Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/7eZhEdckK_PncGwJwQXPxtInzTg.roa
File: 7eZhEdckK_PncGwJwQXPxtInzTg.roa (raw, json)
Hash identifier: 6sqrO5OuA0PKf+i1zmjb+JpFAqDtaRTfpL8Z3CJklI4=
Subject key identifier: ED:E6:61:11:D7:24:2B:F3:E7:70:6C:09:C1:05:CF:C6:D2:27:CD:38
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F8D7EB09CB2410D455CAA5BDEEA2BDE
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/7eZhEdckK_PncGwJwQXPxtInzTg.roa
Signing time: Tue 06 Feb 2024 17:53:15 +0000
ROA not before: Tue 06 Feb 2024 17:53:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207273
IP address blocks: 2a0f:b241:20::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:8d:7e:b0:9c:b2:41:0d:45:5c:aa:5b:de:ea:2b:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 17:53:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ede66111d7242bf3e7706c09c105cfc6d227cd38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:10:48:69:e6:5a:4a:9b:93:e7:5c:2e:04:5c:
c4:d2:c5:f7:02:35:63:86:38:de:1b:6d:f8:0d:81:
5f:b5:20:44:09:8d:b1:37:d2:e6:e8:47:d8:b6:f5:
ee:6b:bc:cd:af:26:18:74:40:a4:23:c9:40:ae:16:
80:38:e8:b6:5f:94:4e:63:23:a2:86:a2:e7:ae:de:
25:ae:f6:5d:a0:09:bf:6b:28:2d:4b:34:95:4c:e1:
c3:a7:ae:98:4e:f1:37:2b:0a:26:5b:1e:fb:11:5e:
04:37:69:a2:0c:34:4d:10:86:1c:18:92:ca:d0:c1:
c1:27:db:67:fe:c9:7b:22:a0:73:5b:68:81:12:f7:
d4:73:0c:fd:e7:eb:72:b0:e7:20:b0:e5:6d:65:d1:
6c:86:3b:c4:0f:93:d5:bd:bd:fe:48:fd:ac:fc:b5:
32:1e:6c:27:52:07:0c:90:2b:bb:7d:6f:48:fe:23:
33:be:2f:d4:18:47:11:1e:bc:37:d4:14:03:b5:7b:
5d:1d:c8:d1:41:ec:e8:5b:77:de:70:ad:92:72:e9:
c6:54:d8:eb:96:be:f6:83:54:96:01:de:2b:59:10:
06:22:b6:68:23:c8:b6:ee:86:25:4d:e4:28:65:94:
cc:2e:8a:cb:42:af:61:6d:24:32:54:a3:dd:ca:37:
a6:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:E6:61:11:D7:24:2B:F3:E7:70:6C:09:C1:05:CF:C6:D2:27:CD:38
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/7eZhEdckK_PncGwJwQXPxtInzTg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:20::/48
Signature Algorithm: sha256WithRSAEncryption
0f:24:5b:48:92:9b:04:7b:b7:29:98:67:a1:60:10:32:36:64:
ba:95:6f:6b:05:28:e6:43:57:c7:89:46:e3:ac:1b:0f:a4:59:
30:a2:a5:00:40:ee:89:ae:a2:f2:78:34:99:2e:06:d7:bd:83:
47:e0:af:c9:a9:26:c8:cc:dc:c7:88:13:46:36:03:6f:8f:c0:
55:a8:3f:f7:5f:63:61:c4:35:86:5d:e1:bd:30:58:bb:53:9e:
ad:e3:02:e8:c7:ff:32:2c:81:e6:50:be:8c:1e:10:d3:d6:5a:
c8:f8:2c:96:38:4c:31:ff:89:5e:e7:04:65:a2:57:ba:7d:fc:
79:c2:a5:89:75:aa:5d:8f:e8:b2:70:ae:67:9e:3f:f3:90:43:
39:c7:04:d5:9f:98:5e:a7:84:fe:a8:02:7a:e8:7d:34:c5:2d:
4a:b8:6e:af:e6:27:38:28:38:60:9e:2b:60:b8:c3:bd:ae:7c:
43:2e:e9:0a:81:e1:20:ed:43:96:75:25:3d:7e:bb:91:db:30:
64:f6:ef:3a:8c:df:9e:09:a1:bf:0f:04:1f:a8:bb:af:8f:9b:
04:33:f6:b2:fe:d8:68:9a:3d:ca:ec:b5:d9:2d:d5:6f:0c:2c:
cb:8a:7c:40:a2:8a:98:51:62:b7:ca:de:1c:32:32:d3:2f:7b:
e5:5a:30:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org