Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ILVGCqi0tklogo89tmzFMwPvcWc.roa
File: ILVGCqi0tklogo89tmzFMwPvcWc.roa (raw, json)
Hash identifier: jN6LRuGUH6w9Zc0f3i36pPVqtNSX4nXF0MgS73jg8e0=
Subject key identifier: 20:B5:46:0A:A8:B4:B6:49:68:82:8F:3D:B6:6C:C5:33:03:EF:71:67
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F0AF4D1BE3E8E7DD7F15FDC257A50F
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ILVGCqi0tklogo89tmzFMwPvcWc.roa
Signing time: Wed 07 Feb 2024 05:00:50 +0000
ROA not before: Wed 07 Feb 2024 05:00:50 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213293
IP address blocks: 2a0f:b241:d2::/48 maxlen: 48
2a0f:b241:104::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:af:4d:1b:e3:e8:e7:dd:7f:15:fd:c2:57:a5:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:50 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=20b5460aa8b4b64968828f3db66cc53303ef7167
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:8c:88:cc:0b:45:a9:0a:23:7f:ae:68:28:a6:
75:eb:bc:c1:95:59:89:6b:a3:67:31:06:b2:bb:a0:
27:f6:c0:fa:f0:8f:e0:cf:51:79:49:0c:d9:ac:ee:
af:15:d1:3e:d3:ef:89:98:93:56:33:d1:f1:42:a9:
4b:22:b9:37:e8:60:a9:c8:ee:cb:b5:cf:44:50:f6:
a1:0d:7b:6f:be:69:fb:e9:08:05:01:ad:08:41:c2:
f2:6d:a6:40:2b:1c:b8:99:97:69:56:4a:86:0a:cf:
67:26:cb:54:7e:f7:35:ee:6b:12:35:7d:90:83:b9:
01:7f:fd:01:7b:0b:d2:d1:f0:5d:69:82:82:09:7e:
c5:51:56:f3:9a:fe:ec:08:6a:df:01:f9:3e:77:17:
79:2d:67:4e:c0:e9:e0:b1:a1:a7:3f:e2:7c:74:1b:
6e:1f:f7:a5:3d:2f:44:78:ea:64:fe:ea:f8:d3:a4:
2f:ac:4f:a1:1b:10:53:37:f6:b6:bd:2a:47:63:57:
7f:b2:f0:88:ed:6f:94:bb:fa:01:c0:7d:8e:56:eb:
b8:eb:46:2b:32:a2:8b:0c:c5:7f:75:b0:b8:a1:99:
1a:ed:ad:de:a3:11:69:c2:a6:57:fd:ef:14:8a:a1:
31:62:c6:ee:bf:92:5e:6a:57:aa:45:6f:19:f1:b3:
0e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:B5:46:0A:A8:B4:B6:49:68:82:8F:3D:B6:6C:C5:33:03:EF:71:67
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/ILVGCqi0tklogo89tmzFMwPvcWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:d2::/48
2a0f:b241:104::/48
Signature Algorithm: sha256WithRSAEncryption
7c:6a:c2:5e:7c:8a:02:da:a5:0d:c3:d2:b1:76:f9:a5:7f:26:
5d:d2:03:39:f4:c2:c8:db:62:a5:a9:af:5a:1b:32:a5:0f:68:
6d:83:c7:f3:7b:02:97:7a:1b:1a:1d:32:0e:01:50:84:26:ec:
99:09:72:f4:fa:01:36:26:fc:fd:a7:0f:bc:22:9b:78:9a:cc:
5a:d3:3c:61:49:d6:cc:23:09:ff:b1:e8:bf:26:7f:87:fc:14:
da:b2:34:57:19:a1:9b:14:af:dd:d2:67:75:43:74:ec:d8:df:
21:33:77:4f:53:89:6f:e0:90:ac:d6:70:f1:5f:7b:9b:ca:e3:
65:5a:dd:e5:3d:a7:5c:11:66:d7:4e:e2:2c:01:18:33:02:b9:
e8:3a:21:d3:52:54:92:ed:01:71:12:76:6b:20:59:25:f4:8f:
c5:a0:0c:aa:49:e5:77:4a:6c:4b:77:91:20:68:71:90:79:1f:
be:b3:7d:1e:e6:b6:d1:d7:f3:34:3f:f5:f8:c3:3d:d4:e8:95:
47:55:b3:2a:ba:fc:c6:ec:ee:64:16:2d:2b:db:d9:81:14:cc:
04:01:06:e9:20:42:c4:f0:41:93:17:20:c5:a8:03:83:c2:95:
7d:54:c6:4c:e7:35:95:71:90:34:f9:3d:d3:70:15:5a:12:09:
b1:97:4f:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org