Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/dcxlgKMjtoBqJi2rL8lKJVvCdaU.roa
File: dcxlgKMjtoBqJi2rL8lKJVvCdaU.roa (raw, json)
Hash identifier: 1BYeZIz0ZH3VX1KoZGIXWTxe/GizqPuneaJzqpOrKlM=
Subject key identifier: 75:CC:65:80:A3:23:B6:80:6A:26:2D:AB:2F:C9:4A:25:5B:C2:75:A5
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F95C1233074CFC0193D4830CC6612A3
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/dcxlgKMjtoBqJi2rL8lKJVvCdaU.roa
Signing time: Tue 06 Feb 2024 18:02:17 +0000
ROA not before: Tue 06 Feb 2024 18:02:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211072
IP address blocks: 2a0f:b241:48::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:95:c1:23:30:74:cf:c0:19:3d:48:30:cc:66:12:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:02:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=75cc6580a323b6806a262dab2fc94a255bc275a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:db:57:a3:d5:da:f2:db:1d:e7:02:7e:09:fb:
e6:2f:11:63:58:11:cc:5f:7c:51:c0:06:84:41:6b:
8a:ce:89:bb:25:ad:9b:d2:f4:fb:20:ca:c5:68:e3:
7d:35:c7:4b:2b:c3:17:ce:e2:42:26:05:be:6e:48:
cf:e4:34:b2:63:37:4a:d3:db:d9:dd:e4:af:5d:07:
5f:52:fd:2a:a9:61:7b:c8:cb:3e:2c:74:ce:55:57:
eb:8d:4e:9d:04:d7:fe:3f:4a:a9:1d:99:a3:2f:ea:
d2:d5:34:da:de:58:65:4c:35:8e:d5:e9:56:63:6b:
a6:94:f3:b3:27:ab:2b:7a:58:7d:53:e2:78:85:47:
df:84:7b:47:84:cd:85:9f:0c:bd:a2:72:99:17:49:
b7:a0:ff:7a:f3:b8:83:48:1d:43:be:3e:1f:2c:c2:
92:d2:e4:60:59:3c:8b:19:30:c2:5d:51:e4:38:fc:
20:30:a0:86:98:55:3b:39:e5:93:ef:aa:e3:77:44:
8e:5d:54:d5:de:ec:56:a1:28:f3:ab:65:37:d9:30:
d1:1a:0a:c2:38:c6:d2:ac:2e:cd:f4:92:cb:b2:3a:
2e:54:8c:a4:95:d5:7f:87:a6:29:85:41:aa:b6:23:
bd:a8:04:fd:50:ba:76:00:ec:95:2a:7b:cd:70:ea:
82:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:CC:65:80:A3:23:B6:80:6A:26:2D:AB:2F:C9:4A:25:5B:C2:75:A5
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/dcxlgKMjtoBqJi2rL8lKJVvCdaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:48::/48
Signature Algorithm: sha256WithRSAEncryption
07:83:34:04:a8:79:a0:f1:70:66:f9:e5:5b:6b:84:4a:9d:3a:
f4:0e:ce:08:e1:1d:8a:59:f8:f7:88:06:56:fa:02:cc:ae:ed:
16:bd:5e:68:ff:89:ef:3a:98:33:8d:88:e6:8b:06:94:7b:f8:
a8:5c:55:ab:9c:10:a2:6f:c8:95:d2:89:45:c1:c2:42:ba:d2:
70:77:90:70:54:80:c9:6d:3f:79:99:d1:62:b2:52:1c:7d:26:
97:66:03:e6:c6:16:70:f0:9d:c5:55:48:b6:8f:b4:73:f9:9c:
ee:56:7a:71:71:d3:8c:37:2e:7b:5d:5c:96:83:c8:4c:a4:6d:
d2:73:d2:bc:aa:fe:76:61:6e:1f:a5:bb:ad:e9:c0:4b:d5:a9:
e9:88:35:71:d0:f9:32:6e:2d:cd:82:e7:ad:d7:dc:db:e0:f3:
af:e7:6e:78:b0:70:e0:f1:35:f3:f3:96:f8:50:d7:53:dc:a2:
7b:12:b2:7a:86:ca:9e:72:f9:36:ed:c9:0c:67:b4:7c:71:72:
b7:64:78:2c:c1:3f:a3:bf:f1:1b:65:d1:d7:13:5e:76:12:86:
a1:af:fb:43:07:e4:0f:5b:88:da:b6:c0:a7:5d:71:bc:21:9a:
c0:cd:1a:eb:b7:14:27:8d:87:0a:75:33:b9:dd:9b:a7:53:3a:
73:c2:99:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org