Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/tnVix3sk9X4GfMDOJ9WH7Mb5eu8.roa
File: tnVix3sk9X4GfMDOJ9WH7Mb5eu8.roa (raw, json)
Hash identifier: 1MMgMRf3jIIGyzRdLOSfg89pJ8+ACv+XtewMhXJA4Yo=
Subject key identifier: B6:75:62:C7:7B:24:F5:7E:06:7C:C0:CE:27:D5:87:EC:C6:F9:7A:EF
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA7299BDEE30D54E1F2488B53626361
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/tnVix3sk9X4GfMDOJ9WH7Mb5eu8.roa
Signing time: Tue 06 Feb 2024 18:21:18 +0000
ROA not before: Tue 06 Feb 2024 18:21:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199504
IP address blocks: 2a0f:b241:83::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a7:29:9b:de:e3:0d:54:e1:f2:48:8b:53:62:63:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:21:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b67562c77b24f57e067cc0ce27d587ecc6f97aef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a3:58:14:62:a8:df:6b:a7:93:c5:ed:79:55:
8c:c9:31:51:be:83:d7:58:a7:97:7a:37:d1:e3:04:
07:2c:38:9f:03:3f:16:12:e8:15:0e:e4:d8:76:16:
40:af:60:0b:2e:9a:6d:5b:1e:54:bf:97:08:bb:c8:
f1:28:34:60:57:23:8a:4b:73:d1:47:85:6d:18:7d:
c4:13:77:ea:dd:7b:c3:b0:0f:f4:59:a3:e1:aa:33:
56:48:de:f3:ec:5f:62:ce:16:87:ea:d8:7d:6a:d7:
c1:86:97:d8:9a:d6:50:67:33:15:9e:65:7b:79:c2:
ff:ce:2d:16:4e:b0:f3:74:b8:5b:b8:70:c6:0a:e6:
f2:97:77:40:6e:af:63:63:24:e6:78:f1:80:ee:70:
b9:0b:ad:a2:ce:94:98:81:bc:2b:69:87:ca:1d:ef:
9c:81:2c:ee:6b:7c:53:36:f5:37:93:b5:3c:65:7f:
ae:23:2b:eb:38:ad:e6:75:71:6d:99:ff:14:37:44:
98:f4:7e:bf:85:c5:6b:8f:b9:3a:31:c1:a9:d6:54:
a6:eb:a8:a6:b5:8e:fb:23:e3:26:35:bd:ea:19:d2:
bd:8f:05:28:b0:d0:45:99:f0:0f:1b:c0:05:d9:e0:
cf:a1:eb:ec:b3:35:10:1e:89:84:1f:13:12:8e:eb:
1d:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:75:62:C7:7B:24:F5:7E:06:7C:C0:CE:27:D5:87:EC:C6:F9:7A:EF
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/tnVix3sk9X4GfMDOJ9WH7Mb5eu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:83::/48
Signature Algorithm: sha256WithRSAEncryption
45:58:4d:33:c3:c5:fc:bb:50:f6:67:a7:aa:53:b0:bc:b3:25:
d4:b6:42:6e:53:4b:00:25:23:d2:81:ab:65:9f:4e:b9:bb:bd:
7c:87:f8:f1:f0:c5:73:d8:ed:36:d2:1d:16:87:b6:8e:ef:24:
e8:0e:ab:e3:ef:58:9f:67:60:6c:5b:b2:9e:80:95:e9:33:fb:
8f:18:5b:43:4d:95:a3:70:06:3a:3a:b5:a8:14:53:82:a8:25:
9c:ac:4d:52:5d:a1:27:22:a9:b8:6b:6b:5f:fd:3f:ac:11:8a:
1e:20:b5:da:de:6f:14:1f:a0:af:dc:c2:5d:0e:5e:5c:3e:46:
40:20:b0:9f:e5:b0:ee:9f:b7:32:28:a3:48:f6:b3:53:10:7f:
c6:5a:3d:d1:b2:12:c3:32:de:3b:63:f1:2b:1e:80:43:4d:72:
e3:dd:52:6d:bf:92:8b:c3:94:59:e7:da:51:6f:62:4f:37:35:
4c:56:9c:6c:9a:14:49:58:97:b4:2b:6d:24:b2:f8:76:a8:5f:
d4:90:c8:51:1f:41:b9:ea:23:bf:97:7d:37:f4:51:25:ec:33:
a3:e2:0a:76:51:16:72:3a:2b:ca:66:43:75:c0:e5:52:f4:a1:
44:66:e1:39:ea:6f:6a:c3:83:7d:c3:c0:65:80:6e:30:f1:0e:
f8:b1:06:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:11 2024 by rpki-client on console-ams.rpki-client.org