Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/PmGoIvhTOaV4b6a8ZaBwbjWHyu8.roa
File: PmGoIvhTOaV4b6a8ZaBwbjWHyu8.roa (raw, json)
Hash identifier: SnCEMBOKnnNtNRPHE2RLk0BPuHbXK3BKmlJ3k2AsCTg=
Subject key identifier: 3E:61:A8:22:F8:53:39:A5:78:6F:A6:BC:65:A0:70:6E:35:87:CA:EF
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FBEF00398FBEE1B52F992B01366B099
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/PmGoIvhTOaV4b6a8ZaBwbjWHyu8.roa
Signing time: Tue 06 Feb 2024 18:47:16 +0000
ROA not before: Tue 06 Feb 2024 18:47:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51019
IP address blocks: 2a0f:b241:163::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:be:f0:03:98:fb:ee:1b:52:f9:92:b0:13:66:b0:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:47:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3e61a822f85339a5786fa6bc65a0706e3587caef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:c7:b0:97:1a:40:e9:27:e9:c5:85:7f:57:b7:
3a:0a:72:c4:8c:2a:53:b7:17:3f:1c:b5:a1:b5:b0:
fc:33:37:ef:06:ab:ff:5d:4b:08:6d:74:f2:5a:15:
4d:9b:da:ca:2a:6e:dc:ac:a8:f0:e1:67:64:51:1b:
0b:d9:d1:ff:8f:0f:f5:76:b9:c2:a7:ff:20:ce:59:
a1:12:ff:3f:fd:67:d4:92:45:67:06:40:fe:e7:05:
3c:e5:92:aa:2a:9e:c0:5a:c2:d6:c2:83:c0:27:6f:
d7:5d:bb:e3:21:6c:66:3f:8a:65:86:8a:82:00:0d:
01:26:26:4e:4e:10:d8:a8:bb:a4:d2:5a:c2:ec:25:
1e:0b:3b:24:c7:a5:cc:78:dc:05:7c:f4:ac:a2:11:
d3:a9:9e:e8:9a:19:e1:8e:af:e2:5a:33:3b:8d:d5:
a9:c2:7f:ff:74:60:b7:4c:ac:37:3f:77:a4:0c:82:
e9:79:f5:fa:ef:47:22:0e:bc:12:c4:0f:a4:eb:12:
0b:cb:7c:4f:c5:eb:0e:74:81:03:20:49:e5:c8:85:
95:67:99:4b:32:cb:3d:6b:d0:b9:06:cb:52:22:b2:
e3:72:f6:54:a8:6c:16:36:7d:a0:9c:a0:19:33:41:
d5:0f:b7:7c:31:18:99:f6:f2:0c:26:4f:64:fe:4a:
f4:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:61:A8:22:F8:53:39:A5:78:6F:A6:BC:65:A0:70:6E:35:87:CA:EF
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/PmGoIvhTOaV4b6a8ZaBwbjWHyu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:163::/48
Signature Algorithm: sha256WithRSAEncryption
5f:92:da:53:ce:ff:08:91:d2:02:8f:af:f5:c1:85:ea:53:27:
60:18:f0:c1:74:c1:8a:63:67:0c:f0:05:3b:29:9c:87:8f:d7:
a4:af:7b:a7:5f:23:26:0f:d3:84:d5:5f:ae:49:7f:49:8b:8e:
9f:63:68:e1:6e:31:46:75:68:4a:0b:86:ed:b3:73:fc:1d:22:
39:6e:fd:42:e0:64:68:b3:db:1a:69:9c:1e:83:d3:37:82:df:
89:73:40:b5:b8:be:f6:27:c2:a8:f5:7f:f1:38:9f:6c:b5:89:
f2:75:46:e8:cc:d1:68:8d:94:95:b4:8b:13:8a:06:5a:e3:8a:
98:77:8b:ab:37:61:70:74:7c:b8:d1:1f:af:73:a7:06:9f:aa:
63:c3:ee:e2:f4:4f:27:cf:49:5a:6c:b0:f8:6c:a2:2c:9d:94:
73:75:de:1a:6e:c3:58:b5:f4:f9:94:01:c3:fb:6d:5f:b3:fa:
de:dd:ff:e6:b8:70:07:c8:1e:df:04:50:8d:39:6f:73:55:f0:
69:47:fb:82:49:b0:26:c9:4d:7f:09:c4:55:a6:cd:5f:9d:3e:
f7:1a:69:75:e8:a6:4f:88:94:6b:5d:95:5f:cb:94:9e:3a:35:
78:6a:88:8e:2d:21:9e:f2:7d:72:91:49:8d:fa:04:01:c8:12:
ca:af:3c:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:08 2024 by rpki-client on console-ams.rpki-client.org