Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/4Qp01e3P8hojHtEebN9l1YuPOZI.roa
File: 4Qp01e3P8hojHtEebN9l1YuPOZI.roa (raw, json)
Hash identifier: EhAVcUxQOgmhyrx8gjRQLm2Bjl4t0Dnye36GK5rWNJ8=
Subject key identifier: E1:0A:74:D5:ED:CF:F2:1A:23:1E:D1:1E:6C:DF:65:D5:8B:8F:39:92
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA9E7119D62F609ED4FC57F104DC757
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/4Qp01e3P8hojHtEebN9l1YuPOZI.roa
Signing time: Tue 06 Feb 2024 18:24:17 +0000
ROA not before: Tue 06 Feb 2024 18:24:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200853
IP address blocks: 2a0f:b241:d6::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a9:e7:11:9d:62:f6:09:ed:4f:c5:7f:10:4d:c7:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:24:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e10a74d5edcff21a231ed11e6cdf65d58b8f3992
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:20:f0:f5:f3:c4:6e:69:19:56:04:e2:e9:77:
93:33:2d:22:54:14:8e:29:d3:12:f6:58:5b:25:ef:
48:8b:fc:40:1f:9f:2f:96:a3:fe:a6:95:f1:d1:da:
3e:ee:ca:81:7c:01:f1:d2:0b:56:79:77:ee:08:c0:
88:62:70:21:f1:90:92:49:70:35:0e:36:a2:76:e1:
6a:81:b0:c9:a4:d2:88:9d:e6:b2:bd:fb:45:f8:42:
84:9b:65:fe:9f:b4:73:82:03:84:98:f5:75:70:16:
65:56:57:10:a2:89:fb:55:9d:a6:15:ba:fc:e3:22:
30:d9:a8:44:0a:76:03:63:bb:b0:15:25:c8:51:2b:
cd:02:4a:18:aa:75:47:dd:cc:7a:4f:13:bd:64:ce:
a5:19:36:86:60:ba:81:23:82:e8:f8:33:44:be:2c:
cd:80:c9:f5:81:5a:84:dd:76:77:70:4b:83:b3:e7:
34:07:f0:2b:e0:99:b7:6f:73:86:11:24:92:88:f9:
45:87:80:52:22:e9:ea:8f:e9:80:be:3e:2d:c4:73:
49:b4:1f:2b:18:10:3c:f4:bc:77:0b:38:b3:df:ed:
aa:f1:18:4a:a3:91:d5:16:17:a6:96:77:26:4f:98:
38:6f:a6:2b:61:f3:39:1a:b3:f9:f4:d3:fb:63:99:
78:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:0A:74:D5:ED:CF:F2:1A:23:1E:D1:1E:6C:DF:65:D5:8B:8F:39:92
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/4Qp01e3P8hojHtEebN9l1YuPOZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:d6::/48
Signature Algorithm: sha256WithRSAEncryption
29:98:93:4d:6d:37:b3:8d:7a:9c:70:d9:17:e7:79:e1:d9:b3:
bf:67:b7:4a:4a:d7:51:2c:79:b4:e8:0b:84:0c:e0:09:ac:d3:
81:fa:ed:81:26:83:11:82:4c:49:92:85:dc:ef:63:46:04:18:
f2:b5:f1:8b:f5:5e:25:dd:dd:dc:8c:03:60:e6:62:92:aa:69:
9a:2a:92:77:28:da:47:b8:cf:26:3a:2f:44:fb:b6:3f:62:66:
61:47:61:49:d4:46:d1:94:1b:ee:27:9f:92:e9:9f:33:34:7b:
39:97:65:df:d6:49:cd:93:5d:25:32:ce:fb:21:9a:08:f5:22:
28:4a:f1:92:f2:ae:53:66:5c:53:73:fc:47:01:f7:07:9a:a7:
3f:f8:c2:bb:77:d9:58:7f:4a:38:15:b4:90:34:a1:c5:4a:a2:
50:e1:3a:3f:42:67:c0:e6:5e:d8:86:63:6f:79:1b:c0:ec:40:
5f:60:66:d2:36:44:cc:51:14:70:86:9b:2b:a0:ac:2e:3e:f8:
27:c7:a2:88:06:8d:55:64:1e:85:86:64:42:4f:bb:00:c8:c3:
4d:54:a7:18:4b:ab:ab:2c:b3:d7:4b:14:02:52:1d:4e:95:b9:
89:a5:e4:ae:59:80:76:e0:01:24:83:2f:f5:59:08:2f:98:a5:
2c:9f:72:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org