Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/j8pPRy4orUxMWJUsKTJUGaYm8mA.roa
File: j8pPRy4orUxMWJUsKTJUGaYm8mA.roa (raw, json)
Hash identifier: ZE7zVeLxUA3qCw/E9KLTiDo8D3PIWPj+A7FdFT/m2Wk=
Subject key identifier: 8F:CA:4F:47:2E:28:AD:4C:4C:58:95:2C:29:32:54:19:A6:26:F2:60
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F949B661258DE1A8A74CAD41E63B64F
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/j8pPRy4orUxMWJUsKTJUGaYm8mA.roa
Signing time: Tue 06 Feb 2024 18:01:01 +0000
ROA not before: Tue 06 Feb 2024 18:01:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207781
IP address blocks: 2a0f:b241:3e::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:94:9b:66:12:58:de:1a:8a:74:ca:d4:1e:63:b6:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:01:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8fca4f472e28ad4c4c58952c29325419a626f260
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:73:86:09:31:65:6c:47:61:1d:f9:93:98:ae:
87:cc:b4:3b:54:67:85:07:62:d7:4b:f7:72:0f:ae:
16:84:3f:a2:52:62:3e:61:c5:c5:a0:0e:c1:fc:42:
eb:42:7a:20:42:31:87:bb:0e:c8:fa:22:d2:d4:02:
79:ec:6c:21:37:b8:c1:90:f6:db:59:20:f4:96:bb:
e2:47:26:c3:85:4e:3c:74:22:de:bc:86:0c:cb:d8:
60:29:f6:87:a9:b4:38:58:aa:c0:3c:53:51:b0:b0:
8f:8a:dd:86:f2:05:89:83:f2:5d:65:4e:77:33:7f:
4b:9a:27:6a:86:2a:27:94:0b:39:9c:07:70:69:23:
78:ee:9a:40:16:53:9e:15:15:09:f0:8f:84:4c:f1:
08:b3:34:9a:32:d4:d1:5c:7e:b7:ae:a9:d1:b7:76:
cf:76:de:1f:fd:79:34:1a:1d:02:2f:33:8e:41:10:
77:8a:72:2a:b5:90:b4:b6:5c:bb:33:e4:39:da:b8:
73:c2:8c:84:8f:22:f2:99:5d:da:16:90:f8:cd:93:
54:e9:b2:3a:3a:46:ee:98:c1:57:32:a3:95:ae:ae:
65:2c:b6:40:62:9a:15:69:b6:22:53:ae:15:56:16:
89:0e:e4:26:5d:d9:4b:64:99:72:23:52:34:78:fb:
85:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:CA:4F:47:2E:28:AD:4C:4C:58:95:2C:29:32:54:19:A6:26:F2:60
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/j8pPRy4orUxMWJUsKTJUGaYm8mA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:3e::/48
Signature Algorithm: sha256WithRSAEncryption
4c:0c:ed:f6:67:a1:f0:08:12:71:83:7e:84:d3:ec:b9:c0:c8:
8c:24:92:b2:5e:7d:d1:8f:34:7c:8f:f8:52:73:a1:e2:62:84:
59:1c:ae:cf:72:1e:e5:d0:56:7f:42:8c:fa:25:07:49:bd:a6:
b1:40:f8:d0:1e:05:13:a3:b1:ca:38:54:cd:1e:dc:73:ac:af:
b8:c8:df:72:7a:76:13:1b:a2:65:fe:f9:d9:4e:35:cb:3c:e5:
f2:13:ff:70:ce:05:e7:7e:56:78:4f:69:9b:09:58:f8:fa:8d:
10:4b:9a:36:a0:fb:15:aa:91:e2:b5:dc:35:16:b6:ab:c4:42:
b4:33:47:11:31:fc:44:72:cc:28:30:a6:14:4e:f2:44:65:cd:
c3:30:21:db:40:e9:54:14:bd:61:59:12:9a:79:3a:7f:fd:f8:
9e:8b:8e:b5:89:a7:db:56:11:56:df:8e:eb:63:b6:b5:bf:15:
60:e0:ab:f0:b8:76:c9:70:29:83:de:f4:b5:dd:35:23:5f:14:
d1:76:2a:1d:2e:27:8c:2a:84:9e:d3:a7:09:ee:46:a2:c1:7c:
db:9c:7e:47:94:b2:2e:7a:fb:e3:4d:e3:e9:ed:fe:94:c2:d9:
59:de:c9:48:60:3c:0c:f9:d8:50:b7:a1:5e:ee:f9:3f:2e:d1:
48:45:e9:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org