Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/tMGMiGTNw28m_c36qfo3c1F_WtQ.roa
File: tMGMiGTNw28m_c36qfo3c1F_WtQ.roa (raw, json)
Hash identifier: SHUniaKIdFVq1H4pdLAw7OvzpWYoN1uTjKenfHHrWXY=
Subject key identifier: B4:C1:8C:88:64:CD:C3:6F:26:FD:CD:FA:A9:FA:37:73:51:7F:5A:D4
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0B1966F21001C5A6D509D4177A572
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/tMGMiGTNw28m_c36qfo3c1F_WtQ.roa
Signing time: Wed 07 Feb 2024 05:00:51 +0000
ROA not before: Wed 07 Feb 2024 05:00:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215600
IP address blocks: 2a0f:b241:162::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:b1:96:6f:21:00:1c:5a:6d:50:9d:41:77:a5:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b4c18c8864cdc36f26fdcdfaa9fa3773517f5ad4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:07:60:b1:00:c5:b7:61:71:db:d0:81:ad:6e:
e7:63:f3:b0:b9:9d:0d:e7:0f:69:56:30:88:a4:32:
5a:ea:8e:f8:31:f9:26:05:28:9a:7a:3a:39:e9:84:
74:56:ae:cd:54:16:56:9c:f6:85:fb:ef:d4:0b:ca:
df:9b:aa:8e:04:60:70:37:92:5c:13:f7:ab:e8:06:
47:00:97:dc:bd:8e:77:ad:bf:4c:1c:5b:b7:7b:1f:
52:ce:e5:b4:24:4d:67:ea:ab:26:43:ed:7e:cc:56:
ae:46:b5:e8:a8:a9:b3:d5:53:70:ef:95:28:66:b5:
2c:bf:52:3f:9e:da:77:58:fc:c9:10:11:29:a9:3b:
66:28:a8:31:b1:e7:9a:f6:2a:d3:d9:b2:b7:cf:0a:
fe:0f:e8:3f:61:51:72:2a:9c:1d:d1:ea:13:3b:bb:
06:d9:da:7a:61:9e:3c:e8:61:23:64:9b:ef:b5:60:
cd:9f:64:dd:37:bc:9f:c7:c1:89:82:52:fa:c2:fa:
ff:f7:85:d4:14:c2:32:e2:9b:9b:81:05:96:36:78:
0c:bc:54:b3:85:6d:c9:cb:bb:40:20:13:bc:8a:eb:
a3:9f:e7:33:4a:91:07:ef:6d:ae:35:27:97:16:eb:
43:33:4f:74:44:9a:b1:99:a1:d5:5b:d5:dd:81:e9:
cd:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:C1:8C:88:64:CD:C3:6F:26:FD:CD:FA:A9:FA:37:73:51:7F:5A:D4
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/tMGMiGTNw28m_c36qfo3c1F_WtQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:162::/48
Signature Algorithm: sha256WithRSAEncryption
8e:71:6e:28:67:e9:c9:f6:7d:f7:b2:71:4d:35:1e:de:8e:e4:
f5:40:0d:b1:1e:50:62:92:26:e8:cd:eb:9d:78:e4:37:c8:98:
24:45:89:61:5b:c2:8d:13:91:68:87:87:2c:8d:13:f4:63:97:
96:09:68:20:40:b3:ef:f6:c7:e7:d5:84:e7:05:c8:c6:1d:06:
73:18:d7:a2:75:45:93:55:3e:89:c2:45:c2:b3:56:84:6d:e5:
54:d4:06:4b:36:ea:9f:d5:92:07:31:bd:6b:29:09:ea:5e:3a:
82:a5:5a:e6:e4:7b:f5:2c:a1:51:2c:1b:2e:53:81:e2:d1:fe:
53:da:2c:8e:d3:13:31:26:c6:db:83:25:4e:90:93:80:11:be:
21:b5:61:51:77:b8:ac:74:35:4b:17:48:ff:ca:bd:71:15:d0:
da:df:ac:fc:2c:51:9d:d6:ac:9b:68:26:e1:cc:a2:07:f8:0d:
e3:06:5f:e1:56:02:0e:31:a6:c9:5c:7c:ac:50:e5:d2:c6:f7:
7e:a8:b7:e0:e5:9c:f3:da:30:b6:63:b6:80:4f:cb:32:39:68:
e9:61:b0:85:a2:1e:c6:d8:bb:e9:2c:d0:c5:59:35:4a:49:5f:
e2:4c:bf:6e:96:34:bc:00:d9:51:a9:1b:0e:18:55:9b:88:c3:
9e:af:bc:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:11 2024 by rpki-client on console-ams.rpki-client.org