 3 19:48:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f012c4821b07cb1e2a8c53b6d3df24556bf9c102
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c6:84:08:42:67:2e:81:6c:9d:e4:e2:16:cf:
72:c7:3f:4a:09:6e:75:fd:89:08:d0:1b:eb:dd:e3:
d5:74:30:a9:58:38:e3:d6:1d:6c:51:3d:c8:41:e0:
c3:61:73:a2:b9:65:a7:26:e0:cd:da:60:d0:04:61:
e9:97:be:c9:64:ed:2f:95:30:2b:d7:c8:c6:4e:eb:
d5:93:2c:eb:a4:f8:d2:94:21:09:43:a6:d4:47:8d:
d1:1e:ab:1a:19:12:12:b0:f9:47:48:5b:04:db:35:
92:50:c5:75:b8:d5:4c:9d:e3:39:c6:f6:de:42:e5:
fd:a2:9f:08:e8:cb:97:0a:1c:ea:5e:83:31:d6:40:
22:29:29:7c:53:b6:5f:11:07:b2:62:01:33:49:d2:
8d:98:57:49:2a:1a:8d:a5:d5:dd:bc:77:9a:a5:fc:
06:e4:3a:21:45:b0:6e:0c:c3:bf:e6:72:0f:3f:6d:
45:60:a4:3f:6a:4c:a9:fb:bc:6c:4f:63:00:bb:11:
1e:f1:fd:3c:d1:68:d4:2a:da:1b:f9:c6:d7:f6:f0:
5e:d4:d3:66:29:4a:84:b7:02:af:9a:4b:9e:d3:80:
30:dd:a7:51:2d:bc:69:7b:d9:24:2f:39:df:3f:71:
97:43:52:da:63:0d:91:a8:a0:84:60:0e:98:68:eb:
08:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:12:C4:82:1B:07:CB:1E:2A:8C:53:B6:D3:DF:24:55:6B:F9:C1:02
X509v3 Authority Key Identifier:
keyid:0F:02:5F:A3:57:C2:0A:BB:F1:18:42:62:34:65:8E:62:D7:DC:70:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DwJfo1fCCrvxGEJiNGWOYtfccHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/114a10-8ef7-4903-963e-d4d59a095c7f/1/8BLEghsHyx4qjFO2098kVWv5wQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/114a10-8ef7-4903-963e-d4d59a095c7f/1/DwJfo1fCCrvxGEJiNGWOYtfccHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a01:ee80:2::/48
Signature Algorithm: sha256WithRSAEncryption
72:47:7b:36:04:0b:4c:32:01:44:2c:5a:08:86:70:42:21:ee:
03:d6:20:ed:31:1d:f3:a9:d3:a7:3d:7c:ef:81:fd:b3:80:fe:
a7:62:b3:c4:13:d3:94:44:45:87:81:f1:17:33:e6:a2:1a:2d:
94:f3:67:8c:3a:d9:28:c1:7c:1f:f4:a9:50:c8:6f:32:3a:06:
26:26:ae:37:c4:3b:dd:1e:49:ad:86:20:14:ce:3b:45:c8:66:
dc:d9:62:d8:bc:06:09:0e:9f:a6:0f:b9:68:eb:8d:9e:4a:d0:
b6:36:b5:64:d0:a7:5a:ab:7a:7b:81:cf:ef:50:69:cb:4d:3c:
9c:e2:95:62:29:e9:dc:6f:7d:48:b5:f4:41:0e:cd:3d:6e:31:
eb:d3:3e:21:20:9d:1d:46:17:5e:3e:0d:78:c1:e6:fd:20:ef:
4b:bc:34:95:0d:c7:03:20:af:6a:ca:35:9a:9a:ce:ed:05:66:
a0:38:ad:64:0c:89:68:68:29:97:49:9e:68:3b:f2:e6:48:e9:
19:c3:5e:a5:34:f2:e3:17:1c:6a:7f:7e:0f:7e:fe:1b:fd:4f:
67:3d:27:9a:59:83:66:b0:91:72:c5:a7:4b:f4:a1:6b:e4:b3:
15:1d:d0:a1:79:f0:1a:b2:17:3f:f6:c8:5f:2e:98:14:08:23:
8d:7f:fa:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 6 21:23:11 2024 by rpki-client on console-ams.rpki-client.org