Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/NNkvb-ZqAICwmVA5wXWPo8tSkDI.roa
File: NNkvb-ZqAICwmVA5wXWPo8tSkDI.roa (raw, json)
Hash identifier: 63fq8J0PWQQ0Q+/NZJWlOGGa6MVW7ZboVCxDWmlzd24=
Subject key identifier: 34:D9:2F:6F:E6:6A:00:80:B0:99:50:39:C1:75:8F:A3:CB:52:90:32
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81F084D06775746AB2EA00D91B071ADA
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/NNkvb-ZqAICwmVA5wXWPo8tSkDI.roa
Signing time: Wed 07 Feb 2024 05:00:39 +0000
ROA not before: Wed 07 Feb 2024 05:00:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200775
IP address blocks: 2a0f:b241:d1::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:f0:84:d0:67:75:74:6a:b2:ea:00:d9:1b:07:1a:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 05:00:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=34d92f6fe66a0080b0995039c1758fa3cb529032
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:07:72:33:d7:0d:1e:a3:17:74:af:33:d0:d1:
48:16:d3:61:df:f4:8d:61:e2:9e:a1:6f:22:70:c7:
fe:f8:69:c3:23:8b:ee:8a:26:8a:e2:d5:75:04:50:
16:c7:07:b5:01:cc:3f:37:5f:aa:7f:0c:ec:c0:2f:
2a:92:3d:53:8c:a2:c1:d6:b9:3b:7b:10:ca:b9:81:
4b:85:d7:c5:7a:79:4a:7b:92:8e:9f:68:68:db:64:
f6:e8:39:18:c4:6f:04:f6:04:60:20:8d:b2:5a:d8:
52:20:e9:5b:1a:f9:75:9e:84:6c:d2:fd:9a:1c:99:
d1:03:09:8f:a9:3b:ac:be:9c:63:0d:d2:26:15:f9:
61:b0:8d:52:17:07:b8:72:17:26:ba:94:a3:a0:71:
57:e5:68:69:1d:67:a3:20:58:76:b7:af:db:6f:2b:
33:0e:c7:be:a6:a6:f7:d6:6d:7e:21:ff:78:c0:a7:
cd:19:fc:03:34:e4:4a:b4:c4:fd:a6:f4:17:a5:8b:
ee:b9:ef:d9:d2:8a:c3:80:cb:b9:a4:fb:45:dc:15:
c7:71:2f:c6:be:42:52:97:66:52:2e:8b:d8:6d:ed:
a2:af:1f:18:1f:e7:d8:10:0f:14:5f:31:22:09:01:
a9:39:c3:93:79:fe:a5:54:06:fb:10:4e:2b:c8:51:
12:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:D9:2F:6F:E6:6A:00:80:B0:99:50:39:C1:75:8F:A3:CB:52:90:32
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/NNkvb-ZqAICwmVA5wXWPo8tSkDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:d1::/48
Signature Algorithm: sha256WithRSAEncryption
70:2a:a8:68:8b:d9:f5:6d:d5:db:94:b9:9f:89:6f:33:88:38:
54:c4:c0:ff:e0:6a:c4:f2:92:7a:c7:20:2e:3f:97:e3:eb:73:
33:8b:27:49:45:9c:af:ab:ae:6e:a6:e1:6e:ab:e4:94:94:dc:
f4:60:50:16:70:70:0d:25:4b:c7:4f:b2:ad:57:58:b0:d5:3d:
37:af:f4:7f:6f:0c:d5:4e:5d:8f:ac:0f:d1:77:90:3e:04:7d:
25:f3:3c:27:3b:1f:6c:1b:95:a5:e3:eb:f2:ef:87:53:86:f9:
3e:fc:ff:8a:8b:b6:97:dd:84:d1:e3:a0:7c:43:af:f3:b9:29:
71:59:a5:ad:7a:2b:74:bd:b8:36:ed:4c:78:98:ec:a1:51:49:
42:88:69:d9:1c:a0:65:cf:08:5d:f2:87:02:af:30:a7:fb:69:
e8:62:eb:8a:7c:12:38:5d:83:8d:52:b1:20:36:ae:c1:8d:dd:
04:57:6c:9a:60:e7:fc:c0:77:ce:93:80:52:2d:84:b8:4c:4c:
76:60:41:a5:24:d6:b5:20:17:e1:e7:bb:b5:07:df:72:ba:f7:
93:69:9d:36:b3:56:2f:75:31:19:28:68:c8:80:59:62:26:ee:
74:37:f9:d4:f9:45:4b:90:12:94:21:dc:07:90:ff:d9:20:61:
89:b3:63:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org