Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1-SkcZStFj4_gmD24EVEDM_AHenc.roa
File: 1-SkcZStFj4_gmD24EVEDM_AHenc.roa (raw, json)
Hash identifier: eH2ekIt6ph61CRPjz3BjcS8r7VgbVwO09Ed36e3NgBU=
Subject key identifier: F9:29:1C:65:2B:45:8F:8F:E0:98:3D:B8:11:51:03:33:F0:07:7A:77
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F95CAC93AC5F2928CE00C755D80525A
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1-SkcZStFj4_gmD24EVEDM_AHenc.roa
Signing time: Tue 06 Feb 2024 18:02:19 +0000
ROA not before: Tue 06 Feb 2024 18:02:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215743
IP address blocks: 2a0f:b241:53::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:95:ca:c9:3a:c5:f2:92:8c:e0:0c:75:5d:80:52:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:02:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f9291c652b458f8fe0983db811510333f0077a77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:bd:f4:a0:81:e0:51:fa:0f:88:4c:d2:3c:15:
37:c9:d0:8e:24:f3:18:fd:22:40:fa:3b:28:86:83:
6e:86:77:ac:d8:a7:02:20:6d:74:b8:dc:17:9a:7f:
68:ea:27:14:46:df:34:25:23:25:6a:08:8f:42:1c:
a6:ec:e3:aa:a4:f9:52:dc:b6:ec:d6:a9:8b:52:ef:
9e:b1:3b:86:83:d2:de:62:7d:35:ea:d0:fe:62:ed:
dc:13:15:a7:f2:9c:b8:d1:2a:34:94:f7:94:47:50:
8d:0f:f9:07:b2:d5:52:5b:ed:0b:df:bd:a1:ef:7f:
7d:e0:cc:9b:61:d6:ea:f5:9b:fd:98:a8:e6:37:ff:
40:97:a4:a0:7c:e2:79:95:0b:de:8b:15:c6:ab:2b:
4d:64:1a:89:89:9e:27:81:7d:a5:90:de:50:b3:21:
66:83:31:6d:6a:f7:d6:a4:62:b6:10:2a:05:f6:e2:
e6:a5:5b:f4:31:40:69:87:d6:2e:05:0f:fc:9f:de:
11:4a:61:b0:70:07:9e:97:8c:ee:f2:25:e0:8d:a6:
5d:ad:b0:fd:af:1d:4d:ba:fb:80:df:25:2f:05:87:
79:00:75:08:37:77:19:b2:ed:3f:c6:26:c5:5d:a4:
8b:26:7c:41:81:aa:c1:42:71:97:8e:da:d4:f6:35:
3a:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:29:1C:65:2B:45:8F:8F:E0:98:3D:B8:11:51:03:33:F0:07:7A:77
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1-SkcZStFj4_gmD24EVEDM_AHenc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:53::/48
Signature Algorithm: sha256WithRSAEncryption
75:17:3a:fe:32:5a:9a:f2:f1:41:21:e6:10:9a:6e:52:1f:7c:
b9:08:68:f7:79:33:d4:f2:db:65:4c:99:36:ff:44:3c:cc:93:
c3:57:cb:9c:ec:07:1a:93:32:a9:f5:93:7c:96:62:7e:1c:7c:
a7:49:3c:3c:be:8a:9e:20:7c:25:b0:fe:20:cc:86:5c:96:bc:
0d:70:ea:05:cf:9f:3d:85:e2:76:12:62:ea:3d:3b:d3:61:33:
d5:39:18:7b:d2:30:7f:22:7e:5a:fc:32:35:d4:a3:c4:57:cd:
f2:74:16:1d:cc:55:4f:8d:40:56:50:14:5d:ee:03:10:09:16:
27:18:cc:9a:0b:ce:7e:c6:ce:f1:48:47:02:4e:c1:a6:50:32:
6e:b8:fc:c2:b6:9c:84:d7:1c:80:aa:5b:c8:0e:d0:07:b0:f9:
69:f3:1b:15:ae:60:ba:82:a3:31:b3:36:95:34:f0:47:91:b3:
f4:f7:fb:37:10:19:5f:20:21:d3:fb:dd:30:44:ba:ec:11:d9:
77:c6:a4:69:65:0a:fb:8d:51:fd:12:8c:39:71:0d:e4:6c:c0:
f5:2d:7a:a6:1c:5d:ce:b9:c1:5a:e7:4a:42:7d:c0:22:fe:a7:
28:fb:c5:af:44:13:2e:2f:fa:fd:33:de:81:60:be:82:c1:f5:
75:c2:46:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org