Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/M5-LO79PfHAtXf4su8TL872Sp0M.roa
File: M5-LO79PfHAtXf4su8TL872Sp0M.roa (raw, json)
Hash identifier: fhGVr8/ZHORHeMU1QMz94xqzApm5K0AricRSkhYmi8Q=
Subject key identifier: 33:9F:8B:3B:BF:4F:7C:70:2D:5D:FE:2C:BB:C4:CB:F3:BD:92:A7:43
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FAAD3D229C083C1FC26D8B14552197B
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/M5-LO79PfHAtXf4su8TL872Sp0M.roa
Signing time: Tue 06 Feb 2024 18:25:18 +0000
ROA not before: Tue 06 Feb 2024 18:25:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203069
IP address blocks: 2a0f:b241:e4::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:aa:d3:d2:29:c0:83:c1:fc:26:d8:b1:45:52:19:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:25:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=339f8b3bbf4f7c702d5dfe2cbbc4cbf3bd92a743
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f4:7b:f5:48:67:a8:2c:68:e8:65:fd:b9:f8:
33:5a:aa:2d:6b:7e:4c:d4:be:8d:da:98:c5:c5:6b:
d6:56:eb:3b:12:60:d0:5c:fe:ce:2a:4e:0f:19:bc:
13:fb:23:12:3b:04:be:40:92:b3:3d:d2:a1:0f:0f:
95:f5:20:fd:b2:d2:f9:d1:c0:6c:37:a7:eb:f5:a0:
25:48:a4:53:e3:42:47:30:dc:87:e6:10:d7:a9:67:
20:ea:5f:43:90:e9:0b:0a:f7:4b:6c:16:76:30:41:
c3:ce:7d:57:59:3b:ef:e5:3c:a6:5a:26:dc:1e:99:
85:8b:7a:81:93:01:84:d2:c0:82:83:04:b2:89:88:
f6:59:5a:a6:7d:d0:7e:32:5d:7a:eb:2d:20:09:8d:
e8:fe:dc:6f:25:7e:1b:ad:c4:0d:3d:5e:32:ba:ce:
23:d9:84:5f:7e:a7:ab:e8:f6:ad:c0:3b:77:16:41:
44:e7:13:62:93:13:fc:e4:81:fa:d6:30:81:54:cd:
54:85:ce:67:91:89:67:2f:5b:eb:25:26:6e:69:cf:
f7:41:dc:f8:0d:26:5f:54:5e:4a:dd:4c:12:16:71:
68:72:cb:59:fc:00:e7:d2:bf:ec:08:6a:4d:cf:c9:
e7:69:05:3e:a7:54:c3:29:11:36:14:f1:97:a2:37:
5a:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:9F:8B:3B:BF:4F:7C:70:2D:5D:FE:2C:BB:C4:CB:F3:BD:92:A7:43
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/M5-LO79PfHAtXf4su8TL872Sp0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:e4::/48
Signature Algorithm: sha256WithRSAEncryption
05:30:bb:bc:e4:3a:85:78:ee:49:64:93:93:0c:b4:46:d8:21:
61:c1:9b:96:9b:13:20:e2:ec:98:58:ef:6f:27:9a:d2:51:89:
46:4d:a9:26:7c:71:05:54:f2:0f:c3:d6:1f:29:4a:89:40:d7:
fe:a1:76:03:38:9a:cc:b0:06:4a:9e:b8:35:b6:6a:3a:53:40:
39:b4:33:10:47:ca:97:8c:54:35:6c:b4:c7:51:0e:95:c9:79:
d8:16:15:ce:84:1d:c5:5a:5e:55:c4:12:71:fa:1f:69:c4:fa:
58:9a:03:cc:0d:87:34:6b:d9:50:d6:eb:90:c4:89:14:bd:91:
66:56:b7:be:0e:30:53:2d:40:fe:e7:68:75:8a:fe:67:e2:1e:
5d:5c:9f:6e:39:dc:16:b4:63:46:89:34:79:a6:5c:db:38:36:
7d:9c:65:6c:9b:ea:d0:b6:be:b2:a1:73:a5:be:13:3b:d2:45:
2c:07:d6:63:0a:49:f9:3b:a5:b1:a0:0d:0e:89:ed:37:17:93:
39:0f:d6:41:ec:d4:d9:e4:c7:f5:84:4f:e3:5d:48:23:b6:59:
af:f3:da:48:1a:cc:ce:a7:a0:8f:7e:9f:53:c5:a7:11:2a:ba:
88:4b:5d:51:2e:e0:8b:f3:05:7b:f7:52:8f:d6:64:b1:99:8f:
e6:1f:93:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org