Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Rnhp8z8sCovXljWBChhTBFr7HNU.roa
File: Rnhp8z8sCovXljWBChhTBFr7HNU.roa (raw, json)
Hash identifier: 7B2FuGvIK6R85OEe+PloM7rJhhC8kQwe8w+IGpkISVc=
Subject key identifier: 46:78:69:F3:3F:2C:0A:8B:D7:96:35:81:0A:18:53:04:5A:FB:1C:D5
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F95C96A18816B296083F15B14C2F84C
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Rnhp8z8sCovXljWBChhTBFr7HNU.roa
Signing time: Tue 06 Feb 2024 18:02:19 +0000
ROA not before: Tue 06 Feb 2024 18:02:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215729
IP address blocks: 2a0f:b241:51::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:95:c9:6a:18:81:6b:29:60:83:f1:5b:14:c2:f8:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 18:02:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=467869f33f2c0a8bd79635810a1853045afb1cd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:91:c9:75:3a:88:ba:eb:be:20:92:fe:3c:8b:
7b:2b:4b:c3:b4:14:ec:04:ed:9a:00:cb:15:c7:34:
89:9c:61:fb:31:08:ff:a8:09:71:ec:4e:f0:ab:cb:
5c:f6:1c:cc:3c:c7:0f:80:80:63:13:99:2c:67:c7:
14:f5:e7:70:5a:d3:00:5f:c3:b3:ea:24:6a:a9:30:
03:3a:6f:ca:92:15:f4:a6:fb:d3:3b:87:32:83:6c:
60:7c:da:34:96:e8:9f:1d:86:47:a1:5f:48:fb:c8:
cc:11:49:a2:c9:fd:f1:3f:37:28:e4:3b:79:90:61:
d4:cc:9c:7a:89:a3:ce:ff:b8:fb:c1:5b:39:67:a2:
05:14:58:2a:8a:d6:34:ee:fb:56:b1:11:e7:07:88:
89:f4:70:57:8c:df:1d:db:5d:72:ac:9a:77:77:22:
07:96:14:47:f1:c4:e9:14:4a:30:b4:a7:8a:34:e8:
36:7b:c6:96:32:44:79:e9:47:23:8e:fb:b8:2c:0f:
52:9b:5e:16:3b:6a:c3:6e:90:2d:a5:62:c0:b3:9b:
78:0e:47:f1:36:ab:81:2c:78:63:c7:ce:ca:70:5e:
89:c3:0a:de:9d:93:66:cc:e4:63:39:0e:bf:38:20:
6a:8b:cb:83:eb:b6:6a:d3:71:45:6b:04:73:df:16:
43:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:78:69:F3:3F:2C:0A:8B:D7:96:35:81:0A:18:53:04:5A:FB:1C:D5
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/Rnhp8z8sCovXljWBChhTBFr7HNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:51::/48
Signature Algorithm: sha256WithRSAEncryption
5a:8c:1d:bc:e3:c8:2b:da:a7:9f:af:5b:18:56:14:b0:2e:36:
8e:6e:8a:2e:78:c6:83:6a:de:a5:58:db:38:5a:b2:a9:7c:00:
c3:01:a8:c8:15:bd:fb:cb:2b:a2:75:b4:79:db:69:47:4b:96:
15:12:4f:2e:64:c5:68:6a:9d:ef:9a:4e:bf:16:75:06:e0:6f:
2d:ff:bb:b6:04:df:eb:6e:7c:08:8d:37:2d:85:0b:e5:f4:1d:
17:99:ab:06:b9:4f:95:b4:1f:9b:81:75:f6:d9:bf:44:e2:b6:
7d:29:27:d9:03:cb:56:5d:0b:55:13:62:1c:ab:ec:7c:16:5f:
c0:da:38:88:92:83:ad:d5:fb:05:e5:c8:6b:6b:a8:35:03:19:
ee:db:2e:56:20:fd:bd:6c:af:ee:c4:34:88:73:d0:87:89:fb:
64:86:07:f8:f9:53:06:be:a7:4c:ef:8a:a4:73:46:37:2e:ef:
42:c4:af:07:82:67:30:89:13:e2:e1:d7:14:c6:c8:7a:75:08:
ed:d6:85:7c:0d:b0:a7:ec:9b:ef:e0:29:70:7b:2a:79:0c:44:
21:47:e2:be:00:27:c5:c1:81:3a:2f:aa:32:3c:b6:1a:9d:7e:
56:35:44:52:05:26:10:98:2e:63:39:ec:75:c6:e9:a0:10:62:
f7:73:dd:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org