Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/YJ58y_X8_WCBWy-9OjPuJ7PELgE.roa
File: YJ58y_X8_WCBWy-9OjPuJ7PELgE.roa (raw, json)
Hash identifier: yENmU5lCX009Dvcj7bfoIAytoHFX72ZhZwpaB5ZOabw=
Subject key identifier: 60:9E:7C:CB:F5:FC:FD:60:81:5B:2F:BD:3A:33:EE:27:B3:C4:2E:01
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F06DCFEC9F01016BE13DE280FDB96E
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/YJ58y_X8_WCBWy-9OjPuJ7PELgE.roa
Signing time: Wed 07 Feb 2024 05:00:34 +0000
ROA not before: Wed 07 Feb 2024 05:00:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197841
IP address blocks: 2a0f:b241:73::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:6d:cf:ec:9f:01:01:6b:e1:3d:e2:80:fd:b9:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=609e7ccbf5fcfd60815b2fbd3a33ee27b3c42e01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:2b:88:fd:75:57:42:16:b8:e0:51:80:f1:fd:
54:36:7c:aa:b9:57:fa:49:41:ba:9c:ea:14:26:6a:
40:3f:ba:2a:95:7d:e1:14:cd:42:fe:04:48:42:c5:
48:09:8e:d5:b4:68:12:ec:fd:b3:7d:52:53:06:b3:
48:a0:3a:f8:4c:c9:50:9f:96:fc:4a:2b:04:c4:da:
a8:b2:cd:1a:39:dd:39:7e:5a:af:54:21:8e:1d:2d:
98:ea:52:2d:24:1b:b3:82:af:25:de:bc:f0:ab:37:
d7:76:d5:de:7f:72:e4:fe:ab:5c:ff:45:b0:b5:fb:
48:fa:6f:9b:c5:c8:6b:e9:8b:80:4a:ca:d0:aa:a2:
0b:c7:f2:47:6b:35:d6:8c:b6:13:8b:f7:95:ee:98:
d4:53:7e:ce:7a:f0:7a:8f:0e:74:d9:97:2c:81:ef:
7c:3f:04:12:e3:e3:4b:7a:e8:d2:d8:52:38:e6:c5:
6e:2c:5f:f9:b4:c5:31:a4:b7:3c:73:78:8a:ec:2d:
26:cc:81:59:d1:aa:f0:98:d4:10:18:48:68:aa:44:
ee:ff:78:76:0f:ac:59:17:4c:68:5c:47:a7:de:9e:
32:f5:ad:97:ed:66:57:fd:5c:8d:1c:96:20:cf:b4:
7c:99:38:48:39:ef:f4:2a:99:b2:1c:0e:d7:f0:e1:
cf:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:9E:7C:CB:F5:FC:FD:60:81:5B:2F:BD:3A:33:EE:27:B3:C4:2E:01
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/YJ58y_X8_WCBWy-9OjPuJ7PELgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:73::/48
Signature Algorithm: sha256WithRSAEncryption
74:29:a1:13:64:a0:f2:bb:65:f2:4a:a2:bb:10:70:f7:c7:f8:
ee:91:7e:97:07:c0:d9:b8:0e:24:44:dd:82:54:c9:8d:1c:d2:
67:05:0a:b3:eb:8b:7d:db:c7:2b:4f:85:cf:47:b5:c0:b3:b8:
1e:16:cb:3d:c2:8a:18:4d:16:69:b0:0d:fa:ad:fe:44:31:a2:
9f:d3:ae:54:85:3b:13:26:be:d1:fe:21:1a:7b:2e:0d:2a:4d:
27:58:19:ea:87:85:f8:17:9a:48:55:17:71:5c:8d:05:34:9f:
64:e8:af:ae:0f:f9:1f:6e:0f:7d:d3:09:94:cb:8c:d6:aa:25:
f5:c0:51:b1:85:70:30:47:78:ee:4c:bb:f6:b5:a1:fe:ea:fa:
03:1d:65:24:95:6e:17:36:b7:86:68:cf:0e:56:d6:5d:61:b2:
91:f5:bf:40:c0:04:74:47:ce:1a:12:29:e6:6b:18:5a:24:6c:
59:a4:d0:79:87:17:07:ab:d0:6e:79:39:da:9c:d5:0b:76:41:
6e:c5:24:19:a7:85:29:14:03:9a:d4:92:4f:85:27:74:65:df:
28:57:4e:51:df:a0:ca:9b:2e:1a:ea:5c:27:dd:78:d7:14:5d:
e9:5a:e7:01:50:48:77:f0:ec:c5:8c:a7:df:d0:0f:57:58:e0:
8c:b4:5c:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org