Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/GQ7A8m9uvMY_oRSz6zDXANk7baQ.roa
File: GQ7A8m9uvMY_oRSz6zDXANk7baQ.roa (raw, json)
Hash identifier: kM7ve9D05OoVAM3wjm9wN5Je1mFAXYnoEWVbTWeJTh0=
Subject key identifier: 19:0E:C0:F2:6F:6E:BC:C6:3F:A1:14:B3:EB:30:D7:00:D9:3B:6D:A4
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB8930C69BA0A64D958E7F2900B89CA
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/GQ7A8m9uvMY_oRSz6zDXANk7baQ.roa
Signing time: Tue 06 Feb 2024 18:40:19 +0000
ROA not before: Tue 06 Feb 2024 18:40:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216362
IP address blocks: 2a0f:b241:158::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b8:93:0c:69:ba:0a:64:d9:58:e7:f2:90:0b:89:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:40:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=190ec0f26f6ebcc63fa114b3eb30d700d93b6da4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:87:22:ea:31:6a:5c:d9:d8:9d:d2:57:a6:ba:
e6:a8:31:d1:de:45:36:76:23:41:ee:ce:3e:fc:3f:
3b:7c:3e:4e:76:ae:77:1d:92:e3:30:86:0b:3a:ba:
42:fe:31:c1:43:c3:d2:9c:da:55:e7:72:ad:ad:98:
c9:56:af:83:40:1f:83:a6:01:d7:b8:c7:3b:1d:45:
4c:6d:ec:b8:9f:30:d6:4a:aa:0e:0a:c7:11:8e:85:
e0:97:e9:33:9d:53:cc:42:51:1f:5b:e7:30:3f:5f:
14:a7:4a:e5:56:37:d1:58:bb:9b:d5:85:8e:43:be:
23:9e:09:72:6e:e5:ef:11:15:73:5d:99:42:fc:3a:
35:dc:bd:a3:e2:d0:70:9d:51:d4:af:be:46:fc:51:
5e:b6:1d:48:73:40:89:a3:15:db:ca:12:7e:29:3f:
fc:1d:bd:b2:16:52:e7:bc:b7:80:6d:7e:0a:aa:a6:
71:85:69:db:7f:9a:1c:db:70:0d:ce:a8:ad:28:92:
8b:90:dc:31:4d:c3:df:66:c5:e7:76:c2:b4:aa:51:
9b:6f:0b:c7:f2:be:78:5e:cc:2d:60:c7:06:7b:bd:
90:48:e2:d2:d9:39:77:d4:b7:4b:39:d8:04:c2:ba:
0f:c7:33:17:f5:dd:ee:76:f5:03:2e:b2:3c:ca:e5:
a1:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:0E:C0:F2:6F:6E:BC:C6:3F:A1:14:B3:EB:30:D7:00:D9:3B:6D:A4
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/GQ7A8m9uvMY_oRSz6zDXANk7baQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:158::/48
Signature Algorithm: sha256WithRSAEncryption
14:5a:4f:63:b2:5d:6e:58:c2:1c:e7:ff:c6:0e:d7:7f:89:8d:
97:84:1d:9a:96:2e:55:de:77:26:d2:b9:4c:28:a2:f2:17:ac:
df:ca:af:7a:1c:45:4b:cf:2e:82:de:5c:a5:48:48:84:31:64:
3f:a4:32:b7:43:62:c2:c7:3e:e5:ea:8f:c8:f6:0a:65:d8:c7:
f9:01:b8:92:c0:db:d8:4b:f9:4c:00:31:72:ca:d5:b2:13:61:
67:5a:d0:3b:93:4a:90:18:62:c7:6a:47:a9:23:12:e6:1d:64:
4f:30:2b:1e:2c:f9:8e:c9:02:9a:84:7d:c8:2d:cd:b3:da:ce:
90:17:ac:39:80:03:38:97:df:51:9d:fa:19:2b:d5:88:fa:93:
ff:79:7c:84:17:f0:0f:d3:d8:0b:f4:77:a9:75:81:f9:fe:c2:
12:75:00:f9:63:b2:9e:a3:aa:55:01:32:e0:ff:9b:66:f3:eb:
33:ec:8b:a8:3c:1f:bf:98:4b:36:cd:2a:56:23:f8:8f:a6:e4:
d6:e1:b6:1a:8a:28:2c:cc:52:e7:7d:00:b6:1f:37:3f:32:1c:
bb:a8:61:60:19:db:4f:84:ef:8f:11:ef:71:61:b1:2f:71:cd:
9c:48:d7:bf:a8:2b:f4:05:49:05:93:d4:a0:ed:8d:9c:1b:d8:
fe:2c:33:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org