Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/P2yL7GdbkpNjdiJ-mxtynm6HzNg.roa
File: P2yL7GdbkpNjdiJ-mxtynm6HzNg.roa (raw, json)
Hash identifier: eqf1TKTbuDuBVYZLbEMs3jXxfMwNosIImi8GMrdBZf0=
Subject key identifier: 3F:6C:8B:EC:67:5B:92:93:63:76:22:7E:9B:1B:72:9E:6E:87:CC:D8
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB7A02C18FAE6477DAAA4F205E2E1AA
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/P2yL7GdbkpNjdiJ-mxtynm6HzNg.roa
Signing time: Tue 06 Feb 2024 18:39:16 +0000
ROA not before: Tue 06 Feb 2024 18:39:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210285
IP address blocks: 2a0f:b241:140::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b7:a0:2c:18:fa:e6:47:7d:aa:a4:f2:05:e2:e1:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:39:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3f6c8bec675b92936376227e9b1b729e6e87ccd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:38:ad:eb:ed:70:f3:a6:47:a2:d4:cb:cd:7d:
80:35:ab:cf:2d:3c:e5:8b:84:41:bd:f3:e8:15:6c:
99:85:d0:8f:a0:24:b7:28:82:62:a7:79:75:20:d0:
86:0f:4f:12:77:6c:4e:ba:5c:5b:ae:f4:85:cc:43:
25:24:50:c6:d2:07:55:2d:83:54:2a:c6:6a:3e:c4:
2a:cc:88:17:63:09:f8:7a:75:9d:35:d6:3d:54:86:
59:4c:64:1a:69:a6:e3:fa:18:b1:3a:02:46:8a:64:
25:fb:b2:35:83:ad:4c:03:a3:33:5c:d8:d0:d8:e8:
74:52:65:8e:cf:45:df:a4:29:4c:9a:0b:e4:70:76:
93:71:fe:64:8b:d2:db:d4:f1:56:f2:b0:2a:2e:62:
c0:28:0a:11:da:a8:f0:cc:93:a4:f3:cd:ce:4b:9d:
00:ef:66:4c:92:1c:a3:7f:3f:0f:12:39:8f:b3:96:
e1:d5:8e:02:74:c9:6a:4c:9e:3d:80:67:25:83:81:
68:4e:06:bb:4c:d5:8b:25:5e:db:f3:4a:43:42:1c:
fe:2d:79:8f:1f:ee:ff:22:76:93:d6:24:20:b6:2f:
d7:c7:ca:ce:b3:d7:58:b9:37:fa:86:0d:3a:02:67:
5b:fa:3b:97:d6:22:03:48:51:7a:f9:f7:07:5e:4a:
87:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:6C:8B:EC:67:5B:92:93:63:76:22:7E:9B:1B:72:9E:6E:87:CC:D8
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/P2yL7GdbkpNjdiJ-mxtynm6HzNg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:140::/48
Signature Algorithm: sha256WithRSAEncryption
34:81:a6:53:e7:5f:a1:a0:0f:d2:38:1a:a0:f6:8c:47:a5:ab:
26:c6:c4:0c:a1:47:56:ba:5c:6e:bb:64:09:7a:23:06:b8:39:
b3:d2:f3:f4:f5:10:b9:ad:b4:76:8a:bb:f4:c0:37:b0:0c:3c:
27:2d:a2:2a:e8:e6:ab:ec:47:15:75:68:8a:a1:40:4c:8c:cc:
b5:01:54:9f:94:60:f5:ef:00:73:25:db:5f:ea:60:c9:58:ef:
31:5d:52:a3:f1:64:6d:0c:5c:b8:ea:31:2f:9c:d0:b9:84:ac:
fd:68:20:e1:dd:f9:5d:12:ba:74:81:d6:9e:44:e9:62:0c:2a:
5b:72:87:8d:13:1b:ac:0c:98:f3:e8:4f:2a:62:51:18:33:f6:
af:33:d9:a0:ac:b9:e9:28:e2:8e:35:a1:38:30:d1:43:57:81:
f8:39:cb:4c:be:8d:af:21:a3:51:72:15:e3:50:99:f9:47:af:
d4:ce:18:e2:49:ee:9d:ed:52:80:9f:37:3f:d6:12:7e:74:c5:
a7:51:3e:53:e5:5a:b4:1e:01:af:9c:50:35:b7:d3:f1:f9:3e:
69:cc:54:a4:04:45:6d:83:81:72:18:52:8f:fc:df:b7:7a:12:
86:c5:e8:48:45:ea:b7:19:a0:42:83:db:69:3b:f3:22:70:1c:
b2:6a:7e:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org