Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Q_fHi7Ks1UoaDaqFXGt7544vqb0.roa
File: Q_fHi7Ks1UoaDaqFXGt7544vqb0.roa (raw, json)
Hash identifier: 4wAneiXFM+8NKQYqdlagYUSutkb7J06O4/4uMNW2Oko=
Subject key identifier: 43:F7:C7:8B:B2:AC:D5:4A:1A:0D:AA:85:5C:6B:7B:E7:8E:2F:A9:BD
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FACABE6B9C5E4C8497B97A72892F985
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Q_fHi7Ks1UoaDaqFXGt7544vqb0.roa
Signing time: Tue 06 Feb 2024 18:27:19 +0000
ROA not before: Tue 06 Feb 2024 18:27:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215907
IP address blocks: 2a0f:b241:104::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ac:ab:e6:b9:c5:e4:c8:49:7b:97:a7:28:92:f9:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:27:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=43f7c78bb2acd54a1a0daa855c6b7be78e2fa9bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:47:3b:97:7e:92:99:80:80:50:dd:45:1f:82:
9b:f7:12:b3:70:2e:7d:44:02:75:f4:1a:7c:77:20:
d2:c4:14:55:90:1f:9c:1c:13:2d:ab:fa:a2:5a:27:
88:0d:be:02:8c:8c:5a:5d:19:12:0a:e3:4a:2f:52:
66:9b:0c:3e:b5:b3:85:7a:88:a2:79:43:ef:b9:2b:
1f:2a:39:c5:b9:10:fb:9d:4a:1a:06:61:b1:4b:dc:
f9:ac:56:34:cc:0a:59:16:9a:59:c6:76:26:ae:34:
57:ff:3b:dc:cf:e3:21:81:5c:66:1f:39:2b:a8:b2:
30:af:4f:0d:7d:4a:b8:2c:9c:ce:9f:25:28:4c:0a:
42:d0:7f:3d:16:e7:8a:72:e6:bf:10:71:d3:22:e4:
87:c3:b9:69:32:13:66:bf:a5:f7:bd:e7:9b:29:7b:
e7:da:f2:76:a8:cc:20:76:8e:2a:00:08:5a:ed:03:
e0:0b:ea:77:b7:bf:d7:89:63:10:a8:50:a7:51:ea:
16:89:e8:6d:a2:ec:28:10:d1:d5:cc:82:17:be:6d:
f2:83:e0:9a:45:0d:46:80:cb:a0:60:64:8a:28:92:
8b:bd:da:5f:7e:c2:08:49:dc:02:00:4f:29:94:27:
88:58:be:8f:e3:8d:44:1f:5c:d4:55:48:99:e0:d1:
b2:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:F7:C7:8B:B2:AC:D5:4A:1A:0D:AA:85:5C:6B:7B:E7:8E:2F:A9:BD
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Q_fHi7Ks1UoaDaqFXGt7544vqb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:104::/48
Signature Algorithm: sha256WithRSAEncryption
8c:6c:a2:2c:bf:3d:08:f7:e7:42:68:46:10:bf:5a:d0:a1:58:
62:02:8f:fb:c2:9b:19:ad:e7:d1:41:f0:e1:13:4a:de:3a:a4:
61:49:f1:c7:b2:2f:e0:0e:1e:d1:92:6c:e8:50:27:1f:c3:8d:
ea:aa:44:f6:e1:12:90:0d:b7:9e:e9:cc:f4:4e:7e:64:40:f6:
79:19:62:f7:1a:cf:16:ca:91:c8:f8:36:6a:68:97:38:f3:4f:
b1:34:83:67:c6:7f:a4:e3:93:50:96:40:85:6a:65:74:ce:1b:
d3:d5:a1:79:33:91:3c:ac:8e:a6:6f:5e:e8:ac:32:da:89:76:
e0:64:76:39:3e:ed:ff:de:54:41:ee:62:11:2c:3a:fd:8d:36:
21:ea:ca:67:2c:b1:51:33:33:8a:aa:9c:4a:38:d2:0d:2d:22:
fc:ba:83:f4:ee:b9:6e:9f:62:1a:45:00:e8:02:20:c4:cf:39:
0a:9e:73:2d:17:42:46:06:c2:c4:ce:7d:e6:7d:a6:d0:84:b0:
f7:68:12:5d:5e:4c:02:44:04:a3:ea:86:34:c6:57:0d:24:0a:
9f:dc:cb:92:47:39:30:40:a3:65:ea:7d:2e:6a:1a:fa:2d:8c:
9c:0d:84:f9:40:e2:78:59:79:f9:a9:aa:4b:3c:89:cd:c8:ed:
29:a1:12:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org