Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/PrzcbSZ14cXFnrLtf6LfLyUBNL4.roa
File: PrzcbSZ14cXFnrLtf6LfLyUBNL4.roa (raw, json)
Hash identifier: DCDEUMaLHPofg6INrgyOpy1OVDYt85A5xsIlULiqlBw=
Subject key identifier: 3E:BC:DC:6D:26:75:E1:C5:C5:9E:B2:ED:7F:A2:DF:2F:25:01:34:BE
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F081C2F85B4DEF0358F95B756A6754
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/PrzcbSZ14cXFnrLtf6LfLyUBNL4.roa
Signing time: Wed 07 Feb 2024 05:00:39 +0000
ROA not before: Wed 07 Feb 2024 05:00:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200255
IP address blocks: 2a0f:b241:a4::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:81:c2:f8:5b:4d:ef:03:58:f9:5b:75:6a:67:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3ebcdc6d2675e1c5c59eb2ed7fa2df2f250134be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:91:bb:f2:13:fb:2e:ba:22:ab:6f:3c:c6:28:
a0:1a:bb:92:42:7e:15:e1:e5:b1:23:dd:6a:15:0b:
87:ab:df:c1:74:a5:4e:1c:2d:57:40:81:89:e7:ab:
c8:87:25:67:9e:70:44:5d:dd:a1:f4:f0:b4:9f:6c:
61:91:c7:83:65:91:19:e2:81:38:aa:a3:03:19:65:
2c:be:b4:f1:2a:9d:ec:a5:84:4e:d8:3b:9b:20:5f:
dd:b5:02:7f:f1:c5:03:c8:ea:76:d0:ac:d1:66:76:
bb:4c:ec:17:b7:c2:c4:b9:bf:39:54:8a:03:60:c6:
16:9f:4e:98:44:ec:01:e6:b0:a2:50:b7:c3:0c:74:
29:2d:eb:86:18:05:9f:14:29:e9:df:b4:ce:84:4f:
17:84:f4:bf:b6:97:28:31:65:5b:21:12:fe:27:d9:
27:e8:81:c0:5e:d4:fa:5e:ce:ae:a3:00:d7:a6:e1:
29:76:25:a7:d8:93:6c:ae:3a:cd:c1:e6:67:0f:27:
43:59:3a:32:9f:3f:e1:8a:77:c4:59:30:e4:bd:6b:
ea:2f:fc:22:4b:2a:6a:58:ec:8b:94:9d:e1:cf:b8:
37:7c:4d:2d:17:88:ba:b2:ac:ee:bc:6a:e4:64:15:
2f:c9:19:cc:21:49:37:fc:84:9a:a5:fb:4d:bb:fe:
1c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:BC:DC:6D:26:75:E1:C5:C5:9E:B2:ED:7F:A2:DF:2F:25:01:34:BE
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/PrzcbSZ14cXFnrLtf6LfLyUBNL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:a4::/48
Signature Algorithm: sha256WithRSAEncryption
34:ec:ae:0b:cb:49:64:c0:f0:85:e5:f1:10:13:1a:79:31:f0:
60:57:a5:65:c7:d0:72:fd:52:0a:e5:73:fb:16:1b:8b:bf:13:
61:7e:41:cf:8d:39:df:ef:44:7f:43:db:c2:56:ab:60:1e:cd:
40:28:ee:72:7d:27:06:bd:95:24:27:49:47:53:36:dc:4c:77:
03:1b:cc:40:e7:a0:d0:2d:af:42:f3:9d:d9:0a:53:b5:87:2e:
5f:c4:68:a8:bb:5c:2d:84:af:3e:31:1e:a7:5d:1a:92:71:c8:
98:e3:90:58:ad:19:f6:4d:f8:86:77:f2:0b:dd:d6:9c:87:d4:
8a:6a:81:4d:4e:c0:7c:be:a7:1f:b6:0a:fc:d7:33:64:45:cf:
de:09:2d:80:8e:01:94:f4:a6:2d:d9:4d:b1:b2:67:1e:31:e7:
a0:5a:c3:b4:9f:88:0d:ce:bb:d4:4a:0b:a4:94:28:91:0e:7a:
03:46:3a:c6:83:55:22:50:97:2b:3c:47:ba:1b:a2:97:95:20:
a0:f0:54:35:06:ee:76:7b:e7:c4:19:14:17:32:96:09:bc:dd:
bf:46:e6:b4:19:28:5e:d9:83:1f:6c:4d:bd:0f:18:b1:e6:1d:
fd:2b:aa:50:19:6d:a6:bd:48:9a:3a:9e:7f:1a:9f:ee:67:4d:
e7:cb:2c:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org