Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/4AxjFNHNYnor6BcRDmh0pLNl78I.roa
File: 4AxjFNHNYnor6BcRDmh0pLNl78I.roa (raw, json)
Hash identifier: UuWUaVN5IsyRSUgpl2QI9LGSRjPjSAF6xBYlKcXe+UQ=
Subject key identifier: E0:0C:63:14:D1:CD:62:7A:2B:E8:17:11:0E:68:74:A4:B3:65:EF:C2
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0A34894C3AD3134B520010CA8114D
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/4AxjFNHNYnor6BcRDmh0pLNl78I.roa
Signing time: Wed 07 Feb 2024 05:00:47 +0000
ROA not before: Wed 07 Feb 2024 05:00:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210464
IP address blocks: 2a0f:b241:22::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:a3:48:94:c3:ad:31:34:b5:20:01:0c:a8:11:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e00c6314d1cd627a2be817110e6874a4b365efc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ef:8c:ba:e5:c3:47:91:27:09:b8:2c:c2:a7:
03:b0:da:17:4d:9f:a3:7e:80:a1:4b:8d:5e:db:7d:
d9:9d:3b:0d:0b:2f:ff:f6:02:42:bb:a3:4b:e6:ab:
d2:e5:42:25:7e:fd:c1:bd:cc:d1:5b:05:7c:ec:2c:
34:01:92:78:9a:70:28:6f:af:b9:68:a3:5b:0a:bb:
a1:3e:ba:7a:da:9a:91:77:0a:ec:d0:d2:49:f3:1b:
d6:a9:99:3f:4b:c4:9d:11:16:c7:d1:03:56:96:5d:
8b:69:c6:06:34:88:87:4f:13:c4:a1:e9:29:1c:d2:
1d:b2:f8:ca:d9:a7:c9:19:92:10:59:ba:21:7d:5e:
41:73:20:d2:0e:23:31:86:c2:96:82:5c:a0:50:fc:
37:e5:53:95:65:8a:0b:01:f0:ff:cb:7d:c9:f2:a1:
bf:ad:52:e5:c9:7d:fa:ba:52:8e:04:1d:8c:4b:fc:
94:11:c7:48:19:53:2f:46:0b:c9:bf:f0:2a:09:8e:
4b:3d:dc:1a:13:51:99:2c:53:67:db:43:c7:7a:f2:
a7:ad:80:50:1c:e2:d6:ec:f9:70:58:e2:bc:70:63:
40:a4:c6:17:88:7d:9a:fc:47:20:92:9b:83:6b:f1:
50:e5:d6:01:a7:9f:44:09:2e:b5:f5:a1:2f:c5:38:
99:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:0C:63:14:D1:CD:62:7A:2B:E8:17:11:0E:68:74:A4:B3:65:EF:C2
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/4AxjFNHNYnor6BcRDmh0pLNl78I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:22::/48
Signature Algorithm: sha256WithRSAEncryption
1f:e9:48:6b:21:db:ef:64:70:6b:48:4d:ed:fe:0a:ce:72:3e:
ef:3f:29:ab:0f:93:2a:20:19:c5:db:0a:41:90:64:d3:4e:85:
f1:08:6f:96:02:62:81:d7:94:d7:4a:89:a1:7a:6c:9c:b9:33:
91:13:93:e2:c5:b5:67:d5:38:c9:7f:52:76:36:72:86:59:dc:
0c:83:62:a7:f0:22:dc:ae:04:69:ce:77:96:b7:96:db:80:96:
bd:e8:e3:f5:fb:8d:db:13:ef:e6:97:be:19:9a:44:0c:12:53:
f2:9f:0b:20:a2:2a:52:c9:cd:21:4a:16:fd:57:59:1c:e4:ad:
17:31:51:e2:13:ad:85:ca:51:1c:10:fa:a7:2e:9c:52:4c:4e:
7b:0d:e3:c9:20:04:9a:dd:c1:bf:15:f7:67:ec:78:c6:5c:b6:
f0:2a:e3:8e:e0:71:cf:b5:d1:b2:95:0b:0c:d6:90:e4:54:da:
8b:a0:8d:41:60:36:03:32:19:c3:71:8d:8a:80:96:3c:52:1c:
49:e6:62:f9:c0:e2:d0:50:d0:36:92:ff:6b:3d:1a:14:3e:96:
a9:c8:90:84:58:b5:75:86:bb:41:43:9a:d0:e5:77:57:db:a8:
88:54:60:52:60:90:e2:e6:43:a6:91:20:52:a5:8c:94:be:13:
64:35:0d:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org