Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/LxUpGVSwNqRqB6maYcGR3mSt3XM.roa
File: LxUpGVSwNqRqB6maYcGR3mSt3XM.roa (raw, json)
Hash identifier: i6PeHBwglM84QadOEpPaewEXHl2IU02h8apAmSuT0Jg=
Subject key identifier: 2F:15:29:19:54:B0:36:A4:6A:07:A9:9A:61:C1:91:DE:64:AD:DD:73
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FACA98FFBD9CB8C04ABFF195E5BEC4D
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/LxUpGVSwNqRqB6maYcGR3mSt3XM.roa
Signing time: Tue 06 Feb 2024 18:27:18 +0000
ROA not before: Tue 06 Feb 2024 18:27:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212532
IP address blocks: 2a0f:b241:102::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ac:a9:8f:fb:d9:cb:8c:04:ab:ff:19:5e:5b:ec:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:27:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2f15291954b036a46a07a99a61c191de64addd73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d5:4a:80:17:5b:50:5d:18:94:8d:9e:19:a1:
d5:d4:7e:16:e5:bb:78:91:54:f0:cb:f2:49:b3:28:
a9:c3:a1:5d:9f:1e:7d:15:8e:d7:88:50:20:43:0f:
21:77:6c:ef:c0:ee:ba:ed:ed:72:b3:e4:42:81:43:
f8:f6:9b:28:3b:08:57:76:de:1b:69:bc:48:eb:ae:
6c:e8:fa:e9:db:30:b8:a4:68:51:37:32:34:f4:83:
a0:60:83:6f:bd:37:eb:24:8e:84:c3:45:4a:20:bf:
5e:ad:d3:d8:cf:96:4a:d8:8d:f9:a7:15:9c:88:fa:
1d:90:e9:80:0e:88:9f:50:7a:00:58:03:5f:c9:06:
e2:a2:78:79:28:5a:4d:d1:59:0c:d1:7f:c6:01:5e:
ea:03:7c:aa:85:c2:96:35:3f:0e:46:fa:1c:f0:d7:
35:80:d2:22:fa:1f:7b:95:4d:bc:b7:f0:ea:04:50:
f2:2c:c1:16:dd:f6:50:24:c1:23:e4:bb:e5:d8:89:
dc:97:6d:4b:d0:0b:93:55:33:da:bc:fe:7f:0f:13:
1c:a1:e8:cf:9c:ad:6b:e1:b7:20:28:91:16:a3:b4:
a9:99:f1:a0:af:0a:ec:7b:dc:ce:2b:8a:21:cf:91:
c3:54:3d:7c:97:93:67:90:90:a3:3f:36:f9:94:78:
1d:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:15:29:19:54:B0:36:A4:6A:07:A9:9A:61:C1:91:DE:64:AD:DD:73
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/LxUpGVSwNqRqB6maYcGR3mSt3XM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:102::/48
Signature Algorithm: sha256WithRSAEncryption
03:ab:7f:c9:2c:04:05:d5:6a:e6:e2:bf:82:2c:01:c9:cb:9e:
40:e9:d3:77:18:47:28:88:60:57:97:64:43:9a:b8:53:4a:dd:
62:cf:dd:c3:6f:16:5e:76:14:f2:2c:0e:dd:b1:7d:02:11:2a:
d6:77:5a:f1:4e:ca:9a:4e:81:6f:ec:a5:e0:0f:ba:88:c3:b9:
52:99:f9:fd:7d:4e:86:c6:ce:7e:66:26:f1:e4:ec:df:81:42:
6a:c8:80:a6:12:86:c9:43:5e:2e:7c:45:3e:f5:61:3e:82:5c:
1e:36:7a:b4:1c:dd:43:44:31:80:c4:ff:1f:b5:0a:19:e8:4f:
6c:c7:f4:94:45:01:ac:02:d1:4f:4b:9d:f5:8d:02:85:12:31:
e7:24:d2:3a:42:06:49:e3:db:79:cd:bf:5a:ab:8d:b5:d8:48:
8b:d6:1d:b2:ee:d2:2c:9e:cf:9f:d4:8b:f0:63:49:53:6e:d4:
26:9f:3d:08:e7:9b:32:bf:ae:8d:82:ce:1b:27:ec:25:3b:8d:
ac:02:d4:d4:03:dc:d2:6f:5b:28:3e:5b:55:3f:fe:11:c9:34:
fc:d9:22:a7:46:8d:6d:c0:82:19:7c:5d:0b:1b:f4:35:b3:bd:
c4:b8:7b:d9:a1:93:9b:cf:02:8e:0b:42:1b:8a:c4:6e:fa:a7:
9b:7d:cb:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org