Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/BjnIeJaQetgErHScGF66QTHkBVE.roa
File: BjnIeJaQetgErHScGF66QTHkBVE.roa (raw, json)
Hash identifier: dTMDV26ko8dNrEuXkTnYOcmUPlMPjR4PV4GwDiiebvA=
Subject key identifier: 06:39:C8:78:96:90:7A:D8:04:AC:74:9C:18:5E:BA:41:31:E4:05:51
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0A4186D26552488E605FEB8C062F7
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/BjnIeJaQetgErHScGF66QTHkBVE.roa
Signing time: Wed 07 Feb 2024 05:00:47 +0000
ROA not before: Wed 07 Feb 2024 05:00:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210632
IP address blocks: 2a0f:b241:48::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:a4:18:6d:26:55:24:88:e6:05:fe:b8:c0:62:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0639c87896907ad804ac749c185eba4131e40551
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:39:1a:af:a1:7e:9a:32:d6:fd:c2:42:57:d1:
02:28:44:6d:d1:7e:86:31:c3:e4:be:66:26:6b:b9:
1f:52:9b:4b:79:c1:1c:7f:33:4f:71:e8:25:83:11:
22:f9:dd:13:df:bb:38:36:3e:1d:52:ab:eb:82:d1:
1d:b8:3d:89:f1:b3:32:30:11:c5:31:bb:c4:46:4f:
a9:71:a6:a8:a2:55:aa:9e:03:d5:81:28:2e:90:11:
18:fc:a4:f6:61:0f:f6:44:08:17:a6:25:e4:e6:94:
0b:be:68:00:10:f9:54:c2:86:72:fc:73:91:af:e6:
16:f6:57:da:35:5e:af:46:ef:73:5f:dc:2a:1b:db:
42:ae:cd:d1:fc:b9:96:56:fc:3b:90:d1:ef:b1:bd:
98:86:f3:5c:6a:4b:dc:f5:ae:d8:2a:b0:5b:0f:ba:
3b:b2:6c:15:f1:cc:46:d9:43:a6:72:44:7b:6b:b1:
cd:b0:7f:a1:eb:3f:59:02:46:47:86:c3:44:41:4e:
e3:fb:80:76:6f:0e:82:5b:a5:ad:6e:63:0f:bc:68:
05:8c:57:b3:f1:c9:c6:16:e7:08:c2:52:13:a4:9b:
15:e2:c6:bc:60:10:05:cd:7c:70:c2:aa:01:66:d4:
72:e2:39:3d:db:56:24:5e:01:57:ef:26:80:81:b5:
f4:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:39:C8:78:96:90:7A:D8:04:AC:74:9C:18:5E:BA:41:31:E4:05:51
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/BjnIeJaQetgErHScGF66QTHkBVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:48::/48
Signature Algorithm: sha256WithRSAEncryption
3c:3a:4b:8e:26:58:bc:e0:5e:88:38:57:65:c7:ca:e4:ff:90:
f2:c7:75:5c:34:94:9e:84:8b:47:de:46:9c:2f:48:4d:25:96:
67:c4:96:02:c7:7e:c8:b1:8d:ef:4a:88:ac:38:5b:64:66:a1:
59:c6:cb:47:72:24:26:b8:07:82:31:d6:02:76:27:45:17:3b:
c9:93:03:20:af:6e:81:c7:c0:0e:a1:f3:a5:23:2e:60:ae:e4:
7d:36:4d:59:da:bd:f4:11:4e:7f:31:36:2c:c2:f9:fb:c8:64:
98:a8:33:a8:4e:93:96:e0:15:f6:b2:fc:68:0b:32:89:6e:97:
9b:0e:f3:a7:98:f9:79:cf:c4:5f:3a:71:0f:ad:eb:49:33:b9:
1d:84:c9:7f:05:94:07:ab:f4:7a:53:b5:3b:27:33:69:a5:f5:
49:87:12:f3:26:11:d6:36:ca:32:65:5f:51:91:a9:c3:f1:67:
12:b1:86:59:0e:45:73:3f:31:1e:9b:62:46:9f:23:88:bd:bd:
78:73:18:8d:9c:0b:de:e6:e7:0f:a7:b6:7f:88:b1:96:5c:80:
55:ad:c9:a9:72:23:d6:ec:40:45:f2:5e:d5:7b:49:f4:68:c7:
4e:58:ea:a0:92:ff:54:a0:40:37:5e:a8:62:ce:ac:f0:2b:3a:
cb:3c:a4:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org