Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Fq7TvzHJVu-ljvbpMmcec9V00n4.roa
File: Fq7TvzHJVu-ljvbpMmcec9V00n4.roa (raw, json)
Hash identifier: 4nH7g1mC/RgNy7E/fakwH697uSZI9ZlLNk/0rNupifU=
Subject key identifier: 16:AE:D3:BF:31:C9:56:EF:A5:8E:F6:E9:32:67:1E:73:D5:74:D2:7E
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA721D805397736BC7BC802D2287893
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Fq7TvzHJVu-ljvbpMmcec9V00n4.roa
Signing time: Tue 06 Feb 2024 18:21:16 +0000
ROA not before: Tue 06 Feb 2024 18:21:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198733
IP address blocks: 2a0f:b241:7b::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a7:21:d8:05:39:77:36:bc:7b:c8:02:d2:28:78:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:21:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=16aed3bf31c956efa58ef6e932671e73d574d27e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:46:9c:06:6c:74:ef:6b:93:1b:32:89:8a:dd:
ff:37:10:47:10:06:90:83:ed:c4:09:81:17:69:00:
d8:8e:d5:25:e6:d8:40:28:2c:e2:0f:ad:d7:f3:f9:
64:b1:1d:0e:64:fe:d7:5a:30:1f:71:79:76:01:b6:
7b:31:2a:e1:89:ee:1b:a2:8a:d2:d1:93:90:cc:30:
e0:b3:5a:d1:7b:72:b1:a5:3d:65:81:88:0c:17:11:
82:23:70:7c:b1:95:4c:b5:ee:bf:c4:b2:3f:8a:12:
73:91:fe:c3:27:bd:f4:28:f2:d8:01:e6:6c:74:9e:
64:88:b3:5c:0a:d2:50:af:51:47:76:8b:9f:5a:ae:
1e:8a:cb:96:24:5c:9a:4d:36:d7:9d:26:20:dc:a3:
6e:30:0c:91:30:53:9d:28:91:d9:26:01:47:88:48:
1f:a7:c3:54:49:a7:58:f1:a4:03:68:2c:39:ad:3b:
f9:91:18:75:b8:d1:13:bf:4f:7a:37:b4:bd:6b:2b:
3d:c0:1d:af:fa:ca:f1:bd:be:5f:e0:59:26:e0:2b:
ac:60:1f:6f:c2:0b:57:28:4f:c7:5f:65:0b:0c:d1:
be:12:91:0e:c9:01:31:06:3b:98:57:e5:5f:8e:8e:
56:0d:78:fc:93:90:48:2b:03:34:7e:81:1c:62:0c:
1c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:AE:D3:BF:31:C9:56:EF:A5:8E:F6:E9:32:67:1E:73:D5:74:D2:7E
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Fq7TvzHJVu-ljvbpMmcec9V00n4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:7b::/48
Signature Algorithm: sha256WithRSAEncryption
6a:df:d8:3c:5e:9b:bc:8f:83:23:6c:b3:5e:ed:3f:c3:96:5b:
ac:2c:94:4a:ab:15:39:96:28:18:eb:09:c8:25:78:00:01:8e:
51:ad:5f:bb:5f:93:ea:29:77:2b:59:2f:4e:1f:31:64:c6:70:
9b:b4:0e:e1:b0:96:fb:2f:f3:2e:cd:11:72:c3:25:78:db:33:
be:34:0c:c8:82:f0:d4:8c:55:9a:b8:f8:cb:fe:6c:21:bf:64:
08:8d:e7:03:98:bc:aa:09:79:86:3d:7f:7c:ed:1a:21:4a:19:
f6:ef:37:d2:0f:a7:a5:fd:e4:18:a9:96:c4:00:32:8b:14:8e:
ee:6b:19:c4:65:2f:f9:17:e2:40:85:cb:6f:fc:5b:70:35:92:
28:da:80:24:ef:58:1c:ed:d6:03:7a:52:32:ba:b2:92:ad:6d:
18:a7:4d:11:77:7a:c4:36:b1:42:08:3f:49:66:19:2e:d1:a6:
0c:59:7e:9d:2b:f0:25:91:76:fd:ee:57:f1:50:66:66:74:1f:
ce:64:5b:15:80:08:8e:28:e4:38:7a:6c:52:5d:ba:04:2a:c2:
70:28:3d:08:2b:6b:ce:5c:64:70:d4:a1:5e:30:02:38:c6:87:
ed:13:0c:61:46:db:3e:03:fe:0e:07:2f:23:35:98:8d:d9:89:
df:14:5e:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org