Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/13fpBeXlBKGHF8vEEGNGq7T9fwA.roa
File: 13fpBeXlBKGHF8vEEGNGq7T9fwA.roa (raw, json)
Hash identifier: PONXLy+x2+WNzDaXlrfzvsHohzk23wyy5N3LWTT5w6Y=
Subject key identifier: D7:77:E9:05:E5:E5:04:A1:87:17:CB:C4:10:63:46:AB:B4:FD:7F:00
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAD8D4BBA1BDC21EC4252EED08F4DC5
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/13fpBeXlBKGHF8vEEGNGq7T9fwA.roa
Signing time: Tue 06 Feb 2024 18:28:16 +0000
ROA not before: Tue 06 Feb 2024 18:28:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48818
IP address blocks: 2a0f:b241:113::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ad:8d:4b:ba:1b:dc:21:ec:42:52:ee:d0:8f:4d:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:28:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d777e905e5e504a18717cbc4106346abb4fd7f00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:af:43:5a:63:80:7b:00:33:25:19:4f:e4:eb:
1c:db:ac:ca:2c:44:06:26:f4:2e:f9:aa:3d:34:31:
27:60:66:74:bd:79:e9:c2:d8:7f:4e:b4:22:f3:c8:
57:e6:fc:46:2b:22:d9:c3:8e:0a:c2:73:e8:58:0a:
63:eb:75:37:81:84:5c:41:6b:a5:0d:42:1b:ab:fc:
71:fc:26:20:ad:cb:02:f1:47:b7:f2:80:a3:e8:89:
8a:5e:14:b8:c1:c8:85:15:aa:05:c2:5a:b8:ff:2c:
c9:e6:a9:70:c1:1d:6b:d5:4f:3b:4b:6d:c8:71:37:
1e:fe:dd:f2:45:70:96:0a:3f:21:0f:b1:63:8e:25:
c0:5e:32:54:b1:51:7b:77:c9:37:af:80:d3:ef:03:
4e:de:97:9f:df:ce:d2:01:62:f6:d0:e5:aa:a0:d8:
9c:34:8b:1f:50:38:b1:a7:71:7f:71:df:f8:3d:28:
59:7a:a2:f3:6e:06:7c:be:d6:70:39:f1:55:ff:75:
ff:87:e4:6d:1e:da:bd:08:57:83:4b:f1:f1:5a:1b:
97:9c:e7:a1:7d:4a:a1:19:39:98:49:d6:b5:6a:68:
c4:0b:06:29:bb:ce:b2:55:58:16:b1:e7:6d:b0:8f:
b9:64:26:df:b2:c1:ad:e1:3f:5e:15:2b:04:72:91:
16:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:77:E9:05:E5:E5:04:A1:87:17:CB:C4:10:63:46:AB:B4:FD:7F:00
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/13fpBeXlBKGHF8vEEGNGq7T9fwA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:113::/48
Signature Algorithm: sha256WithRSAEncryption
59:51:d4:72:e6:4e:04:4f:06:0b:bf:db:12:74:26:0a:ce:d4:
7b:2a:67:14:40:b5:72:c0:e1:4f:34:12:ff:30:7e:8b:3a:1c:
96:96:01:da:84:60:7f:e6:79:81:df:06:69:95:db:02:a9:28:
71:78:37:3f:a7:ff:bb:f6:16:b9:20:d1:e5:a8:b5:bd:f6:fc:
63:2b:f8:e7:93:c6:78:51:30:8e:7b:8f:65:84:9e:34:77:23:
6f:17:78:43:9e:81:1f:e2:58:bf:cf:c8:59:be:90:1e:c5:88:
96:f7:a1:1e:b6:a0:6c:09:3e:16:4e:b1:23:59:f3:36:79:5d:
0b:a1:01:5a:25:60:65:0a:0e:c6:7d:58:88:2d:60:4e:a7:41:
bb:af:76:ec:c3:9a:d3:8f:ee:af:36:19:70:64:ea:9a:d8:9b:
50:64:44:82:9c:d6:83:c8:b1:f7:ab:9e:c8:15:dd:8a:90:fd:
3f:47:8b:ce:8b:dc:bb:93:8f:a1:33:9f:e0:b0:fc:4a:4e:22:
b2:4e:57:55:f7:04:62:e5:b3:9f:01:c8:24:d6:2d:47:dc:e5:
3c:22:27:7d:eb:88:c7:cc:4a:bf:5a:58:09:28:05:d0:6d:1c:
14:f5:41:ab:89:52:a2:0d:29:ec:1f:a7:7e:d2:7a:5d:56:09:
61:b4:79:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org