Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/iT9iTm0qbPChoknAv5EspmVR0ds.roa
File: iT9iTm0qbPChoknAv5EspmVR0ds.roa (raw, json)
Hash identifier: EFpSewEDBDysRaotCzuP4VjVme/PheE/h18iGnzP8Ag=
Subject key identifier: 89:3F:62:4E:6D:2A:6C:F0:A1:A2:49:C0:BF:91:2C:A6:65:51:D1:DB
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F07D891B4275AD8AB5654CC1768227
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/iT9iTm0qbPChoknAv5EspmVR0ds.roa
Signing time: Wed 07 Feb 2024 05:00:38 +0000
ROA not before: Wed 07 Feb 2024 05:00:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199925
IP address blocks: 2a0f:b241:90::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:7d:89:1b:42:75:ad:8a:b5:65:4c:c1:76:82:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=893f624e6d2a6cf0a1a249c0bf912ca66551d1db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:6b:0e:84:65:5d:62:42:34:9d:8c:dc:4e:1f:
57:d3:20:2b:9c:31:eb:c1:6f:c3:b5:0e:21:9b:63:
e4:ac:52:52:5d:8e:e4:1c:eb:e6:16:db:0d:43:f4:
3e:48:0d:01:bf:81:65:40:b3:69:61:2e:1c:9e:17:
b1:4a:11:bc:b9:22:49:e2:f3:2e:7f:44:01:e2:45:
65:1a:2b:8e:8b:7b:7a:18:f7:14:4a:40:de:ba:c7:
09:34:0f:49:85:16:39:5c:e8:9d:ee:e1:6b:14:5e:
b7:27:4b:aa:ff:54:82:29:cd:67:46:fb:fb:da:1b:
56:a2:02:68:09:16:e7:88:15:41:b1:c7:10:bf:37:
5e:d9:ae:75:6e:31:6b:c5:64:70:13:46:64:7f:90:
b9:41:0f:f7:0e:86:e8:83:5e:68:d0:f9:a7:ee:e9:
62:e8:c9:a0:7e:15:08:6b:6d:67:08:bb:25:49:40:
18:88:57:cd:60:17:31:91:e3:54:ab:c2:3f:21:c9:
38:78:aa:07:1c:3c:75:9b:05:04:c8:ba:e7:c6:dd:
5c:2b:24:18:fd:41:c0:39:84:1c:5f:b4:4f:89:45:
2b:65:c5:61:4e:ab:90:f0:34:e4:80:9e:62:0a:b5:
47:17:29:dd:cb:b8:e5:a0:17:42:87:89:3c:af:be:
ef:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:3F:62:4E:6D:2A:6C:F0:A1:A2:49:C0:BF:91:2C:A6:65:51:D1:DB
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/iT9iTm0qbPChoknAv5EspmVR0ds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:90::/48
Signature Algorithm: sha256WithRSAEncryption
39:34:e6:44:33:46:90:b4:8b:cd:16:18:c6:ec:d3:a2:bc:62:
38:ef:6b:5a:a7:76:8c:19:65:d9:e4:ce:6a:ad:52:51:50:09:
8e:09:b4:03:78:54:9d:69:78:48:b1:3c:b3:f0:cb:d8:5b:d3:
12:80:fe:e8:67:13:13:db:80:e9:c3:c0:c3:73:6f:8a:a3:ba:
40:47:ca:c3:3a:11:61:f0:74:9f:dc:e0:c7:69:02:e2:b4:fc:
f4:9d:65:eb:02:4b:46:3d:53:d2:8d:d2:e7:90:6c:6f:f0:87:
f5:c1:5e:21:57:c8:72:fb:9e:dd:d6:4c:37:2b:f4:53:11:94:
fc:3c:e1:09:f5:ce:2c:39:5f:84:ef:4e:5b:4e:7f:f7:dd:92:
be:3f:8f:95:21:8d:8a:d2:f5:99:a1:2e:c2:48:11:2e:72:70:
be:52:56:3e:e0:62:fc:18:81:3c:d7:ea:55:7d:c3:59:6c:da:
1f:06:80:d6:e8:aa:e4:dc:20:54:3f:2f:3d:c3:d0:c4:09:ee:
8a:83:f9:31:ba:a3:7c:c7:ae:aa:20:50:7d:ff:f2:ca:fd:66:
1e:e8:1a:5a:fd:b6:c7:6c:b4:6f:00:de:4d:c5:d8:b2:89:6e:
15:2e:0f:44:3a:15:75:02:77:85:04:96:84:0a:24:bc:65:36:
98:60:37:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org