Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/zTRqnz26AYv1EIcY2hoKT5F62k0.roa
File: zTRqnz26AYv1EIcY2hoKT5F62k0.roa (raw, json)
Hash identifier: MfwoLOcvhoCA10ZxoX2BpYmlBf7Wu4okYV9dOmLCLFQ=
Subject key identifier: CD:34:6A:9F:3D:BA:01:8B:F5:10:87:18:DA:1A:0A:4F:91:7A:DA:4D
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAAD33F11B43432F2A2D3D52B838CC5
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/zTRqnz26AYv1EIcY2hoKT5F62k0.roa
Signing time: Tue 06 Feb 2024 18:25:18 +0000
ROA not before: Tue 06 Feb 2024 18:25:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202988
IP address blocks: 2a0f:b241:e3::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:aa:d3:3f:11:b4:34:32:f2:a2:d3:d5:2b:83:8c:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:25:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cd346a9f3dba018bf5108718da1a0a4f917ada4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a0:db:75:57:09:1a:72:8d:fc:f5:04:e0:e2:
21:e7:83:ba:cf:e4:74:34:17:ea:f7:e1:59:c8:11:
22:6c:69:0e:48:7c:72:c8:54:24:08:bb:69:17:7b:
ea:c2:28:58:5b:ba:22:c4:e8:57:3e:3b:15:fc:7d:
93:35:4a:f0:67:43:23:1c:85:5d:48:6a:49:ac:25:
3a:f1:1c:02:5e:05:2c:7a:23:a1:1c:5d:be:e5:3b:
76:6d:f3:5b:2e:8e:bb:8c:b5:2e:af:bc:63:54:ae:
b5:01:d4:a8:1f:b4:6f:18:1c:3c:d2:87:8f:2d:72:
14:d5:52:19:80:2a:7b:cb:5a:4e:c3:80:26:ba:a7:
5b:38:51:80:90:0b:6b:41:ba:8f:f5:64:ab:5a:0b:
19:6b:bc:41:69:c7:8d:ae:52:a7:1f:35:68:c5:5e:
0f:20:93:5d:00:df:9f:29:f7:2e:e4:63:c1:a8:21:
7f:32:52:44:dd:5f:b1:54:06:3b:3d:2f:2c:76:24:
90:82:1b:70:9d:d9:85:62:92:3a:3c:39:e8:b2:47:
3a:65:7e:d4:40:07:98:36:08:a2:92:ea:c4:53:40:
64:89:96:b3:bf:a4:4c:26:c7:8e:1c:4a:44:51:0c:
4d:7e:f0:c7:4a:bb:34:9d:25:52:97:ff:97:44:a1:
63:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:34:6A:9F:3D:BA:01:8B:F5:10:87:18:DA:1A:0A:4F:91:7A:DA:4D
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/zTRqnz26AYv1EIcY2hoKT5F62k0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:e3::/48
Signature Algorithm: sha256WithRSAEncryption
89:4a:ea:fd:e2:c3:49:32:77:fe:82:83:03:1f:b1:a6:3b:86:
c5:20:6a:a4:7e:6a:44:84:01:3e:aa:75:06:2d:f8:ea:65:dd:
e9:f5:a5:a2:fc:06:68:b9:ce:51:2a:1d:84:a9:97:dc:7d:d4:
71:07:09:87:ea:04:1b:80:23:55:17:55:a9:92:92:8a:11:a2:
6f:a6:b5:2f:44:ae:f3:bd:de:16:ed:61:88:22:34:77:9e:4c:
c9:1c:73:c1:ad:c9:75:35:96:69:df:10:04:d2:24:85:ee:1e:
cc:5e:e4:16:75:d8:3c:32:f2:d6:bb:e6:65:51:1d:a8:5f:17:
0b:4e:29:34:f6:fd:6c:8f:76:2f:63:46:39:f4:0f:a3:49:2b:
f2:38:87:72:87:67:3c:33:cb:1d:0f:a4:4e:60:9b:54:0c:3d:
73:ed:b1:80:d4:33:4b:a1:f7:97:44:ce:e0:83:57:b8:0c:54:
75:d8:bc:d1:52:7f:6d:cb:30:36:d4:a4:80:bc:45:8d:3d:a6:
7c:a9:fc:db:8e:7b:9f:2e:6d:bb:32:a8:bc:54:42:db:c4:a5:
0f:5c:1f:94:8e:47:ad:68:4e:5b:d9:1b:06:f2:20:a9:71:86:
7e:35:ae:2a:90:d3:76:ac:2f:6c:50:cd:55:e2:72:61:e4:ab:
e7:9c:79:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:11 2024 by rpki-client on console-ams.rpki-client.org