Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/MY83u5nwGPQiv-IvtPzkEvIcQoM.roa
File: MY83u5nwGPQiv-IvtPzkEvIcQoM.roa (raw, json)
Hash identifier: 8lZqwbDHOjphrmBtupJ928Yy3uujUB6/qZ/Ztg2glYk=
Subject key identifier: 31:8F:37:BB:99:F0:18:F4:22:BF:E2:2F:B4:FC:E4:12:F2:1C:42:83
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB79D13AB8A7EC8209348B4B28E688A
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/MY83u5nwGPQiv-IvtPzkEvIcQoM.roa
Signing time: Tue 06 Feb 2024 18:39:16 +0000
ROA not before: Tue 06 Feb 2024 18:39:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207414
IP address blocks: 2a0f:b241:13d::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b7:9d:13:ab:8a:7e:c8:20:93:48:b4:b2:8e:68:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:39:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=318f37bb99f018f422bfe22fb4fce412f21c4283
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d0:d1:87:f4:ff:5a:c3:53:17:e3:7f:34:8f:
d8:ba:a6:e7:60:83:79:b4:4c:60:21:54:00:15:8e:
3b:0e:b1:da:02:74:86:5a:1a:04:19:e8:b8:88:7d:
a8:37:34:bd:da:9a:49:3e:b4:c2:64:f4:24:d6:19:
c6:f2:45:1f:e4:83:e8:29:5f:cb:0c:c2:04:6a:8c:
92:16:a2:74:5b:3b:79:92:f3:0d:66:48:d6:55:85:
f9:ac:95:8c:2e:f7:ee:0a:ea:91:a4:f7:57:7d:7b:
e7:03:a1:ef:3b:38:13:26:9a:40:a5:54:fc:09:16:
28:8b:cd:6a:79:b7:30:11:09:8a:14:38:a8:de:20:
71:26:1c:70:49:93:0d:fa:f3:06:20:44:91:fe:a3:
72:00:e3:e9:6e:1a:1e:74:ec:6c:51:9e:e1:45:8f:
e8:f4:ac:f1:cd:0a:68:b2:12:95:a8:38:e8:13:0a:
43:3b:25:d9:23:64:ea:25:09:54:e4:97:94:c3:19:
03:d7:6c:9f:fa:76:ba:61:23:54:63:99:68:03:6c:
8c:4e:81:1c:99:be:a7:63:e4:7f:11:fb:6a:72:fa:
1f:a5:25:58:99:ee:20:8c:0b:59:f4:ff:97:8b:8c:
3b:3c:a6:c2:4b:83:cc:bd:24:5e:ec:53:5d:45:7c:
98:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:8F:37:BB:99:F0:18:F4:22:BF:E2:2F:B4:FC:E4:12:F2:1C:42:83
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/MY83u5nwGPQiv-IvtPzkEvIcQoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:13d::/48
Signature Algorithm: sha256WithRSAEncryption
0a:b6:15:64:ba:26:cb:1b:d1:18:75:e5:e1:9e:ac:16:47:f5:
26:b3:c3:b8:98:65:28:3b:c4:2e:2c:41:d6:f4:13:15:f5:3e:
4c:b3:6d:bd:90:83:4a:c8:f0:22:da:e1:01:1f:9e:96:b9:ab:
a1:50:a9:03:94:03:49:ff:dc:e4:d5:1f:ee:40:45:a2:9e:9a:
e4:5d:2e:26:11:74:1d:36:f6:b3:c1:f7:65:f1:00:3d:ca:b2:
06:b0:ee:87:24:99:42:2a:e8:7c:eb:9b:ae:86:09:f0:b4:63:
d6:2a:c9:04:d7:2f:ea:59:09:53:11:34:16:34:1d:99:a5:c8:
bd:91:49:2b:37:0a:41:fb:bf:a3:91:f3:72:dc:6e:2e:68:46:
33:a0:56:00:86:e6:b0:0e:16:35:4b:85:44:e3:1c:82:14:70:
79:18:a9:3b:65:db:ad:22:5f:bb:e5:3c:cc:1f:98:29:39:e5:
d6:5f:1d:f5:2c:04:51:9e:7f:0e:1b:9c:c5:04:a1:73:76:2e:
87:41:0b:4d:d4:ba:38:3b:ff:af:db:1c:ab:b0:61:7a:31:c6:
ca:e0:1a:94:29:52:45:6d:6e:db:76:cb:85:c2:af:e3:92:bc:
d5:f5:3e:36:4e:c7:5b:ae:cf:a7:72:b5:58:7c:a4:75:43:ca:
4e:5c:cb:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org