Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/15OyCwS5p70MJkimyg0BWdCzAgA.roa
File: 15OyCwS5p70MJkimyg0BWdCzAgA.roa (raw, json)
Hash identifier: u1nZQdfRlEKyf8n/tCkdHeWcC7TEf9lO/z006g7LvqI=
Subject key identifier: D7:93:B2:0B:04:B9:A7:BD:0C:26:48:A6:CA:0D:01:59:D0:B3:02:00
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0A5D2A5E10A6FD965A19E76761A24
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/15OyCwS5p70MJkimyg0BWdCzAgA.roa
Signing time: Wed 07 Feb 2024 05:00:48 +0000
ROA not before: Wed 07 Feb 2024 05:00:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210965
IP address blocks: 2a0f:b241:fa::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:a5:d2:a5:e1:0a:6f:d9:65:a1:9e:76:76:1a:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d793b20b04b9a7bd0c2648a6ca0d0159d0b30200
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:76:3e:1a:70:5d:3c:80:27:7a:04:39:94:11:
07:54:a3:97:f3:6e:f1:01:b6:c9:2b:4d:07:20:70:
09:6f:8a:40:e3:c0:60:13:e8:d1:66:0d:09:b6:31:
13:87:04:8f:91:18:88:e7:ed:af:69:96:46:79:a2:
17:8a:80:8b:ac:6b:e2:f5:bd:e5:1f:b8:c1:bb:3f:
12:4b:b5:8d:d9:46:0d:38:23:64:b9:ed:bb:63:f7:
32:e9:a2:3e:82:d0:d0:0d:57:12:80:0d:28:25:f6:
62:52:dc:e0:7c:26:38:ea:9d:1f:14:69:5d:c5:bc:
83:78:c4:da:39:ff:d1:5a:dd:22:2d:13:43:f7:fc:
78:6d:f6:82:63:e2:1b:5c:15:22:16:30:48:4c:10:
ac:73:69:33:3f:c2:59:09:95:ab:0f:26:71:f9:fc:
ec:71:18:6c:ae:ee:17:1e:45:5d:be:b7:67:e5:1f:
76:18:ab:a2:f0:a5:4a:2f:1d:b4:17:5d:e2:33:45:
eb:cb:29:d9:55:e3:64:ec:9b:9b:88:ab:6e:2d:05:
38:47:f7:b2:58:ec:13:d4:d9:2d:00:c6:32:3c:69:
3b:98:d8:6a:27:02:18:63:a2:b7:93:25:f2:7a:17:
e4:2e:7e:66:12:ce:fc:78:f2:28:41:5c:27:a8:5c:
f9:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:93:B2:0B:04:B9:A7:BD:0C:26:48:A6:CA:0D:01:59:D0:B3:02:00
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/15OyCwS5p70MJkimyg0BWdCzAgA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:fa::/48
Signature Algorithm: sha256WithRSAEncryption
28:e2:eb:98:c0:e9:08:7c:8a:57:a4:a4:fe:5c:4b:2f:6c:97:
4d:54:35:4e:22:0b:8a:05:ad:42:88:ee:a1:61:31:f1:3f:78:
fe:25:7c:49:3c:60:90:4d:7a:64:55:f8:5e:c9:9e:c8:5b:0e:
68:1d:03:dc:da:61:2b:da:52:ce:fd:89:f2:d5:52:b4:bf:ce:
d4:f7:fb:99:fe:36:c1:a5:41:e3:55:a1:70:a4:4e:c3:e7:3f:
ff:c7:e4:5e:a9:72:e3:ed:03:78:f9:bd:66:9f:67:c3:67:2a:
b9:33:17:72:ea:91:1a:65:56:02:c0:bc:f4:fc:14:e1:db:0d:
df:c6:ac:ab:59:a1:20:52:69:f3:94:3a:87:68:35:cd:00:9c:
25:03:d5:d8:b3:e9:d0:33:63:a4:a8:f6:b8:a3:d8:44:c0:e5:
0d:dc:a0:8b:88:74:7f:ac:5c:b7:6e:e4:9f:3b:b6:54:e7:90:
3e:2e:e3:32:1f:79:90:3d:d8:a7:1e:4f:c0:5e:a2:35:ee:45:
8f:7d:15:85:5c:dc:ab:fa:e6:d5:5f:e0:98:d8:ac:00:e4:23:
d7:ab:27:f4:af:25:74:81:7a:0c:d7:6e:96:28:32:ae:17:36:
2e:f3:af:dc:c1:22:c7:be:0f:c9:b9:5c:54:21:66:71:d1:bb:
8b:83:e4:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org