Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/D_W7Yle29EclnOYT4lJNJCfSEcw.roa
File: D_W7Yle29EclnOYT4lJNJCfSEcw.roa (raw, json)
Hash identifier: AxLChrE4TlKfT4XpI5vvFeVIzwsDj1Vmtrsqsb1gnaE=
Subject key identifier: 0F:F5:BB:62:57:B6:F4:47:25:9C:E6:13:E2:52:4D:24:27:D2:11:CC
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA9E819D814D315A248F2B523BC7A2F
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/D_W7Yle29EclnOYT4lJNJCfSEcw.roa
Signing time: Tue 06 Feb 2024 18:24:17 +0000
ROA not before: Tue 06 Feb 2024 18:24:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200882
IP address blocks: 2a0f:b241:d7::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a9:e8:19:d8:14:d3:15:a2:48:f2:b5:23:bc:7a:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:24:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0ff5bb6257b6f447259ce613e2524d2427d211cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b7:a6:9f:ca:b2:78:0f:3f:80:a0:8d:95:e6:
54:31:8b:3a:24:83:c1:fd:7c:43:b0:93:ee:be:d8:
27:d9:51:3c:50:9b:2b:1d:71:7a:cc:88:bf:32:b3:
7b:1c:97:14:ec:6e:f6:5c:80:7e:1f:5b:a4:2c:5d:
25:7a:48:81:f0:77:69:1f:3d:f0:6f:c3:39:27:71:
1f:65:85:b5:d7:fe:a1:46:7a:b7:39:25:76:3b:c5:
34:88:15:5d:ba:ec:aa:72:68:9e:3d:58:3c:58:e0:
9b:c8:0f:e5:b6:c9:54:0d:07:ad:22:90:19:62:f3:
d8:04:95:4e:d4:71:38:7c:ab:33:4e:dd:10:d7:78:
f0:de:37:ff:ba:9d:78:b5:2d:42:84:0b:6a:51:bd:
60:8d:da:22:d7:14:73:9d:c7:19:3d:b9:15:0c:6e:
58:53:bb:d9:b0:ce:76:2e:01:4c:39:be:d4:ee:41:
51:ab:68:19:0f:01:57:2e:07:94:e4:20:05:82:e3:
e0:4e:f7:67:2f:1e:2e:e5:c1:2d:3b:da:0b:b6:97:
de:c5:20:2e:9e:40:2c:5e:54:53:61:d1:46:07:04:
e0:79:1b:16:08:a1:3a:0a:20:43:fe:ce:63:b9:31:
8a:e3:e6:bf:ac:23:eb:db:b4:6c:ec:62:3e:21:33:
b3:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:F5:BB:62:57:B6:F4:47:25:9C:E6:13:E2:52:4D:24:27:D2:11:CC
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/D_W7Yle29EclnOYT4lJNJCfSEcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:d7::/48
Signature Algorithm: sha256WithRSAEncryption
33:ff:ad:e3:c9:51:3e:a8:3b:cb:0b:d2:a3:68:eb:fc:18:70:
b7:ac:a8:90:f0:d8:9c:2e:83:a8:60:5c:60:3f:0c:85:d0:dc:
6d:0d:23:48:ad:1c:c0:21:b7:3e:ea:0d:48:65:64:0f:b7:50:
12:f5:e4:a9:c4:c2:40:bd:00:72:c0:4e:7a:c9:3f:1b:0b:2e:
2a:7c:96:ae:9e:82:98:f4:b1:15:65:2d:5c:84:75:44:76:6f:
33:0a:8b:c5:d1:15:e2:83:44:e8:1f:0c:ca:9e:f2:e9:a0:d0:
c1:65:08:36:75:c3:84:7f:b5:f1:2d:26:6c:f9:0a:15:fb:7e:
6e:e0:8a:f3:2c:d1:79:7f:e2:ab:75:74:0e:4f:69:ce:92:dc:
c1:e3:b4:72:a6:99:c1:db:2e:d4:df:db:78:c8:c8:2e:07:b8:
da:e7:bc:24:5e:01:08:f7:19:41:6b:b9:4f:1b:fa:8e:e5:c4:
a5:90:5f:45:41:ee:82:15:37:aa:61:78:91:75:1f:ac:ca:2a:
ba:48:c1:3c:d1:63:78:c3:b5:92:eb:17:17:6c:2c:a6:21:75:
65:1f:74:21:9a:d6:3e:aa:47:20:63:8d:f2:aa:26:46:d4:af:
42:68:90:aa:dc:17:2b:e6:16:46:0d:bb:b5:c3:91:b5:8c:ab:
dd:45:e1:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org