Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/49FVtx17PDoZEA_Oy5js83MTW-8.roa
File: 49FVtx17PDoZEA_Oy5js83MTW-8.roa (raw, json)
Hash identifier: ki6FpCqY7VGuzbvQGRCKH+NM+LpRfbtbekCIeLaYkQc=
Subject key identifier: E3:D1:55:B7:1D:7B:3C:3A:19:10:0F:CE:CB:98:EC:F3:73:13:5B:EF
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0711CF2D2E67825BE8487BBC003BB
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/49FVtx17PDoZEA_Oy5js83MTW-8.roa
Signing time: Wed 07 Feb 2024 05:00:34 +0000
ROA not before: Wed 07 Feb 2024 05:00:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198125
IP address blocks: 2a0f:b241:78::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:71:1c:f2:d2:e6:78:25:be:84:87:bb:c0:03:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e3d155b71d7b3c3a19100fcecb98ecf373135bef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:cb:bc:69:e1:cd:a8:f5:2c:22:f5:28:7f:93:
69:5b:c4:fe:40:c5:b9:22:f6:15:d9:78:1e:48:3e:
ed:89:01:a4:30:54:ff:1a:44:81:e5:d1:8b:8e:63:
fd:81:5b:d1:26:0f:f2:50:ad:89:2f:7f:94:c4:e9:
36:b2:87:99:d8:9c:ba:f4:00:4e:42:9f:33:55:f5:
c7:9b:d2:7e:78:14:79:7b:f6:ce:42:fa:45:ed:92:
18:2f:75:3c:01:4d:0c:b9:1e:d5:17:43:87:d7:bd:
8e:01:8e:79:29:8b:59:29:3e:b0:47:c6:e0:2a:6e:
5c:a8:7d:93:6c:11:6f:7b:dc:59:2f:ff:ab:e5:f9:
53:c2:91:cf:2d:82:90:33:7f:25:db:b2:f0:79:e4:
fd:b5:3e:68:4f:60:95:0c:dd:b3:8f:dc:05:1a:d1:
b7:59:44:f1:04:da:c6:b4:c4:3c:a4:cd:93:e1:50:
fc:fe:2b:e3:37:e0:45:f4:9e:03:a6:9d:c1:86:97:
9e:8c:4b:66:fc:f7:22:94:ad:83:5f:0b:a8:3e:6e:
83:bd:c7:6f:e4:60:a1:33:90:a5:73:d5:dc:e4:06:
02:d3:89:a6:3f:4f:af:1f:d9:52:2b:03:b1:35:3f:
f4:19:18:66:24:0d:f8:ad:6c:1c:e2:29:59:01:b7:
ce:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:D1:55:B7:1D:7B:3C:3A:19:10:0F:CE:CB:98:EC:F3:73:13:5B:EF
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/49FVtx17PDoZEA_Oy5js83MTW-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:78::/48
Signature Algorithm: sha256WithRSAEncryption
72:9a:8b:18:b9:1f:9b:97:02:c1:d6:d6:60:c7:09:f9:27:41:
f5:56:91:c9:f8:1c:ad:50:22:05:01:9f:65:f4:82:0e:de:b6:
ce:21:c1:b2:0f:86:eb:e5:65:9a:2d:38:32:37:4e:29:50:84:
64:8d:c6:9c:87:c8:bc:09:da:be:ed:09:18:7c:e4:a7:b5:3f:
3c:68:97:48:7f:85:2c:18:f6:63:54:90:85:4c:76:f5:c8:85:
56:64:b9:02:3c:cb:63:1f:00:05:11:e7:2a:dc:70:35:dd:7c:
06:74:35:9a:5e:e7:31:93:1c:85:cb:6e:e6:73:51:c3:12:f7:
17:d9:76:ca:b5:05:8e:ba:02:7f:48:0b:cf:f8:ee:46:1e:79:
4d:82:29:eb:13:75:b4:e4:bb:18:e2:bb:82:dd:7c:af:43:ff:
bb:32:82:7f:a3:a6:4b:50:80:f1:3c:9c:3c:26:a0:ae:22:51:
94:0f:da:12:75:9c:96:99:26:1c:5c:e1:1d:91:5e:fa:be:bc:
5f:18:82:bb:ee:06:17:f8:87:33:e4:a7:3f:58:24:fd:ce:5f:
19:34:4f:64:c9:92:74:1b:8f:f3:db:27:f3:c5:8f:68:53:86:
af:19:ec:28:be:32:da:d5:c5:6c:93:b1:7f:2c:c6:cf:54:48:
1b:f0:7f:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org