Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/MS6oIlMQWQXXZmTfXSj1VGhsj88.roa
File: MS6oIlMQWQXXZmTfXSj1VGhsj88.roa (raw, json)
Hash identifier: VMVO1wwSxbSiX+q7maAzqGttaYs192JZ2qIvN35HMxM=
Subject key identifier: 31:2E:A8:22:53:10:59:05:D7:66:64:DF:5D:28:F5:54:68:6C:8F:CF
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F097FC54F6A4E83D3AB9CE489A4B3E
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/MS6oIlMQWQXXZmTfXSj1VGhsj88.roa
Signing time: Wed 07 Feb 2024 05:00:44 +0000
ROA not before: Wed 07 Feb 2024 05:00:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207451
IP address blocks: 2a0f:b241:3c::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:97:fc:54:f6:a4:e8:3d:3a:b9:ce:48:9a:4b:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=312ea82253105905d76664df5d28f554686c8fcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:b5:2a:89:1c:a8:e1:95:2d:17:e0:3f:60:65:
a6:32:de:6e:6e:dc:b6:e5:30:d6:b3:06:3e:8d:0c:
02:6b:0f:af:e3:fc:5d:a5:a8:b1:73:88:c9:cd:82:
7e:fe:b0:e5:0e:e5:0f:ef:25:cd:25:ef:e2:63:83:
7f:51:21:66:31:df:5b:a8:ef:3c:5c:c8:eb:4f:e8:
3b:d0:2e:8f:92:36:1c:9c:1a:3a:76:18:96:de:38:
27:5a:2b:0b:0d:55:f3:cb:2a:26:19:a5:84:4d:bb:
26:46:5b:ca:c8:23:3d:35:9f:6e:82:65:5d:8c:31:
a4:09:89:fd:dd:0d:13:5e:8a:3c:d0:55:b1:a6:01:
73:a0:34:13:a7:30:89:9c:f9:d4:92:4e:6e:57:69:
90:40:ab:64:5d:67:5d:b5:db:b4:8c:9b:dd:69:eb:
be:4f:3f:d0:9b:c2:d3:76:f8:d2:08:c1:97:91:03:
7b:c1:65:ca:44:3b:58:93:c9:6e:5c:70:cb:4e:f7:
f7:93:e2:10:4c:ec:ba:34:0f:fe:f5:fe:88:57:93:
d0:13:13:cd:68:cc:1a:24:01:40:21:96:f6:98:b8:
bd:f9:88:e0:d6:e9:c8:21:ac:08:86:76:ea:68:56:
01:a8:43:be:2f:df:22:0b:5b:ea:52:9e:5c:52:1d:
cf:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:2E:A8:22:53:10:59:05:D7:66:64:DF:5D:28:F5:54:68:6C:8F:CF
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/MS6oIlMQWQXXZmTfXSj1VGhsj88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:3c::/48
Signature Algorithm: sha256WithRSAEncryption
3b:41:fe:0c:71:6d:e3:64:19:b3:54:1f:26:1c:8e:b3:32:9b:
06:9a:13:cb:13:e0:74:b4:c6:3d:5e:7f:e6:e0:2d:37:53:bc:
11:c8:0f:95:23:98:45:45:29:d8:50:7d:15:51:7b:49:f9:46:
2d:7a:01:57:b3:c2:4c:f4:2c:a4:fd:d1:e6:34:32:be:48:88:
48:15:52:77:63:e6:ef:0d:e2:9a:67:d7:66:e6:e9:5f:ee:fd:
48:b7:84:46:12:0d:1c:24:7d:62:41:19:25:1f:5a:55:3e:fa:
78:a5:e8:1f:e5:cb:15:58:6a:4b:0f:7a:87:52:c3:60:ac:82:
d6:d7:7b:b0:93:c3:2e:fd:7f:1d:e3:70:8b:64:c5:d2:0c:21:
51:14:43:49:9e:e9:de:9f:c7:99:09:c4:0e:ad:19:4a:ba:ca:
30:83:ab:af:8a:b2:a8:4b:2e:ea:c3:97:70:b8:07:b4:c6:18:
79:fe:82:fd:0a:aa:df:68:31:08:c8:44:af:a4:c6:8a:57:3f:
25:70:be:ca:1a:e5:fc:59:0c:d9:fa:d6:e5:c0:8b:27:37:77:
0c:93:c3:1a:ce:e8:ee:0c:05:b5:81:06:25:9f:81:d4:96:2b:
36:8f:d9:aa:23:9b:f7:fd:b6:d4:b0:37:6a:9a:91:e3:3f:1f:
31:03:39:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org