Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/tsUILc5KBRAkzeKe9jwQDzEMjhU.roa
File: tsUILc5KBRAkzeKe9jwQDzEMjhU.roa (raw, json)
Hash identifier: FU9teBEhVbYCnLVi5zpuVmNBOdl8cwcLiqrNPGVsca4=
Subject key identifier: B6:C5:08:2D:CE:4A:05:10:24:CD:E2:9E:F6:3C:10:0F:31:0C:8E:15
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7DF18094CBC7815D1463D37DE37163AA
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/tsUILc5KBRAkzeKe9jwQDzEMjhU.roa
Signing time: Tue 06 Feb 2024 10:23:15 +0000
ROA not before: Tue 06 Feb 2024 10:23:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210475
IP address blocks: 2a0f:b241:a::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7d:f1:80:94:cb:c7:81:5d:14:63:d3:7d:e3:71:63:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 10:23:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b6c5082dce4a051024cde29ef63c100f310c8e15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:0c:96:24:41:60:3a:85:3c:04:e8:60:01:b2:
84:48:f7:9b:e5:41:40:6c:10:ba:6f:60:bf:3e:36:
25:45:7a:33:f5:05:48:ba:de:b5:d7:f5:66:b4:74:
e2:2d:42:ff:09:5b:8f:9e:39:ab:82:75:16:ea:6e:
4f:2c:01:a6:6e:69:4a:a2:c3:e0:50:67:2f:05:04:
90:d4:a4:61:5d:6c:0c:00:34:d4:90:8f:2d:d9:c6:
3b:49:28:42:59:ad:9e:52:81:46:72:7c:7c:8d:25:
87:be:cb:9c:0a:c9:8a:d9:13:07:65:d2:2c:d1:ff:
c8:b8:0d:c8:01:71:ea:6a:ec:2a:94:7a:fb:c6:db:
29:79:01:08:64:fb:41:d6:60:d5:f1:fb:65:17:30:
12:8a:da:80:df:e0:fa:dc:fe:10:dd:7c:fb:6c:39:
53:95:e1:69:81:97:de:a7:c4:6f:de:36:bb:7c:db:
04:ff:f1:b4:a6:b2:70:3e:ec:b8:7a:9d:25:d7:ca:
fd:cf:8d:32:ea:ac:8d:c2:d3:1c:01:e6:a1:45:bd:
0c:b6:ec:ae:4e:29:fb:7d:1c:ad:a1:04:aa:cd:f7:
51:93:f9:1e:7c:5c:15:f8:0c:ef:af:68:be:44:a7:
fb:7e:eb:99:c7:cc:7e:20:92:79:21:67:30:80:40:
23:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:C5:08:2D:CE:4A:05:10:24:CD:E2:9E:F6:3C:10:0F:31:0C:8E:15
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/tsUILc5KBRAkzeKe9jwQDzEMjhU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:a::/48
Signature Algorithm: sha256WithRSAEncryption
4b:ae:1d:c5:9d:36:25:5d:b5:de:dd:c4:ed:ee:f2:66:2c:88:
bf:75:ae:96:42:11:60:fc:d2:2b:c6:f6:74:a9:29:6c:ab:23:
ad:c3:c7:fd:1c:6d:a0:c2:b7:76:f8:14:ad:a4:3b:13:c1:d9:
3b:85:e0:3e:ce:1d:91:ad:fa:ba:44:e2:6b:a2:76:0e:85:1c:
6c:0d:12:87:8c:5d:fc:78:68:de:25:bd:2f:56:7e:9d:9d:7d:
cc:cf:30:42:40:a0:13:97:06:60:ee:e2:99:49:bd:f0:ff:73:
5b:b7:85:98:79:b6:88:43:52:85:e9:25:e7:25:58:2c:85:a4:
bd:77:c1:df:3d:c2:ff:77:29:47:cb:d7:4b:da:13:70:a8:78:
4c:16:4a:e9:81:65:49:49:e1:a3:08:6e:8d:bf:7b:08:75:2d:
6c:05:80:be:06:e9:69:a6:01:53:bd:f2:50:37:e4:f4:29:2b:
03:df:a2:14:07:31:1a:ed:e8:31:0f:f9:57:01:bb:11:b0:ae:
59:51:0b:5e:9e:53:8d:19:47:06:4d:f8:6d:5d:a1:02:52:86:
82:99:72:fb:e6:52:43:35:c1:46:0d:e0:3b:a1:12:c3:54:9d:
f1:fb:73:06:ef:52:bd:07:86:d8:19:21:22:59:20:a6:03:32:
e7:a9:d8:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:13 2024 by rpki-client on console-fra.rpki-client.org