Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/uq07SXzTiOKy-sn0uK-sMUXBu7c.roa
File: uq07SXzTiOKy-sn0uK-sMUXBu7c.roa (raw, json)
Hash identifier: DPNWslXKXBZiO4ntiu4UkBzgcYPdqUmL/fgXFORlxSI=
Subject key identifier: BA:AD:3B:49:7C:D3:88:E2:B2:FA:C9:F4:B8:AF:AC:31:45:C1:BB:B7
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB7A7555DFD9DBD1D40F860386CF7A7
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/uq07SXzTiOKy-sn0uK-sMUXBu7c.roa
Signing time: Tue 06 Feb 2024 18:39:18 +0000
ROA not before: Tue 06 Feb 2024 18:39:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212474
IP address blocks: 2a0f:b241:149::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b7:a7:55:5d:fd:9d:bd:1d:40:f8:60:38:6c:f7:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:39:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=baad3b497cd388e2b2fac9f4b8afac3145c1bbb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:78:91:25:87:25:be:92:aa:1e:69:d6:6a:4d:
01:17:dc:ae:20:06:77:8a:46:14:1c:ee:90:23:10:
ba:db:e4:11:79:21:36:4b:fe:9a:b4:7f:d9:64:cb:
74:b2:d6:c4:9d:f7:8b:18:6a:15:37:03:c5:5d:a5:
ee:d4:17:d2:99:94:b9:75:fc:4f:ef:1e:ee:62:ca:
7a:b4:27:d6:ba:39:18:f8:e5:60:de:41:04:03:2a:
4a:44:3f:a0:5e:28:6d:78:da:af:ed:98:4e:28:cb:
cf:09:ff:44:22:1d:21:08:bf:b1:b2:d0:8c:27:72:
40:43:c7:c2:f0:ef:5e:bd:c1:42:b8:fc:8a:c2:af:
cc:b7:37:8f:65:d2:63:cb:0c:b1:87:1f:80:72:69:
4b:c9:a0:8e:5a:cc:3b:c0:2c:db:e0:40:0d:da:44:
30:22:20:68:84:18:76:8c:1c:63:9b:98:07:69:55:
74:53:59:b5:04:e3:3f:21:37:8e:75:c8:26:33:f3:
d7:d5:c4:b0:2e:77:36:9b:59:85:54:1f:d5:72:71:
61:b4:b4:5f:6f:b4:b9:1e:ed:44:fe:5a:2b:35:c9:
97:f5:60:76:6f:c4:ee:42:a2:fc:c5:36:d5:a9:7b:
fa:37:7f:ac:3d:45:cc:90:f7:32:b9:cf:cd:3e:d4:
a4:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:AD:3B:49:7C:D3:88:E2:B2:FA:C9:F4:B8:AF:AC:31:45:C1:BB:B7
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/uq07SXzTiOKy-sn0uK-sMUXBu7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:149::/48
Signature Algorithm: sha256WithRSAEncryption
18:60:bd:34:dc:80:09:2b:f9:15:77:a1:70:a1:c4:7d:62:af:
e8:93:0c:c1:cb:7e:ed:c8:52:44:b9:86:b0:50:62:fc:37:3d:
6c:73:05:b9:0c:af:6a:91:44:13:14:c4:0d:0c:1a:e7:23:31:
2e:e3:77:a3:3c:cb:13:8d:19:33:88:43:4f:35:eb:de:5a:fd:
2a:fb:69:e4:88:ba:92:fd:81:88:d5:49:50:3c:bf:78:5e:1b:
61:47:24:5c:54:4a:87:d4:30:c4:6f:c2:18:81:92:5f:bd:a3:
3b:3f:53:38:ed:be:ff:13:64:d3:95:ca:36:ce:fd:53:90:be:
d2:38:2e:95:3b:43:e6:0a:38:a4:cb:ca:6d:23:13:88:ca:28:
0f:d5:40:3c:43:ad:85:30:b5:98:84:fa:3a:1e:a8:99:c4:8c:
8c:d2:54:c4:34:f7:8b:3b:ef:13:ac:5d:b8:b3:e8:d4:b3:14:
67:84:ff:78:54:7f:24:5f:3c:fb:b7:03:e2:63:d1:57:18:c7:
16:d0:71:fa:8f:a2:e6:53:89:98:da:2f:4a:c9:2c:28:25:48:
23:19:72:a8:25:ad:13:74:9f:99:ef:d8:a5:1d:81:e3:4f:08:
4d:72:20:37:46:2e:b1:40:ad:cb:4e:e7:79:57:24:ee:16:be:
02:d6:2c:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:11 2024 by rpki-client on console-ams.rpki-client.org