Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/HOsRZhM_3sjCxzuC_9F4vNc2MeQ.roa
File: HOsRZhM_3sjCxzuC_9F4vNc2MeQ.roa (raw, json)
Hash identifier: CdSdZedJzZGFY7pTfFu2+q7ndAUoLb+NHRpEgV9Irow=
Subject key identifier: 1C:EB:11:66:13:3F:DE:C8:C2:C7:3B:82:FF:D1:78:BC:D7:36:31:E4
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAE7B08886A907A202183A66D9CB81D
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/HOsRZhM_3sjCxzuC_9F4vNc2MeQ.roa
Signing time: Tue 06 Feb 2024 18:29:17 +0000
ROA not before: Tue 06 Feb 2024 18:29:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52210
IP address blocks: 2a0f:b241:11c::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ae:7b:08:88:6a:90:7a:20:21:83:a6:6d:9c:b8:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:29:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1ceb1166133fdec8c2c73b82ffd178bcd73631e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:9d:d9:06:22:42:c9:36:83:ff:41:1f:b7:fd:
07:8a:a6:6e:6f:cd:6a:2c:a2:76:b8:52:3f:18:39:
78:8a:48:9a:83:84:55:31:a4:36:b3:2d:7b:49:7a:
ee:25:c5:7e:d8:e8:6e:cd:01:7e:93:81:89:b1:d9:
dc:59:a2:50:90:9d:f6:12:53:57:e6:5a:92:e2:f1:
44:ba:46:31:97:58:85:ef:a7:9f:30:ff:58:91:ba:
93:c7:57:06:00:3d:de:36:dc:be:07:11:71:1d:ab:
1d:30:94:3e:e6:26:1b:c4:eb:99:15:93:05:c7:ac:
3e:46:01:2c:29:08:e4:e6:a3:6f:49:48:8a:ef:00:
0d:e4:a5:91:b1:75:99:db:c6:a2:32:2b:40:6c:73:
f0:c0:ca:20:39:9f:e8:ac:b6:f4:23:8f:8d:52:8c:
da:ad:32:ac:8d:8f:0a:9b:20:3d:63:e0:8a:9b:a2:
b2:1a:ac:40:25:86:95:b5:69:cc:ec:51:95:f3:93:
f7:89:6a:4f:e0:92:74:17:d3:30:6a:1b:ba:e2:4a:
36:94:e5:ed:da:82:0b:b5:41:79:d6:29:48:33:d8:
93:24:75:09:96:f4:5b:04:0b:a6:f8:dd:fe:90:72:
c5:26:89:95:7a:d3:a6:81:38:7b:b9:19:50:a5:18:
cd:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:EB:11:66:13:3F:DE:C8:C2:C7:3B:82:FF:D1:78:BC:D7:36:31:E4
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/HOsRZhM_3sjCxzuC_9F4vNc2MeQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:11c::/48
Signature Algorithm: sha256WithRSAEncryption
04:1f:33:b4:6d:4e:e5:cc:05:6a:91:9b:fe:40:9a:21:c8:d5:
60:09:11:7f:28:55:fa:e8:b3:26:22:7a:9f:c9:ef:ae:88:01:
03:aa:44:a7:b8:89:31:8b:78:1c:fb:fa:a5:a7:e5:50:f7:04:
79:a3:56:aa:40:4d:a0:eb:c8:a1:cb:c6:be:cf:7a:0f:f8:e1:
09:c3:8b:da:e9:cd:51:f9:61:7e:53:47:0c:bf:d4:92:3c:bf:
4e:c9:20:71:a6:e9:9a:00:26:f0:a6:2f:60:ca:dc:28:53:df:
a6:1b:fe:ee:e5:33:5a:50:2c:31:e7:83:ba:7a:13:60:be:6c:
f9:37:d4:8d:bb:27:bd:66:ec:a1:90:1e:76:72:1a:b5:8c:88:
dd:09:12:76:ff:5f:b5:a2:53:08:ce:57:95:bc:bf:0a:14:fc:
ae:38:f0:79:52:24:86:33:73:56:0d:e8:a1:aa:6e:10:52:76:
68:9b:50:e6:c3:e9:cb:9b:20:c2:2e:e1:95:ab:ff:7c:c1:13:
a7:35:46:0e:65:b6:c8:1a:e0:1f:14:02:6c:c1:7c:7f:96:47:
5e:fe:cd:5c:cf:e0:f9:72:52:73:3b:04:de:48:82:76:1d:65:
89:07:d5:2a:13:a8:2a:02:c0:04:6b:fa:3e:93:c8:d2:eb:ab:
25:be:ae:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org