Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/6tAKAFsMyTg5nM_SulzfW9IcLKk.roa
File: 6tAKAFsMyTg5nM_SulzfW9IcLKk.roa (raw, json)
Hash identifier: zEloYABl8h04tLyqGnWrQZ39IEtfFhGFKRvgnoPuO/g=
Subject key identifier: EA:D0:0A:00:5B:0C:C9:38:39:9C:CF:D2:BA:5C:DF:5B:D2:1C:2C:A9
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB7A7D25E35A473405B08A97DEF702B
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/6tAKAFsMyTg5nM_SulzfW9IcLKk.roa
Signing time: Tue 06 Feb 2024 18:39:18 +0000
ROA not before: Tue 06 Feb 2024 18:39:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212704
IP address blocks: 2a0f:b241:14a::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b7:a7:d2:5e:35:a4:73:40:5b:08:a9:7d:ef:70:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:39:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ead00a005b0cc938399ccfd2ba5cdf5bd21c2ca9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:7a:52:45:e4:22:84:d5:46:06:e7:80:84:4e:
bc:c8:23:a2:34:d5:46:f0:7a:b4:3b:2c:f2:ab:04:
ab:3b:ab:d6:76:71:71:91:0b:90:b2:03:75:dd:87:
0d:36:60:49:ac:bd:8d:f5:69:d4:2c:6b:15:f6:16:
f4:7f:82:32:15:9e:be:07:38:25:bd:dd:5c:1a:e8:
4a:cf:91:36:48:9f:54:35:d4:ee:f8:62:52:78:e6:
ff:c0:30:a1:51:d3:0d:20:ba:0d:b7:a7:9e:bc:e5:
40:77:d3:d6:b6:63:80:a3:fa:9f:7f:f1:62:82:5b:
43:a9:d9:c1:db:c5:fb:3b:05:47:5b:46:38:89:63:
0e:75:ec:26:d3:9f:07:5d:8b:aa:35:5c:a8:c5:8c:
a3:5b:b1:b6:1a:bb:67:ef:94:89:e9:90:0a:04:11:
e7:83:e3:ef:4c:dd:f5:6b:c4:99:4d:04:f2:66:8a:
4e:8a:8f:e5:f5:ea:e8:b0:b4:2e:da:d1:c5:ec:1b:
9e:69:af:59:08:18:0e:e2:67:4e:a1:06:10:a1:b0:
4f:c7:ab:1d:80:6a:6d:4b:d3:91:4a:00:33:0b:fc:
e8:86:74:30:e7:22:a3:28:00:62:23:4b:26:c9:ea:
71:12:f8:a2:f9:cd:97:59:de:75:42:77:9c:58:20:
c0:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:D0:0A:00:5B:0C:C9:38:39:9C:CF:D2:BA:5C:DF:5B:D2:1C:2C:A9
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/6tAKAFsMyTg5nM_SulzfW9IcLKk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:14a::/48
Signature Algorithm: sha256WithRSAEncryption
7b:34:78:56:9c:69:cc:30:ed:eb:1e:0d:ce:b8:17:9d:a5:02:
6b:9a:7f:1e:00:11:c9:7f:f1:71:e2:28:45:db:4a:4c:6a:79:
d0:f3:5e:63:88:99:37:50:01:fd:a2:98:f1:5e:e3:06:ce:bd:
3d:40:6e:0e:63:77:69:94:82:27:09:74:62:39:36:d2:0f:60:
b4:64:4d:d3:60:18:09:f3:e1:02:78:31:42:24:12:3c:20:16:
cc:9c:0d:3b:e7:90:7a:e4:71:9e:9e:92:4c:d6:bf:e4:92:1c:
f6:f5:33:6b:4f:d4:15:6d:a4:f3:77:c0:16:4d:e4:3e:f2:a9:
b9:91:d1:51:fa:18:30:56:ec:3d:aa:a6:8e:2b:cd:18:90:91:
48:e5:78:8e:5a:23:ad:99:22:ab:f6:9b:23:d4:1b:a2:ea:ff:
fa:9b:5b:5c:44:38:c9:ef:d0:ca:9d:e7:47:97:96:81:cd:aa:
d9:80:00:7e:d4:75:d1:c2:bc:5a:ff:ed:e6:cf:35:70:72:aa:
f1:ff:be:b5:3c:2f:d7:75:6b:99:91:f1:e3:53:d1:38:54:f5:
ed:fb:86:b5:ea:f1:82:92:7d:31:85:c5:33:37:23:84:35:b4:
99:df:72:64:a8:c3:58:02:13:ff:99:0c:03:bc:7d:e7:6b:23:
52:c2:6d:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:07 2024 by rpki-client on console-ams.rpki-client.org