Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/A27dlS6VngOUUMMgVCvqjI_9O1I.roa
File: A27dlS6VngOUUMMgVCvqjI_9O1I.roa (raw, json)
Hash identifier: HZmam3nu8BDhRwVBQWECq6WInQez3gEgbkxmma6DS5o=
Subject key identifier: 03:6E:DD:95:2E:95:9E:03:94:50:C3:20:54:2B:EA:8C:8F:FD:3B:52
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA81306E2FDD97C256A8D2BE1D92778
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/A27dlS6VngOUUMMgVCvqjI_9O1I.roa
Signing time: Tue 06 Feb 2024 18:22:17 +0000
ROA not before: Tue 06 Feb 2024 18:22:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200158
IP address blocks: 2a0f:b241:94::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a8:13:06:e2:fd:d9:7c:25:6a:8d:2b:e1:d9:27:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:22:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=036edd952e959e039450c320542bea8c8ffd3b52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:0f:a0:f1:a8:e3:f1:6a:67:4c:1b:23:aa:c8:
23:d8:dc:bf:74:dc:b1:49:ce:65:d9:b1:3b:b2:41:
34:6e:6f:27:18:48:60:10:be:87:87:14:45:3e:fb:
18:4e:6b:15:1b:59:cd:40:a5:05:21:9f:2c:a4:c9:
23:ab:91:14:17:ce:17:93:0d:30:28:bc:2f:11:d7:
b4:5f:ee:7d:4f:d9:8f:35:a6:1f:02:c2:8f:26:d8:
2d:ee:7f:2b:bc:d2:06:fc:e8:84:21:1b:55:b9:c2:
65:3f:1d:b8:75:36:87:02:42:1f:e4:76:45:38:f0:
34:93:cd:9c:13:29:51:cd:2d:33:00:01:3a:65:00:
17:9a:34:30:cd:66:51:8c:fb:df:35:20:98:e3:27:
35:da:94:6c:85:8b:07:90:33:fa:53:d9:0e:a7:73:
bc:97:f3:b1:19:28:05:da:d7:c7:95:f0:9a:e6:72:
f3:fa:22:a3:98:22:dd:9c:53:3f:64:bc:9a:90:e1:
e5:b8:22:01:2a:23:55:84:89:77:7c:f1:75:91:5c:
7b:a3:99:32:a5:11:c7:94:46:d4:af:9a:a4:85:8d:
38:cd:e0:dd:61:28:e9:e2:a0:49:e5:13:73:00:2e:
d9:69:0e:53:ff:83:4b:7c:02:9f:c1:8e:53:b8:e2:
f4:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:6E:DD:95:2E:95:9E:03:94:50:C3:20:54:2B:EA:8C:8F:FD:3B:52
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/A27dlS6VngOUUMMgVCvqjI_9O1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:94::/48
Signature Algorithm: sha256WithRSAEncryption
8a:c2:28:3a:35:ad:bb:32:ba:f1:3a:0c:a7:5f:27:1c:b0:a6:
63:d3:21:47:f9:de:f2:2c:d7:8e:9f:83:58:3d:69:b2:3a:92:
af:aa:59:bc:1c:4a:ab:ed:24:67:ca:9f:d6:bd:94:74:63:10:
7e:b7:14:1b:40:9e:48:67:71:99:79:17:cf:b3:69:49:51:ba:
39:03:a1:c3:6a:1b:f3:d7:48:dc:bc:9b:c8:07:2a:5a:3e:78:
21:6e:7e:51:aa:69:bf:f1:d9:6a:c1:f3:54:80:73:c9:d2:a9:
fc:73:c5:fb:33:d6:4b:81:1b:50:5c:88:e5:e9:c4:ea:da:c3:
7a:72:da:da:c2:5e:bd:17:63:a2:8e:2f:13:67:78:32:52:d1:
5b:bb:30:4a:43:79:88:a8:05:c4:50:90:da:80:a1:02:d7:11:
c6:7b:fe:e1:f1:ae:f6:c5:2d:9c:6f:e8:64:62:34:ae:f9:9d:
e2:39:f0:c6:2a:03:f0:b1:a1:5c:6e:05:d9:55:d6:7d:20:64:
c3:6c:fc:3c:f1:38:d2:7e:a6:a7:1b:c7:f4:93:2e:e2:17:06:
7e:5d:c1:d3:bc:a8:84:c7:d0:41:09:32:cd:d2:c4:0a:ae:79:
93:e2:a4:62:2c:de:cc:6a:41:f6:0f:b2:4b:8e:4f:6f:74:1d:
a6:b1:e4:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:07 2024 by rpki-client on console-ams.rpki-client.org