Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/4VMp-Fqw4n74PNeD4xXjKyHRtGM.roa
File: 4VMp-Fqw4n74PNeD4xXjKyHRtGM.roa (raw, json)
Hash identifier: vv2rODj6QtlJQKQGKT6D8287jKgQBvkvmlwXe8XAeuM=
Subject key identifier: E1:53:29:F8:5A:B0:E2:7E:F8:3C:D7:83:E3:15:E3:2B:21:D1:B4:63
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7C32B93AA163048909C106ED7AC0D900
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/4VMp-Fqw4n74PNeD4xXjKyHRtGM.roa
Signing time: Tue 06 Feb 2024 02:15:15 +0000
ROA not before: Tue 06 Feb 2024 02:15:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207609
IP address blocks: 2a0f:b241::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7c:32:b9:3a:a1:63:04:89:09:c1:06:ed:7a:c0:d9:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 02:15:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e15329f85ab0e27ef83cd783e315e32b21d1b463
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:51:63:f3:ac:6b:1b:a6:1d:d0:0f:65:91:c9:
82:d9:90:7f:f6:1a:4b:1e:a1:2e:e1:09:5c:f2:ec:
4c:c1:ad:49:fb:b8:c1:dd:08:b9:be:e0:d3:be:8b:
9c:3a:4a:ac:b4:bd:75:be:3a:18:28:ae:1e:0b:dd:
8d:1c:fc:57:05:06:08:4d:7d:52:1a:97:f1:b1:db:
35:30:a2:ad:7a:4f:33:50:fe:91:54:8b:17:43:41:
2f:08:13:68:df:3c:b3:a3:4f:75:57:89:03:90:fc:
00:06:1d:63:05:e0:be:f8:c2:89:fd:d2:0d:2b:7d:
d5:76:de:ec:3f:5a:91:2f:60:c5:5b:cd:06:bf:16:
8d:52:dc:c3:99:74:11:f2:0c:4e:e9:43:c6:17:1e:
b7:0a:0c:1e:c9:53:65:dc:d6:4f:c7:5f:0d:5d:bc:
43:a6:8d:28:67:45:fb:f1:04:32:51:8f:f3:c1:9b:
d9:36:ef:da:8d:7f:b9:fe:be:76:04:22:d6:77:e5:
2b:9c:af:ec:0c:44:00:0c:42:47:86:a3:1c:ad:97:
1e:e8:df:69:3f:4b:9b:8d:bf:cf:53:6d:71:ec:e5:
74:da:ad:3f:3f:a7:c7:47:7f:24:9b:fe:73:45:59:
b2:e4:b0:73:eb:33:c8:2e:31:f3:4e:4f:0a:87:c0:
9c:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:53:29:F8:5A:B0:E2:7E:F8:3C:D7:83:E3:15:E3:2B:21:D1:B4:63
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/4VMp-Fqw4n74PNeD4xXjKyHRtGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241::/48
Signature Algorithm: sha256WithRSAEncryption
26:2a:1c:34:7a:86:79:67:9e:63:57:bb:90:d7:41:af:1c:b5:
e0:2e:50:c9:f1:d7:cd:87:6a:ba:f2:7c:cd:ea:57:d2:93:45:
15:5e:91:4c:1a:3c:c6:a4:3a:f4:f4:9f:88:4c:0c:d7:00:40:
02:27:66:d6:cd:10:f0:f1:c1:e5:94:01:96:a3:0b:59:9e:94:
68:19:94:0d:56:11:5b:72:00:03:64:5c:72:06:34:0c:ee:33:
c2:0f:2d:a6:68:ae:ca:73:5c:d7:56:e8:97:e4:fb:92:f9:8a:
8f:40:ab:d1:03:d2:a7:bc:26:ca:f7:65:da:86:ad:a1:2d:9c:
8e:f2:e3:4c:29:60:d9:13:d7:dc:73:05:07:93:ed:bb:cc:ed:
fa:71:aa:a4:bb:7e:b8:11:f9:d6:72:24:f0:16:51:1a:00:4d:
80:48:f6:70:fa:ab:5c:13:7e:96:3c:4d:da:8c:0b:c7:ee:67:
e8:2a:bb:b0:ff:93:f7:90:59:04:7f:93:2c:b6:13:32:34:36:
81:44:71:7b:70:3c:48:60:c2:43:bf:a4:45:94:70:ea:5b:71:
5b:da:5e:67:b9:d0:ee:13:11:69:55:b8:21:22:0b:db:b7:62:
75:b4:0e:1f:5e:10:54:37:94:9e:d4:bd:40:0f:d4:45:b6:45:
e2:62:3f:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org