Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ESsnmHe-cUjCGtfPeIxqbokT6vM.roa
File: ESsnmHe-cUjCGtfPeIxqbokT6vM.roa (raw, json)
Hash identifier: Cw/3qn4edt5fe5rKEyWiciV0g/Saby5kRVYnRSZrGxw=
Subject key identifier: 11:2B:27:98:77:BE:71:48:C2:1A:D7:CF:78:8C:6A:6E:89:13:EA:F3
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F085A5FF58DE7CDF85CA8EF80A9A86
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ESsnmHe-cUjCGtfPeIxqbokT6vM.roa
Signing time: Wed 07 Feb 2024 05:00:40 +0000
ROA not before: Wed 07 Feb 2024 05:00:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200795
IP address blocks: 2a0f:b241:d4::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:85:a5:ff:58:de:7c:df:85:ca:8e:f8:0a:9a:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=112b279877be7148c21ad7cf788c6a6e8913eaf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a8:76:0e:d8:da:10:9d:b5:e3:b0:ea:a6:1a:
f7:29:24:3e:ff:a9:b3:e6:4f:ed:08:e0:93:b2:eb:
2f:00:8d:08:65:6b:00:40:11:e5:ee:22:2c:79:85:
dd:75:09:57:78:c3:e4:09:b6:30:93:11:90:c1:8e:
20:cc:46:89:58:de:2c:f8:7d:6b:35:93:01:0d:5b:
08:59:bb:d4:1c:de:65:51:40:87:74:4b:a4:03:ed:
22:17:8b:f7:87:5f:18:80:db:cd:80:d8:a3:4d:c5:
9c:5c:27:b0:62:e8:32:7b:95:5a:5f:ae:f0:2d:38:
44:95:7c:67:cc:0f:d2:95:52:a2:af:ed:34:c0:4f:
9b:f4:b6:af:39:22:53:41:bf:0a:18:16:69:f2:55:
85:b6:13:05:c7:44:04:de:2f:e2:ff:62:6f:64:4d:
ff:5d:0a:aa:b8:16:b3:be:77:7a:c4:77:92:28:43:
c9:72:a3:cd:cc:64:8b:c7:74:7e:5d:f7:28:1e:be:
02:e4:e9:f8:89:cc:19:75:a8:bf:db:db:8d:dd:06:
bd:26:a7:74:cd:e8:ad:37:88:c6:ab:f6:fb:b6:85:
b8:67:d5:6c:8f:7d:d2:2b:de:3a:3e:41:ca:d7:10:
83:c6:1b:97:9a:54:24:f2:b9:f3:3b:1f:b2:0e:b6:
6f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:2B:27:98:77:BE:71:48:C2:1A:D7:CF:78:8C:6A:6E:89:13:EA:F3
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ESsnmHe-cUjCGtfPeIxqbokT6vM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:d4::/48
Signature Algorithm: sha256WithRSAEncryption
85:03:44:9e:83:b1:af:68:ac:4f:fb:56:c5:1a:7d:fd:24:a6:
32:ed:c9:b6:15:3a:d0:84:17:f0:dc:86:5e:a5:31:da:91:23:
4c:cd:45:3f:db:67:e2:24:ce:16:f4:d4:e9:c7:ed:47:00:5d:
3a:b3:9a:5c:0f:0c:a2:46:c5:87:08:cb:fe:6d:c8:9e:e4:4f:
0e:40:6c:7c:f2:b6:ef:e2:57:9e:2f:37:7d:a3:2d:4a:87:ed:
b4:9c:91:8f:f9:d3:24:f3:71:77:6a:e7:36:d8:7d:17:e9:c5:
26:4f:b1:4a:3f:6d:72:9b:0c:b4:3f:30:06:1c:81:98:6c:bb:
87:6c:fe:de:37:88:a8:58:25:7c:55:f0:2f:ca:13:55:46:df:
9b:e7:84:c9:3c:37:8a:cd:05:45:6c:79:a6:0f:78:eb:c9:34:
1f:90:64:59:f1:1b:74:20:d7:f6:af:ef:cc:cb:3b:20:88:24:
c7:c1:bc:6a:aa:4d:f0:11:4d:4d:40:92:5d:e7:28:d2:a6:2b:
9e:73:f6:69:3e:1f:aa:c8:62:58:58:b6:8a:86:42:a6:bd:53:
2f:63:9c:5d:e4:92:d3:1d:d6:bc:3c:a1:30:95:1d:89:e6:c5:
d6:64:a3:83:d5:69:98:7c:2a:2a:a6:f0:f1:7b:dd:6e:dc:58:
a7:0d:e5:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org