Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/6gfRZcvGgNsQKIGBgmiF_PDhWWc.roa
File: 6gfRZcvGgNsQKIGBgmiF_PDhWWc.roa (raw, json)
Hash identifier: d0qYzuH/G1jtDe0hK/xbgesPKotAs2TDkDWv+rFSZrI=
Subject key identifier: EA:07:D1:65:CB:C6:80:DB:10:28:81:81:82:68:85:FC:F0:E1:59:67
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0B399A25C00B72FE556C6DC78EF83
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/6gfRZcvGgNsQKIGBgmiF_PDhWWc.roa
Signing time: Wed 07 Feb 2024 05:00:51 +0000
ROA not before: Wed 07 Feb 2024 05:00:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215660
IP address blocks: 2a0f:b241:150::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:b3:99:a2:5c:00:b7:2f:e5:56:c6:dc:78:ef:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ea07d165cbc680db10288181826885fcf0e15967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:19:72:cb:55:76:04:32:18:e5:db:27:3e:a6:
55:0e:58:d1:6b:22:ab:52:ca:de:bc:e1:42:0f:3d:
34:f1:c6:ab:11:b8:0f:d9:d3:61:c2:2e:88:c4:aa:
74:7b:71:04:68:88:3e:c2:bf:fa:6d:8a:3f:dc:2d:
94:5a:6a:1d:a8:5c:a2:59:5c:60:4a:0d:cd:37:43:
df:8c:a9:7a:51:83:59:43:bd:6b:62:25:95:b6:58:
eb:48:e1:0e:d1:36:eb:b7:51:2b:a2:7d:55:84:4e:
54:27:7d:80:47:90:ad:52:b1:f4:82:51:1a:81:3b:
e0:94:c1:51:54:48:29:7f:84:99:fd:0c:68:f5:fe:
41:01:d9:87:d4:e8:bd:d5:7c:e0:64:57:f3:bf:77:
17:0c:c2:81:8a:20:df:b5:51:37:0d:5a:ac:ac:04:
ff:0b:84:2b:69:4a:86:0c:d3:26:68:3c:56:b2:1f:
08:e4:bc:bd:4a:c0:08:8a:f3:00:39:7e:fa:a8:7f:
71:40:da:b2:63:59:ab:ca:e7:77:f5:29:59:0c:9b:
7f:2e:3a:d0:72:c5:ee:58:a8:40:4e:0a:b0:94:aa:
f4:a1:75:92:2f:f5:26:48:eb:ee:97:f9:f5:41:43:
e5:64:f5:d5:60:17:9a:2b:e3:f8:ff:8f:07:fa:3c:
9f:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:07:D1:65:CB:C6:80:DB:10:28:81:81:82:68:85:FC:F0:E1:59:67
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/6gfRZcvGgNsQKIGBgmiF_PDhWWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:150::/48
Signature Algorithm: sha256WithRSAEncryption
65:87:de:99:99:45:6e:50:f8:29:fb:c0:0c:fd:50:76:c9:80:
98:bb:2f:88:20:05:d6:91:6c:a3:ed:5b:6a:2a:1e:25:93:02:
f4:79:14:64:86:68:b3:4d:bc:8a:72:68:93:9c:05:74:bc:a7:
38:7f:09:af:a3:c5:92:0d:3f:ff:47:7b:5a:84:03:70:c5:d1:
47:43:51:7c:0f:60:7f:b5:f4:76:39:d7:0e:18:c3:47:42:ce:
a8:ca:3f:1f:a9:0f:3c:87:09:0d:5d:52:41:84:28:b9:a0:c2:
4d:43:e9:9a:b0:f1:e7:f7:55:f0:74:1e:62:a8:ed:8b:4b:ed:
31:be:c3:11:14:8f:91:8c:ec:0d:3d:27:8e:02:bd:10:d5:08:
54:de:31:5e:d5:47:65:b8:a2:de:bb:fb:fb:e1:64:80:4e:6b:
dd:ee:b3:57:d6:f3:24:ac:3e:c0:ff:75:39:6e:92:7f:1e:47:
eb:a4:8c:2d:b8:13:9b:bf:00:54:d1:8b:91:2b:5b:53:55:9d:
21:4a:a6:ad:05:6e:7a:96:e0:27:a6:f7:0c:f5:d4:e3:93:00:
c8:1d:a4:ad:4d:2b:31:2a:84:09:ae:34:c9:81:53:7b:63:a7:
c5:e5:86:b2:e1:6a:e0:79:e1:70:bd:2a:a1:0c:81:35:92:ca:
1b:0f:69:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:07 2024 by rpki-client on console-ams.rpki-client.org