Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/QSKyME2WMyvdI6NWwRyj2wDkMy0.roa
File: QSKyME2WMyvdI6NWwRyj2wDkMy0.roa (raw, json)
Hash identifier: 8rp7+Z81LTF3u9dkQIop5m/z6Kq8WXjw0oB6mQ16aSE=
Subject key identifier: 41:22:B2:30:4D:96:33:2B:DD:23:A3:56:C1:1C:A3:DB:00:E4:33:2D
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F8D7D5503334117B065D6F86C86C36B
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/QSKyME2WMyvdI6NWwRyj2wDkMy0.roa
Signing time: Tue 06 Feb 2024 17:53:15 +0000
ROA not before: Tue 06 Feb 2024 17:53:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203979
IP address blocks: 2a0f:b241:1d::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:8d:7d:55:03:33:41:17:b0:65:d6:f8:6c:86:c3:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 17:53:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4122b2304d96332bdd23a356c11ca3db00e4332d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:27:7b:47:19:14:c8:ce:82:92:56:cd:58:f2:
19:17:24:9d:c8:05:b2:f3:3b:2d:b2:82:a1:f7:a2:
4a:59:e1:b8:80:f5:a3:24:b6:7d:42:89:45:51:ea:
cd:2f:b0:e2:b3:c6:8f:30:f3:8b:24:6b:0a:f0:d5:
64:d9:02:dc:49:93:fe:5a:55:f4:71:5a:e8:a0:da:
3e:45:51:c3:ef:41:8c:de:cf:e8:02:47:1a:86:3b:
16:96:57:08:59:00:ea:2a:62:1f:74:8f:9c:07:5b:
de:eb:af:c3:bb:ef:cb:e3:a7:26:b2:ce:fe:7a:80:
68:19:ea:7d:49:09:df:43:8e:e6:f3:b3:7f:8b:81:
a3:40:08:3d:d9:9d:d6:8c:9e:14:56:76:68:2a:18:
90:a0:b3:e9:2a:f5:0c:98:2f:ae:c5:47:9f:a4:05:
3b:5a:ca:be:cd:9c:49:be:fc:50:6c:63:31:8a:35:
9d:fc:5d:97:a2:71:22:b6:d1:92:a6:fc:d1:42:79:
74:c4:72:82:7e:83:49:5c:13:bf:fa:37:a9:d1:33:
f1:04:28:dd:b7:69:e3:10:d5:9a:96:b0:3d:39:5b:
c0:0d:8f:d1:a8:ac:f4:67:69:5d:cb:65:28:91:92:
aa:3b:4e:8d:54:9a:a6:0d:83:4b:ee:79:39:75:8e:
8c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:22:B2:30:4D:96:33:2B:DD:23:A3:56:C1:1C:A3:DB:00:E4:33:2D
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/QSKyME2WMyvdI6NWwRyj2wDkMy0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:1d::/48
Signature Algorithm: sha256WithRSAEncryption
84:29:aa:93:de:d9:09:45:16:23:37:8d:37:86:fa:8b:46:23:
a7:e6:50:ed:9a:96:7f:f9:59:1f:8b:aa:90:11:fa:39:6a:5f:
7c:9b:b5:66:97:ef:5d:a4:0a:c4:8a:82:97:8b:6b:a6:d0:ce:
4b:ce:63:e2:36:77:43:ff:cb:dd:90:24:e1:2b:f8:97:9b:02:
5f:2f:3b:9c:c5:77:64:93:60:c3:15:95:29:f0:58:d0:28:6f:
c9:78:a3:2a:4e:c8:b8:6a:56:bc:28:3a:6b:b3:cb:0b:10:0f:
81:f9:f2:fa:fe:86:69:62:db:fe:7c:d9:b4:37:48:44:3d:97:
31:6d:b9:ab:86:74:22:f6:ac:08:31:ac:ef:f3:a0:7c:04:02:
7c:21:04:6e:e7:b4:a7:26:93:e0:7d:a8:b5:e5:0f:21:75:63:
e0:04:f2:15:29:4b:55:36:81:ac:f7:ee:b6:e4:1d:4f:03:b1:
a3:28:f7:07:36:39:f8:33:ea:2d:58:68:e4:21:2c:b1:9c:90:
8a:e5:08:63:21:ce:78:08:8a:23:7b:e4:13:9a:f6:1b:00:a7:
99:56:bb:33:40:61:d0:68:30:47:b1:97:15:0e:7c:7a:a8:6c:
ca:78:fa:90:e1:cc:cf:38:e2:bc:d9:21:a7:5c:4e:68:1f:80:
77:8f:61:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:09 2024 by rpki-client on console-ams.rpki-client.org