Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/3JSzsjrykB7STRbn1COZ-5-jObI.roa
File: 3JSzsjrykB7STRbn1COZ-5-jObI.roa (raw, json)
Hash identifier: fAAM5a+RN+BbfSE4w7STwgoXeifvEOnT8biGlr3D23Q=
Subject key identifier: DC:94:B3:B2:3A:F2:90:1E:D2:4D:16:E7:D4:23:99:FB:9F:A3:39:B2
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA7253DD2998EA4741459005F309305
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/3JSzsjrykB7STRbn1COZ-5-jObI.roa
Signing time: Tue 06 Feb 2024 18:21:16 +0000
ROA not before: Tue 06 Feb 2024 18:21:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199079
IP address blocks: 2a0f:b241:7f::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a7:25:3d:d2:99:8e:a4:74:14:59:00:5f:30:93:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:21:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dc94b3b23af2901ed24d16e7d42399fb9fa339b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:99:e7:db:d6:85:ee:4f:35:3b:ec:4c:bf:b2:
0e:bc:ce:2c:0e:96:1d:e2:7d:bd:a4:f2:ae:4d:aa:
b5:f2:49:0d:be:e6:c0:9d:73:fb:ab:ac:00:e1:7b:
0d:b0:2f:4a:78:ff:09:25:6a:1e:fc:bf:19:8c:2b:
86:ac:d5:ae:e2:44:5a:73:b7:d9:1d:4d:f3:27:67:
cc:91:19:ab:60:35:2f:40:b9:47:2a:1e:30:44:cc:
d4:a2:1c:ac:af:99:c2:dc:58:e0:04:25:a0:d2:96:
09:82:fc:fb:99:df:ae:c4:66:98:87:c4:05:ee:0f:
29:53:ce:be:15:3d:f7:06:78:21:1a:5e:df:fb:39:
29:e3:9b:4c:34:23:30:0c:63:f6:47:dc:28:62:a6:
bd:37:4c:d5:fa:ac:dc:25:11:51:a9:4c:65:38:9c:
0d:68:50:22:1c:8a:63:48:df:75:ee:47:2d:29:f1:
e8:5e:cb:22:8a:3d:ac:61:41:2e:13:6e:78:e9:dd:
23:4f:48:c6:6a:44:66:1c:d0:c4:c5:05:7e:c4:20:
b8:4f:9f:1c:b9:9e:40:f8:c2:49:c7:1f:ed:33:80:
3d:a7:dc:5a:38:96:4d:4e:8c:ca:26:00:6d:a3:62:
bb:22:31:40:50:0a:fb:da:80:a1:41:39:19:cd:c4:
84:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:94:B3:B2:3A:F2:90:1E:D2:4D:16:E7:D4:23:99:FB:9F:A3:39:B2
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/3JSzsjrykB7STRbn1COZ-5-jObI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:7f::/48
Signature Algorithm: sha256WithRSAEncryption
67:21:e6:34:ee:76:d5:d1:9a:88:eb:75:57:d1:72:72:82:0a:
e3:ce:6b:5b:75:1a:ec:2f:f5:af:bd:69:bc:15:a4:0e:e1:20:
e0:0c:d1:6a:ed:92:4e:fe:2c:ea:f8:d0:93:0f:1d:90:38:89:
ae:d4:1f:3d:45:40:f2:40:5c:da:26:7e:ab:62:e4:6b:a6:4b:
85:47:72:25:cb:1d:1e:84:54:94:5c:79:50:9a:47:7b:ea:ea:
2c:3a:5f:70:89:83:dd:08:10:16:7c:8d:bc:1b:2d:55:fc:72:
31:cd:23:49:70:ce:a9:62:12:3f:a3:55:b7:b3:34:38:bc:b7:
5d:62:d7:72:85:7a:ba:16:a3:db:05:6c:f9:4d:a2:ca:4d:af:
2a:c8:7a:e3:12:f6:52:66:f8:8b:f4:55:31:fc:c9:17:87:2f:
05:b7:d9:52:e9:02:a8:44:ca:f1:ea:a3:fa:eb:ba:e4:7d:a0:
43:6c:17:2e:77:30:29:2d:03:1b:a6:3b:83:01:cd:9a:0b:8f:
10:6f:5b:f2:d7:26:bc:05:60:b5:de:38:67:48:d9:3e:de:2b:
43:78:c5:fc:39:b7:af:d3:9f:7c:b9:77:75:5e:48:74:91:de:
76:9e:be:d9:24:b7:c8:da:c9:a0:c8:db:46:5c:6f:1c:31:45:
10:7a:77:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:07 2024 by rpki-client on console-ams.rpki-client.org