Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/5u_XwGJRx5jQkjZVcec39jCqQGQ.roa
File: 5u_XwGJRx5jQkjZVcec39jCqQGQ.roa (raw, json)
Hash identifier: qKVtoLNHWX+/30ntF9uumPkjAAB2Ow07sR1LNnPPif0=
Subject key identifier: E6:EF:D7:C0:62:51:C7:98:D0:92:36:55:71:E7:37:F6:30:AA:40:64
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA9E58BC1EC73B9440391A5849A7EC4
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/5u_XwGJRx5jQkjZVcec39jCqQGQ.roa
Signing time: Tue 06 Feb 2024 18:24:17 +0000
ROA not before: Tue 06 Feb 2024 18:24:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200795
IP address blocks: 2a0f:b241:d4::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a9:e5:8b:c1:ec:73:b9:44:03:91:a5:84:9a:7e:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:24:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e6efd7c06251c798d092365571e737f630aa4064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:b2:6a:d3:24:58:c2:08:1e:ab:61:74:ae:99:
85:50:83:e3:0d:60:8e:25:e0:47:af:af:4a:09:8f:
16:58:4d:2d:dd:0c:2a:4c:0f:25:bb:4c:6f:0c:ea:
6c:3c:a8:ff:c0:d7:db:5b:da:cf:bb:55:9e:35:d2:
ce:fc:7d:23:d9:41:49:0a:9b:ec:f3:64:da:33:6d:
42:20:2e:49:a0:8c:05:7b:e8:7f:fd:68:74:76:d3:
11:23:8b:d7:e1:60:2d:e8:57:e2:61:c2:c9:39:0c:
32:96:be:02:fd:60:88:6f:c7:bd:a4:de:e2:09:b2:
4f:af:80:8c:cd:57:8e:7f:42:c1:9b:08:85:e5:d4:
43:c1:91:cc:76:63:40:5c:09:9c:66:ce:a9:88:17:
75:aa:61:cb:05:b5:60:c2:dd:c7:6f:b2:96:0e:bc:
cf:62:f1:c3:da:94:e9:ea:75:79:52:50:06:8a:7a:
71:01:b5:d7:e6:73:29:fa:24:cd:33:a4:13:27:4e:
5f:d1:e6:78:fb:84:28:03:e8:49:85:b1:8e:d9:d4:
08:1b:b3:cd:78:1e:33:f4:24:71:46:b4:46:00:cc:
82:69:6d:5d:7d:72:73:b5:ba:e1:56:bd:ed:da:6c:
92:cc:72:c3:72:47:ce:95:fe:6c:10:8d:2f:ae:77:
4e:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:EF:D7:C0:62:51:C7:98:D0:92:36:55:71:E7:37:F6:30:AA:40:64
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/5u_XwGJRx5jQkjZVcec39jCqQGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:d4::/48
Signature Algorithm: sha256WithRSAEncryption
45:bd:59:76:21:1c:ca:9f:48:a5:b5:81:ac:6e:ee:04:bd:be:
2b:83:7f:af:14:d4:bc:08:f9:6e:e1:b7:9e:c4:d7:a5:3d:47:
9e:83:b7:1c:6f:08:c6:93:be:83:30:fe:a6:c2:fc:96:a2:61:
b1:bc:0d:10:b3:87:4d:16:53:44:b1:02:fe:70:de:11:40:39:
e5:54:03:ae:b8:7b:0a:07:1d:5d:46:ac:83:2a:6c:ab:60:35:
5a:c1:e3:4f:5b:1a:00:53:52:e0:c0:34:4a:3d:53:6b:4f:43:
fe:73:9f:5d:43:40:4f:f2:aa:d9:99:02:db:d6:fc:25:55:c9:
20:f7:b2:f4:7a:bb:1b:20:f7:07:9a:9f:84:fb:e9:26:c8:a9:
cd:8e:f9:42:8d:91:e3:ec:d4:77:eb:14:8a:25:a3:cf:66:c5:
f7:51:6b:f7:4c:3c:1a:f3:31:80:96:e8:c3:e9:ef:77:48:3e:
58:fa:f1:3e:fd:8e:91:c9:75:d8:e4:ba:21:65:aa:a1:e1:70:
b8:5d:79:e8:2b:f2:d2:b4:f8:e6:b5:90:66:1c:7c:c7:7b:74:
23:99:2b:af:a4:3b:19:46:1a:c7:56:80:eb:2e:23:df:83:c5:
0f:20:52:6c:93:20:8f:fe:b9:4d:9e:c7:69:8a:b4:72:38:6c:
bd:ee:60:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:07 2024 by rpki-client on console-ams.rpki-client.org