Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1-3pdDNCisezHnBuurltUnxLTEFg.roa
File: 1-3pdDNCisezHnBuurltUnxLTEFg.roa (raw, json)
Hash identifier: aopYoCGVopDeiCiEjnb2e+FJeGHm8dSmRyUazw8gomE=
Subject key identifier: FB:7A:5D:0C:D0:A2:B1:EC:C7:9C:1B:AE:AE:5B:54:9F:12:D3:10:58
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0B91B59E9084DCE37A8FF0D686D89
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1-3pdDNCisezHnBuurltUnxLTEFg.roa
Signing time: Wed 07 Feb 2024 05:00:53 +0000
ROA not before: Wed 07 Feb 2024 05:00:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215950
IP address blocks: 2a0f:b241:27::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:b9:1b:59:e9:08:4d:ce:37:a8:ff:0d:68:6d:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fb7a5d0cd0a2b1ecc79c1baeae5b549f12d31058
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ac:ae:f8:f8:63:8f:55:b3:1d:e9:9f:17:12:
f5:63:b4:0d:d3:6a:c5:b3:8b:6a:87:43:ce:18:bd:
89:6e:28:3c:5f:c2:6b:4d:c2:6f:1c:b4:b9:10:78:
78:45:c8:96:a8:c9:76:4e:be:69:d8:cf:7c:1e:64:
c9:62:6d:fd:29:93:96:ac:ee:37:02:c0:c4:9a:e5:
4b:25:ad:fc:e8:be:e6:12:c1:14:c9:a9:a5:49:a0:
80:d3:7e:7d:d7:39:f0:11:20:ff:d3:7a:79:b4:f0:
46:47:1a:1b:d8:35:bd:f1:cf:a5:d3:36:46:07:50:
53:28:32:98:dc:2c:c4:6b:e3:29:b6:ef:35:df:53:
7d:fa:9f:01:03:58:d6:23:e4:53:4b:9f:54:5d:19:
0c:39:8f:1e:a9:35:65:3d:28:6c:21:67:fb:e2:d9:
db:06:21:b1:19:b6:98:3d:13:5c:e3:d3:23:dd:c4:
a9:d0:f3:a5:60:92:ea:33:6b:f8:ae:0d:0a:3e:89:
20:50:8c:62:55:6d:f8:23:d4:13:5d:5f:f6:53:b2:
73:c0:3c:11:7c:08:5b:9a:13:af:0e:73:fd:f1:67:
90:18:64:83:23:2c:1b:60:1e:2e:2a:a2:2e:54:62:
57:5d:0d:21:23:f1:ca:b8:87:d1:58:78:0a:e3:14:
7f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:7A:5D:0C:D0:A2:B1:EC:C7:9C:1B:AE:AE:5B:54:9F:12:D3:10:58
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1-3pdDNCisezHnBuurltUnxLTEFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:27::/48
Signature Algorithm: sha256WithRSAEncryption
43:a5:d6:d6:2d:9f:50:bb:d1:7e:13:e6:5c:a8:78:91:5c:53:
88:ad:b9:0f:43:5d:19:03:2f:f2:ea:1f:b9:e5:1d:9f:5d:14:
90:4f:f4:63:b8:be:d9:de:fb:cd:f7:e1:18:75:68:6d:a4:98:
2f:3a:08:21:27:a3:99:09:a4:57:00:09:84:94:44:45:c3:51:
b9:fc:ea:1d:4e:69:a5:47:3f:19:35:4d:1e:66:77:29:1b:56:
4e:36:73:6b:49:31:0c:69:19:1b:c4:2a:97:43:95:e5:8e:bd:
9b:28:d0:24:63:4c:15:d9:01:cd:1a:0f:30:ab:00:ca:84:e8:
62:46:89:af:37:19:a4:16:e5:82:0b:df:e1:b3:27:d8:08:0d:
fd:b9:7c:73:9c:c6:91:06:9f:c9:4e:91:66:66:68:9a:90:cf:
d9:4b:d0:ef:e5:72:a3:6c:45:9e:80:3a:76:74:34:e1:ba:1f:
92:be:cc:81:a4:5d:6a:fa:b3:b9:3b:3c:1f:d5:c7:27:b5:87:
1d:de:19:3f:2a:68:ff:9e:3f:70:a5:6b:95:6e:b5:7b:de:2a:
0d:53:24:42:1a:6d:20:64:6c:d6:cf:2b:eb:38:ff:37:d6:3c:
a8:a0:00:14:90:c1:69:0a:23:bd:95:a9:79:3d:d2:42:1d:93:
8c:f4:b1:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:07 2024 by rpki-client on console-ams.rpki-client.org