Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/H3sXHlelHLtuSsYabYEwnJy5fa0.roa
File: H3sXHlelHLtuSsYabYEwnJy5fa0.roa (raw, json)
Hash identifier: cLsHRGCX/9RPy61JS23an3aaDkKQL+jpgsMVNVvRnKw=
Subject key identifier: 1F:7B:17:1E:57:A5:1C:BB:6E:4A:C6:1A:6D:81:30:9C:9C:B9:7D:AD
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F069A3D9A8C49ACDE521C6FA04CB1C
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/H3sXHlelHLtuSsYabYEwnJy5fa0.roa
Signing time: Wed 07 Feb 2024 05:00:32 +0000
ROA not before: Wed 07 Feb 2024 05:00:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62435
IP address blocks: 2a0f:b241:126::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:69:a3:d9:a8:c4:9a:cd:e5:21:c6:fa:04:cb:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1f7b171e57a51cbb6e4ac61a6d81309c9cb97dad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:44:df:20:40:31:39:6f:c5:48:a5:4a:01:61:
be:2d:76:e3:d9:4f:a0:b8:14:3c:5b:39:b7:5a:22:
11:68:20:8f:eb:83:fd:05:0b:2b:44:e8:38:b3:73:
41:66:5d:0a:9e:e3:f4:45:03:b9:e0:d8:b0:47:b2:
82:ee:bf:52:71:aa:95:ec:ec:67:b6:53:a0:63:b4:
c0:5a:e0:68:20:94:45:c7:c6:6f:40:b0:a7:ef:c0:
3d:ca:56:eb:92:15:a6:28:2e:2a:9f:91:b9:0b:1d:
87:5d:59:eb:2e:c5:92:ee:ca:49:b9:4b:1c:e6:cd:
13:8e:7d:36:0d:80:43:26:9f:5c:50:80:02:3e:c6:
25:28:ee:0f:11:c0:80:6b:46:04:de:84:1b:a0:a9:
db:4d:a7:ff:cc:95:9e:85:f6:47:f5:66:a9:32:ad:
6c:36:78:2c:bd:7a:43:8f:32:cd:a9:23:82:81:9b:
a3:cf:ad:6c:b4:c0:4e:fe:b4:96:d3:3a:1a:55:46:
9b:d6:87:27:4d:e9:a8:60:86:97:bb:91:e5:7a:be:
96:ec:87:a6:77:d1:4a:45:1e:dd:55:d3:b5:2c:56:
0f:45:62:ca:a7:87:4f:e3:df:fc:20:40:8a:95:d1:
de:e3:27:11:56:e6:be:db:7d:a9:ad:12:32:17:fb:
07:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:7B:17:1E:57:A5:1C:BB:6E:4A:C6:1A:6D:81:30:9C:9C:B9:7D:AD
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/H3sXHlelHLtuSsYabYEwnJy5fa0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:126::/48
Signature Algorithm: sha256WithRSAEncryption
24:be:86:b1:5a:32:c2:23:99:0d:ad:24:82:22:6a:d4:6a:74:
b5:c8:5f:48:54:e2:94:6c:98:b6:34:d3:20:5c:26:aa:1a:f1:
27:5c:8c:22:9f:fb:4e:4a:c7:3e:43:76:cd:e3:9a:93:1d:21:
ba:bf:f1:de:d9:af:a2:b0:31:cd:f8:6e:2f:1c:13:35:23:b7:
30:0e:d8:5d:fa:b2:d7:bc:26:5a:a6:b7:58:e6:80:68:7f:fa:
2a:df:15:16:09:f2:5f:9f:2c:a4:30:e7:1e:57:28:a3:2a:50:
52:67:90:ed:ab:86:53:38:fc:f8:8d:a9:6b:01:85:f2:ff:5c:
71:f6:6f:4d:33:fe:a0:ac:d6:92:03:13:cc:07:8b:85:1f:92:
c2:de:42:49:dc:60:8f:5a:2b:58:47:06:9d:68:76:94:fb:43:
1b:db:63:fd:16:5e:a6:b3:9a:df:ce:c0:b7:a9:66:34:56:da:
63:d6:c4:9b:b2:42:a1:b8:51:71:55:24:47:08:a0:b9:84:26:
dc:74:22:27:be:89:bc:3c:4e:48:f2:8d:34:8c:22:06:90:aa:
50:63:e4:c1:19:2a:55:b5:d3:3d:6a:5f:fc:15:f1:0c:6b:3c:
58:44:be:8a:61:ad:6d:5c:2c:33:e2:a9:27:26:34:15:cf:e9:
0b:b8:c6:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org