Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/99pcl8fI5Zi4-rLR_DQPQj1nN7Y.roa
File: 99pcl8fI5Zi4-rLR_DQPQj1nN7Y.roa (raw, json)
Hash identifier: BoDGhtG22pv1S1CopI7I2WRMmbNvYeoF752s7j9b4GU=
Subject key identifier: F7:DA:5C:97:C7:C8:E5:98:B8:FA:B2:D1:FC:34:0F:42:3D:67:37:B6
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB6BDA7C2E17122B6797E26212A1967
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/99pcl8fI5Zi4-rLR_DQPQj1nN7Y.roa
Signing time: Tue 06 Feb 2024 18:38:18 +0000
ROA not before: Tue 06 Feb 2024 18:38:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206493
IP address blocks: 2a0f:b241:13b::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b6:bd:a7:c2:e1:71:22:b6:79:7e:26:21:2a:19:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:38:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f7da5c97c7c8e598b8fab2d1fc340f423d6737b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:43:95:9e:9c:22:ed:14:73:13:88:c7:6e:f9:
4e:89:7d:e9:21:14:fe:3d:15:f4:b9:e5:9a:f3:3d:
45:fd:ff:5f:04:15:ba:1e:b5:b7:94:c5:b0:81:53:
d1:ab:b5:e0:de:98:d4:da:9c:a4:6d:34:aa:89:e8:
9b:6e:d2:b9:42:da:40:c9:de:27:2b:82:e4:d1:c1:
5b:71:3a:24:11:ce:7b:2b:15:d7:4d:b3:93:3b:80:
01:de:9e:96:68:9f:9c:cf:bc:6a:3f:f8:ba:79:66:
ed:88:f8:31:17:a7:66:f4:5a:6e:29:c6:9e:33:ee:
3f:4b:94:d9:21:17:4e:d7:05:30:31:6c:68:b2:9c:
05:e5:83:49:e0:49:ce:f1:ed:d7:87:a4:34:57:cb:
76:5d:63:2b:d2:31:1b:b9:99:68:c2:46:7d:b3:88:
77:fa:b8:d7:92:89:d3:50:c1:86:05:61:98:4e:c8:
a9:70:03:d1:a9:3d:2c:99:e1:ed:ea:f1:2c:c4:cb:
3c:c9:54:c7:c4:45:81:62:5f:1f:08:9d:1b:4a:67:
87:28:fa:e1:30:c4:80:d7:12:05:33:b6:15:44:ee:
53:70:4e:84:21:f2:d0:07:45:17:0c:9f:4b:9a:0e:
ba:c8:0b:37:93:bb:7e:1e:8a:49:9d:1c:b3:94:03:
04:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:DA:5C:97:C7:C8:E5:98:B8:FA:B2:D1:FC:34:0F:42:3D:67:37:B6
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/99pcl8fI5Zi4-rLR_DQPQj1nN7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:13b::/48
Signature Algorithm: sha256WithRSAEncryption
57:37:1f:0e:ec:2b:93:d8:8e:51:9a:85:6d:02:55:b8:6b:94:
0f:10:b2:f9:e8:5c:bb:10:6a:77:2a:54:b6:8a:59:34:58:9d:
55:02:b8:82:8c:06:ee:11:53:5b:a2:2f:55:be:c8:c0:44:63:
7c:19:49:a8:09:c0:a0:82:33:0a:a3:36:48:23:d6:d4:e5:8f:
77:2b:79:c7:3a:c7:73:28:dc:dc:b4:17:62:ae:8d:0d:85:44:
d0:8b:7a:ed:3f:54:b2:07:a3:44:75:b4:ca:91:ef:7b:99:75:
0b:76:22:d1:ec:ce:cc:28:df:5d:3e:32:97:01:3d:75:37:3c:
28:07:28:94:8f:53:94:f1:17:15:d9:bb:a9:5d:81:06:c6:c8:
ce:1f:f1:ef:6e:b2:13:83:0e:9b:fd:86:ee:85:ad:f8:24:b7:
94:11:10:69:ef:9b:6e:db:32:c4:c0:9e:a9:10:ef:39:46:79:
f5:9e:4e:70:95:70:55:b9:7d:42:82:6e:28:cc:26:7a:f8:68:
1f:5f:e1:6a:77:bd:70:7c:61:54:43:47:50:40:91:3f:c2:59:
d7:2e:2b:e1:aa:02:ab:c5:eb:17:76:5b:94:e7:3c:5e:e8:fc:
26:7b:af:e0:69:ba:28:20:6e:96:36:d6:4a:e9:9e:e6:8b:d9:
6b:a8:7e:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org