Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/_9kRZRVqU1jNgyHyHH9ng-865lY.roa
File: _9kRZRVqU1jNgyHyHH9ng-865lY.roa (raw, json)
Hash identifier: DIQJOcP0RKhaPr8OYrS7abCxhRWQZWwkDfY8E6dCTak=
Subject key identifier: FF:D9:11:65:15:6A:53:58:CD:83:21:F2:1C:7F:67:83:EF:3A:E6:56
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FACA90E663C7B8648A124924E987264
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/_9kRZRVqU1jNgyHyHH9ng-865lY.roa
Signing time: Tue 06 Feb 2024 18:27:18 +0000
ROA not before: Tue 06 Feb 2024 18:27:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212468
IP address blocks: 2a0f:b241:100::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ac:a9:0e:66:3c:7b:86:48:a1:24:92:4e:98:72:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:27:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ffd91165156a5358cd8321f21c7f6783ef3ae656
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:af:14:41:9a:7f:d0:6d:0c:83:4b:75:4a:b0:
ff:25:ca:c3:a0:2b:ae:a4:87:09:20:b5:37:69:98:
6c:31:d3:a1:fc:ec:30:69:0d:fe:97:75:92:bc:b6:
d7:a8:de:36:4a:d4:28:d1:5e:df:04:ee:96:d9:93:
22:82:b0:c1:f9:9e:8c:d8:d9:6d:6b:db:a5:f3:30:
23:51:d6:06:39:d4:71:3a:7c:e2:f2:54:69:52:a3:
1e:9a:63:6d:ea:99:4c:25:d6:7f:20:9b:53:f1:2d:
ae:74:c2:f5:56:7b:38:1e:7d:71:ed:ee:b5:1c:b1:
3e:3b:14:bd:47:ec:5c:a8:69:80:08:7f:40:40:83:
f6:20:78:c9:fb:1b:99:68:b9:98:a1:93:e3:d5:db:
03:23:bf:cf:0d:1a:2b:1e:cc:da:cd:e6:92:87:70:
58:8f:f6:74:f3:df:d1:b6:81:0b:53:dd:bd:e4:48:
8a:6c:b9:d1:8b:9b:0d:d9:4a:e7:3e:b4:b5:89:15:
db:e0:ea:78:09:a1:f3:46:41:62:5b:21:4b:71:4d:
ec:fb:1f:8c:06:b6:dd:37:a7:b3:ff:bd:17:f4:35:
c6:5a:d7:de:2d:56:b9:99:11:b5:c6:2c:36:4d:c9:
48:60:03:a0:c0:18:87:3b:0f:45:8b:88:83:9b:d6:
d3:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:D9:11:65:15:6A:53:58:CD:83:21:F2:1C:7F:67:83:EF:3A:E6:56
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/_9kRZRVqU1jNgyHyHH9ng-865lY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:100::/48
Signature Algorithm: sha256WithRSAEncryption
1b:8f:11:37:29:b3:01:f3:33:5c:51:c9:39:30:20:4a:47:1f:
92:58:35:d3:5b:8a:0e:fb:9a:b4:75:80:f2:80:1f:f4:14:d5:
a3:0a:18:11:db:a7:4a:dd:c1:be:e3:7e:4d:be:14:26:04:4b:
96:ea:bb:9d:85:34:80:7c:1a:da:0f:a1:56:08:da:21:76:44:
bf:5e:7e:54:c1:6b:c5:b5:90:a6:ca:73:28:ef:7c:ad:6b:5b:
ae:dc:b8:43:fd:0c:2a:5d:cc:a7:52:48:3f:12:17:11:83:86:
31:63:95:27:77:e5:a3:52:00:10:aa:44:27:6c:ec:3a:e4:46:
ad:7d:27:63:7a:98:02:b8:fa:56:ab:04:ca:a2:9e:0b:f5:a9:
7b:41:cd:04:fb:e3:e5:ab:b0:69:87:ee:76:f4:3f:a3:19:08:
4e:8b:2f:79:09:d3:39:e1:4d:2e:c2:8c:73:22:3f:75:a9:1d:
ca:7d:62:a1:9f:e0:d2:8d:db:69:5b:47:bd:bc:32:14:cf:91:
5e:2b:5a:ac:4d:8e:43:96:a7:60:6b:88:4c:92:7a:3e:47:68:
09:b9:77:37:81:7b:f4:5c:fd:88:61:58:c0:db:32:2f:77:87:
83:c5:5a:27:d0:f4:c3:fc:e8:0c:40:c2:9e:b8:a7:e4:14:f3:
b2:f2:b2:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:09 2024 by rpki-client on console-ams.rpki-client.org