Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Qgx7hXSCZ8MVcchjyvsuE57JoOU.roa
File: Qgx7hXSCZ8MVcchjyvsuE57JoOU.roa (raw, json)
Hash identifier: UjrUmVioyr5ubZeh5s5r8WCB4FXKyvZU4ZC8fhvagEE=
Subject key identifier: 42:0C:7B:85:74:82:67:C3:15:71:C8:63:CA:FB:2E:13:9E:C9:A0:E5
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7FABBF893DDF8B9481392687904BB271
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Qgx7hXSCZ8MVcchjyvsuE57JoOU.roa
Signing time: Tue 06 Feb 2024 18:26:18 +0000
ROA not before: Tue 06 Feb 2024 18:26:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209574
IP address blocks: 2a0f:b241:f6::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:ab:bf:89:3d:df:8b:94:81:39:26:87:90:4b:b2:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:26:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=420c7b85748267c31571c863cafb2e139ec9a0e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:90:3a:e1:88:ad:67:8f:1c:b2:3f:f0:c0:e2:
b6:5e:3b:56:68:9b:2f:fa:0c:92:ec:5b:e8:05:f7:
0d:2b:c5:6d:24:67:ba:2d:49:57:f8:da:bd:e6:2f:
2e:90:ee:44:05:6b:25:9e:36:06:5c:2e:e9:44:af:
ad:85:6c:fa:f6:13:43:d2:c9:ef:d4:f4:10:39:0a:
c8:2e:ca:b7:60:16:5c:7b:bd:fe:03:19:62:94:e1:
7b:d8:65:43:73:e6:50:c0:57:e2:23:85:29:18:1a:
b7:e4:1a:b8:d0:ed:df:5b:06:7c:8c:1a:c6:7c:c9:
66:30:33:94:f4:2f:1a:16:de:6c:a8:38:d0:b0:73:
33:fe:4f:0c:d5:c3:c2:87:25:51:94:b7:7c:3a:62:
53:6b:dc:92:e4:27:aa:3c:0c:64:87:9d:6b:6c:e0:
7f:4c:04:fd:c7:a9:2a:fc:5a:c9:2a:ca:48:5d:e7:
56:97:5b:93:08:43:03:ef:77:18:fe:7a:5f:d7:bf:
1f:b3:5a:a5:49:c4:b2:b6:6b:06:4e:9e:d9:05:99:
db:ba:27:59:7c:31:d4:b8:5a:86:9c:34:ac:5b:eb:
77:85:75:77:59:d4:ae:d0:0a:c0:9e:f9:f2:43:a5:
0a:6e:91:81:ca:b1:58:a6:c5:a0:3f:3e:20:5b:ec:
b2:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:0C:7B:85:74:82:67:C3:15:71:C8:63:CA:FB:2E:13:9E:C9:A0:E5
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Qgx7hXSCZ8MVcchjyvsuE57JoOU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:f6::/48
Signature Algorithm: sha256WithRSAEncryption
11:94:e5:d9:84:c0:94:6c:a1:63:33:12:c9:16:a5:cd:92:a8:
d5:4f:c1:45:fb:f6:31:0a:de:12:26:7c:c0:76:d2:55:a3:01:
16:63:ff:43:20:8a:3e:b3:2d:d9:b3:47:6c:f2:5f:56:b1:d4:
d0:93:4e:71:f6:5d:23:b4:07:39:76:fa:d6:a1:7f:45:a7:25:
f6:07:4b:55:1e:68:ad:91:99:89:af:7d:83:6b:21:fc:c1:e3:
b0:92:5d:62:f5:99:03:b2:cb:61:69:f3:cd:43:ef:b3:a0:1f:
c5:01:93:28:17:50:5e:e5:94:1a:4f:69:90:05:c8:75:99:0b:
98:15:bd:98:d0:16:68:45:90:8a:41:26:27:95:4e:bd:d9:7b:
e3:f6:ad:46:62:8f:9e:70:ee:6d:66:1d:e0:3b:f6:ba:3b:69:
af:c5:72:f3:4d:35:eb:5f:e3:7b:43:5c:07:58:db:0e:4d:71:
18:b9:b5:b1:ab:62:a2:57:aa:93:72:d3:3e:68:20:8e:49:69:
44:8c:80:6b:16:02:c9:c6:e7:7c:4c:cf:df:99:fb:3d:47:33:
a6:45:44:1d:07:6b:ee:ba:32:71:d2:b9:85:35:7f:67:97:52:
cc:17:89:fc:bf:72:e8:f3:e0:3c:45:35:86:91:f9:49:70:1b:
bd:9c:d5:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org