Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/J8Ubm7eku-U81NGdxYZ0XN7Akpo.roa
File: J8Ubm7eku-U81NGdxYZ0XN7Akpo.roa (raw, json)
Hash identifier: hYVowvn+GF1b7XUs7asewY7x2Xop8VtA5EhdAkzD+Yo=
Subject key identifier: 27:C5:1B:9B:B7:A4:BB:E5:3C:D4:D1:9D:C5:86:74:5C:DE:C0:92:9A
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F96AF51809DC6C1BA1B8FB34A0A21DB
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/J8Ubm7eku-U81NGdxYZ0XN7Akpo.roa
Signing time: Tue 06 Feb 2024 18:03:18 +0000
ROA not before: Tue 06 Feb 2024 18:03:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216179
IP address blocks: 2a0f:b241:5e::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:96:af:51:80:9d:c6:c1:ba:1b:8f:b3:4a:0a:21:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:03:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=27c51b9bb7a4bbe53cd4d19dc586745cdec0929a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:12:4a:24:03:66:cf:f1:c8:2e:61:d3:a2:ea:
f6:8b:3f:41:cc:8f:a4:c5:6c:80:3e:df:0a:b9:9b:
11:a1:c6:51:56:d9:d8:43:e7:0e:c0:f6:99:87:64:
d3:fa:21:51:d9:07:35:4a:49:38:cf:e2:aa:5b:b7:
44:07:c5:20:55:88:ce:be:b0:bb:bb:ed:10:5b:ae:
18:9d:1d:21:31:fd:00:1e:d2:60:ef:89:d9:b1:7a:
a5:31:6e:c7:4f:88:7a:a2:36:a2:42:c5:b0:09:57:
06:71:e8:4e:20:99:79:d5:57:3e:2b:e1:91:ba:4a:
a4:81:ab:85:56:6d:f9:cd:76:a4:14:7f:00:b9:e7:
10:f3:27:91:df:fa:ad:26:d0:01:8b:41:ca:87:66:
ca:79:17:19:ba:23:c9:69:75:4e:99:73:b0:d7:de:
ad:b7:f6:5c:cb:c5:23:ab:e6:69:a8:ba:dd:02:53:
97:e7:6d:16:b8:fb:46:6d:23:fa:31:d0:33:c8:de:
fe:48:68:90:2c:43:16:68:5a:51:e8:11:92:4f:ca:
a4:72:c6:85:8e:c8:0b:11:7b:8c:0c:6a:d4:6a:cc:
ea:0c:65:d6:7b:5a:9f:3d:26:07:5e:50:94:4b:ba:
b8:bf:7d:0c:62:0a:d9:0f:24:53:0b:08:ea:7d:f7:
95:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:C5:1B:9B:B7:A4:BB:E5:3C:D4:D1:9D:C5:86:74:5C:DE:C0:92:9A
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/J8Ubm7eku-U81NGdxYZ0XN7Akpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:5e::/48
Signature Algorithm: sha256WithRSAEncryption
70:fa:26:24:0a:ae:7b:07:c6:09:d6:a4:3e:38:5f:54:31:e2:
ee:93:f5:72:6f:e7:6a:66:ad:2a:2f:1d:fb:24:f5:51:fb:83:
31:94:94:95:3c:14:e2:f0:18:3d:f5:51:e4:50:28:66:a7:42:
a9:7f:5a:92:fc:65:06:72:bc:6a:44:7f:a5:15:e0:06:26:e0:
fa:fd:d2:fa:ef:f1:d0:9e:f8:77:7b:d5:25:fa:aa:7c:99:46:
bc:4a:61:94:67:78:b7:fc:69:9b:dc:41:82:4a:94:d5:3b:57:
81:4e:f7:c5:eb:13:1a:62:19:ae:b9:63:e4:98:5f:27:8f:22:
1b:a1:2c:50:1d:98:7a:c2:4e:03:0c:8f:29:2b:56:7a:b9:0e:
ea:10:8c:04:37:6b:c7:92:0c:e5:9e:a8:e9:cc:2f:a3:6c:6c:
48:e7:ca:6b:ef:9d:d6:c7:6f:37:a2:20:ab:01:1b:97:55:22:
1f:6f:07:18:f3:fb:1b:77:1f:70:f1:20:75:90:09:8d:0b:e1:
c0:c6:80:49:98:d5:df:5f:ed:c5:5b:ff:67:03:32:0a:56:87:
f2:ff:dd:57:f6:e3:15:85:72:6f:a7:d0:56:40:45:14:a5:22:
d3:a7:b9:21:e6:79:e3:1e:90:e9:2e:93:7a:a1:0f:9b:1b:58:
ac:eb:d6:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org