Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1xOYnw_-DVuI8Xtawi9s69cVX6g.roa
File: 1xOYnw_-DVuI8Xtawi9s69cVX6g.roa (raw, json)
Hash identifier: pu0O9vLsGQ9Z8cvY4SaSRJ9hyBuTAB8dmdArNkJRRdk=
Subject key identifier: D7:13:98:9F:0F:FE:0D:5B:88:F1:7B:5A:C2:2F:6C:EB:D7:15:5F:A8
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F95C814B35AD8BB91B0F234C9318FE3
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1xOYnw_-DVuI8Xtawi9s69cVX6g.roa
Signing time: Tue 06 Feb 2024 18:02:18 +0000
ROA not before: Tue 06 Feb 2024 18:02:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215676
IP address blocks: 2a0f:b241:50::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:95:c8:14:b3:5a:d8:bb:91:b0:f2:34:c9:31:8f:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:02:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d713989f0ffe0d5b88f17b5ac22f6cebd7155fa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:8e:29:48:c5:3d:ed:9f:4f:28:80:46:fb:16:
ea:2a:0a:ed:58:9f:c3:fb:9f:42:9f:74:43:16:cb:
c9:1d:4d:0f:4a:e0:1a:73:96:11:f6:72:2f:51:7b:
1f:c8:ba:55:a5:2b:95:57:93:60:f1:d5:04:fe:53:
47:d7:85:10:79:8b:58:d0:5d:93:21:fb:e0:35:46:
c1:3d:48:e0:a1:4a:52:32:88:e1:ec:01:37:1b:30:
17:5f:d8:dd:0e:b1:4a:19:84:34:58:5f:61:96:9a:
9e:ef:a4:7d:82:ab:0d:bd:2c:2b:95:7e:0d:66:45:
45:9c:ba:bd:c8:1e:11:91:75:c5:fc:53:e0:ca:85:
8f:68:02:ad:c6:30:cc:8b:24:3b:9b:26:1c:fc:c8:
70:f4:0a:0a:d1:b8:69:6b:55:51:75:67:4b:3a:51:
4d:4f:00:a3:33:73:3d:f0:08:e8:e6:85:ce:a1:e1:
49:4e:81:a9:8c:d7:1a:7b:54:b1:2d:4e:86:23:4c:
52:91:be:4d:8e:14:59:81:dc:51:64:1a:42:43:02:
ef:b2:df:7a:34:db:df:b4:a9:96:4e:68:da:44:4b:
b0:49:d9:7d:4b:26:d0:73:4f:4b:7c:db:3b:4d:21:
c3:ec:55:c2:34:1e:8d:62:10:76:40:dc:14:6a:a6:
d0:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:13:98:9F:0F:FE:0D:5B:88:F1:7B:5A:C2:2F:6C:EB:D7:15:5F:A8
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/1xOYnw_-DVuI8Xtawi9s69cVX6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:50::/48
Signature Algorithm: sha256WithRSAEncryption
3d:5d:05:f4:69:bf:39:9d:5d:f8:03:9e:10:77:2b:86:1e:11:
bd:b6:88:e4:eb:dc:d8:d7:9d:bd:c7:e7:11:86:4e:1e:a1:11:
b2:55:ab:79:ce:4d:84:d2:7a:15:0a:33:38:f5:e6:a1:25:78:
9e:59:e1:42:1a:b8:6d:1d:b2:f5:f8:a6:d0:29:c8:3a:2e:84:
6e:dc:f0:06:ee:a0:71:ec:cc:51:a0:e6:bb:b6:bf:f1:38:83:
bf:0d:cd:59:b6:2d:e4:a7:74:c3:83:93:65:a6:c4:7b:9e:3b:
b0:06:56:19:f3:0f:ab:d1:e3:bb:cf:9d:73:8e:73:b0:cc:a8:
bc:60:34:34:2c:2f:e3:da:22:46:37:27:ed:3f:16:2d:52:97:
7b:5f:1b:4e:4e:df:ef:40:24:df:fe:17:c0:76:b6:a5:77:9a:
46:cf:10:71:57:84:b3:83:e3:6f:4c:0a:1d:26:c9:76:00:34:
a7:7d:40:cd:02:ed:1b:ad:71:d3:2f:a0:1f:f2:66:a2:81:71:
f0:69:8e:d9:89:65:b3:8e:46:d9:96:62:9c:04:8b:7b:cb:a4:
8c:03:ee:d3:72:d7:5e:76:e3:70:1c:a7:19:8c:03:45:58:87:
f0:4b:3a:71:f9:95:5e:8d:2e:37:d8:a7:7e:82:ae:38:93:69:
4d:c2:6b:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org