Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/W5cibesit9VPukBdYX5Dup9UCOk.roa
File: W5cibesit9VPukBdYX5Dup9UCOk.roa (raw, json)
Hash identifier: R3ycwo8MJV76vAvRHkhqXvsqWVVttnYxW1Rmwblyq0o=
Subject key identifier: 5B:97:22:6D:EB:22:B7:D5:4F:BA:40:5D:61:7E:43:BA:9F:54:08:E9
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F978FC906B376B2E6F6592D32047EB8
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/W5cibesit9VPukBdYX5Dup9UCOk.roa
Signing time: Tue 06 Feb 2024 18:04:15 +0000
ROA not before: Tue 06 Feb 2024 18:04:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60379
IP address blocks: 2a0f:b241:66::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:97:8f:c9:06:b3:76:b2:e6:f6:59:2d:32:04:7e:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:04:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b97226deb22b7d54fba405d617e43ba9f5408e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ed:65:1f:8d:36:80:40:c1:3b:31:39:f2:d2:
8e:28:cc:48:90:21:79:ad:4a:f2:bc:b8:34:f9:0b:
0d:6f:59:6b:1b:35:c6:99:b1:58:25:ce:4a:7a:71:
ff:72:f5:4d:33:44:18:8f:c3:10:98:8f:4b:04:f4:
71:2e:47:65:47:35:18:19:67:24:7d:1e:8c:ab:25:
c7:73:84:ba:13:9a:e9:0d:b0:6f:c8:53:69:a5:fe:
fa:58:0b:91:32:b5:74:e4:58:76:a8:fb:9e:8f:a8:
e1:ce:41:99:65:35:f9:23:4d:e0:69:30:74:19:5b:
49:97:21:d0:d4:7a:40:bb:36:8c:34:3d:c9:7c:ee:
ce:db:47:42:10:e5:b6:7a:e2:d7:c5:49:fe:2b:cc:
47:58:5a:35:89:b6:36:4a:89:34:01:a7:9e:e7:d9:
bf:f9:cc:b4:d3:5c:e9:97:7b:fb:38:6f:30:3c:1d:
f7:fe:11:bc:2d:c2:23:2d:a2:e2:ee:d5:de:06:6f:
72:a8:9d:71:d4:de:85:c9:91:8b:6d:d5:30:d1:ba:
94:e4:f4:e9:92:c9:bc:d4:62:50:77:ba:cb:1b:37:
8a:81:6c:ef:2a:76:2c:ae:db:94:c7:cc:f1:d3:43:
33:a7:9f:e8:3c:b5:97:1c:9b:a7:fb:eb:ef:d0:69:
5c:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:97:22:6D:EB:22:B7:D5:4F:BA:40:5D:61:7E:43:BA:9F:54:08:E9
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/W5cibesit9VPukBdYX5Dup9UCOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:66::/48
Signature Algorithm: sha256WithRSAEncryption
34:cf:6d:32:10:9d:a8:7f:0b:78:05:3e:03:f5:ad:55:d8:5e:
ad:9d:38:8a:01:a9:78:bb:8d:a7:fd:4f:4c:06:f5:e9:9a:7e:
c3:f4:8f:d5:c2:62:44:87:00:00:4f:d0:0f:2c:f0:3c:2f:60:
cc:af:30:2b:fd:6e:4a:97:12:1f:ff:8e:cb:53:40:26:e6:34:
8c:ea:1a:ba:9a:a2:b5:97:77:9a:fa:f9:09:32:c1:c7:7c:79:
53:6d:ff:0e:5b:8c:a7:b7:d9:73:c8:af:e6:fa:30:df:a0:5e:
15:e7:02:3c:1c:1f:ec:08:39:c0:e4:f6:34:37:e5:57:3c:00:
4a:d0:9c:66:95:cf:39:cb:45:1a:fa:5c:71:ee:2e:41:ab:1c:
66:c0:89:83:6f:65:c3:d5:92:b3:a7:56:15:40:57:8d:df:ee:
fe:ac:86:0d:79:30:d0:f2:7a:63:d2:f6:25:38:6e:6c:db:6d:
94:55:00:4e:0d:db:b2:09:b7:ad:ad:ee:c5:db:fa:f1:a2:56:
2f:5c:eb:6b:59:a5:95:4f:49:e3:fc:9d:ee:36:17:eb:72:b9:
a5:1c:be:56:5d:03:a1:34:c8:df:55:c0:b9:b3:00:3d:e9:a5:
76:b3:31:ea:c7:1b:8c:df:15:9d:87:74:f5:62:0b:ff:df:de:
04:96:74:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:09 2024 by rpki-client on console-ams.rpki-client.org