Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/P_0dFv9zu81olf7gedrtiFhQL5Q.roa
File: P_0dFv9zu81olf7gedrtiFhQL5Q.roa (raw, json)
Hash identifier: zhO3fCkDRIOZAINOsoGwqpDnqnNqIrp2Uf0h71l+euw=
Subject key identifier: 3F:FD:1D:16:FF:73:BB:CD:68:95:FE:E0:79:DA:ED:88:58:50:2F:94
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FA724E64F67EAFDAFC95188B8FFDC8F
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/P_0dFv9zu81olf7gedrtiFhQL5Q.roa
Signing time: Tue 06 Feb 2024 18:21:16 +0000
ROA not before: Tue 06 Feb 2024 18:21:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199073
IP address blocks: 2a0f:b241:7e::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:a7:24:e6:4f:67:ea:fd:af:c9:51:88:b8:ff:dc:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:21:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3ffd1d16ff73bbcd6895fee079daed8858502f94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:81:54:78:cf:70:1f:ce:12:4c:13:7a:07:32:
0b:64:6f:60:cf:63:bb:08:9c:65:8b:5e:53:b3:16:
c9:ed:8d:e3:3f:be:72:f2:a7:7d:67:06:ab:f7:96:
75:9f:c7:f5:c2:6d:95:fa:d7:74:2b:f4:e1:b7:aa:
11:0c:9e:30:fb:df:f3:72:44:4f:64:43:87:ec:76:
38:2d:65:f6:9b:68:3a:e6:05:e1:f1:21:51:fc:ad:
92:3c:fd:93:e2:a5:9d:bd:4d:0f:a9:f2:6e:af:68:
49:1b:f1:70:3f:ad:6d:29:09:54:c2:3e:29:10:ff:
c0:de:fb:08:b5:82:78:04:7f:cd:5f:6a:9e:91:73:
39:0e:a5:86:4b:fe:5d:4c:ce:13:be:6c:3e:cb:cc:
f8:34:e9:d1:4c:1c:7c:93:2a:7f:f1:6c:a4:48:4c:
6a:88:59:84:21:90:29:ff:31:8b:3f:f2:04:ce:37:
55:eb:eb:f1:02:fc:3d:05:9e:0f:21:c4:37:07:0c:
38:30:d3:9a:2d:90:c5:22:dc:17:c2:6c:99:f5:8f:
db:1c:7c:67:71:b2:27:8a:3b:f7:0b:2a:71:d0:8f:
88:ae:e7:06:9e:24:2b:4c:10:07:bc:78:49:67:a4:
0e:32:77:d7:e1:59:5a:ae:08:b6:5f:70:33:76:63:
01:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:FD:1D:16:FF:73:BB:CD:68:95:FE:E0:79:DA:ED:88:58:50:2F:94
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/P_0dFv9zu81olf7gedrtiFhQL5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:7e::/48
Signature Algorithm: sha256WithRSAEncryption
01:07:14:9f:ae:10:50:c8:eb:b1:7e:ba:66:b3:dc:8e:cd:f8:
87:43:61:ca:98:78:02:3f:1f:d4:7f:22:33:8a:bf:0b:f8:cf:
2c:4a:c3:c0:ff:0d:df:db:ab:3d:2f:12:ea:ed:e4:64:a0:12:
8c:af:0e:e0:90:51:b8:56:88:56:35:da:77:ff:fd:7e:a7:f1:
b9:5d:0c:8e:7c:24:bd:ae:42:c3:7c:1d:4c:fe:a5:fe:e3:56:
17:e8:62:99:d4:fa:b8:1a:98:7b:d4:2b:5a:d3:a6:fc:fb:08:
46:00:05:96:8e:69:76:58:ee:b2:4d:ec:dd:79:0e:18:80:57:
bc:8d:01:c0:7b:a7:51:c1:76:04:d8:59:01:3a:3f:a9:ef:9d:
0f:56:50:63:88:3a:68:26:f2:51:85:0e:19:95:cd:13:db:3a:
e9:1b:23:bf:d5:46:7d:8d:f2:50:f1:68:2d:24:25:26:35:7b:
34:73:2a:17:1d:9a:52:25:bd:3a:06:43:18:53:6c:e7:7a:0d:
7a:cc:e2:d2:4a:fe:e1:0b:8a:cf:a9:00:a3:7f:3f:c7:46:bb:
d8:9f:06:d6:ae:ec:14:93:ee:63:ef:6c:c7:6f:b0:56:c2:26:
2b:6e:c5:73:89:c2:46:80:7d:e2:18:81:56:8b:12:a6:95:93:
30:3e:e5:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org