Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/9JwcyqGF0X3G4o9B5ybQJ-jpSmQ.roa
File: 9JwcyqGF0X3G4o9B5ybQJ-jpSmQ.roa (raw, json)
Hash identifier: slafkc0UmXF2zQ/V+ohXzU6NXibDV55uZ/Jy5v2Z9VY=
Subject key identifier: F4:9C:1C:CA:A1:85:D1:7D:C6:E2:8F:41:E7:26:D0:27:E8:E9:4A:64
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB88FF095B4682A25F58B065BE24287
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/9JwcyqGF0X3G4o9B5ybQJ-jpSmQ.roa
Signing time: Tue 06 Feb 2024 18:40:18 +0000
ROA not before: Tue 06 Feb 2024 18:40:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216101
IP address blocks: 2a0f:b241:154::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b8:8f:f0:95:b4:68:2a:25:f5:8b:06:5b:e2:42:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:40:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f49c1ccaa185d17dc6e28f41e726d027e8e94a64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:21:da:42:dc:b2:6b:fd:46:db:f2:7c:fe:57:
41:c8:b0:53:1d:90:b6:32:68:e8:51:ef:6c:ad:c8:
c2:50:65:f6:e5:d5:8a:e4:1e:b0:40:18:7f:42:b8:
1a:6b:f7:c5:55:dc:ef:10:fc:cf:2b:44:6f:c4:72:
76:a6:d9:9d:ee:37:4c:3d:16:fb:5e:fe:63:31:44:
fa:6e:e7:e1:f6:c6:7c:a2:d1:90:6f:28:70:da:d5:
b3:d2:93:f3:af:1d:1f:7d:20:9f:9b:e2:93:2e:fd:
df:6f:86:63:39:58:da:19:cb:bd:6f:aa:56:9f:07:
2a:f0:32:69:8e:99:24:05:2d:3e:ad:9a:14:44:69:
77:26:a4:b8:f7:44:0b:77:f2:02:86:a1:ab:11:36:
bd:eb:71:5b:d9:f3:95:ad:4c:de:64:ba:61:7d:60:
ae:26:0a:9d:94:6e:4c:fb:14:0c:14:b8:a4:d1:2f:
a9:8b:56:87:6d:f3:1c:59:5e:73:71:94:95:f0:fe:
ef:95:29:f4:ca:74:3a:b9:15:bd:94:7e:88:c1:e8:
8d:a4:ab:a4:eb:68:ca:6b:ad:95:f7:98:58:17:b5:
42:bc:af:e8:17:ce:d0:40:d3:20:2c:05:a2:80:9c:
05:15:37:e8:d2:9c:fd:98:98:3c:69:16:78:fb:67:
0a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:9C:1C:CA:A1:85:D1:7D:C6:E2:8F:41:E7:26:D0:27:E8:E9:4A:64
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/9JwcyqGF0X3G4o9B5ybQJ-jpSmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:154::/48
Signature Algorithm: sha256WithRSAEncryption
84:cf:ed:19:5c:71:03:78:55:9b:67:55:b6:17:59:05:4e:93:
5e:66:32:e4:cc:55:c3:00:17:1b:57:6d:e5:39:e6:4a:29:31:
42:77:b2:2a:46:b7:11:2d:a4:66:d7:cf:5b:88:88:61:c2:c2:
6c:07:24:e0:91:5f:97:8d:76:8e:d2:b2:5d:17:b9:06:08:a8:
95:9a:e1:65:d8:53:30:78:07:b1:39:d7:bb:a7:08:5f:fe:71:
d9:29:7a:ee:72:05:10:7a:33:77:c2:04:da:f1:e8:ba:c2:41:
db:6f:b2:79:ca:1a:5b:96:f8:13:46:79:ea:27:bd:be:f8:0f:
59:11:76:4c:1b:8a:0a:16:da:88:50:7e:50:92:a6:3d:35:7e:
5a:39:de:7b:69:93:6c:44:4c:ab:4b:5d:4d:05:70:67:b2:f1:
dc:6f:ca:09:2a:ab:fc:4d:52:3d:ef:ab:92:f3:c7:eb:8e:7e:
7f:3e:4d:53:dc:5a:27:12:56:39:ce:f3:66:dd:92:9b:f2:85:
21:23:ce:7e:09:70:91:eb:01:da:f2:ff:d3:86:3d:6d:80:60:
79:d5:23:31:e6:e8:aa:8c:87:ce:7e:a1:93:2b:06:f9:df:1b:
44:63:f0:1c:64:ff:a3:a9:4e:e1:5f:82:05:ee:02:c1:9c:7e:
bd:ca:5a:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org