Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/7UDevsJmkagTVKDfHeHqVVxkcQw.roa
File: 7UDevsJmkagTVKDfHeHqVVxkcQw.roa (raw, json)
Hash identifier: 65JR+JUlH9gA3dJTDISGV2YRtqnlr5ElXbXNwlHct94=
Subject key identifier: ED:40:DE:BE:C2:66:91:A8:13:54:A0:DF:1D:E1:EA:55:5C:64:71:0C
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB973252900572C75F1073FD65C6E49
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/7UDevsJmkagTVKDfHeHqVVxkcQw.roa
Signing time: Tue 06 Feb 2024 18:41:16 +0000
ROA not before: Tue 06 Feb 2024 18:41:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57282
IP address blocks: 2a0f:b241:15e::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b9:73:25:29:00:57:2c:75:f1:07:3f:d6:5c:6e:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:41:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ed40debec26691a81354a0df1de1ea555c64710c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:c3:81:85:ae:8c:05:77:96:3b:b1:c7:0f:0f:
07:97:29:57:32:8e:0c:2d:65:b2:c0:71:cf:89:a6:
ef:02:82:37:c4:ee:96:15:3e:2a:e9:ee:ee:69:ce:
bc:c5:03:79:ab:cf:07:b5:6d:92:9d:66:86:4e:10:
62:f6:30:6f:bf:be:5f:98:32:f8:df:46:fc:25:ef:
1e:76:6f:b6:66:e3:b1:76:f4:98:ea:df:13:21:e2:
92:27:c3:6b:8b:36:5c:57:fe:0c:b2:c4:a7:38:ae:
83:3a:96:8e:cd:ee:70:42:6d:fa:16:e1:48:a6:14:
36:f1:89:8b:87:a1:17:85:5f:26:6d:05:e1:e4:59:
69:f6:9f:09:72:ab:db:cf:65:f4:53:03:f7:c6:3a:
4b:fe:6f:79:35:ad:ea:59:04:56:f7:d8:04:40:1d:
da:78:0b:c2:1e:e4:9b:17:4d:54:5f:bd:f4:bc:0f:
37:cf:a4:ef:1d:e5:3d:4f:bc:a3:04:51:91:3a:a5:
23:45:65:6d:71:9e:d1:51:b4:fe:41:e4:28:a2:f8:
d9:01:b9:81:68:b7:04:e3:c8:cc:64:71:54:3e:16:
59:7f:ba:fd:2b:d6:f5:95:51:9a:b1:62:b6:56:4e:
51:1e:3a:cb:7b:17:9e:47:8d:fc:a7:2a:35:54:90:
8b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:40:DE:BE:C2:66:91:A8:13:54:A0:DF:1D:E1:EA:55:5C:64:71:0C
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/7UDevsJmkagTVKDfHeHqVVxkcQw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:15e::/48
Signature Algorithm: sha256WithRSAEncryption
82:14:c6:ab:08:d4:e2:55:fa:15:81:a3:27:81:30:1c:0c:26:
43:cb:c7:90:24:4e:a0:3c:90:7c:6d:69:1c:be:d0:8a:37:29:
aa:86:d8:ab:be:1e:21:58:de:43:63:35:28:ae:1f:44:ea:59:
b5:88:c5:5e:11:4e:e8:cb:8e:99:ee:4a:36:f7:6f:cb:7e:b2:
28:fc:7b:19:11:2e:dc:ff:ee:8f:68:f6:8c:d6:1e:e7:0d:95:
a0:a5:a1:5c:2a:a3:da:16:95:57:f0:4f:cf:86:e2:99:5a:83:
46:46:59:37:65:3c:39:17:06:09:73:3f:a5:59:e1:97:b6:fe:
2a:8b:96:67:6d:dd:3c:f4:61:66:63:4b:3d:80:53:7f:88:95:
16:2c:c9:d8:7e:6c:80:6d:bf:7d:3c:76:ad:25:72:d2:6d:d3:
1b:99:df:29:4a:2e:09:ff:f2:d2:20:34:e5:3b:3e:5e:4a:e8:
ff:fb:c2:e2:a1:96:27:9a:d1:ab:f6:22:a6:b8:a4:83:86:e6:
c7:51:b2:99:80:83:89:4b:25:f6:5d:83:c0:0b:7d:8f:67:4f:
9e:ac:02:ff:70:39:ab:09:f4:59:ff:3e:a4:5f:0f:c1:49:c1:
5d:c9:c0:d9:fc:5a:ff:9b:07:b7:73:86:f0:25:57:b7:f7:77:
72:3b:12:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org