Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/6tKOCuX1FILm_gYddcLIbIKDrFY.roa
File: 6tKOCuX1FILm_gYddcLIbIKDrFY.roa (raw, json)
Hash identifier: 3NwrNjkOT1tVERj4AugJ45Rmz+RzSje+8t6+Kw3Y1zo=
Subject key identifier: EA:D2:8E:0A:E5:F5:14:82:E6:FE:06:1D:75:C2:C8:6C:82:83:AC:56
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB7A4891D412326C789F105E8533153
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/6tKOCuX1FILm_gYddcLIbIKDrFY.roa
Signing time: Tue 06 Feb 2024 18:39:17 +0000
ROA not before: Tue 06 Feb 2024 18:39:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211622
IP address blocks: 2a0f:b241:146::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b7:a4:89:1d:41:23:26:c7:89:f1:05:e8:53:31:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:39:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ead28e0ae5f51482e6fe061d75c2c86c8283ac56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:c7:65:34:b8:a7:35:7f:13:29:23:fc:52:6e:
4b:bb:62:9c:68:94:2b:49:ff:31:7f:81:81:ed:6d:
dc:6e:34:0d:7a:cf:4b:ce:c5:b0:e4:6e:09:62:3c:
58:6b:72:f3:38:2d:7a:96:4c:63:fb:3f:ce:38:c0:
12:2d:f3:d5:88:86:4d:a9:dc:03:d8:0e:b7:1f:fe:
38:2b:e5:a9:ba:a9:00:48:91:a3:cf:6f:8b:e6:2b:
25:05:fb:70:88:3c:6f:02:26:67:2f:da:e0:48:5a:
f4:26:68:46:bf:90:9d:c1:90:ec:ff:af:f5:d1:ed:
2e:46:f2:fc:cb:28:6f:05:4d:33:56:63:60:27:42:
2b:f9:9e:ad:67:b9:91:9f:20:b2:48:fa:b2:b5:cb:
1b:27:8e:b8:db:d6:1f:c6:e9:0d:8e:cd:71:94:65:
c3:55:11:d6:e2:ca:c0:af:b7:e9:49:6a:2b:ce:ea:
e9:16:2f:ea:12:95:66:91:15:5d:ff:69:f2:95:83:
01:19:05:b5:45:81:83:3a:30:60:dc:68:5e:80:41:
3b:02:77:3a:9f:9c:55:fa:69:e2:ad:66:15:92:9c:
82:b2:0c:c0:fc:06:c8:39:43:ed:1b:15:36:97:04:
3a:0f:de:43:d9:49:00:30:57:49:c6:d4:24:3a:22:
4c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:D2:8E:0A:E5:F5:14:82:E6:FE:06:1D:75:C2:C8:6C:82:83:AC:56
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/6tKOCuX1FILm_gYddcLIbIKDrFY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:146::/48
Signature Algorithm: sha256WithRSAEncryption
05:37:ee:a8:23:e7:68:dd:ad:ed:f5:ee:ec:25:bf:49:fd:21:
c2:53:7b:6b:e6:68:5d:06:7d:64:3d:ae:a7:19:84:1d:da:ab:
14:f7:2f:56:64:33:a4:bb:f9:51:97:a6:ac:30:a4:4a:35:89:
5d:ff:07:84:bb:f5:ac:9b:a2:f0:b3:b2:e0:4b:81:35:98:35:
45:f3:b7:50:dc:08:a1:2c:fa:d4:a5:89:57:5c:d3:16:bd:61:
88:fa:79:ab:79:ef:30:ef:3c:96:4e:1d:1b:e8:fa:f9:04:df:
3a:0b:85:92:31:cf:1f:ad:59:81:65:cb:78:dc:61:10:49:9e:
c0:e2:b5:10:55:db:08:c5:fe:47:a7:06:6f:c3:21:98:79:7e:
26:ba:65:69:5d:41:cf:82:1a:93:bd:fa:bc:b1:86:17:f6:09:
e0:01:c5:29:18:42:ae:07:4b:b3:fa:ff:db:61:52:30:1f:4c:
d4:64:ce:1b:0b:c4:1e:66:93:39:1e:61:07:00:c3:60:6b:ed:
00:da:8a:e3:fe:ef:b9:81:91:22:0b:9d:c8:07:f7:cf:62:0e:
71:8d:f6:3a:61:0b:5d:51:28:bd:1e:f0:ec:e9:34:8a:f4:4b:
2a:fd:1f:fa:2d:84:54:f7:35:a0:9d:25:82:14:72:79:a2:ef:
9f:a5:ee:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:07 2024 by rpki-client on console-ams.rpki-client.org