Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/M4wfjaNWpBqG3vX4HqeBg42JjCU.roa
File: M4wfjaNWpBqG3vX4HqeBg42JjCU.roa (raw, json)
Hash identifier: +fLFrTBE5OFWd4lyfcSvJ1rYF+7wK7xjidIfi4ORO5o=
Subject key identifier: 33:8C:1F:8D:A3:56:A4:1A:86:DE:F5:F8:1E:A7:81:83:8D:89:8C:25
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F96A6DECD65A697556EB337FDF2CA7D
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/M4wfjaNWpBqG3vX4HqeBg42JjCU.roa
Signing time: Tue 06 Feb 2024 18:03:15 +0000
ROA not before: Tue 06 Feb 2024 18:03:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44355
IP address blocks: 2a0f:b241:61::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:96:a6:de:cd:65:a6:97:55:6e:b3:37:fd:f2:ca:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:03:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=338c1f8da356a41a86def5f81ea781838d898c25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:14:d1:c1:1e:b3:71:0a:05:9e:e9:40:7b:c5:
a6:29:b4:46:6a:f7:27:3b:b2:e1:40:ba:c8:4c:8f:
03:7b:b3:6d:0a:67:b0:a1:cf:23:11:25:21:67:e8:
b9:7c:44:4b:91:72:5e:15:47:82:03:19:c8:a0:40:
dc:0b:8a:ba:1f:9f:f2:60:49:d6:0d:ea:3e:7e:ba:
2e:73:2a:80:42:33:b7:ef:5c:3e:84:62:ad:63:2e:
13:c7:b6:14:d1:8a:18:5a:5c:1b:df:9f:ac:82:95:
ed:3f:f0:59:48:86:fd:5e:c1:39:d1:ee:eb:93:b8:
44:af:2f:af:13:38:20:10:f0:ae:0c:2a:c1:a7:69:
e9:7c:a9:3c:25:7a:47:6e:cd:a9:6a:f7:00:26:45:
bd:5b:e9:61:46:15:e5:48:10:c7:c6:5d:6f:6e:52:
3e:c6:2a:e9:bd:a6:71:66:84:5d:74:5e:a5:57:12:
19:b0:5e:91:80:fb:d1:57:bf:58:ac:97:48:c2:73:
5f:87:fb:e7:a2:e9:af:2d:f1:c3:eb:26:e4:25:66:
a1:dd:9c:61:d8:42:f4:11:21:85:72:6f:83:e7:fc:
5d:9e:b7:13:8c:06:28:af:d6:0f:ea:9c:30:24:58:
ee:a7:8c:04:7d:43:79:0b:dc:0e:1f:dc:88:c2:17:
4d:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:8C:1F:8D:A3:56:A4:1A:86:DE:F5:F8:1E:A7:81:83:8D:89:8C:25
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/M4wfjaNWpBqG3vX4HqeBg42JjCU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:61::/48
Signature Algorithm: sha256WithRSAEncryption
35:47:13:3e:4f:1f:9c:e3:57:cf:9e:1d:4f:b3:e9:ff:87:93:
eb:42:09:8e:bf:bc:ff:9d:ff:6e:dc:82:eb:fa:d3:21:d8:f8:
e1:21:98:4f:fe:39:f6:d7:de:4a:3a:f1:e7:5c:aa:43:29:8e:
39:de:3b:e9:9f:b3:85:d7:99:29:a5:09:cc:02:6f:14:c4:9c:
0a:30:53:e0:86:02:ec:f2:f4:82:0a:a5:e3:fa:c7:0c:39:48:
67:0b:64:6f:57:66:84:55:97:2d:ba:85:b0:eb:2f:4d:ba:3c:
c3:5b:98:1c:a2:39:dd:4e:bd:b8:82:f7:d3:da:88:86:eb:81:
35:b8:75:ad:69:b5:2b:e3:74:d2:61:61:6c:22:9e:4e:be:2d:
c0:1c:86:63:b0:ec:2f:b2:74:fc:6e:a2:c7:29:74:a0:4b:94:
af:cf:ab:10:81:90:5f:5e:85:3f:fc:47:3e:6a:28:c0:ff:59:
0d:6d:43:f7:07:f2:9d:65:5d:24:1f:ca:07:43:df:bd:6b:af:
08:cf:e3:9c:01:2b:96:63:8e:5d:a3:f2:0f:73:47:d0:e1:33:
0f:2a:90:ea:ba:e8:37:1c:45:b7:bb:cc:a7:dc:e5:d9:96:ff:
cc:17:27:55:2f:f1:89:1e:45:e0:5a:37:7a:84:81:78:32:cd:
ae:1d:9e:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org