Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/A2J0kP_VSqwP-O6L2DoseczAjaw.roa
File: A2J0kP_VSqwP-O6L2DoseczAjaw.roa (raw, json)
Hash identifier: 7/0nZUCP1ecj+zZLCZY0avk1WQOKDxpjUQZ46HKB9UQ=
Subject key identifier: 03:62:74:90:FF:D5:4A:AC:0F:F8:EE:8B:D8:3A:2C:79:CC:C0:8D:AC
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F099B6105AB4F38DE5F1627E0E6D6C
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/A2J0kP_VSqwP-O6L2DoseczAjaw.roa
Signing time: Wed 07 Feb 2024 05:00:45 +0000
ROA not before: Wed 07 Feb 2024 05:00:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207738
IP address blocks: 2a0f:b241:7::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:99:b6:10:5a:b4:f3:8d:e5:f1:62:7e:0e:6d:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=03627490ffd54aac0ff8ee8bd83a2c79ccc08dac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:9c:fd:d2:9f:a5:0b:eb:ca:0f:e2:44:88:ea:
b1:e8:31:28:7a:2e:3d:85:3d:f9:fc:4b:bd:29:3a:
cf:3c:0d:cb:46:d3:dc:4e:24:5b:7a:fa:d4:29:d1:
ea:ff:0c:73:4e:01:57:60:2e:92:63:e0:c9:37:dd:
9e:d5:3f:e4:91:2e:7b:d8:a3:96:5c:e6:39:08:fe:
d1:7b:f4:e8:02:f4:77:c3:f1:fa:e6:37:a8:b3:3e:
bc:c5:2d:18:62:c7:68:0d:1f:e9:56:d0:20:09:4c:
f7:be:b5:58:76:2c:fc:91:6b:42:34:85:98:b3:4c:
3b:0f:1f:46:0b:39:58:73:c4:cb:42:97:9f:6c:e9:
fd:1f:df:af:ae:bb:8d:e4:96:52:58:73:72:ae:96:
2b:5b:c0:ee:8f:8f:c5:1e:71:28:bb:ad:bd:9e:c3:
53:53:af:85:5d:a2:de:f7:df:4d:34:c0:e5:04:a7:
33:25:7e:d7:5f:e6:7b:0f:87:19:81:d3:fd:4d:10:
ae:e0:a8:98:91:e1:c7:ac:f2:b9:23:ca:5a:e4:e1:
51:70:67:f5:4d:fa:85:22:ec:09:a0:11:64:d0:ce:
34:eb:2d:52:97:ff:ad:b6:a1:73:d1:12:d6:e1:fe:
15:3b:56:80:e7:e5:b8:d5:a3:4d:f1:59:6d:bf:df:
3a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:62:74:90:FF:D5:4A:AC:0F:F8:EE:8B:D8:3A:2C:79:CC:C0:8D:AC
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/A2J0kP_VSqwP-O6L2DoseczAjaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:7::/48
Signature Algorithm: sha256WithRSAEncryption
6d:f0:5d:d8:2a:31:2e:5e:41:d0:97:90:ee:79:f1:57:a2:0b:
17:b8:76:c8:7c:07:11:24:46:4a:ac:dc:78:3b:76:51:47:a9:
25:59:32:a1:5c:e8:fe:9d:32:0e:cb:3f:34:1a:bc:4d:51:08:
a8:aa:21:35:0d:9c:52:65:4a:76:f1:91:e9:a7:3f:66:7e:e7:
85:4c:33:09:91:66:d8:e6:52:df:09:e7:42:31:1d:9b:a8:0e:
fb:09:8a:7f:69:c4:2a:f9:db:b7:fd:67:22:70:17:65:71:0d:
81:f9:63:8f:88:eb:95:40:b5:6b:0d:ba:c6:54:32:ea:51:93:
06:3a:54:89:22:35:71:6a:c7:e3:fe:af:e0:d6:24:b9:86:34:
11:53:88:10:4b:31:b1:75:b6:8a:bc:9f:d4:d7:8d:a2:12:02:
e1:29:8e:da:fe:ba:b6:03:f0:d7:33:26:2a:f2:04:08:55:2a:
97:b5:d2:eb:74:16:bb:24:32:9f:27:8a:63:e7:20:57:c3:c9:
f1:4d:34:e1:9a:de:cc:53:ad:c3:96:4a:3e:60:4f:07:0b:21:
dd:0d:97:9b:8f:ad:6c:11:f0:57:aa:32:d2:66:95:a7:c5:ac:
e9:4e:62:58:f6:a8:24:75:9b:81:7e:65:a4:02:e7:84:1c:19:
b2:8f:6b:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:10 2024 by rpki-client on console-fra.rpki-client.org