Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Pbt4CKZZlJ0nYCA5ENrqu7pFjjw.roa
File: Pbt4CKZZlJ0nYCA5ENrqu7pFjjw.roa (raw, json)
Hash identifier: EKtIlec6nVepUYo5FxAIIwqW5SEZd9mxgzr32oJPr5g=
Subject key identifier: 3D:BB:78:08:A6:59:94:9D:27:60:20:39:10:DA:EA:BB:BA:45:8E:3C
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FB7A0A49D9C6F8B4D4AB3A9D9ECF77F
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Pbt4CKZZlJ0nYCA5ENrqu7pFjjw.roa
Signing time: Tue 06 Feb 2024 18:39:17 +0000
ROA not before: Tue 06 Feb 2024 18:39:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210445
IP address blocks: 2a0f:b241:141::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:b7:a0:a4:9d:9c:6f:8b:4d:4a:b3:a9:d9:ec:f7:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:39:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3dbb7808a659949d2760203910daeabbba458e3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e6:e2:e5:f6:f4:b2:92:be:49:74:86:7f:ae:
09:6f:c1:c8:72:53:72:bf:ea:63:aa:39:4a:75:12:
dd:da:e0:73:8a:f2:c8:1d:71:c1:d6:47:1b:6e:5c:
19:4b:bb:0f:21:d8:f6:66:4d:15:58:2e:7f:fc:be:
8b:9c:38:75:88:c1:82:6d:85:06:4f:6f:bd:bd:ee:
1f:21:bb:d6:49:6a:cf:37:a2:dd:00:82:38:40:38:
9d:b2:8b:06:c4:1d:51:1f:c1:cf:24:d7:f5:85:49:
d4:22:a9:7d:27:9f:3c:d8:5e:43:45:49:71:d3:22:
5f:57:04:0a:73:11:8f:11:d3:b4:38:bc:75:e0:e6:
ab:98:f6:df:2c:a3:75:63:2b:94:28:c1:c8:67:b3:
bc:cc:9c:3b:cb:3a:0d:b8:93:4d:8e:44:a8:72:48:
ec:8d:f4:85:21:b1:f5:23:f5:3a:6e:26:b8:23:5f:
49:2c:8c:c6:f6:06:a5:8c:9f:78:3b:89:53:f4:4d:
1a:1f:fd:53:66:1d:df:eb:27:0e:e2:be:67:3b:b6:
a8:c7:d5:2d:eb:bb:33:d7:06:51:84:c7:b0:62:8a:
dc:e5:79:d0:70:27:92:d8:fe:c6:02:9e:1b:fe:c4:
23:7a:89:3a:2a:6b:ad:f0:72:41:47:2d:dd:05:87:
37:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:BB:78:08:A6:59:94:9D:27:60:20:39:10:DA:EA:BB:BA:45:8E:3C
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Pbt4CKZZlJ0nYCA5ENrqu7pFjjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:141::/48
Signature Algorithm: sha256WithRSAEncryption
73:ae:1a:3c:37:3c:4d:58:4e:34:bd:8e:19:d7:5e:97:59:52:
a2:74:49:a9:bf:85:4e:72:33:e9:24:2e:98:7c:cb:7d:d0:50:
9f:bb:28:66:b2:fc:06:79:93:d9:9e:cb:f7:77:2b:86:98:56:
71:cf:37:13:e5:d5:30:51:2e:06:98:b4:9e:17:dd:51:e0:ce:
5a:ce:09:29:79:14:2a:17:54:02:10:cf:f2:9d:84:18:c2:23:
54:3a:bf:c9:01:f0:32:e7:87:5e:64:ad:fb:b7:53:7f:18:24:
f5:7d:a4:ae:d8:37:87:04:35:b9:c3:53:1e:ca:51:e0:c0:11:
c8:23:36:54:0f:1b:a0:69:19:7b:12:c2:d1:1d:5c:71:51:a5:
43:3a:b1:73:60:b2:e0:db:c9:ed:fe:42:74:07:81:f8:2b:cb:
87:36:5b:e6:27:c2:68:b2:a5:28:8a:95:7e:43:80:c2:c6:f2:
89:1a:b3:50:55:c1:17:29:b2:0a:71:c1:8b:b2:82:50:91:5b:
ef:76:bb:81:21:96:a8:5d:aa:3a:38:44:59:c9:eb:a2:60:2b:
e7:21:a8:85:6a:70:ab:34:0f:f5:d2:26:ed:74:c6:bc:51:48:
0e:e4:c9:a9:77:6f:45:55:a7:80:4e:a0:f4:3c:8b:79:7c:0c:
e2:1f:f6:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org