Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/vKQyVy_wkhI3o_92nfs0Tolpzdc.roa
File: vKQyVy_wkhI3o_92nfs0Tolpzdc.roa (raw, json)
Hash identifier: cpg7+hZBcRKCk00cHC1ejt2WyFLc4NWtBSq37t4dgK8=
Subject key identifier: BC:A4:32:57:2F:F0:92:12:37:A3:FF:76:9D:FB:34:4E:89:69:CD:D7
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAE79473191A5F12F0D94A1C83B8D84
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/vKQyVy_wkhI3o_92nfs0Tolpzdc.roa
Signing time: Tue 06 Feb 2024 18:29:17 +0000
ROA not before: Tue 06 Feb 2024 18:29:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50224
IP address blocks: 2a0f:b241:119::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ae:79:47:31:91:a5:f1:2f:0d:94:a1:c8:3b:8d:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:29:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bca432572ff0921237a3ff769dfb344e8969cdd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:86:92:64:0e:fc:4d:98:60:28:de:89:c2:48:
4a:5c:54:8e:10:5a:31:83:ca:bd:ce:fe:66:f6:98:
a6:f3:29:5d:97:76:37:25:2f:04:1a:93:38:4d:d1:
29:8b:da:c6:df:5b:00:b3:03:e6:bc:7a:18:73:8f:
c2:06:35:72:7b:7a:e1:8e:80:d3:46:63:e3:40:a4:
f5:61:4f:ea:09:27:f0:f0:49:78:a1:3e:eb:0e:c0:
31:bd:09:ec:50:c5:7d:a6:8c:fb:aa:b2:d2:ad:2b:
19:fc:77:00:06:b6:9b:c5:b5:fb:22:58:d7:88:23:
65:74:59:da:04:c5:8b:ee:a3:ea:0d:8f:ef:bc:b9:
86:99:4f:00:c3:7c:e3:45:2a:d3:45:2b:5a:20:93:
64:b0:7b:25:ab:7e:48:70:19:8c:4b:7b:c8:e7:29:
8a:7b:31:a8:7c:c6:d7:13:9b:e8:c5:d0:0f:b9:89:
20:5a:bc:71:a1:e3:12:b9:45:6c:d0:d8:a8:f6:70:
45:5b:f5:f0:6e:1c:06:4b:96:db:33:aa:60:f0:59:
ee:3f:1b:04:64:f1:73:ab:e5:07:9b:9d:e9:05:e1:
8f:2b:f7:48:3f:09:46:63:bf:60:b8:a4:4e:8f:fa:
34:26:6f:cc:11:81:c1:1f:9a:be:48:b3:ff:62:1c:
87:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:A4:32:57:2F:F0:92:12:37:A3:FF:76:9D:FB:34:4E:89:69:CD:D7
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/vKQyVy_wkhI3o_92nfs0Tolpzdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:119::/48
Signature Algorithm: sha256WithRSAEncryption
89:78:c9:70:fd:09:69:94:c6:1c:70:e6:46:a3:13:10:2f:6b:
f3:c5:3f:d3:8b:57:0b:4d:4d:37:2a:4a:7a:5d:79:67:b5:e3:
89:35:80:97:26:86:ae:62:bc:8b:4d:71:36:68:35:0a:7e:96:
51:9a:6d:af:61:d9:f7:54:79:79:95:37:66:6d:4a:5b:16:c9:
11:f5:18:bd:9b:66:b0:65:7f:6c:3c:51:f0:36:2d:38:9a:0b:
1a:10:f2:ac:8d:66:b4:f3:f2:a5:29:b3:4f:53:60:05:ff:f0:
ef:23:2f:32:b5:0e:36:5b:a6:9a:42:05:6f:d8:c9:9b:75:ff:
ad:b6:6a:7f:5f:f0:82:59:78:dd:7e:4f:eb:cb:be:14:d1:9e:
33:de:da:72:f5:c6:d1:48:58:a2:bb:f3:24:74:5f:77:26:45:
e3:f8:fb:61:6d:c9:3c:15:86:7e:31:12:bf:1b:7a:aa:25:b1:
31:86:55:51:0f:25:ce:2b:82:18:38:8f:27:0d:55:57:c3:21:
75:e0:5a:50:9d:27:c3:29:ab:4e:0c:0f:4b:4e:93:c4:ff:56:
34:51:0c:78:c7:4c:d3:d2:7e:c1:44:a1:44:3e:fe:5a:da:44:
2c:d3:ef:7f:b6:6f:54:10:a5:ff:d3:fb:e6:af:00:08:4d:2a:
e3:2e:8f:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:11 2024 by rpki-client on console-ams.rpki-client.org