Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Qk629JcFVJHD2cTnx_hj4Vs0KGQ.roa
File: Qk629JcFVJHD2cTnx_hj4Vs0KGQ.roa (raw, json)
Hash identifier: T6PeX33HiLBLnAtIZNWutna5c42By0T2BrwpTWB8SUw=
Subject key identifier: 42:4E:B6:F4:97:05:54:91:C3:D9:C4:E7:C7:F8:63:E1:5B:34:28:64
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7D63984519A136B6500B8984506E7E4E
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Qk629JcFVJHD2cTnx_hj4Vs0KGQ.roa
Signing time: Tue 06 Feb 2024 07:48:15 +0000
ROA not before: Tue 06 Feb 2024 07:48:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199184
IP address blocks: 2a0f:b241:5::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7d:63:98:45:19:a1:36:b6:50:0b:89:84:50:6e:7e:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 07:48:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=424eb6f497055491c3d9c4e7c7f863e15b342864
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f4:54:3a:52:b5:fe:50:8c:be:bc:e4:59:63:
a8:2f:6b:43:f2:12:99:8d:c5:ea:dd:e4:c5:e2:5b:
53:27:bd:53:cf:16:ae:25:eb:47:2f:a4:27:2e:87:
ec:cc:40:ff:14:fc:97:d4:03:1f:0d:08:55:54:43:
9d:e2:55:1f:1b:db:05:4d:20:26:8b:99:f8:37:09:
74:e1:d2:8c:a2:13:df:5b:bd:b7:30:54:26:6f:af:
b7:f3:8f:7c:3f:18:60:91:86:9b:b7:ed:85:87:67:
14:f6:b0:e8:30:4d:92:99:1a:73:d7:84:7e:49:de:
34:48:d8:a8:13:30:32:2e:7d:3a:1e:7b:45:e6:c5:
45:13:c0:89:e3:ff:db:88:6d:91:a9:d5:95:c2:5b:
2e:60:cc:d9:b6:31:1c:4c:33:b6:47:e1:5d:0d:48:
fc:e1:3e:8f:8b:e6:e0:5d:fc:c9:1c:09:ea:6e:b1:
1e:36:eb:fc:05:69:3e:8b:23:1c:98:3c:16:a5:f7:
79:d9:d1:ef:d2:2c:ea:d1:14:74:d5:e6:44:b9:af:
d7:41:7e:ab:47:b4:a6:cf:8f:e0:6a:9c:b8:40:8b:
66:c8:b7:79:f3:07:0c:5b:d9:f4:3c:b7:e9:55:49:
9c:b8:cf:3a:55:ae:3c:6b:6f:a2:9d:72:b4:b9:66:
36:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:4E:B6:F4:97:05:54:91:C3:D9:C4:E7:C7:F8:63:E1:5B:34:28:64
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Qk629JcFVJHD2cTnx_hj4Vs0KGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:5::/48
Signature Algorithm: sha256WithRSAEncryption
7c:d3:75:4d:e5:e7:da:e3:18:6b:ae:60:d4:92:9b:83:93:2c:
7d:21:07:2a:1a:ff:80:19:f8:9c:5b:e4:11:0d:42:7e:1e:8d:
ac:4f:0e:8c:11:4d:3a:2a:d5:4e:e7:c8:e2:4a:0d:72:19:16:
30:e1:7f:18:20:3d:1b:37:81:37:a7:ca:f7:86:6d:d4:83:f9:
2c:bb:03:cb:06:2b:da:dd:28:f1:e1:ba:80:53:c1:0b:19:dd:
3d:0b:04:10:4e:95:c5:98:a0:13:a3:ff:76:f6:ac:1a:35:98:
a0:58:16:1d:a2:c1:b9:c9:07:eb:cc:87:0a:a3:92:63:2f:8e:
48:3b:5d:1c:d5:7c:71:4f:de:29:86:09:eb:43:82:b4:e3:d7:
3f:fa:b8:72:3b:14:90:4d:ec:76:b9:98:96:7f:99:08:cc:7a:
ce:b0:16:19:78:aa:59:21:6d:66:ee:0f:da:ff:d5:92:d2:8f:
2e:d6:5b:a2:f8:c6:4f:3c:2e:62:00:74:a6:68:b6:4e:24:29:
67:01:ec:14:d3:67:39:b4:b3:0e:52:fb:10:d9:ca:db:31:5c:
ec:1d:24:35:08:c5:33:7b:82:f0:fd:bb:ce:fd:8b:ff:20:bb:
34:c3:7e:53:e5:06:8a:16:dc:1e:cf:a1:81:fe:bb:de:d8:3f:
b7:6c:e4:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org