Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/T2D_uoda82XrPQVTIG_r33lQ1kY.roa
File: T2D_uoda82XrPQVTIG_r33lQ1kY.roa (raw, json)
Hash identifier: UMUiTifhoBTkeJdt9Wtsb2pcJSjoSOpFjsEUh1O0OiE=
Subject key identifier: 4F:60:FF:BA:87:5A:F3:65:EB:3D:05:53:20:6F:EB:DF:79:50:D6:46
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA80EB2AA65A7566ED4EE93C29ED600
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/T2D_uoda82XrPQVTIG_r33lQ1kY.roa
Signing time: Tue 06 Feb 2024 18:22:16 +0000
ROA not before: Tue 06 Feb 2024 18:22:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199825
IP address blocks: 2a0f:b241:8d::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a8:0e:b2:aa:65:a7:56:6e:d4:ee:93:c2:9e:d6:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:22:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4f60ffba875af365eb3d0553206febdf7950d646
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:2a:d2:4f:7f:d6:00:89:cb:3c:22:98:41:9c:
7b:b8:fa:cf:c7:ec:c9:6d:49:f6:4b:24:a3:e1:f8:
33:76:ad:2c:28:83:f4:32:a4:1b:28:6d:e4:69:76:
7d:58:ba:b0:e2:44:d2:a1:84:ee:cf:fe:72:91:23:
20:87:5f:24:0b:e1:31:1a:14:6c:04:65:b0:13:a9:
ea:9a:f8:b5:4d:fd:22:84:56:e9:fd:88:78:47:dc:
dc:36:01:70:97:59:c0:ef:10:f9:b1:ee:67:03:9b:
1b:a7:94:a5:3d:c4:d7:8a:cd:da:7d:92:d3:34:33:
14:bb:60:49:07:55:1b:db:2e:75:45:b2:d5:55:d5:
17:c7:17:2c:2e:18:da:07:10:03:33:40:fe:15:c4:
2a:5a:6d:2a:11:86:37:4f:53:7c:d3:e1:67:41:96:
83:26:d9:86:98:72:57:8a:dc:78:45:eb:79:c1:b4:
58:28:46:f9:cd:07:da:e6:5e:63:6d:26:ee:80:35:
97:e8:8d:88:0a:45:f7:49:ee:cf:30:ba:9d:e2:cd:
cf:8c:ff:6d:cc:43:25:f7:19:e2:75:56:18:d7:d0:
36:31:93:bc:b3:db:ea:7d:bc:44:ec:f8:ca:a1:48:
fe:a7:56:0b:5b:92:60:e5:36:0e:1a:f6:33:1e:5f:
11:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:60:FF:BA:87:5A:F3:65:EB:3D:05:53:20:6F:EB:DF:79:50:D6:46
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/T2D_uoda82XrPQVTIG_r33lQ1kY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:8d::/48
Signature Algorithm: sha256WithRSAEncryption
58:2e:1a:3d:be:a6:8e:81:6d:63:47:07:74:c4:ed:9a:be:52:
b8:25:f4:0c:7c:b6:4d:2b:69:61:0f:26:6e:f1:86:7a:30:44:
e9:10:c0:5e:1f:86:49:04:1c:25:61:c7:08:f8:3e:ff:51:e3:
83:62:2f:21:e7:df:89:40:48:37:3a:7c:d8:ea:25:a5:26:6d:
61:71:fb:42:6d:d8:79:8a:bb:97:50:45:60:cc:db:8a:bf:a4:
5f:43:2e:8b:dc:62:51:f5:3f:67:2e:1a:85:05:e3:e2:d5:b9:
73:7d:46:a6:07:e6:68:04:94:55:6b:d8:46:7d:31:00:65:c0:
d9:9f:98:8d:bd:25:c7:90:95:ec:3f:9d:6a:06:6b:ea:a0:9b:
be:b1:85:99:0c:c7:58:41:cd:32:cc:52:27:5e:de:c1:d9:06:
11:63:bf:a6:cf:15:49:59:56:63:db:5f:22:57:19:fb:98:30:
4e:f5:cb:fa:3a:80:08:9a:cf:f3:16:3e:84:22:db:2f:87:ca:
5a:40:0c:23:f8:26:83:bb:14:3b:61:10:95:6e:a0:43:1c:83:
49:27:0d:ca:9b:8d:f1:d8:e5:b9:13:11:75:8d:e7:3c:1a:af:
34:7d:5e:25:88:3c:f4:ab:9d:f3:a1:2b:9a:d4:99:64:31:4d:
4b:d4:a1:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org