Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/YttsnLerB4xqza_gPduC7glaUMk.roa
File: YttsnLerB4xqza_gPduC7glaUMk.roa (raw, json)
Hash identifier: bWcy4WAjul8kDHARIjghJHtP3Wiqr6/hDXMhyD1jl9M=
Subject key identifier: 62:DB:6C:9C:B7:AB:07:8C:6A:CD:AF:E0:3D:DB:82:EE:09:5A:50:C9
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F88EB1F39DB215A6927F212A1B1A5D5
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/YttsnLerB4xqza_gPduC7glaUMk.roa
Signing time: Tue 06 Feb 2024 17:48:15 +0000
ROA not before: Tue 06 Feb 2024 17:48:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198055
IP address blocks: 2a0f:b241:16::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:88:eb:1f:39:db:21:5a:69:27:f2:12:a1:b1:a5:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 17:48:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=62db6c9cb7ab078c6acdafe03ddb82ee095a50c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:b5:25:f6:b9:13:31:15:a5:db:af:31:48:f5:
e8:05:15:27:63:0b:c6:88:1a:27:80:e5:84:51:2b:
49:37:a9:04:02:85:79:cc:53:46:98:7d:3f:27:f3:
a8:2b:58:71:fb:ca:95:77:24:52:fc:95:b5:ae:a9:
6f:89:72:70:e4:87:af:8b:18:1b:4a:87:3d:8d:e0:
72:fb:b0:ee:fc:99:dd:c4:c0:6a:8a:8b:ce:6b:8c:
36:76:b7:fd:07:b6:56:ba:33:21:c3:b7:4d:37:99:
b9:eb:f7:02:87:20:1e:7c:fc:21:45:c7:b5:9e:0d:
f0:0a:85:93:80:84:38:3d:db:83:34:ee:0e:1b:4e:
0c:61:77:62:63:34:e0:3c:da:5c:93:b0:b0:1a:2b:
fc:83:8b:38:e1:eb:f3:b2:07:b0:f7:69:51:c5:dd:
36:30:77:5b:6e:9e:ae:2b:1b:ca:f6:c6:bf:54:68:
ee:3a:c6:5d:a7:0b:1d:d7:28:31:cc:a4:88:8f:34:
f8:14:92:e9:7b:78:3d:3f:01:cf:ef:85:91:9f:ae:
97:55:86:ee:30:9a:c6:30:91:cb:2c:5c:1f:8a:df:
36:a9:ee:6c:8f:1b:bd:b0:9d:b2:2d:6d:90:ff:2d:
fc:cf:8b:d2:1a:85:f8:9a:24:65:4e:d7:04:ed:89:
ce:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:DB:6C:9C:B7:AB:07:8C:6A:CD:AF:E0:3D:DB:82:EE:09:5A:50:C9
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/YttsnLerB4xqza_gPduC7glaUMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:16::/48
Signature Algorithm: sha256WithRSAEncryption
50:c4:f3:4e:48:96:a0:fc:6d:df:18:e3:d8:d8:b2:1d:35:b1:
9d:63:44:e8:ad:78:06:60:aa:cb:c9:42:df:b7:38:60:42:7b:
c0:69:55:5e:fe:42:de:74:76:81:d7:6b:eb:08:d9:fc:61:c5:
0a:66:a9:51:57:fa:ac:24:52:d9:5f:fd:3d:01:71:81:93:7d:
b6:b3:cf:cd:37:3e:71:ab:41:49:4a:5b:5a:c3:1e:e1:51:4c:
ff:9b:41:d4:0b:d4:84:16:2e:67:04:37:03:dc:d3:3b:5f:54:
98:41:18:b4:50:6f:4a:e2:57:69:a1:dd:da:5c:29:2c:3a:fd:
f8:b0:af:f0:7c:69:3a:41:3d:57:4a:a1:62:ad:17:1e:ea:cc:
7d:46:fd:73:f9:65:96:f5:87:e8:4e:7d:bd:76:92:8f:e8:d2:
9c:73:2c:ff:71:b1:bc:e1:ac:04:c7:15:f8:4d:b3:0a:2e:ff:
3e:74:70:a0:a5:90:da:86:f6:e0:68:8a:32:b9:fc:91:ca:1b:
9a:0a:2b:15:05:a0:d0:5a:82:b8:46:f2:76:8e:82:2f:07:cd:
c0:13:a4:a9:4e:67:eb:89:80:d5:a7:6c:15:2b:74:ba:b2:11:
da:11:1d:29:01:ce:c5:cc:9e:4e:ad:6a:1e:dc:24:76:d3:c8:
cb:19:07:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:12 2024 by rpki-client on console-fra.rpki-client.org