Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1ST1vT21Y1EaTy_fUtaUOy3YZtc.roa
File: 1ST1vT21Y1EaTy_fUtaUOy3YZtc.roa (raw, json)
Hash identifier: SBMjV1S4pyvQafvgq0K1FDWbb0Kh798eRJ3YYohO5Ks=
Subject key identifier: D5:24:F5:BD:3D:B5:63:51:1A:4F:2F:DF:52:D6:94:3B:2D:D8:66:D7
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA8F9CC7E8CE26EA025D10B052AF926
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1ST1vT21Y1EaTy_fUtaUOy3YZtc.roa
Signing time: Tue 06 Feb 2024 18:23:16 +0000
ROA not before: Tue 06 Feb 2024 18:23:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200246
IP address blocks: 2a0f:b241:a2::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a8:f9:cc:7e:8c:e2:6e:a0:25:d1:0b:05:2a:f9:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:23:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d524f5bd3db563511a4f2fdf52d6943b2dd866d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:a6:98:56:50:0f:e5:6f:bf:8b:24:02:1a:28:
c2:54:ff:6b:fe:70:81:ad:a8:1b:ad:d1:00:56:e1:
f3:7a:b9:68:a2:48:1a:68:58:0d:4b:98:fa:80:5f:
6e:23:ac:f2:36:4c:2e:ce:72:36:5b:fd:7f:50:12:
3a:21:54:4e:25:7d:67:59:95:b4:67:7a:6a:fa:d4:
9d:e5:ce:ff:7c:fa:19:0a:02:f4:36:1b:ec:3f:b7:
18:38:58:88:b4:0e:1c:5f:3f:96:91:e5:f4:40:78:
77:a0:9e:1d:e0:58:58:0a:9b:6f:bf:c9:d6:5b:59:
79:b6:56:4d:be:20:9f:ef:1a:51:22:58:06:67:97:
ea:d5:ab:32:f7:45:10:ac:8d:15:15:71:f2:82:63:
3d:30:da:f3:ef:ec:f0:8c:fd:68:86:6a:57:c1:85:
d1:0c:17:e3:97:ea:b5:02:e7:e2:87:e7:57:12:dd:
62:cd:97:9e:dd:d3:95:f1:a8:83:56:5f:e9:4e:2e:
73:12:9b:85:b8:ad:d4:7f:d4:ef:2e:c8:24:39:93:
b8:4c:60:70:88:7c:20:b4:a6:a0:76:24:f5:41:0d:
f1:ee:44:f7:2c:f5:4a:ec:2e:7b:ab:f3:13:a4:c7:
73:b5:3a:24:e0:66:c8:c1:10:6a:ba:f7:14:cd:cf:
bc:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:24:F5:BD:3D:B5:63:51:1A:4F:2F:DF:52:D6:94:3B:2D:D8:66:D7
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1ST1vT21Y1EaTy_fUtaUOy3YZtc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:a2::/48
Signature Algorithm: sha256WithRSAEncryption
5a:20:4d:57:13:cc:cc:d5:8e:23:c9:af:b2:a1:6a:8c:15:97:
dd:1e:87:f3:a9:65:79:78:e6:8a:b1:6c:e1:20:65:8c:92:00:
93:1b:a8:d7:4f:e9:42:76:2a:56:d8:a2:6a:85:4f:d1:eb:fb:
a5:3d:bd:38:96:e2:32:67:88:b6:12:30:00:2b:6b:5a:64:88:
4f:42:04:ef:ff:3c:02:4f:44:ee:d1:ed:cd:d3:6c:12:8b:9a:
d3:19:29:ed:8c:78:50:83:65:1b:c8:7d:85:d7:79:60:f0:51:
a5:6a:3a:1b:64:24:f7:2e:52:f7:80:87:13:19:8b:5a:bb:ff:
f8:54:4a:c5:92:47:4f:f3:90:e1:cc:ef:98:8a:18:1b:3c:45:
ac:bc:ac:e2:4d:cd:76:f0:eb:65:e3:c5:10:30:84:30:9a:e1:
87:8d:ca:47:8c:fb:fa:97:d5:59:5e:c3:0b:1c:29:03:08:9e:
42:75:8e:4d:86:e0:97:8d:f6:94:2e:f0:d1:4d:e6:2d:1d:93:
56:63:d7:e3:0e:06:f5:e2:d5:1c:da:bf:bf:7b:c3:3a:4b:18:
d4:bd:9f:eb:8b:15:75:84:74:50:80:56:93:b8:53:6c:a6:77:
a1:86:8b:c6:1f:8d:d3:96:50:29:f7:24:89:8f:85:54:4d:98:
f4:f6:fb:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:07 2024 by rpki-client on console-ams.rpki-client.org